Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

preventívna kontrola

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Bazer
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 24 zář 2022 12:36

preventívna kontrola

#1 Příspěvek od Bazer »

Dobry deň,

prosím o preventívnu kontrolu, kedysi som tu mal účet ale enviem sa k nemu dostať tak som si založil nový, dúfam, že to nebude problém.

Ďakujem

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-08-2022
Ran by PC (administrator) on DESKTOP-UN2QGOA (Gigabyte Technology Co., Ltd. Z390 GAMING X) (24-09-2022 14:00:07)
Running from C:\Users\PC\Downloads
Loaded Profiles: PC
Platform: Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) Language: Slovenčina (Slovensko)
Default browser: "C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe" --single-argument %1
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.8020\Agent.exe
(C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp32.exe
(C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp64.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCopyAccelerator.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(Discord Inc. -> Discord Inc.) C:\Users\PC\AppData\Local\Discord\app-1.0.9006\Discord.exe <6>
(DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\Display.NvContainer\NVDisplay.Container.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe <3>
(explorer.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
(explorer.exe ->) (Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <7>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\CCleanerBrowserCrashHandler64.exe
(services.exe ->) (Binary Fortress Software Ltd -> Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8>
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation) [File not signed] C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_778512ee63a728ec\RstMwService.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22072.207.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-07-30] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [182888 2022-03-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1089872 2022-09-17] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [Discord] => C:\Users\PC\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4234088 2022-09-21] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32687568 2022-09-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3535416 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1802584 2022-08-04] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [13443008 2021-05-03] (Binary Fortress Software Ltd -> Binary Fortress Software)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2022-09-22] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [MicrosoftEdgeAutoLaunch_B47356396DDD0FAAE76D0ED141F5CEA2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3795360 2022-09-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Run: [CCleanerBrowserAutoLaunch_E71417B8001168D10E406277AE4A1137] => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2994024 2022-09-14] (Piriform Software Ltd -> Piriform Software)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3535416 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\...\AppCompatFlags\Custom\H3Blade.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Heroes3.exe: [{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb] -> HoMM III Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb [2021-12-19]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\105.0.18469.129\Installer\chrmstp.exe [2022-09-24] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\105.0.5195.127\Installer\chrmstp.exe [2022-09-20] (Google LLC -> Google LLC)
Startup: C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-11-22]
ShortcutTarget: Twitch.lnk -> C:\Users\PC\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0C27144F-215E-4D48-B522-A98EF9366E43} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {14F35BE3-1197-4F14-91B1-742ED6DE33B4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2019-03-20] (Google Inc -> Google Inc.)
Task: {153613D2-A4B5-41D1-9EA3-11A375FA1043} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2D4F353B-3327-4765-9CCA-6C06A72F27C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2DE56C24-0660-4B7E-B1FE-B0882C43D716} - System32\Tasks\CCleanerSkipUAC - PC => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2E0BD271-638E-4B47-B318-A1D053197B3C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3E61CE5E-607A-4491-969E-A2623A18F9D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3F9B0CB3-DD8E-4C4D-A8E8-E6F65073C609} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-09-24] (Piriform Software Ltd -> Piriform Software)
Task: {47B5F00B-E6E2-4335-9206-CE748F3D7CE7} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [64408 2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {4EA408B8-B39F-4D8C-ADD9-D471724C4815} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142208 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {52811A4C-7E93-4638-B847-06AECA51D987} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [933336 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C2CCEA6-8DCB-404F-87E0-F79D1B0F4714} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "d570adf1-08cf-44bd-90a9-31f984f69afb" --version "6.04.10044" --silent
Task: {6DF92343-9FD0-490D-8516-A5664ABDB5D1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7937BEF3-F67C-457A-89DB-4A4A99FC8A1C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7F9C8217-B864-4917-9523-00AEFDBA02FC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [142208 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {816CFC03-9544-4F99-A774-D7038A6D2E9B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {842AF7C5-8A1D-4E5B-99E2-103B2DD9E225} - System32\Tasks\GoogleUpdateTaskMachineUA1d57de8c06b9fdc => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2019-03-20] (Google Inc -> Google Inc.)
Task: {87183CB3-E432-4BDA-A327-6E8DDFCAF3CC} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2994024 2022-09-14] (Piriform Software Ltd -> Piriform Software)
Task: {8E58A5A5-2A0E-43F7-8898-8B48FC97ADF5} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {93A0406F-F34C-4967-BDE2-78B167715578} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-09-24] (Piriform Software Ltd -> Piriform Software)
Task: {98F71668-1587-4E02-908B-1FAC75495328} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2019-03-20] (Google Inc -> Google Inc.)
Task: {A71142F1-8FD3-4EC0-A1EF-6DAC5FCD0DAB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MpCmdRun.exe [1335960 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A7F1F080-8A13-40EC-ACF2-3129D3E007B9} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2994024 2022-09-14] (Piriform Software Ltd -> Piriform Software)
Task: {AD0DF23D-3D31-4A14-97A0-04983E18F02C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {CA9ECED4-A7F7-432A-A93E-5E0F657446F7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23709120 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CEF1CA8D-EDD1-4BF5-82B1-C6FDADB38B99} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8517576 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {D1D4A1DA-3AAB-4F0D-93BC-A0A7D7A095F2} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
Task: {D37299FD-129D-4811-AC44-21A9A585C6EB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8517576 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {D5514B72-C871-4578-925B-C133EFB7EEBC} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DB93F4F9-CF55-4040-AD31-BEDAAFBA0E01} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23709120 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC56637F-79F8-452C-B3E2-A414AE5C2F66} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EE8F337E-F163-482F-BDA7-3EBF5FF5D496} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {F821A950-4A14-4A2E-8D62-7D9E3F09623D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FB13B2A9-6E45-4563-9B61-C4EEFDD4F756} - System32\Tasks\GoogleUpdateTaskMachineCore1d57de8c069577d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2019-03-20] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{9d1fe78c-9d8b-45ff-a28d-ef5ac5e8e41e}: [DhcpNameServer] 192.168.1.1 195.146.128.62

