Dobry den, poprosil by som o kontrolu logu.
Zda sa mi, že notebook je spomaleny. Dakujem
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-10-2022
Ran by dberg (28-10-2022 10:30:17)
Running from C:\Users\dberg\OneDrive\Desktop
Microsoft Windows 10 Home Version 21H1 19043.2130 (X64) (2020-10-10 11:58:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-878381589-1358594340-2859947446-500 - Administrator - Disabled)
dberg (S-1-5-21-878381589-1358594340-2859947446-1001 - Administrator - Enabled) => C:\Users\dberg
DefaultAccount (S-1-5-21-878381589-1358594340-2859947446-503 - Limited - Disabled)
Guest (S-1-5-21-878381589-1358594340-2859947446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-878381589-1358594340-2859947446-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\uTorrent) (Version: 3.5.5.46514 - BitTorrent Inc.)
7-Zip 22.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2200-000001000000}) (Version: 22.00.00.0 - Igor Pavlov)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Action! (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Mirillis Action!) (Version: 4.29.2 - Mirillis)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 22.003.20263 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Assassin's Creed Valhalla (HKLM-x32\...\Uplay Install 13504) (Version: - Ubisoft)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM-x32\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 5.5.0 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
CLIP STUDIO 1.12.8 (HKLM-x32\...\{49274EB8-4598-47E6-8039-9BB7CE07627E}) (Version: 1.12.8 - CELSYS)
CLIP STUDIO PAINT 1.12.11 (HKLM-x32\...\{1E4572D2-28BC-4BC9-B743-13DC6CFD71DB}) (Version: 1.12.11 - CELSYS)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.6 - GOG.com)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Divinity: Original Sin 2 - Definitive Edition (HKLM-x32\...\1584823040_is1) (Version: 3.6.117.3735_ptbr - GOG.com)
Divinity: Original Sin 2 - Sir Lora (HKLM-x32\...\1326441817_is1) (Version: 3.6.117.3735_ptbr - GOG.com)
Documentation Manager (HKLM\...\{82FBBBC9-616A-4247-BEAD-87B8132D49D2}) (Version: 22.0.0.6 - Intel Corporation) Hidden
Dropbox 25 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.583.1 - Dropbox, Inc.) Hidden
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Far Cry 5 (HKLM-x32\...\Uplay Install 1803) (Version: - Ubisoft)
FormatFactory 5.12.2.0 (HKLM-x32\...\FormatFactory) (Version: 5.12.2.0 - Free Time)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2372.2 - Rockstar Games)
HP 3D DriveGuard (HKLM-x32\...\{8F183B2E-D21D-4070-8132-DD39C3CBFA5C}) (Version: 6.0.41.1 - HP)
HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP CoolSense (HKLM-x32\...\{20CC03C7-7B48-4130-B7FA-39BC128E3A9E}) (Version: 2.21.5 - HP Inc.)
HP Customer Experience Enhancements (HKLM-x32\...\{64228DFB-7450-49B7-935C-B97342CB6659}) (Version: 6.0.10.1 - HP Development Company, L.P.) Hidden
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM\...\{20185BDA-D396-4C93-95C7-ECD0FB397FF7}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{5BBB44D5-3CC0-4434-AA0C-5883B975E45E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{6884D818-9E0E-4984-A6CA-B17757DCB8FA}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{F7E8A494-97B6-4786-9E2C-A42A082483EB}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{2889C948-F002-4992-815F-DBE0AFB5DC6E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{98AA8BB0-0C0A-411A-BB43-1265CA769155}) (Version: 5.3.22034 - HP Inc.) Hidden
HP JumpStart Bridge (HKLM-x32\...\{EB0912FF-C311-4E0F-A6B1-420FDD3C295E}) (Version: 1.3.0.407 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{81CA40FD-E11B-4DC1-AE33-A71EB044B8B7}) (Version: 1.1.275.0 - HP Inc.)
HP PC Hardware Diagnostics Windows (HKLM-x32\...\{3EC04ABB-D60E-44B6-9403-0D9DE44F56D9}) (Version: 1.6.0.0 - HP Inc.)
HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1510 - HP) Hidden
HP Support Solutions Framework (HKLM-x32\...\{2EE4E89E-F0A2-44D8-A7E9-AB7660379B05}) (Version: 12.19.53.13 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{9DD60999-A4F0-4333-9D00-E45C718EA6C1}) (Version: 1.4.30 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{119A6F59-D6D4-4091-A593-019EB9C9300E}) (Version: 1.1.22.1 - HP)
Intel Driver && Support Assistant (HKLM-x32\...\{B9BD5D9C-F427-4277-89DB-3784197C77CF}) (Version: 22.6.42.2 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{D17293BC-1678-4281-B94E-DBCF66AE7611}) (Version: 2.4.08919 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10208.5644 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{8b5a8e04-659a-4407-b2e1-04ad55a2e72e}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{9454a0e6-0762-48ec-b153-2a75b252d1fb}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{e159f285-6867-4ec7-83de-ddc54070f211}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Chipset Device Software (HKLM\...\{94E05108-3E4E-4F2E-AC5F-33A1B22B779C}) (Version: 10.1.1.44 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{90291EBF-187A-4C7E-A9AD-DCCB6C946536}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{FBDA24D3-1A19-4D75-B3F1-F2A1FB6B61BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{8DEA4234-C97D-41BE-B2BC-313A196BCD09}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.8.3.1004 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{8AAC5651-3DE3-4C1C-80AD-9D6192B1AA1A}) (Version: 16.8.3.1004 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{0e10d82e-ed40-4871-b388-0a3476f48295}) (Version: 22.6.42.2 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{056c22c9-0ef2-4a10-ba00-4d68d16c5669}) (Version: 22.0.0.6 - Intel Corporation) Hidden
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.41.3 - Tonec Inc.)
Kingdom Come: Deliverance - A Woman's Lot (HKLM-x32\...\1460218995_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – Band of Bastards (HKLM-x32\...\1957357825_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – From the Ashes (HKLM-x32\...\1201995925_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – The Amorous Adventures of Bold Sir Hans Capon (HKLM-x32\...\1336069439_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance (HKLM-x32\...\1719198803_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance Treasures of the Past DLC (HKLM-x32\...\1300320746_is1) (Version: 1.9.6-404-504u - GOG.com)
Maxthon (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Maxthon) (Version: 6.2.0.2100 - The Maxthon Authors)
Microsoft .NET Core Host - 3.1.30 (x64) (HKLM\...\{D77D7F28-DFF8-4094-BDE8-DB54C562F0BD}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host - 3.1.30 (x86) (HKLM-x32\...\{E84366B0-16B1-4654-A703-ECA2315BE108}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.30 (x64) (HKLM\...\{2D772A67-7221-42A0-AB27-E9C976F6B4BB}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.30 (x86) (HKLM-x32\...\{88B988F0-613A-42E7-B91A-5A20B00B7D65}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x64) (HKLM\...\{B0C55E84-9C91-45FC-BB6C-17C3443E407F}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x64) (HKLM-x32\...\{2bda8a50-ea78-4b46-8d76-4ad21ef0dfe6}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft .NET Core Runtime - 3.1.30 (x86) (HKLM-x32\...\{AB6A8B3F-E0BE-4512-AE2D-1216AB45061D}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x86) (HKLM-x32\...\{ac54aca9-d76d-4e88-80e4-3e8a1027dfb3}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.15330.20196 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.24 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office 2016 pre študentov a domácnosti - sk-sk (HKLM\...\HomeStudentRetail - sk-sk) (Version: 16.0.15330.20196 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.151.0717.0001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{BD2E4F7B-30B0-46A7-8E5C-D99D21C52336}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{200969CA-4114-4553-832D-4286C5ACBB98}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.30 (x64) (HKLM\...\{EE30190F-7A08-4282-9508-5AD06D8F2F6C}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.30 (x64) (HKLM-x32\...\{2bf259bf-46a4-46d1-94db-bc6033579f24}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.30 (x86) (HKLM-x32\...\{c7ad0c1d-96aa-4db8-965e-c497ef09d22c}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.30 (x86) (HKLM-x32\...\{FBC966CD-EF26-4D70-8E37-393652209F0E}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 106.0.2 (x64 sk)) (Version: 106.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.1 - Mozilla)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.33.123 (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.33.123 - NVIDIA Corporation)
NVIDIA Grafický ovládač 526.47 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 526.47 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15330.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15128.20178 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.15330.20196 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{E91052A0-E7C9-4462-B7B5-2C7279F7203B}) (Version: 4.3.12 - dotPDN LLC)
PicosmosTools 2.6.0.0 (HKLM-x32\...\PicosmosTools) (Version: 2.6.0.0 - Free Time)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.154 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9225.1 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Registrácia používateľa produktu Canon MG3600 series (HKLM-x32\...\Registrácia používateľa produktu Canon MG3600 series) (Version: - Canon Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.50.548 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.3.2 - Rockstar Games)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Stardew Valley (HKLM-x32\...\1453375253_is1) (Version: 1.5.6.1988831614 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tipard Video Converter Ultimate 9.2.52 (HKLM-x32\...\{F2922911-108A-4d9e-B33A-2A101444F4CE}_is1) (Version: 9.2.52 - Tipard Studio)
TuneFab Spotify Music Converter version 2.9.9 (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\{d74bba79-1439-43b1-b4df-0fbc70498bde}_is1) (Version: 2.9.9 - TuneFab, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 51.2 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{B8B01E04-5393-4902-98E6-0E2787F03C80}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Video Logo Remover (HKLM-x32\...\Video Logo Remover_is1) (Version: - AuDane)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WD Quick View (HKLM-x32\...\{E7A242F9-B59B-4E66-A544-222123E999FD}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{F2E73439-F82E-402D-AB38-61EF3BAC974D}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{1495b866-ed65-4968-8bf2-903313e0ac39}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
Web Companion (HKLM-x32\...\{81384ef7-f601-4ab9-b7e7-4537791353a6}) (Version: 7.0.2417.4248 - Lavasoft)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Xperia Companion (HKLM-x32\...\{74C27C4F-BCDF-4D88-8B04-E5C7609AB1EB}) (Version: 1.9.2.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{b677a3f8-01ab-49df-92a8-d039691c0e2d}) (Version: 1.9.2.0 - Sony)
Xperia Companion Service (HKLM\...\{826B080E-3B85-448D-99C3-D843D54ED116}) (Version: 1.9.2.0 - Sony) Hidden
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-18] (Canon Inc.)