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default [2022-09-24]
Edge Extension: (IE Tab) - C:\Users\PC\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2022-08-18]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-05-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-07-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [2022-09-24] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1208.2\npCCleanerBrowserUpdate3.dll [2022-09-24] (Piriform Software Ltd -> Piriform Software)

Chrome:
=======
CHR Profile: C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default [2022-09-24]
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.netflix.com
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-08-30]
CHR Extension: (AdBlock - najlepší blokovač reklám) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2022-08-30]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-08-31]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-09-24] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\105.0.18469.129\elevation_service.exe [1997080 2022-09-14] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [196976 2022-09-24] (Piriform Software Ltd -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12131256 2022-09-19] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\WINDOWS\system32\CorsairGamingAudioCfgService64.exe [661016 2022-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [230504 2022-03-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [81512 2022-03-17] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [11309520 2021-05-03] (Binary Fortress Software Ltd -> Binary Fortress Software)
S3 EQU8_13; C:\ProgramData\EQU8\Diabotical\bin\anticheat.x64.equ8.exe [5540544 2020-09-15] (Int3 Software AB -> Int3 Software AB)
S3 FACEITService; C:\Program Files\FACEIT AC\FACEITService.exe [20252512 2019-10-06] (FACE IT LIMITED -> )
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1990496 2021-12-03] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-12-03] (GOG Sp. z o.o. -> GOG.com)
R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [440936 2022-03-17] (Corsair Memory, Inc. -> Corsair)
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [505856 2018-05-02] (Intel Corporation) [File not signed]
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10078976 2022-09-22] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8726344 2022-09-11] (Malwarebytes Inc. -> Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8080520 2018-12-04] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2579272 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3497808 2022-08-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2577752 2022-08-04] (Overwolf Ltd -> Overwolf LTD)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [254224 2021-11-16] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300600 2022-07-25] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [534440 2022-04-28] (Razer USA Ltd. -> Razer Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\NisSrv.exe [3125112 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe [133560 2022-09-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudio64.sys [61976 2022-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2022-01-31] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz153; C:\WINDOWS\temp\cpuz153\cpuz153_x64.sys [36864 2022-09-22] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
S3 EQU8_HELPER_13; C:\WINDOWS\system32\DRIVERS\EQU8_HELPER_13.sys [38080 2020-09-15] (Int3 Software AB -> )
R0 FACEIT; C:\WINDOWS\System32\Drivers\FACEIT.sys [17427320 2019-10-20] (FACE IT LIMITED -> )
S3 gdrv; C:\Windows\gdrv.sys [26792 2019-03-20] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-09-23] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-23] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2022-09-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2022-06-24] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsleaec552c; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E2A1859D-36DF-42BE-B872-EFF40318A883}\MpKslDrv.sys [228600 2022-09-23] (Microsoft Windows -> Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [54632 2021-03-30] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0085; C:\WINDOWS\System32\drivers\RzDev_0085.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-09-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [453904 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [94480 2022-09-07] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-24 14:00 - 2022-09-24 14:00 - 000034457 _____ C:\Users\PC\Downloads\FRST.txt
2022-09-24 13:59 - 2022-09-24 14:00 - 000000000 ____D C:\FRST
2022-09-24 13:58 - 2022-09-24 13:58 - 002371072 _____ (Farbar) C:\Users\PC\Downloads\FRST64.exe
2022-09-24 13:54 - 2022-09-24 13:54 - 001222144 _____ C:\Users\PC\Downloads\RSITx64.exe
2022-09-24 13:54 - 2022-09-24 13:54 - 000000000 ____D C:\rsit
2022-09-24 13:54 - 2022-09-24 13:54 - 000000000 ____D C:\Program Files\trend micro
2022-09-24 13:40 - 2022-09-24 13:40 - 000003842 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Hourly)
2022-09-24 13:40 - 2022-09-24 13:40 - 000003258 _____ C:\WINDOWS\system32\Tasks\CCleaner Browser Heartbeat Task (Logon)
2022-09-24 13:40 - 2022-09-24 13:40 - 000002475 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2022-09-24 13:40 - 2022-09-24 13:40 - 000002440 _____ C:\Users\Public\Desktop\CCleaner Browser.lnk
2022-09-24 13:40 - 2022-09-24 13:40 - 000000000 ____D C:\Users\PC\AppData\Local\CCleaner Browser
2022-09-24 13:40 - 2022-09-24 13:40 - 000000000 ____D C:\ProgramData\CCleaner Browser
2022-09-24 13:39 - 2022-09-24 13:40 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2022-09-24 13:39 - 2022-09-24 13:39 - 000003512 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineUA
2022-09-24 13:39 - 2022-09-24 13:39 - 000003388 _____ C:\WINDOWS\system32\Tasks\CCleanerUpdateTaskMachineCore
2022-09-23 18:33 - 2022-09-23 18:33 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2022-09-23 18:33 - 2022-09-23 18:33 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2022-09-23 18:33 - 2022-09-23 18:33 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2022-09-23 18:33 - 2022-09-23 18:33 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2022-09-23 18:33 - 2022-09-23 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-09-23 18:33 - 2022-09-23 18:33 - 000000000 ____D C:\Program Files\Logitech
2022-09-23 18:33 - 2022-09-23 18:33 - 000000000 ____D C:\Program Files\LGHUB
2022-09-22 19:03 - 2022-09-22 19:03 - 000223176 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2022-09-20 18:00 - 2022-09-24 13:39 - 000003476 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-09-20 18:00 - 2022-09-24 13:39 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-09-16 19:30 - 2022-09-16 19:30 - 000413696 _____ C:\WINDOWS\system32\AzureCheck.dll
2022-09-16 19:30 - 2022-09-16 19:30 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-09-16 19:30 - 2022-09-16 19:30 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-09-16 19:30 - 2022-09-16 19:30 - 000011813 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-09-16 19:26 - 2022-09-16 19:26 - 000000000 ___HD C:\$WinREAgent
2022-09-10 19:26 - 2022-09-10 19:26 - 000001090 _____ C:\Users\Public\Desktop\World of Warcraft Beta.lnk
2022-09-10 19:26 - 2022-09-10 19:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft Beta

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-09-24 13:56 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-09-24 13:55 - 2019-03-23 00:54 - 000000000 ____D C:\Users\PC\AppData\Local\Battle.net
2022-09-24 13:51 - 2019-03-23 00:56 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2022-09-24 13:49 - 2019-03-29 23:56 - 000000000 ____D C:\Program Files (x86)\Steam
2022-09-24 13:44 - 2019-03-20 22:54 - 000000000 ____D C:\Program Files (x86)\Google
2022-09-24 13:42 - 2019-03-22 18:23 - 000000000 ____D C:\Users\PC\AppData\Local\D3DSCache
2022-09-24 13:39 - 2020-11-15 03:51 - 000000000 ____D C:\WINDOWS\Minidump
2022-09-24 13:39 - 2020-08-24 19:24 - 000000000 ____D C:\Program Files\CCleaner
2022-09-24 13:39 - 2019-03-23 00:32 - 000000000 ____D C:\Users\PC\AppData\Local\CrashDumps
2022-09-24 13:37 - 2019-03-22 18:58 - 000000000 ____D C:\Users\PC\AppData\Roaming\Discord
2022-09-24 13:35 - 2019-03-22 18:58 - 000000000 ____D C:\Users\PC\AppData\Local\Discord
2022-09-24 13:24 - 2020-04-03 23:34 - 000000000 ____D C:\Program Files\Epic Games
2022-09-24 13:22 - 2021-05-28 13:25 - 000000000 ____D C:\Users\PC\AppData\Roaming\Origin
2022-09-24 13:22 - 2021-05-28 13:25 - 000000000 ____D C:\ProgramData\Origin
2022-09-24 13:21 - 2022-02-08 21:55 - 000000000 ____D C:\Program Files (x86)\Origin Games
2022-09-24 13:21 - 2021-05-28 13:27 - 000000000 ____D C:\Program Files (x86)\Origin
2022-09-24 13:21 - 2021-05-28 13:25 - 000000000 ____D C:\Users\PC\AppData\Local\Origin
2022-09-24 13:17 - 2020-10-30 18:02 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-09-24 12:37 - 2019-03-20 23:18 - 000000000 ____D C:\ProgramData\NVIDIA
2022-09-24 12:36 - 2022-04-08 21:46 - 000000000 ____D C:\Users\PC\AppData\Local\LGHUB
2022-09-24 12:35 - 2022-04-08 21:46 - 000000000 ____D C:\Users\PC\AppData\Roaming\LGHUB
2022-09-24 08:35 - 2021-08-14 16:34 - 000004206 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{2072CE3F-352E-4ADA-AA41-077F67D67525}
2022-09-23 21:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-09-23 18:33 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-09-22 19:09 - 2020-10-30 18:11 - 000904538 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-09-22 19:09 - 2020-04-03 23:26 - 000062592 _____ C:\WINDOWS\system32\perfh01B.dat
2022-09-22 19:09 - 2020-04-03 23:26 - 000016392 _____ C:\WINDOWS\system32\perfc01B.dat
2022-09-22 19:03 - 2020-10-30 18:05 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-09-22 19:03 - 2020-10-30 18:02 - 000443288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-09-22 19:03 - 2020-10-30 18:02 - 000008192 ___SH C:\DumpStack.log.tmp
2022-09-22 19:03 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-09-22 19:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-09-22 19:02 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-09-21 17:59 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-09-20 22:45 - 2019-03-20 22:55 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-09-20 22:45 - 2019-03-20 22:55 - 000002272 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-09-20 18:00 - 2020-10-30 18:05 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-09-20 17:44 - 2021-12-11 20:33 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2972202473-2534115932-3246778332-1001
2022-09-20 17:44 - 2020-10-30 18:05 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2972202473-2534115932-3246778332-1001
2022-09-20 17:44 - 2020-10-30 17:49 - 000002362 _____ C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-09-19 14:14 - 2019-04-05 16:25 - 000000000 ____D C:\Program Files\Microsoft Office
2022-09-19 14:10 - 2020-08-02 10:22 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-09-19 14:10 - 2020-08-02 10:22 - 000002282 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-09-17 08:17 - 2019-03-23 00:52 - 000000000 ____D C:\Program Files (x86)\Battle.net
2022-09-16 19:31 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-09-16 19:30 - 2020-10-30 18:06 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-09-16 19:26 - 2019-03-20 23:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-09-16 19:24 - 2019-03-20 23:16 - 141646296 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-09-11 19:38 - 2019-03-22 18:23 - 000000000 ____D C:\Users\PC\AppData\Roaming\TS3Client
2022-09-11 11:50 - 2020-11-14 22:57 - 000002315 _____ C:\Users\PC\Desktop\CurseForge.lnk
2022-09-11 11:50 - 2020-11-14 22:57 - 000000000 ____D C:\Program Files (x86)\Overwolf
2022-09-11 11:50 - 2020-11-14 22:56 - 000000000 ____D C:\Users\PC\AppData\Local\Overwolf
2022-09-09 20:02 - 2019-07-23 21:40 - 000000000 ____D C:\Program Files (x86)\Hearthstone
2022-09-08 18:53 - 2020-04-24 22:15 - 000007586 _____ C:\Users\PC\AppData\Local\Resmon.ResmonCfg
2022-09-07 15:11 - 2019-03-20 21:09 - 000000000 ____D C:\Users\PC\AppData\Local\Packages
2022-09-07 08:18 - 2019-03-20 21:05 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-08-31 21:02 - 2020-10-30 18:05 - 000003488 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA1d57de8c06b9fdc
2022-08-31 21:02 - 2020-10-30 18:05 - 000003364 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore1d57de8c069577d
2022-08-25 22:45 - 2020-10-30 17:49 - 000000000 ____D C:\Users\PC