Crunchyroll -> C:\Program Files\WindowsApps\15EF7777.Crunchyroll_1.3.1.0_x64__mgdgtskya6f22 [2019-11-04] (Ellation, Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.40.5.0_x64__6rarf9sa4v8jt [2022-10-19] (Disney)
ELAN Touchpad Setting -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ELANTouchpadSetting_11.2.63.0_x64__stws0m115j6hg [2022-07-29] (ELAN Microelectronics Corporation)
ETD Properties -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ETDProperties_1.0.9.0_x64__stws0m115j6hg [2022-07-30] (ELAN Microelectronics Corporation)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.378.0_x64__v10z8vjag6ke6 [2017-10-08] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.3.0_x64__v10z8vjag6ke6 [2022-10-05] (HP Inc.)
Manga Reader -> C:\Program Files\WindowsApps\30065minh91a1.MangaReader_1.2.2.0_x64__9mvf5des1n9pr [2021-09-04] (minh91a1) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-28] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-07-27] (INTEL CORP) [Startup Task]
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2022-07-29] (Plex)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0 [2022-10-28] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{17E4BF0C-4D8C-4B09-B7E1-0607E6CAEFCA}\InprocServer32 -> C:\Program Files\Mozilla Firefox\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{635EFA6F-08D6-4EC9-BD14-8A0FDE975159}\localserver32 -> C:\Users\dberg\AppData\Local\Maxthon\Application\6.2.0.2100\notification_helper.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2021-03-03] (Tonec Inc. -> Tonec FZE)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [File not signed]
ContextMenuHandlers1: [PicosmosShell] -> {A3888921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\PicosmosTools\ShellEx_102.dll [2020-02-18] (Free Time) [File not signed]
ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\nvshext.dll [2022-10-27] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FICV] => C:\windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Maxthon\Reddit.lnk -> C:\Users\dberg\AppData\Local\Maxthon\Application\chrome_proxy.exe (Maxthon Ltd.) -> --profile-directory=Default --app-id=lgnggepjiihbfdbedefdhcffnmhcahbm
==================== Loaded Modules (Whitelisted) =============
2018-05-21 10:16 - 2017-05-02 16:06 - 000123904 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJPLM\CNMPU.DLL
2018-05-21 10:22 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2022-04-19 12:20 - 2022-04-19 12:20 - 000344064 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll
2020-02-18 16:23 - 2020-02-18 16:23 - 000354304 _____ (Free Time) [File not signed] C:\Program Files\PicosmosTools\ShellEx_102.dll
2022-07-27 01:15 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2022-04-21 05:57 - 2022-04-21 13:10 - 042859520 _____ (Intel Corporation) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.dll
2022-05-05 17:44 - 2022-05-05 17:44 - 002122240 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKLM -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-878381589-1358594340-2859947446-1001 -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2021-11-09] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2021-11-09] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\localhost -> localhost
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2019-01-09 16:57 - 000000834 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Control Panel\Desktop\\Wallpaper -> G:\Saved Pictures\IMG_3297_UPweb-X3.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "WD Quick View"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "WallpaperEngine"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Picosmos"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "XperiaCompanionAgent"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "CanonImageDisplay"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "ut"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Web Companion"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{136AFF68-6B83-46A7-A9BF-577877491F23}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{18262E8D-24AE-448F-9EA2-FEAEA02074EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{5EC45D6B-E744-493D-B5D5-972B24894D0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{B2C97696-2806-4694-8996-17CE8D68AAE6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{31D283A9-768F-44DB-AAAB-067B1C96E4CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{4E95B31C-E251-46CC-9AB8-FF67DEBF491B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BD73D76C-9FA0-40FF-8791-E5AA4AB410CB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{591E6DBC-8FB2-46EB-8CB0-33E4BCB4DA28}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{78545788-9E90-4715-AF96-5DC857BD210B}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{ADFAF58D-B072-4F71-A71D-29D749B2476D}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{EA885E4B-88BD-4E4B-AE68-4F28AAE6B2E5}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{313FDF59-4C84-4EDB-B63F-CBB9FAA51161}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{02DDDEF2-975E-4D61-B140-649B600E4244}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F52C05BD-04E5-4CE8-9A8A-A71712437C5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{577FC8DA-5489-4F0F-B626-05754C277288}] => (Allow) C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A9EEB4C9-FB54-4A51-84BB-B88E0F0D2184}] => (Allow) C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{5FDB168D-F336-403E-AC70-9E6674E85CFC}C:\program files (x86)\internet download manager\idman.exe] => (Allow) C:\program files (x86)\internet download manager\idman.exe (Tonec Inc. -> Tonec Inc.)
FirewallRules: [TCP Query User{497BA90A-7B32-4AB6-B8B3-348C8AC0248F}C:\program files (x86)\internet download manager\idman.exe] => (Allow) C:\program files (x86)\internet download manager\idman.exe (Tonec Inc. -> Tonec Inc.)