==================== Files in the root of some directories ========

2020-04-24 22:15 - 2022-09-08 18:53 - 000007586 _____ () C:\Users\PC\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by PC (24-09-2022 14:00:58)
Running from C:\Users\PC\Downloads
Microsoft Windows 10 Home Version 21H2 19044.2006 (X64) (2020-10-30 16:05:57)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2972202473-2534115932-3246778332-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2972202473-2534115932-3246778332-503 - Limited - Disabled)
Guest (S-1-5-21-2972202473-2534115932-3246778332-501 - Limited - Disabled)
PC (S-1-5-21-2972202473-2534115932-3246778332-1001 - Administrator - Enabled) => C:\Users\PC
WDAGUtilityAccount (S-1-5-21-2972202473-2534115932-3246778332-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aplikácie Microsoft 365 pre veľké organizácie - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.15601.20148 - Microsoft Corporation)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM-x32\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 105.0.18469.129 - Piriform Software)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
CORSAIR iCUE 4 Software (HKLM\...\{D73161EC-0B74-45DE-9908-6B2B583DFDA5}) (Version: 4.22.203 - Corsair)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
CurseForge (HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.206.3.6102 - Overwolf app)
Discord (HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
DisplayFusion 9.8 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 9.8.0.0 - Binary Fortress Software)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FACEIT AC version 1.0 (HKLM\...\{1419E44C-0EF4-4822-9194-9F1A4D43973D}_is1) (Version: 1.0 - FACEIT LTD)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 105.0.5195.127 - Google LLC)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might and Magic 3 Complete (HKLM-x32\...\1207658787_is1) (Version: 4.0 - GOG.com)
Heroes of Might and Magic® III: Horn of the Abyss (HKLM-x32\...\HotA + HD_is1) (Version: 1.6.1 - HotA Crew)
HoMM III Compatibility Database (HKLM\...\{62a24b39-0106-4990-90ea-3a09e9dda7a6}.sdb) (Version: - )
Intel(R) Chipset Device Software (HKLM\...\{03A76284-A1E0-46B1-86A0-3BCF58AD416E}) (Version: 10.1.17711.8088 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1829.12.0.1154 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{29484140-01C3-44ED-85DF-B26E203E0EEF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{F9DBDF5A-AFE6-4DD7-9BC2-2C62990AF27F}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{3E79E2C2-373D-4DE7-9D6E-25665D166EBA}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Network Connections 23.2.0.1006 (HKLM\...\{2B165F54-F534-4856-BA99-C796B94B7983}) (Version: 23.2.0.1006 - Intel) Hidden
Intel(R) Network Connections 23.2.0.1006 (HKLM\...\PROSetDX) (Version: 23.2.0.1006 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.7.0.1009 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{D7832862-06E3-46EB-A35F-73D5CC0948F5}) (Version: 16.7.0.1009 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{72759DFB-9080-46A5-ACCF-5BA26A6FF3FD}) (Version: 30.100.1727.1 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.50.369.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.369.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{aa81bdf2-96a6-4400-a596-c7d1916ce9f7}) (Version: 1.50.369.0 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{c30dc778-ac13-4f91-9045-fea2331ceb2e}) (Version: 10.1.17711.8088 - Intel(R) Corporation) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.9.312973 - Logitech)
Malwarebytes version 4.5.13.208 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.13.208 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 105.0.1343.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 105.0.1343.42 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\OneDriveSetup.exe) (Version: 22.181.0828.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{640E529F-F80E-44C2-90D5-2A37CF038EA4}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{A70F3F8D-071E-4DD8-894A-118020F83AF3}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.31.31103 (HKLM-x32\...\{2aaf1df0-eb13-4099-9992-962bb4e596d1}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.31.31103 (HKLM\...\{A977984B-9244-49E3-BD24-43F0A8009667}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.31.31103 (HKLM\...\{A181A302-3F6D-4BAD-97A8-A426A6499D78}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)
NVIDIA Grafický ovládač 512.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.15 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{FAAC26AD-73BA-40CE-86AA-C9213F9E064A}) (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.46.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.46.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15601.20064 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15601.20148 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.115.51547 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.204.0.1 - Overwolf Ltd.)
Paradox Launcher v2 (HKLM\...\{E68BBC18-9E69-436B-B20F-E294DE62ECAB}) (Version: 2.3.0 - Paradox Interactive)
Pirates of the Burning Sea (HKLM-x32\...\{00E7CE23-110B-47CE-AF08-D261ED1296EB}) (Version: 2.17.11 - Vision Online Games) Hidden
Pirates of the Burning Sea (HKLM-x32\...\Pirates of the Burning Sea 2.17.11) (Version: 2.17.11 - Vision Online Games)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.7.0731.072516 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8475 - Realtek Semiconductor Corp.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.34161 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
Tukui Client (HKLM\...\{9C3C0329-0FCA-43FB-9F13-13D0C4A9809B}) (Version: 3.3.5 - Tukui)
Twitch (HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 128.0.10632 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.4.16 - Black Tree Gaming Ltd.)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Beta (HKLM-x32\...\World of Warcraft Beta) (Version: - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version: - Blizzard Entertainment)

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.14.67.0_x64__rz1tebttyb220 [2022-07-09] (Dolby Laboratories)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-26] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-20] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-03-24] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj [2019-12-07] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-06-06] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_2b01a28ee7b06750\nvshext.dll [2022-03-18] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-06-06] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-09-23 18:33 - 2022-09-22 19:06 - 000156160 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2022-09-17 07:27 - 2022-09-17 07:27 - 104871424 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\libcef.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000112128 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\libegl.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 006227456 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\libglesv2.dll
2021-08-14 16:27 - 2019-08-15 18:13 - 001265664 _____ () [File not signed] C:\Program Files (x86)\DisplayFusion\runtimes\win-x64\native\e_sqlite3.dll
2018-05-03 12:30 - 2018-05-03 12:30 - 000349696 _____ (Intel(R) Corporation) [File not signed] C:\Windows\system32\NCS2Setp.dll
2022-01-31 11:48 - 2022-01-31 11:48 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files\Corsair\CORSAIR iCUE 4 Software\SiUSBXp.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000810496 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\chrome_elf.dll
2021-05-28 13:27 - 2021-05-28 13:26 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-05-28 13:27 - 2021-05-28 13:26 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2021-05-28 13:27 - 2021-05-28 13:26 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2022-09-24 13:21 - 2021-05-28 13:26 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2022-09-24 13:21 - 2021-05-28 13:26 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2022-09-24 13:21 - 2021-05-28 13:26 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2022-09-24 13:21 - 2021-05-28 13:26 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2022-09-24 13:21 - 2021-05-28 13:26 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2022-09-24 13:21 - 2021-05-28 13:26 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\audio\qtaudio_windows.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\imageformats\qgif.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\imageformats\qico.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\imageformats\qjpeg.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\imageformats\qmng.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\imageformats\qsvg.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\imageformats\qtiff.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\platforms\qwindows.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Core.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Gui.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Multimedia.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Network.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Qml.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Quick.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Svg.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Widgets.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5WinExtras.dll
2022-09-17 07:27 - 2022-09-17 07:27 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.13747\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-08] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-09] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Program Files (x86)\Razer\ChromaBroadcast\bin;C:\Program Files\Razer\ChromaBroadcast\bin;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PC\Desktop\aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2972202473-2534115932-3246778332-1001\...\StartupApproved\Run: => "Overwolf"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{3B152EFD-60A9-425B-93A0-80E1C6805B32}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [TCP Query User{CD083F75-2580-4837-AF04-A33FAF83BB47}C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base81433\sc2_x64.exe => No File
FirewallRules: [UDP Query User{FCC29FB7-873D-40E2-97BB-AC6CF0ACC311}C:\program files\epic games\totalwarsagatroy\troy.exe] => (Allow) C:\program files\epic games\totalwarsagatroy\troy.exe => No File
FirewallRules: [TCP Query User{3282B593-8961-40DA-9C2F-0C21712E6AD3}C:\program files\epic games\totalwarsagatroy\troy.exe] => (Allow) C:\program files\epic games\totalwarsagatroy\troy.exe => No File
FirewallRules: [{7438D519-18C8-45F7-8F0D-AE5461A3062D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E268DBCC-C811-4E86-B6E8-3A52D1B2DA1B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A6268F0D-BFBD-4D05-ABF6-1E0E5D8E6B90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2F0AFF56-4EF0-4B8B-A7B0-0D655647A117}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{9DE4618C-6AB3-41BF-8745-E54A98647D42}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{A3A2290E-F076-496C-B405-587898746D48}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{77CFFB5B-D03B-4876-B92B-F7B457135F37}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [TCP Query User{3077F524-8413-4DB9-99DB-61A2B25A2471}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [TCP Query User{C4EC86BE-34E2-431F-B60D-9CC7E7B18457}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => No File
FirewallRules: [UDP Query User{C280A082-105C-4B29-86A2-8BD2174D3B21}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => No File