FirewallRules: [{C57ACEF1-4056-4E28-8E9A-67EF69A9A9E3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2D788320-64CA-4DF4-853F-506796E7BCC9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{392D6217-7668-4529-8734-373D11CA5BDA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D032D88E-760B-40D3-8C5B-2E99BC8990A7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DA63C63F-7437-4E09-95D6-C9B79E563128}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{8BD3DF65-C9D3-4FC0-B73A-FF16B872F04D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{160DE882-91A7-4BC3-8AB2-7FB78A8D7CAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A259B956-2166-4D7C-904D-2C456397506E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A5F14CFE-139A-4493-92F1-F38A62C009C3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9A410666-7493-40E7-BBDA-2B7D24E0B60B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BA84ED75-542A-4838-9372-3A50354F7364}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{014E6CCC-6FA7-4B9A-92FA-C78BE26BB2ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{B8B680CE-D085-45B2-9CEA-36BB38CEEB7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{804EE291-26C4-4069-A8AC-D73AE3857628}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D228760D-DAED-4415-95DF-689124794644}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{622DD10C-3688-4ACA-BDBC-2E9F932A21C5}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) [File not signed]
FirewallRules: [{9BD469E6-DFD2-4ECA-BF89-EC694A688789}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{C16D145A-4A78-43B0-A813-81DCDF73EAF8}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{F6B23EAF-D756-4EE8-B94E-A294C320B1E3}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{A861D62E-8D2D-4ACA-A8F8-6212A56EAD01}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{589487CE-DB9B-4719-8FD3-9E5475F8C20E}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{ABD0F770-3A49-4A63-BB22-63AF0508EFD6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CD18BDB2-A8E3-4002-A1DD-AFFAB502745C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2D3DCD76-29CD-40E4-93F4-D199C73A3A15}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D440827B-2E19-4D14-A445-C24073B3BC19}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{982F92D4-A576-4ECC-A453-F14E1D3E8583}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{6F8142FB-ADCD-4EF0-97D5-F1BA1333AAE6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{BEA962B8-0B00-4C9E-8D3D-171B7698F7D4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{E53C0790-A480-4A49-B8CE-EC4F0D15C215}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C39F3E30-0951-458F-956A-E93A01DF72EE}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{0A5A678C-35F1-4130-A329-29F59A3044F5}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{85C96591-27C8-4136-9598-FBD31E30FE91}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [TCP Query User{08CF2954-4D43-4567-89DD-9165EF9851A0}D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{BADE0484-5807-4F69-A1CB-25EEC5111B13}D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{1469E8C2-AA18-4283-89AB-C33C40DD31CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BB07136D-378B-46D3-A5C1-C1C9769317B6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{9990F2B5-C950-40A0-81F0-6EF80BFCBE4B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{DAAB105C-0892-4CEE-B583-77DF47F5ACD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{B5DE7194-EA34-455F-9EE8-5F4E0F2BC9BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{1E3DD1E0-021C-4725-B5D4-E63849922A1E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{61AEF2AF-C8FC-44D3-A5B7-193A102C649F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{6E4C9FA5-F09F-4427-A676-FFB8514FE8B5}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{1114E133-CE91-4BB9-823F-19529F41A2DF}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{43B560C8-1858-455A-956F-A48676B5116A}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{37FE5898-DE94-46A5-9A22-5D200B157F9D}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{C4F84520-2CA0-42A2-A363-064F139FF392}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\City Car Driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [{DB9AC62D-7CF5-40C7-AEDD-5B51CE144269}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\City Car Driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [{F0FC0F01-9ABA-4AC7-AE23-B35F9310150B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{42BE969B-A6BA-4A54-B1E4-2895477E9FC4}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{1C59CEA0-37F0-4C2B-B541-D7ED732DFC20}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{032CB92C-770C-4476-91DF-CCC7A5FCCDC2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{47D4559E-B2D5-4A88-BF48-64EF37EF3C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF24BD59-3152-4780-98E9-1077DB12CE38}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0DCF976F-63BF-47E2-AE8A-2B947FD00A89}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{93B80F29-6F15-49CC-BF88-81BC5867865B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EE270903-10B1-4245-9507-C2980A56CEF8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C17A47F2-CE0F-4F5B-AFCF-C3DD5E28CEDC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D7E7A751-65B5-467E-9418-FAEECB8AF321}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{70FEBB05-EA1E-4D44-9462-FF57AA2DCC3D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7D9F185C-51D0-4DF3-AAA8-93F0DDEF64FA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{219B7CDA-C253-4A3C-B194-83B8E64AA61B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB5A332D-5B35-4963-8E22-6EB83FC1E1A3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6CC54449-8D93-4096-A237-7A4334B703A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5BC23745-B13E-46BA-A802-78D38A9618D4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5B7807FE-C0BA-49B3-A4AA-9E86AABB33CD}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FDBF8931-BD6B-4F98-864A-CFB415FB7732}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{00E0059B-B19C-4389-96A1-F4D0C2AA4972}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{119C7EF6-875F-4264-95DD-5F65935364B7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{763E028C-3346-475B-AAF6-C92BBE5CAA39}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{409E87A2-6EF9-4C3F-A06E-28E90A8E179F}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{A821D7D4-FC7F-408D-A9CF-D160CAF5B4DC}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{B3CBAABA-086F-41C8-AF28-1AF382C2EC89}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{C376AABE-749E-4381-8AD1-F2E0D37F3E10}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{5B829C24-5F66-47A4-9048-A74AD04F2ED1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9637360A-B316-4FF5-8E4D-7769306904D9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF83BDE4-CE3D-4A82-A2C6-939C06E34066}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{3B75C57C-215E-4F1C-BB0E-7EACE9C9C5BA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{1B9FD445-26E1-48E6-A909-2F7143E79763}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{259A89AA-E413-468C-B322-82885EF88739}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5D8DACA6-4015-4046-A8E7-5CB938F2A8DB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{70AA4705-D3BE-4D55-81D9-B57DAEBCD6E3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7C4D6B5B-4982-43B4-982D-28A20DBD6AFE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{662D55C9-AD3E-4BC8-97B5-35E3BA63C724}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{06D691E1-5FD4-423D-8BFD-97B70E77BFC2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{08B978B1-5016-495F-ABA2-191CF1AA714C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E0B123AE-7C4C-4740-A7FA-797F92578556}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A3890611-B34F-4121-B503-12ED49EE2AA4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6B62799D-11B4-4E8E-BE4F-617D5D72D99E}] => (Allow) C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
FirewallRules: [{44F07E03-8CE6-4C6B-9D5D-3C2CAA08A32F}] => (Allow) C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
FirewallRules: [{0914DFAB-2BDE-427F-B195-3E773DB206E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CC40ADA7-3808-44E3-8809-8BA3582925BB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B4B005BF-9385-4FD9-8A02-EBCFACE1B292}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A0844F3E-2D51-4991-92D8-FA2A7B6DED86}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{AC93FF2B-6FE1-4AC4-A55B-7F09AF12DDB9}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.24\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B8E1DF9-A755-4849-A00E-AAFE9AE3116F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BC613893-283C-42B4-ABF1-10FC02D667D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{79787E72-818E-422B-9D46-E21BE06A6023}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9C7904FB-FE66-46A9-B967-A371921E53D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{27DDEC70-5F10-4632-A13D-88852B0B326A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3BFB814C-46D8-4236-AC3E-A6A64E5DA560}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6235075F-EB9B-40AE-BBA1-E98B14A04B03}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8AFCDC71-D2CA-4BE7-8BDF-821EDD7F5F06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
Name: Microsoft Bluetooth Avrcp Transport Driver
Description: Microsoft Bluetooth Avrcp Transport Driver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: Microsoft_Bluetooth_AvrcpTransport
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Periférne zariadenie Bluetooth
Description: Periférne zariadenie Bluetooth
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Microsoft Bluetooth Avrcp Transport Driver
Description: Microsoft Bluetooth Avrcp Transport Driver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: Microsoft_Bluetooth_AvrcpTransport
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Periférne zariadenie Bluetooth
Description: Periférne zariadenie Bluetooth
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2022 10:27:58 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-O3EIVOGP)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe, PID: 3984, ProfSvc PID: 1884.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe, PID: 3984, ProfSvc PID: 1884.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe, PID: 5220, ProfSvc PID: 1884.
Error: (10/28/2022 09:57:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 324c
Start Time: 01d8eaa2e481d4c0
Termination Time: 19
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 014f0db2-28d5-472d-bc76-7c8395843928
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 09:56:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 20f8
Start Time: 01d8eaa2b732df15
Termination Time: 25
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 491ca456-b2a7-4381-b267-8a81fbffefe9
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 09:55:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: f38
Start Time: 01d8eaa264607e31
Termination Time: 22
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 18a06026-ed8e-4ad5-8a5b-3907d9a6bc1f
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 07:50:27 AM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.IO.IOException: The process cannot access the file 'C:\Windows\Temp\signtool.exe' because it is being used by another process.
at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
at System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
at System.IO.FileStream..ctor(String path, FileMode mode)
at _HPCommRecovery.Tools.Signtool.ExtractSignTool()
at _HPCommRecovery.Tools.Signtool.Verify(String arg)
at _HPCommRecovery.HPAHAgent.CallAgent()
at _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
at _HPCommRecovery.HPAHLogger.NewSession()
at _HPCommRecovery.....
System errors:
=============
Error: (10/28/2022 10:28:43 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Energy Server Service queencreek sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (10/28/2022 10:17:55 AM) (Source: Service Control Manager) (EventID: 7046) (User: )
Description: Nasledujúca služba sa opakovane zastavila pri reakcii na požiadavky riadenia služieb: Windows Search
Informujte sa u dodávateľa služby alebo správcu systému, kde možno túto službu vypnúť, kým sa nezistí problém.
Pred vypnutím služby možno budete musieť reštartovať počítač v bezpečnom režime.
Error: (10/28/2022 10:17:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:16:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:16:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:15:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:15:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:14:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
CodeIntegrity:
===============
Date: 2022-10-28 10:28:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-10-28 10:27:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2022-10-28 10:23:00
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: Insyde F.16 06/22/2018
Motherboard: HP 8368
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 55%
Total physical RAM: 8077.22 MB
Available physical RAM: 3561.17 MB
Total Virtual: 16269.22 MB
Available Virtual: 11431.51 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:236.68 GB) (Free:65.54 GB) (Model: RTIMF256VGM2MBDH) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:190.02 GB) (Model: WDC WD10JFCX-68N6GN0) NTFS
Drive f: (Elements) (Fixed) (Total:2794.49 GB) (Free:1049.49 GB) (Model: WD Elements 25A1 USB Device) NTFS
\\?\Volume{45493c86-b09c-44cc-bf04-ccda2db9fa25}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS
\\?\Volume{30a7055a-bacd-4916-8aa8-e4c49a2b3ad1}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.49 GB) NTFS
\\?\Volume{089a7fc9-3dd0-4158-8004-323fbb8d640d}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 2 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý NTB
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB
Zdravím!
Musíte dár oba logy (FRST+Addition). Děkuji.