FirewallRules: [{06A138AE-8AF5-4D2E-B649-2BB48F0EB561}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0F35361B-0A91-4C91-B525-46F5690084F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{28DEB3D1-5089-435F-95D8-830905470322}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{3F39B693-1414-4497-8130-52862103CE63}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{B6C97C86-E2BB-4219-A7B6-A76855EEAA37}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7E64C2EE-22CF-4686-8CB5-F562191486CB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{636C35C5-37F9-4466-9FE2-3CCF084F41C6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{607014C6-456B-44CB-9DBC-1E4AE7CD3E01}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{57BAA0BF-1F75-44F6-8BA5-CA1B6B613646}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EAAE8C27-1DD1-42F3-AADE-01649E6AA6F1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{FEC6DA75-C4A6-45F7-A452-5B57957E7085}C:\program files (x86)\starcraft ii\versions\base74456\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base74456\sc2_x64.exe => No File
FirewallRules: [UDP Query User{57845C53-6BCE-4FBA-9663-306BB4E1148A}C:\program files (x86)\starcraft ii\versions\base74456\sc2_x64.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base74456\sc2_x64.exe => No File
FirewallRules: [TCP Query User{8B00D98F-1B7D-4BDD-9335-FA76B431C4A1}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{D2B7A89C-47B6-4069-8624-C53A2D07517D}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{2E2CEC95-28B2-4E09-813E-6747CACAC529}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => No File
FirewallRules: [UDP Query User{EBC0260D-BBAE-4E41-9EAD-DB2C4D1D9A39}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe => No File
FirewallRules: [{00BBC657-DEAB-4C8F-8977-85E6FD482A66}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Civilization IV Colonization\Colonization.exe (Firaxis Games) [File not signed]
FirewallRules: [{22124EE0-C888-4366-AF71-3DCC7B9B58A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Civilization IV Colonization\Colonization.exe (Firaxis Games) [File not signed]
FirewallRules: [TCP Query User{3D37251F-1FB6-453B-8775-C8CC5DE28C75}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Block) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{97568BCE-AFE3-42BD-86B7-4DBD7C0BE432}C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe] => (Block) C:\program files (x86)\steam\steamapps\common\total war rome ii\rome2.exe (The Creative Assembly Limited -> The Creative Assembly Ltd)
FirewallRules: [{F9C8919A-F642-41BD-A1BC-45D7A363180C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{EFA0BA05-8963-45AE-B53A-EE89D5560DAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{EEB6237F-4C3A-4E94-AACC-1C7FB52E42C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELEX\system\ELEX.exe => No File
FirewallRules: [{34F1C1C8-0F79-4A00-B00B-154B9AAAEC34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELEX\system\ELEX.exe => No File
FirewallRules: [TCP Query User{96D7B1EA-9D6D-4147-BE10-515BBC2E8DD7}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{6EA9F649-11F1-4171-83AD-FE2E9EAE1D85}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{AB79131F-0D6D-4F55-A282-566BBEDFDDF6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{04D2FEF8-E4CF-4D14-BD07-37B304CFA1F5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6FF0A00C-5FC0-4D56-8074-3F25815C253E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{28B8EB43-2FA3-4419-B63F-D44EA2167228}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{D41793E1-FA22-4C94-90B2-19216917DFC3}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{8CA227BC-C4B7-491F-9DAB-6AEF98222619}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe => No File
FirewallRules: [UDP Query User{18859B2C-8E7E-4558-BBE1-80AC34F4DA6B}C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe] => (Allow) C:\program files\epic games\borderlands3\oakgame\binaries\win64\borderlands3.exe => No File
FirewallRules: [{1A8EE5B7-844B-4C50-9561-B7D0D3EE36F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C36DCBEB-5B2A-4BDF-B7AE-FF19565BD605}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{DC3C867B-104F-4B81-96CC-256F22FDD17D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{6697BAE3-F20D-43DC-885F-03D13CF22947}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{7C94E8D7-55E0-4857-B44F-37C6E420EA0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{B22A7922-B141-4B00-9EE5-6443E98A1FFD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{87F1F8C5-FD69-4149-8D1C-5E06CAA6F168}] => (Allow) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{A92B4612-3B2D-4359-A376-5F206F7202D2}] => (Allow) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{6F5C5C72-0B4F-4504-A146-A3AEEB8BD677}] => (Block) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{F511ABDE-7D5B-4E2C-B8C6-0489DD380BCB}] => (Block) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{2EC0A620-3497-4C93-9EF6-132C8DD26FC1}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{334D0698-9A14-4C19-BA74-44A60DC5EE0A}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{130B1DA8-7809-447E-ADF9-91997DAAF5B6}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{D58DE1BF-3ABA-403D-99BA-6F4C6FA8DF55}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{17189D37-1EB3-41B0-8CED-EA991CD1C6D4}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{5FB59711-5E72-44D6-96C2-E5039B5F2895}] => (Allow) C:\Program Files (x86)\Overwolf\0.204.0.1\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{7AD0DFFC-5ED1-4142-8918-8C171E881CFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe => No File
FirewallRules: [{E4F9A44A-2BFB-415C-8562-7A964ABBA851}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe => No File
FirewallRules: [{77A0C0B8-900D-4D5D-9B88-A88F2530130C}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D73702B2-9C0D-47E0-9D28-4F93B206F405}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{94E2F77F-6CEB-4374-80A2-B260A09E2195}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)