Musíte dár oba logy (FRST+Addition). Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-10-2022
Ran by dberg (administrator) on LAPTOP-O3EIVOGP (HP HP Pavilion Laptop 15-cc5xx) (28-10-2022 10:28:40)
Running from C:\Users\dberg\OneDrive\Desktop
Loaded Profiles: dberg
Platform: Microsoft Windows 10 Home Version 21H1 19043.2130 (X64) Language: Slovenčina (Slovensko)
Default browser: "C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\dptf_helper.exe
(ETDCtrl.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe
(explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_1d1c7ad354f3422f\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.119.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212192 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-14] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5388128 2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324592 2017-10-31] (HP Inc. -> HP)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709160 2018-05-22] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292120 2022-10-14] (Intel Corporation -> Intel)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642320 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2578936 2019-12-17] (Kristjan Skutta -> )
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5878016 2022-10-04] (Tonec Inc. -> Tonec Inc.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2102112 2017-11-09] (Sony Mobile Communications AB -> Sony) [File not signed]
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [uTorrent] => C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe [2185376 2022-09-18] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [CanonImageDisplay] => C:\Program Files (x86)\Canon\My Image Garden\CNQMSWCS.EXE [1003664 2017-10-17] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13663208 2022-09-10] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [ut] => C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe [2185376 2022-09-18] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-03-05] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [110688 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series XPS: C:\windows\system32\CNMXLMCT.DLL [409088 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\LIDIL hpzllwn7: C:\windows\system32\hpzllwn7.dll [61024 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
Startup: C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2018-11-17]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {075BF93B-5600-44A9-90D6-68B6ADE20AEE} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {1F7C77B6-41DC-480B-A36F-002B57253BCB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23374288 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {2136474B-99A2-4C26-838B-D0E34203C5A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {22528FF2-9215-4A1E-A1AA-56412DED94FA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {237E1140-E478-4040-BEF4-FAB56959FD58} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {26FFB1BF-DE7B-4E87-81AE-95F22C501243} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2021-04-01] (HP Inc. -> HP Inc.)
Task: {28DDF525-8D88-4B62-9839-112BDCAC31E6} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644960 2017-02-02] (HP Inc. -> HP Inc.)
Task: {36EEC91D-5C19-4921-A51E-317A4A07E7B2} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4946144 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
Task: {395FF685-AEB2-42AF-9448-05D39603A4D3} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM)
Task: {47D4C79A-710D-425F-AFA3-E238BE7DC87E} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {4C7878CB-EFD6-4B57-A64E-0C8F776343D5} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459264 2017-02-01] (HP Inc. -> )
Task: {4EBE001A-30FD-40BC-9EF9-252854A72CE5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2021-04-01] (HP Inc. -> HP Inc.)
Task: {76307ED4-24CE-4809-9DC3-C1B91E673C49} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116664 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {78857299-672B-48EE-B593-B421A95ED51E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7A53FB84-6EB2-4C60-8D40-364AE9BEE6A3} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {83BE04DC-6AA6-4BD4-B29D-5560B3708D13} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {863A9C78-8DD6-4172-ABF2-3AD4558DAC3F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {88E89C9D-A636-4D7D-89C7-508CBB2EAACB} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {89FC20AB-B4BE-4843-A12F-824C9819C73B} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1356648 2017-01-12] (HP Inc. -> HP Development Company, L.P.)
Task: {9972E5B5-2A76-46FC-AFF4-24766E75648E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3231104 2022-05-02] (Intel Corporation -> Intel Corporation)
Task: {9F96129B-B635-4C2A-B665-6AEABD85B5BC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "a3271fb1-c4a6-47a6-bb26-ef8293d73cd6" --version "6.04.10044" --silent
Task: {9FFA80BC-2C7D-405A-BEB1-DDE10A098B24} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [134768 2021-04-01] (HP Inc. -> HP Inc.)
Task: {A2E68EB0-B0A1-4380-BFDE-0D8192380DB0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {A9743E03-CF34-4EA1-9027-86200403FC69} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116664 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1109990-EBAC-42D0-A36C-01A926A4B377} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {B273DFA7-D10A-4D7F-BD09-3A413DD01B93} - System32\Tasks\ActionLauncher_dberg => C:\Program Files (x86)\Mirillis\Action!\ActionLauncher.exe [530096 2022-04-14] (Mirillis Sp. z o.o. -> Mirillis)
Task: {B5388378-B950-4DBE-B592-B146240C00AC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B8630337-4906-4663-B3B9-CFAE39800979} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {BA935D31-14EC-4D91-8307-F5DC227CD843} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BAD5B7E7-F801-4350-8CE3-56293BADF610} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BD90C028-9BA3-4853-B188-F1A8ECE098DD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102800 2021-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {C72A94D8-CD75-4384-8B9F-28E9E0E4D820} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2021-04-01] (HP Inc. -> HP Inc.)
Task: {CA7167DC-A166-4A77-808A-A6E8FD5B3A8C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CC948F9C-9707-434B-B4E3-B082C0081DA6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {D2166318-67DC-4FBF-B477-83DEEA3A2DD0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23374288 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D690C3BE-C22A-436F-AD78-EFDD82CA5B75} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DC7C648C-8E91-4C61-924A-988DD4A65E62} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E261075F-1970-41B1-85D0-62659DAA9CF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {E342581B-49AE-4CE1-BF8F-4E9C2185637E} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-878381589-1358594340-2859947446-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7A25591-7515-4C0D-AA2E-5506A4777F02} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {E904DDD4-D3F1-4806-83B2-4D4D641017BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Task: {E952E17A-1D4D-412A-87CC-AE2134B8AA02} - System32\Tasks\CCleanerSkipUAC - dberg => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EB0226E5-0037-4725-B451-C9DADBCC8250} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FC9F372B-8AB4-40F5-AB28-ECA95A2D5264} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {FFF24C81-3AC0-46BE-B752-0B48B328E43B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3231104 2022-05-02] (Intel Corporation -> Intel Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ed2f21d6-b678-4000-a09c-ac35ecd5d003}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\dberg\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-28]
Edge Extension: (IDM Integration Module) - C:\Users\dberg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2022-10-12]
Edge HKU\S-1-5-21-878381589-1358594340-2859947446-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2022-10-04]
Edge HKU\S-1-5-21-878381589-1358594340-2859947446-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
FireFox:
========
FF DefaultProfile: rsobghzx.default-1547499605423
FF ProfilePath: C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423 [2022-10-28]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423\Extensions\sp@avast.com.xpi [2022-09-08]
FF Extension: (Avast Online Security & Privacy) - C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423\Extensions\wrc@avast.com.xpi [2022-10-16]
FF Extension: (Video DownloadHelper) - C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-09-27]
FF HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2022-05-25]
FF HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\dberg\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\dberg\AppData\Roaming\IDM\idmmzcc5 [2018-03-16] [Legacy] [not signed]
FF HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [File not signed]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
CHR HKU\S-1-5-21-878381589-1358594340-2859947446-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8513552 2022-10-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [592608 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2018528 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [592096 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-22] (Avast Software s.r.o. -> AVAST Software)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111312 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [41240 2022-10-14] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [197912 2022-10-14] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2018-05-27] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncHelper.exe [3389840 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2128360 2022-09-10] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-27] (GOG Sp. z o.o. -> GOG.com)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-05-23] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [403576 2021-04-01] (HP Inc. -> HP Inc.)
S4 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [391744 2017-07-11] (Canon Inc. -> )
S4 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\OneDriveUpdaterService.exe [3830160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2584528 2022-04-20] (Rockstar Games, Inc. -> Rockstar Games)
S4 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-03-05] (LAVASOFT SOFTWARE CANADA INC -> )
S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [675184 2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [331632 2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2209.7-0\NisSrv.exe [3170576 2022-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2209.7-0\MsMpEng.exe [133584 2022-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2201440 2017-11-09] (Sony Mobile Communications AB -> Sony) [File not signed]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238128 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258496 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105920 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48488 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276496 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [558536 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114488 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90000 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862960 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671712 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221976 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327904 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-28] (Intel Corporation -> Intel Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2022-10-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [455968 2022-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-10-28] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-28 09:54 - 2022-10-28 10:29 - 000000000 ____D C:\FRST
2022-10-28 09:29 - 2022-10-28 09:29 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-10-28 09:09 - 2022-10-27 00:30 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 001642600 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 001642600 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 001444448 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-10-28 09:09 - 2022-10-27 00:30 - 001444448 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-10-28 09:09 - 2022-10-27 00:30 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-10-28 09:09 - 2022-10-27 00:30 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-10-28 09:09 - 2022-10-27 00:29 - 001487880 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-10-28 09:09 - 2022-10-27 00:29 - 001226744 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-10-28 09:09 - 2022-10-27 00:26 - 000865272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-10-28 09:09 - 2022-10-27 00:26 - 000672280 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-10-28 09:09 - 2022-10-27 00:26 - 000507440 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 057862648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2022-10-28 09:09 - 2022-10-27 00:25 - 002161640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 001618944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 001530864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 001190912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 000950272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 000746496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-10-28 09:09 - 2022-10-27 00:24 - 012451824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 010219016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 005891080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 003334656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 000734720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 000458248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-10-28 09:09 - 2022-10-27 00:23 - 005856760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2022-10-28 09:09 - 2022-10-27 00:23 - 005816312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-10-28 09:09 - 2022-10-27 00:23 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-10-28 09:09 - 2022-10-27 00:21 - 006512336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-10-28 09:09 - 2022-10-26 02:15 - 000100589 _____ C:\WINDOWS\system32\nvinfo.pb
2022-10-27 02:20 - 2022-10-28 10:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-10-26 13:04 - 2022-10-26 13:04 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-26 13:04 - 2022-10-26 13:04 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-10-26 11:55 - 2022-10-26 11:55 - 000002239 _____ C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Súkromné prehliadanie Firefoxu.lnk
2022-10-24 11:39 - 2022-10-24 12:46 - 000000000 ____D C:\Users\dberg\Downloads\FINKa-19
2022-10-22 06:39 - 2022-07-14 01:32 - 000060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2022-10-15 07:35 - 2022-10-15 07:35 - 000001517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2022-10-14 07:27 - 2022-10-14 07:27 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-10-14 07:27 - 2022-10-14 07:27 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-14 07:27 - 2022-10-14 07:27 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-10-14 07:27 - 2022-10-14 07:27 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-10-14 07:27 - 2022-10-14 07:27 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-14 07:26 - 2022-10-14 07:26 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-10-14 07:26 - 2022-10-14 07:26 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-14 07:16 - 2022-10-14 07:16 - 000000000 ___HD C:\$WinREAgent
2022-10-13 08:59 - 2022-08-16 00:59 - 000948464 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2022-10-13 08:59 - 2022-08-16 00:59 - 000709280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2022-10-13 08:59 - 2022-08-16 00:59 - 000594184 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2022-10-13 08:59 - 2022-08-16 00:59 - 000454448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 027948464 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 020672432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 000477096 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 000382888 _____ C:\WINDOWS\system32\ze_loader.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 000143784 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2022-10-12 23:14 - 2022-10-22 22:49 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-12 08:13 - 2022-10-12 08:13 - 000025576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-10-04 01:27 - 2018-12-20 02:05 - 000229296 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
2022-09-30 02:49 - 2022-09-30 02:49 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-09-30 02:49 - 2022-09-30 02:49 - 000221976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-28 10:22 - 2018-05-20 20:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-10-28 10:18 - 2020-10-10 13:58 - 000936906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-28 10:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-28 10:13 - 2022-09-23 15:31 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-10-28 10:13 - 2022-09-23 15:31 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-10-28 10:13 - 2018-03-16 01:15 - 000000000 ____D C:\Program Files\CCleaner
2022-10-28 10:12 - 2017-10-08 06:53 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-28 10:11 - 2020-10-10 13:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-28 10:11 - 2020-10-10 13:47 - 000000000 ____D C:\Users\dberg
2022-10-28 10:11 - 2020-10-10 13:41 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-28 10:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-10-28 10:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-28 10:11 - 2018-03-15 23:58 - 000000000 __SHD C:\Users\dberg\IntelGraphicsProfiles
2022-10-28 10:11 - 2017-10-08 06:51 - 000000000 ____D C:\Intel
2022-10-28 10:10 - 2020-10-10 13:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-28 10:02 - 2018-03-16 10:03 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2022-10-28 10:02 - 2018-03-16 09:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-28 09:50 - 2021-05-07 07:58 - 000000000 ____D C:\Users\dberg\Downloads\Compressed
2022-10-28 09:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-28 09:29 - 2019-11-03 09:02 - 000000000 ____D C:\Users\dberg\AppData\Local\NVIDIA
2022-10-28 04:15 - 2018-03-16 09:55 - 000000000 ____D C:\Users\dberg\AppData\LocalLow\Mozilla
2022-10-28 01:36 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-27 23:49 - 2018-03-16 00:51 - 000000000 ____D C:\Users\dberg\AppData\Roaming\vlc
2022-10-27 08:38 - 2020-06-21 07:26 - 000000000 ____D C:\Users\dberg\AppData\Local\vback
2022-10-27 08:15 - 2021-11-16 21:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-10-27 08:15 - 2018-03-16 09:55 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-27 00:21 - 2020-10-10 14:03 - 007642784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-10-26 13:07 - 2022-05-22 09:15 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-26 12:56 - 2022-02-08 20:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-26 10:52 - 2018-03-16 10:03 - 000000000 ____D C:\Users\dberg\AppData\Roaming\DMCache
2022-10-26 10:51 - 2018-03-16 10:03 - 000000000 ____D C:\Users\dberg\AppData\Roaming\IDM
2022-10-26 10:49 - 2019-01-13 20:28 - 000001092 _____ C:\Users\Public\Desktop\CLIP STUDIO.lnk
2022-10-26 08:19 - 2018-05-10 15:35 - 000000000 ____D C:\Users\dberg\AppData\Roaming\uTorrent
2022-10-25 08:21 - 2020-10-10 13:57 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-10-24 13:01 - 2019-03-22 08:30 - 000000000 ____D C:\Users\dberg\AppData\Local\BitTorrentHelper
2022-10-24 11:30 - 2018-05-27 17:51 - 000000000 ____D C:\Users\dberg\AppData\Local\D3DSCache
2022-10-23 22:50 - 2018-07-11 20:06 - 000000000 ____D C:\Users\dberg\AppData\Local\AVAST Software
2022-10-22 23:20 - 2018-05-21 10:16 - 000000000 ____D C:\ProgramData\CanonIJPLM
2022-10-22 06:40 - 2020-10-10 13:57 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2019-11-03 09:02 - 000001450 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-10-22 06:40 - 2017-10-08 06:53 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-10-22 06:40 - 2017-10-08 06:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-10-22 06:40 - 2017-10-08 06:52 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-10-20 23:00 - 2022-09-09 22:48 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-10-20 23:00 - 2022-05-20 10:56 - 000002678 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2022-10-20 23:00 - 2021-08-18 20:44 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - dberg
2022-10-20 23:00 - 2020-11-11 17:06 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2022-10-20 23:00 - 2020-11-10 04:47 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2022-10-20 23:00 - 2020-11-10 04:47 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2022-10-20 23:00 - 2020-10-10 13:57 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-20 23:00 - 2020-10-10 13:57 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-20 23:00 - 2020-10-10 13:57 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-20 23:00 - 2020-10-10 13:57 - 000002440 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2022-10-20 23:00 - 2020-10-10 13:57 - 000002280 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2022-10-20 23:00 - 2020-10-10 13:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-10-20 21:53 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-10-20 21:53 - 2018-03-16 00:29 - 000000000 ____D C:\ProgramData\AVAST Software
2022-10-20 19:52 - 2021-03-18 05:41 - 000000000 ____D C:\Users\dberg\Downloads\Video
2022-10-20 03:47 - 2018-03-17 01:26 - 000000000 ____D C:\Users\dberg\AppData\Local\CrashDumps
2022-10-20 03:43 - 2020-06-19 18:14 - 000002408 _____ C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maxthon.lnk
2022-10-20 03:43 - 2020-06-19 18:13 - 000000000 ____D C:\Users\dberg\AppData\Local\Maxthon
2022-10-18 04:49 - 2018-06-15 07:57 - 000000000 ____D C:\ProgramData\Packages
2022-10-18 04:49 - 2018-03-17 21:07 - 000000000 ____D C:\Users\dberg\AppData\Local\Packages
2022-10-17 08:25 - 2019-11-03 09:02 - 002890296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2022-10-17 08:25 - 2019-11-03 09:02 - 002224696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2022-10-17 08:25 - 2019-11-03 09:02 - 001297464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2022-10-15 20:36 - 2022-03-13 09:30 - 000531016 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-15 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-10-15 07:35 - 2017-10-08 06:51 - 000000000 ____D C:\Program Files (x86)\Intel
2022-10-15 07:35 - 2017-06-16 08:22 - 000000000 ____D C:\ProgramData\Package Cache
2022-10-14 07:32 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-14 07:32 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-14 07:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-14 07:26 - 2020-10-10 13:42 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-13 11:23 - 2022-02-16 13:42 - 000000000 ____D C:\Program Files\dotnet
2022-10-13 11:23 - 2022-02-16 13:13 - 000000000 ____D C:\Program Files (x86)\dotnet
2022-10-12 23:06 - 2018-03-16 00:48 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2022-10-12 22:51 - 2018-03-17 04:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-12 13:59 - 2018-03-17 04:28 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-01 22:58 - 2021-09-05 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Divinity - Original Sin 2 - Definitive Edition [GOG.com]
2022-09-30 02:49 - 2020-10-17 22:55 - 000276496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-09-30 02:49 - 2020-04-17 06:27 - 000558536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-09-30 02:49 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-30 02:49 - 2019-01-20 01:21 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-09-30 02:49 - 2019-01-19 20:59 - 000258496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-09-30 02:49 - 2019-01-19 20:59 - 000105920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-09-30 02:49 - 2018-11-04 14:09 - 000048488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000862960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000671712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000327904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000238128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000114488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000090000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
==================== Files in the root of some directories ========
2020-12-15 06:48 - 2020-12-15 06:48 - 000000017 _____ () C:\Users\dberg\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by dberg (administrator) on LAPTOP-O3EIVOGP (HP HP Pavilion Laptop 15-cc5xx) (28-10-2022 10:28:40)
Running from C:\Users\dberg\OneDrive\Desktop
Loaded Profiles: dberg
Platform: Microsoft Windows 10 Home Version 21H1 19043.2130 (X64) Language: Slovenčina (Slovensko)
Default browser: "C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe" --single-argument %1
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxEM.exe
(DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\dptf_helper.exe
(ETDCtrl.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDTouch.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrlHelper.exe
(explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_38cfab2b652e4701\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_1d1c7ad354f3422f\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_c2ac023763d5d3ad\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(services.exe ->) (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (HP Inc. -> HP Development Company, L.P.) C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22082.119.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [212192 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320056 2019-08-14] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5388128 2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [324592 2017-10-31] (HP Inc. -> HP)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709160 2018-05-22] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [Intel Driver & Support Assistant] => C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe [292120 2022-10-14] (Intel Corporation -> Intel)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642320 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4110568 2021-07-21] (Valve -> Valve Corporation)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [WallpaperEngine] => C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2578936 2019-12-17] (Kristjan Skutta -> )
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [5878016 2022-10-04] (Tonec Inc. -> Tonec Inc.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [XperiaCompanionAgent] => C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanionAgent.exe [2102112 2017-11-09] (Sony Mobile Communications AB -> Sony) [File not signed]
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [uTorrent] => C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe [2185376 2022-09-18] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38502416 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [CanonImageDisplay] => C:\Program Files (x86)\Canon\My Image Garden\CNQMSWCS.EXE [1003664 2017-10-17] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13663208 2022-09-10] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [ut] => C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe [2185376 2022-09-18] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8520168 2021-03-05] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpzppwn7: C:\Windows\System32\spool\prtprocs\x64\hpzppwn7.dll [110688 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\windows\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series XPS: C:\windows\system32\CNMXLMCT.DLL [409088 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJNP Port: C:\windows\system32\CNMN6PPM.DLL [375296 2015-03-17] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\LIDIL hpzllwn7: C:\windows\system32\hpzllwn7.dll [61024 2017-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
Startup: C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odoslanie do aplikácie OneNote.lnk [2018-11-17]
ShortcutTarget: Odoslanie do aplikácie OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {075BF93B-5600-44A9-90D6-68B6ADE20AEE} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {1F7C77B6-41DC-480B-A36F-002B57253BCB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23374288 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {2136474B-99A2-4C26-838B-D0E34203C5A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {22528FF2-9215-4A1E-A1AA-56412DED94FA} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {237E1140-E478-4040-BEF4-FAB56959FD58} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {26FFB1BF-DE7B-4E87-81AE-95F22C501243} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2021-04-01] (HP Inc. -> HP Inc.)