==================== Restore Points =========================

24-09-2022 09:10:52 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (09/22/2022 07:02:36 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (09/22/2022 07:02:36 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (09/22/2022 07:02:36 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (08/24/2022 10:08:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.19041.1865, časová značka: 0x61fdcc50
Názov chybujúceho modulu: AUDIODG.EXE, verzia: 10.0.19041.1865, časová značka: 0x61fdcc50
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000445df
Identifikácia chybujúceho procesu: 0x803c
Čas spustenia chybujúcej aplikácie: 0x01d8b7b16cef80d4
Cesta chybujúcej aplikácie: C:\WINDOWS\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\WINDOWS\system32\AUDIODG.EXE
Identifikácia hlásenia: 313b8067-3adf-47f6-a89d-f5fa9305d72d
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (08/09/2022 07:08:16 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]

Error: (07/19/2022 05:35:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: AUDIODG.EXE, verzia: 10.0.19041.1503, časová značka: 0xc40fe88f
Názov chybujúceho modulu: 9EarsSurroundSound.dll, verzia: 1.2.2.59494, časová značka: 0x5d4af105
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000001d2cfe
Identifikácia chybujúceho procesu: 0x5be4
Čas spustenia chybujúcej aplikácie: 0x01d89ad7f70b4009
Cesta chybujúcej aplikácie: C:\WINDOWS\system32\AUDIODG.EXE
Cesta chybujúceho modulu: C:\WINDOWS\system32\9EarsSurroundSound.dll
Identifikácia hlásenia: a29d849b-5ba6-4ed7-821f-069c3e44d5c5
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (07/17/2022 03:44:51 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, A system shutdown is in progress.
.

Error: (07/17/2022 03:44:51 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, A system shutdown is in progress.
]


System errors:
=============
Error: (09/24/2022 01:39:47 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-UN2QGOA)
Description: Unable to start a DCOM Server: {0358B920-0AC7-461F-98F4-58E32CD89148}. The error:
"2147942767"
Happened while starting this command:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (09/24/2022 08:32:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Steam Client Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (09/24/2022 08:32:18 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Steam Client Service bol dosiahnutý časový limit (30000 ms).

Error: (09/23/2022 10:44:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UN2QGOA)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (09/23/2022 10:44:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UN2QGOA)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (09/23/2022 10:44:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UN2QGOA)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (09/23/2022 10:44:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UN2QGOA)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.

Error: (09/23/2022 10:44:07 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-UN2QGOA)
Description: The server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} did not register with DCOM within the required timeout.


Windows Defender:
================
Date: 2022-09-24 08:42:27
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-09-21 18:40:32
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-09-20 17:54:42
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-09-17 08:54:43
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2022-09-16 19:25:58
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

CodeIntegrity:
===============
Date: 2022-09-23 21:18:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-08-27 08:28:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-08-23 22:37:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\104.0.5112.82\chrome_elf.dll that did not meet the Microsoft signing level requirements.

Date: 2022-06-22 08:37:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 12/04/2018
Motherboard: Gigabyte Technology Co., Ltd. Z390 GAMING X-CF
Processor: Intel(R) Core(TM) i7-9700K CPU @ 3.60GHz
Percentage of memory in use: 51%
Total physical RAM: 16315.46 MB
Available physical RAM: 7919.16 MB
Total Virtual: 23739.46 MB
Available Virtual: 11683.06 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:953.27 GB) (Free:688.65 GB) (Model: ADATA SX8200PNP) NTFS

\\?\Volume{2cb24078-2c13-41fc-8ace-d88654beab3d}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{08a6785c-8d8f-4604-875f-29cb064a4c09}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15214
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: preventívna kontrola

#2 Příspěvek od JaRon »

ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
CreateRestorePoint:
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
FirewallRules: [{F9C8919A-F642-41BD-A1BC-45D7A363180C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{EFA0BA05-8963-45AE-B53A-EE89D5560DAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{EEB6237F-4C3A-4E94-AACC-1C7FB52E42C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELEX\system\ELEX.exe => No File
FirewallRules: [{34F1C1C8-0F79-4A00-B00B-154B9AAAEC34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELEX\system\ELEX.exe => No File
FirewallRules: [{87F1F8C5-FD69-4149-8D1C-5E06CAA6F168}] => (Allow) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{A92B4612-3B2D-4359-A376-5F206F7202D2}] => (Allow) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{6F5C5C72-0B4F-4504-A146-A3AEEB8BD677}] => (Block) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{F511ABDE-7D5B-4E2C-B8C6-0489DD380BCB}] => (Block) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{2EC0A620-3497-4C93-9EF6-132C8DD26FC1}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{334D0698-9A14-4C19-BA74-44A60DC5EE0A}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{130B1DA8-7809-447E-ADF9-91997DAAF5B6}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{D58DE1BF-3ABA-403D-99BA-6F4C6FA8DF55}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{7AD0DFFC-5ED1-4142-8918-8C171E881CFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe => No File
FirewallRules: [{E4F9A44A-2BFB-415C-8562-7A964ABBA851}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe => No File

EmptyTemp:
Reboot:
End
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

:arrow: Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

:arrow: Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Bazer
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 24 zář 2022 12:36

Re: preventívna kontrola

#3 Příspěvek od Bazer »

Dúfam, že som urobil správne

Fix result of Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Ran by PC (27-09-2022 20:49:26) Run:1
Running from C:\Users\PC\Downloads
Loaded Profiles: PC
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
S3 EasyAntiCheat; "C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe" [X]
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
FirewallRules: [{F9C8919A-F642-41BD-A1BC-45D7A363180C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{EFA0BA05-8963-45AE-B53A-EE89D5560DAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\For The King\FTK.exe () [File not signed]
FirewallRules: [{EEB6237F-4C3A-4E94-AACC-1C7FB52E42C6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELEX\system\ELEX.exe => No File
FirewallRules: [{34F1C1C8-0F79-4A00-B00B-154B9AAAEC34}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELEX\system\ELEX.exe => No File
FirewallRules: [{87F1F8C5-FD69-4149-8D1C-5E06CAA6F168}] => (Allow) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{A92B4612-3B2D-4359-A376-5F206F7202D2}] => (Allow) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{6F5C5C72-0B4F-4504-A146-A3AEEB8BD677}] => (Block) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{F511ABDE-7D5B-4E2C-B8C6-0489DD380BCB}] => (Block) C:\Program Files (x86)\Overwolf\0.203.1.12\OverwolfBrowser.exe => No File
FirewallRules: [{2EC0A620-3497-4C93-9EF6-132C8DD26FC1}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{334D0698-9A14-4C19-BA74-44A60DC5EE0A}] => (Allow) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{130B1DA8-7809-447E-ADF9-91997DAAF5B6}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{D58DE1BF-3ABA-403D-99BA-6F4C6FA8DF55}] => (Block) C:\Program Files (x86)\Overwolf\0.199.0.15\OverwolfBrowser.exe => No File
FirewallRules: [{7AD0DFFC-5ED1-4142-8918-8C171E881CFA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe => No File
FirewallRules: [{E4F9A44A-2BFB-415C-8562-7A964ABBA851}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DarkestDungeon\_windows\Darkest.exe => No File

EmptyTemp:
Reboot:
End
*****************

Restore point was successfully created.
HKLM\System\CurrentControlSet\Services\EasyAntiCheat => removed successfully
EasyAntiCheat => service removed successfully
HKLM\System\CurrentControlSet\Services\cpuz150 => removed successfully
cpuz150 => service removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F9C8919A-F642-41BD-A1BC-45D7A363180C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EFA0BA05-8963-45AE-B53A-EE89D5560DAF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EEB6237F-4C3A-4E94-AACC-1C7FB52E42C6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{34F1C1C8-0F79-4A00-B00B-154B9AAAEC34}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{87F1F8C5-FD69-4149-8D1C-5E06CAA6F168}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A92B4612-3B2D-4359-A376-5F206F7202D2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6F5C5C72-0B4F-4504-A146-A3AEEB8BD677}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F511ABDE-7D5B-4E2C-B8C6-0489DD380BCB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2EC0A620-3497-4C93-9EF6-132C8DD26FC1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{334D0698-9A14-4C19-BA74-44A60DC5EE0A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{130B1DA8-7809-447E-ADF9-91997DAAF5B6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D58DE1BF-3ABA-403D-99BA-6F4C6FA8DF55}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7AD0DFFC-5ED1-4142-8918-8C171E881CFA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E4F9A44A-2BFB-415C-8562-7A964ABBA851}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14791358 B
Java, Discord, Steam htmlcache => 771529681 B
Windows/system/drivers => 24434498 B
Edge => 580792 B
Chrome => 505691559 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 80548 B
LocalService => 80548 B
NetworkService => 84886 B
PC => 92924232 B

RecycleBin => 0 B
EmptyTemp: => 1.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:50:09 ====
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15214
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: preventívna kontrola

#4 Příspěvek od JaRon »

Spravne, ak nie su problemy, tak mame hotovo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Bazer
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 24 zář 2022 12:36

Re: preventívna kontrola

#5 Příspěvek od Bazer »

Super všetko v poriadku, Ďakujem veľmi pekne
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15214
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: preventívna kontrola

#6 Příspěvek od JaRon »

Rado sa stalo :thumbsup:
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“