Task: {28DDF525-8D88-4B62-9839-112BDCAC31E6} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644960 2017-02-02] (HP Inc. -> HP Inc.)
Task: {36EEC91D-5C19-4921-A51E-317A4A07E7B2} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4946144 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
Task: {395FF685-AEB2-42AF-9448-05D39603A4D3} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [616232 2016-11-28] (Dropbox, Inc -> DropboxOEM)
Task: {47D4C79A-710D-425F-AFA3-E238BE7DC87E} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {4C7878CB-EFD6-4B57-A64E-0C8F776343D5} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [459264 2017-02-01] (HP Inc. -> )
Task: {4EBE001A-30FD-40BC-9EF9-252854A72CE5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2021-04-01] (HP Inc. -> HP Inc.)
Task: {76307ED4-24CE-4809-9DC3-C1B91E673C49} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116664 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {78857299-672B-48EE-B593-B421A95ED51E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7A53FB84-6EB2-4C60-8D40-364AE9BEE6A3} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {83BE04DC-6AA6-4BD4-B29D-5560B3708D13} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {863A9C78-8DD6-4172-ABF2-3AD4558DAC3F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {88E89C9D-A636-4D7D-89C7-508CBB2EAACB} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {89FC20AB-B4BE-4843-A12F-824C9819C73B} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [1356648 2017-01-12] (HP Inc. -> HP Development Company, L.P.)
Task: {9972E5B5-2A76-46FC-AFF4-24766E75648E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3231104 2022-05-02] (Intel Corporation -> Intel Corporation)
Task: {9F96129B-B635-4C2A-B665-6AEABD85B5BC} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4666896 2022-09-12] (Piriform Software Ltd -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "a3271fb1-c4a6-47a6-bb26-ef8293d73cd6" --version "6.04.10044" --silent
Task: {9FFA80BC-2C7D-405A-BEB1-DDE10A098B24} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [134768 2021-04-01] (HP Inc. -> HP Inc.)
Task: {A2E68EB0-B0A1-4380-BFDE-0D8192380DB0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {A9743E03-CF34-4EA1-9027-86200403FC69} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [116664 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {B1109990-EBAC-42D0-A36C-01A926A4B377} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {B273DFA7-D10A-4D7F-BD09-3A413DD01B93} - System32\Tasks\ActionLauncher_dberg => C:\Program Files (x86)\Mirillis\Action!\ActionLauncher.exe [530096 2022-04-14] (Mirillis Sp. z o.o. -> Mirillis)
Task: {B5388378-B950-4DBE-B592-B146240C00AC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-08-30] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {B8630337-4906-4663-B3B9-CFAE39800979} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-09-12] (Piriform Software Ltd -> Piriform)
Task: {BA935D31-14EC-4D91-8307-F5DC227CD843} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655864 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BAD5B7E7-F801-4350-8CE3-56293BADF610} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
Task: {BD90C028-9BA3-4853-B188-F1A8ECE098DD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102800 2021-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {C72A94D8-CD75-4384-8B9F-28E9E0E4D820} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2021-04-01] (HP Inc. -> HP Inc.)
Task: {CA7167DC-A166-4A77-808A-A6E8FD5B3A8C} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-10-17] (Nvidia Corporation -> NVIDIA Corporation)
Task: {CC948F9C-9707-434B-B4E3-B082C0081DA6} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {D2166318-67DC-4FBF-B477-83DEEA3A2DD0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23374288 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D690C3BE-C22A-436F-AD78-EFDD82CA5B75} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {DC7C648C-8E91-4C61-924A-988DD4A65E62} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E261075F-1970-41B1-85D0-62659DAA9CF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {E342581B-49AE-4CE1-BF8F-4E9C2185637E} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-878381589-1358594340-2859947446-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7A25591-7515-4C0D-AA2E-5506A4777F02} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2250576 2022-05-25] (Avast Software s.r.o. -> Avast Software)
Task: {E904DDD4-D3F1-4806-83B2-4D4D641017BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
Task: {E952E17A-1D4D-412A-87CC-AE2134B8AA02} - System32\Tasks\CCleanerSkipUAC - dberg => C:\Program Files\CCleaner\CCleaner.exe [32204304 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {EB0226E5-0037-4725-B451-C9DADBCC8250} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908856 2022-10-13] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FC9F372B-8AB4-40F5-AB28-ECA95A2D5264} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {FFF24C81-3AC0-46BE-B752-0B48B328E43B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3231104 2022-05-02] (Intel Corporation -> Intel Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ed2f21d6-b678-4000-a09c-ac35ecd5d003}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\dberg\AppData\Local\Microsoft\Edge\User Data\Default [2022-10-28]
Edge Extension: (IDM Integration Module) - C:\Users\dberg\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\llbjbkhnmlidjebalopleeepgdfgcpec [2022-10-12]
Edge HKU\S-1-5-21-878381589-1358594340-2859947446-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx [2022-10-04]
Edge HKU\S-1-5-21-878381589-1358594340-2859947446-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
FireFox:
========
FF DefaultProfile: rsobghzx.default-1547499605423
FF ProfilePath: C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423 [2022-10-28]
FF Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423\Extensions\sp@avast.com.xpi [2022-09-08]
FF Extension: (Avast Online Security & Privacy) - C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423\Extensions\wrc@avast.com.xpi [2022-10-16]
FF Extension: (Video DownloadHelper) - C:\Users\dberg\AppData\Roaming\Mozilla\Firefox\Profiles\rsobghzx.default-1547499605423\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2022-09-27]
FF HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi
FF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2022-05-25]
FF HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\dberg\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\dberg\AppData\Roaming\IDM\idmmzcc5 [2018-03-16] [Legacy] [not signed]
FF HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-10-16] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [File not signed]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
CHR HKU\S-1-5-21-878381589-1358594340-2859947446-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2022-10-04]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8513552 2022-10-05] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [592608 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2018528 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [592096 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-22] (Avast Software s.r.o. -> AVAST Software)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-09-12] (Piriform Software Ltd -> Piriform Software Ltd)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12111312 2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [130320 2022-03-13] (Dropbox, Inc -> Dropbox, Inc.)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [41240 2022-10-14] (Intel Corporation -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [197912 2022-10-14] (Intel Corporation -> Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2018-05-27] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncHelper.exe [3389840 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [2128360 2022-09-10] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7166552 2022-04-27] (GOG Sp. z o.o. -> GOG.com)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [1321096 2018-09-28] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [471040 2017-05-23] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [403576 2021-04-01] (HP Inc. -> HP Inc.)
S4 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [391744 2017-07-11] (Canon Inc. -> )
S4 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.151.0717.0001\OneDriveUpdaterService.exe [3830160 2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [2584528 2022-04-20] (Rockstar Games, Inc. -> Rockstar Games)
S4 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28136 2021-03-05] (LAVASOFT SOFTWARE CANADA INC -> )
S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [675184 2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [331632 2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2209.7-0\NisSrv.exe [3170576 2022-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2209.7-0\MsMpEng.exe [133584 2022-10-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2201440 2017-11-09] (Sony Mobile Communications AB -> Sony) [File not signed]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [238128 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390096 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [258496 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [105920 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2022-10-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [48488 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [276496 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [558536 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [114488 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [90000 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [862960 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [671712 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [221976 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [327904 2022-09-30] (Avast Software s.r.o. -> AVAST Software)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [62984 2019-08-28] (Intel Corporation -> Intel Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49616 2022-10-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [455968 2022-10-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [95520 2022-10-28] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40104 2022-06-17] (HP Inc. -> HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-28 09:54 - 2022-10-28 10:29 - 000000000 ____D C:\FRST
2022-10-28 09:29 - 2022-10-28 09:29 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2022-10-28 09:09 - 2022-10-27 00:30 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 001642600 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 001642600 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-10-28 09:09 - 2022-10-27 00:30 - 001444448 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-10-28 09:09 - 2022-10-27 00:30 - 001444448 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-10-28 09:09 - 2022-10-27 00:30 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-10-28 09:09 - 2022-10-27 00:30 - 001168960 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-10-28 09:09 - 2022-10-27 00:29 - 001487880 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-10-28 09:09 - 2022-10-27 00:29 - 001226744 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-10-28 09:09 - 2022-10-27 00:26 - 000865272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-10-28 09:09 - 2022-10-27 00:26 - 000672280 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-10-28 09:09 - 2022-10-27 00:26 - 000507440 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 057862648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2022-10-28 09:09 - 2022-10-27 00:25 - 002161640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 001618944 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 001530864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 001190912 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 000950272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-10-28 09:09 - 2022-10-27 00:25 - 000746496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-10-28 09:09 - 2022-10-27 00:24 - 012451824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 010219016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 005891080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 003334656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 000734720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-10-28 09:09 - 2022-10-27 00:24 - 000458248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-10-28 09:09 - 2022-10-27 00:23 - 005856760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2022-10-28 09:09 - 2022-10-27 00:23 - 005816312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-10-28 09:09 - 2022-10-27 00:23 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-10-28 09:09 - 2022-10-27 00:21 - 006512336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-10-28 09:09 - 2022-10-26 02:15 - 000100589 _____ C:\WINDOWS\system32\nvinfo.pb
2022-10-27 02:20 - 2022-10-28 10:02 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-10-26 13:04 - 2022-10-26 13:04 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2022-10-26 13:04 - 2022-10-26 13:04 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2022-10-26 11:55 - 2022-10-26 11:55 - 000002239 _____ C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Súkromné prehliadanie Firefoxu.lnk
2022-10-24 11:39 - 2022-10-24 12:46 - 000000000 ____D C:\Users\dberg\Downloads\FINKa-19
2022-10-22 06:39 - 2022-07-14 01:32 - 000060112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2022-10-15 07:35 - 2022-10-15 07:35 - 000001517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver & Support Assistant.lnk
2022-10-14 07:27 - 2022-10-14 07:27 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-10-14 07:27 - 2022-10-14 07:27 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-10-14 07:27 - 2022-10-14 07:27 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-10-14 07:27 - 2022-10-14 07:27 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-10-14 07:27 - 2022-10-14 07:27 - 000012253 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-10-14 07:26 - 2022-10-14 07:26 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-10-14 07:26 - 2022-10-14 07:26 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-10-14 07:16 - 2022-10-14 07:16 - 000000000 ___HD C:\$WinREAgent
2022-10-13 08:59 - 2022-08-16 00:59 - 000948464 _____ (Intel Corporation) C:\WINDOWS\system32\libmfxhw64.dll
2022-10-13 08:59 - 2022-08-16 00:59 - 000709280 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libmfxhw32.dll
2022-10-13 08:59 - 2022-08-16 00:59 - 000594184 _____ (Intel Corporation) C:\WINDOWS\system32\intel_gfx_api-x64.dll
2022-10-13 08:59 - 2022-08-16 00:59 - 000454448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\intel_gfx_api-x86.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 027948464 _____ (Intel Corporation) C:\WINDOWS\system32\mfxplugin64_hw.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 020672432 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\mfxplugin32_hw.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 000477096 _____ C:\WINDOWS\system32\ze_tracing_layer.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 000382888 _____ C:\WINDOWS\system32\ze_loader.dll
2022-10-13 08:59 - 2022-08-16 00:58 - 000143784 _____ C:\WINDOWS\system32\ze_validation_layer.dll
2022-10-12 23:14 - 2022-10-22 22:49 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-10-12 08:13 - 2022-10-12 08:13 - 000025576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswElam.sys
2022-10-04 01:27 - 2018-12-20 02:05 - 000229296 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
2022-09-30 02:49 - 2022-09-30 02:49 - 000270560 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2022-09-30 02:49 - 2022-09-30 02:49 - 000221976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-10-28 10:22 - 2018-05-20 20:11 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-10-28 10:18 - 2020-10-10 13:58 - 000936906 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-10-28 10:18 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-10-28 10:13 - 2022-09-23 15:31 - 000003416 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2022-10-28 10:13 - 2022-09-23 15:31 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2022-10-28 10:13 - 2018-03-16 01:15 - 000000000 ____D C:\Program Files\CCleaner
2022-10-28 10:12 - 2017-10-08 06:53 - 000000000 ____D C:\ProgramData\NVIDIA
2022-10-28 10:11 - 2020-10-10 13:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-10-28 10:11 - 2020-10-10 13:47 - 000000000 ____D C:\Users\dberg
2022-10-28 10:11 - 2020-10-10 13:41 - 000008192 ___SH C:\DumpStack.log.tmp
2022-10-28 10:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-10-28 10:11 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-10-28 10:11 - 2018-03-15 23:58 - 000000000 __SHD C:\Users\dberg\IntelGraphicsProfiles
2022-10-28 10:11 - 2017-10-08 06:51 - 000000000 ____D C:\Intel
2022-10-28 10:10 - 2020-10-10 13:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-10-28 10:02 - 2018-03-16 10:03 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2022-10-28 10:02 - 2018-03-16 09:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-10-28 09:50 - 2021-05-07 07:58 - 000000000 ____D C:\Users\dberg\Downloads\Compressed
2022-10-28 09:29 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-10-28 09:29 - 2019-11-03 09:02 - 000000000 ____D C:\Users\dberg\AppData\Local\NVIDIA
2022-10-28 04:15 - 2018-03-16 09:55 - 000000000 ____D C:\Users\dberg\AppData\LocalLow\Mozilla
2022-10-28 01:36 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-10-27 23:49 - 2018-03-16 00:51 - 000000000 ____D C:\Users\dberg\AppData\Roaming\vlc
2022-10-27 08:38 - 2020-06-21 07:26 - 000000000 ____D C:\Users\dberg\AppData\Local\vback
2022-10-27 08:15 - 2021-11-16 21:30 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-10-27 08:15 - 2018-03-16 09:55 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-10-27 00:21 - 2020-10-10 14:03 - 007642784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-10-26 13:07 - 2022-05-22 09:15 - 000003542 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-10-26 12:56 - 2022-02-08 20:15 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-10-26 10:52 - 2018-03-16 10:03 - 000000000 ____D C:\Users\dberg\AppData\Roaming\DMCache
2022-10-26 10:51 - 2018-03-16 10:03 - 000000000 ____D C:\Users\dberg\AppData\Roaming\IDM
2022-10-26 10:49 - 2019-01-13 20:28 - 000001092 _____ C:\Users\Public\Desktop\CLIP STUDIO.lnk
2022-10-26 08:19 - 2018-05-10 15:35 - 000000000 ____D C:\Users\dberg\AppData\Roaming\uTorrent
2022-10-25 08:21 - 2020-10-10 13:57 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2022-10-24 13:01 - 2019-03-22 08:30 - 000000000 ____D C:\Users\dberg\AppData\Local\BitTorrentHelper
2022-10-24 11:30 - 2018-05-27 17:51 - 000000000 ____D C:\Users\dberg\AppData\Local\D3DSCache
2022-10-23 22:50 - 2018-07-11 20:06 - 000000000 ____D C:\Users\dberg\AppData\Local\AVAST Software
2022-10-22 23:20 - 2018-05-21 10:16 - 000000000 ____D C:\ProgramData\CanonIJPLM
2022-10-22 06:40 - 2020-10-10 13:57 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2020-10-10 13:57 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-10-22 06:40 - 2019-11-03 09:02 - 000001450 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-10-22 06:40 - 2017-10-08 06:53 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-10-22 06:40 - 2017-10-08 06:53 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-10-22 06:40 - 2017-10-08 06:52 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-10-20 23:00 - 2022-09-09 22:48 - 000002588 _____ C:\WINDOWS\system32\Tasks\CreateExplorerShellUnelevatedTask
2022-10-20 23:00 - 2022-05-20 10:56 - 000002678 _____ C:\WINDOWS\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2022-10-20 23:00 - 2021-08-18 20:44 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - dberg
2022-10-20 23:00 - 2020-11-11 17:06 - 000003042 _____ C:\WINDOWS\system32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473
2022-10-20 23:00 - 2020-11-10 04:47 - 000002970 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2022-10-20 23:00 - 2020-11-10 04:47 - 000002604 _____ C:\WINDOWS\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2022-10-20 23:00 - 2020-10-10 13:57 - 000003560 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-10-20 23:00 - 2020-10-10 13:57 - 000003336 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-10-20 23:00 - 2020-10-10 13:57 - 000003194 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-10-20 23:00 - 2020-10-10 13:57 - 000002440 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2022-10-20 23:00 - 2020-10-10 13:57 - 000002280 _____ C:\WINDOWS\system32\Tasks\RTKCPL
2022-10-20 23:00 - 2020-10-10 13:57 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2022-10-20 21:53 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2022-10-20 21:53 - 2018-03-16 00:29 - 000000000 ____D C:\ProgramData\AVAST Software
2022-10-20 19:52 - 2021-03-18 05:41 - 000000000 ____D C:\Users\dberg\Downloads\Video
2022-10-20 03:47 - 2018-03-17 01:26 - 000000000 ____D C:\Users\dberg\AppData\Local\CrashDumps
2022-10-20 03:43 - 2020-06-19 18:14 - 000002408 _____ C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maxthon.lnk
2022-10-20 03:43 - 2020-06-19 18:13 - 000000000 ____D C:\Users\dberg\AppData\Local\Maxthon
2022-10-18 04:49 - 2018-06-15 07:57 - 000000000 ____D C:\ProgramData\Packages
2022-10-18 04:49 - 2018-03-17 21:07 - 000000000 ____D C:\Users\dberg\AppData\Local\Packages
2022-10-17 08:25 - 2019-11-03 09:02 - 002890296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2022-10-17 08:25 - 2019-11-03 09:02 - 002224696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2022-10-17 08:25 - 2019-11-03 09:02 - 001297464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2022-10-15 20:36 - 2022-03-13 09:30 - 000531016 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-10-15 20:34 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-10-15 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-10-15 07:35 - 2017-10-08 06:51 - 000000000 ____D C:\Program Files (x86)\Intel
2022-10-15 07:35 - 2017-06-16 08:22 - 000000000 ____D C:\ProgramData\Package Cache
2022-10-14 07:32 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2022-10-14 07:32 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2022-10-14 07:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-10-14 07:26 - 2020-10-10 13:42 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-10-13 11:23 - 2022-02-16 13:42 - 000000000 ____D C:\Program Files\dotnet
2022-10-13 11:23 - 2022-02-16 13:13 - 000000000 ____D C:\Program Files (x86)\dotnet
2022-10-12 23:06 - 2018-03-16 00:48 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2022-10-12 22:51 - 2018-03-17 04:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-10-12 13:59 - 2018-03-17 04:28 - 147398024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-10-01 22:58 - 2021-09-05 00:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Divinity - Original Sin 2 - Definitive Edition [GOG.com]
2022-09-30 02:49 - 2020-10-17 22:55 - 000276496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2022-09-30 02:49 - 2020-04-17 06:27 - 000558536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2022-09-30 02:49 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2022-09-30 02:49 - 2019-01-20 01:21 - 000390096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2022-09-30 02:49 - 2019-01-19 20:59 - 000258496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2022-09-30 02:49 - 2019-01-19 20:59 - 000105920 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2022-09-30 02:49 - 2018-11-04 14:09 - 000048488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000862960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000671712 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000327904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000238128 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000114488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2022-09-30 02:49 - 2018-03-16 00:30 - 000090000 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
==================== Files in the root of some directories ========
2020-12-15 06:48 - 2020-12-15 06:48 - 000000017 _____ () C:\Users\dberg\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB
Tady i v odkazu je FRST. Chybí mi stále Addition. Je v C:\Users\dberg\OneDrive\Desktop v souboru addition.txt.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-10-2022
Ran by dberg (28-10-2022 10:30:17)
Running from C:\Users\dberg\OneDrive\Desktop
Microsoft Windows 10 Home Version 21H1 19043.2130 (X64) (2020-10-10 11:58:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-878381589-1358594340-2859947446-500 - Administrator - Disabled)
dberg (S-1-5-21-878381589-1358594340-2859947446-1001 - Administrator - Enabled) => C:\Users\dberg
DefaultAccount (S-1-5-21-878381589-1358594340-2859947446-503 - Limited - Disabled)
Guest (S-1-5-21-878381589-1358594340-2859947446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-878381589-1358594340-2859947446-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\uTorrent) (Version: 3.5.5.46514 - BitTorrent Inc.)
7-Zip 22.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2200-000001000000}) (Version: 22.00.00.0 - Igor Pavlov)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Action! (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Mirillis Action!) (Version: 4.29.2 - Mirillis)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 22.003.20263 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Assassin's Creed Valhalla (HKLM-x32\...\Uplay Install 13504) (Version: - Ubisoft)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM-x32\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 5.5.0 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
CLIP STUDIO 1.12.8 (HKLM-x32\...\{49274EB8-4598-47E6-8039-9BB7CE07627E}) (Version: 1.12.8 - CELSYS)
CLIP STUDIO PAINT 1.12.11 (HKLM-x32\...\{1E4572D2-28BC-4BC9-B743-13DC6CFD71DB}) (Version: 1.12.11 - CELSYS)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.6 - GOG.com)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Divinity: Original Sin 2 - Definitive Edition (HKLM-x32\...\1584823040_is1) (Version: 3.6.117.3735_ptbr - GOG.com)
Divinity: Original Sin 2 - Sir Lora (HKLM-x32\...\1326441817_is1) (Version: 3.6.117.3735_ptbr - GOG.com)
Documentation Manager (HKLM\...\{82FBBBC9-616A-4247-BEAD-87B8132D49D2}) (Version: 22.0.0.6 - Intel Corporation) Hidden
Dropbox 25 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.583.1 - Dropbox, Inc.) Hidden
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Far Cry 5 (HKLM-x32\...\Uplay Install 1803) (Version: - Ubisoft)
FormatFactory 5.12.2.0 (HKLM-x32\...\FormatFactory) (Version: 5.12.2.0 - Free Time)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2372.2 - Rockstar Games)
HP 3D DriveGuard (HKLM-x32\...\{8F183B2E-D21D-4070-8132-DD39C3CBFA5C}) (Version: 6.0.41.1 - HP)
HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP CoolSense (HKLM-x32\...\{20CC03C7-7B48-4130-B7FA-39BC128E3A9E}) (Version: 2.21.5 - HP Inc.)
HP Customer Experience Enhancements (HKLM-x32\...\{64228DFB-7450-49B7-935C-B97342CB6659}) (Version: 6.0.10.1 - HP Development Company, L.P.) Hidden
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM\...\{20185BDA-D396-4C93-95C7-ECD0FB397FF7}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{5BBB44D5-3CC0-4434-AA0C-5883B975E45E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{6884D818-9E0E-4984-A6CA-B17757DCB8FA}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{F7E8A494-97B6-4786-9E2C-A42A082483EB}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{2889C948-F002-4992-815F-DBE0AFB5DC6E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{98AA8BB0-0C0A-411A-BB43-1265CA769155}) (Version: 5.3.22034 - HP Inc.) Hidden
HP JumpStart Bridge (HKLM-x32\...\{EB0912FF-C311-4E0F-A6B1-420FDD3C295E}) (Version: 1.3.0.407 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{81CA40FD-E11B-4DC1-AE33-A71EB044B8B7}) (Version: 1.1.275.0 - HP Inc.)
HP PC Hardware Diagnostics Windows (HKLM-x32\...\{3EC04ABB-D60E-44B6-9403-0D9DE44F56D9}) (Version: 1.6.0.0 - HP Inc.)
HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1510 - HP) Hidden
HP Support Solutions Framework (HKLM-x32\...\{2EE4E89E-F0A2-44D8-A7E9-AB7660379B05}) (Version: 12.19.53.13 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{9DD60999-A4F0-4333-9D00-E45C718EA6C1}) (Version: 1.4.30 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{119A6F59-D6D4-4091-A593-019EB9C9300E}) (Version: 1.1.22.1 - HP)
Intel Driver && Support Assistant (HKLM-x32\...\{B9BD5D9C-F427-4277-89DB-3784197C77CF}) (Version: 22.6.42.2 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{D17293BC-1678-4281-B94E-DBCF66AE7611}) (Version: 2.4.08919 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10208.5644 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{8b5a8e04-659a-4407-b2e1-04ad55a2e72e}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{9454a0e6-0762-48ec-b153-2a75b252d1fb}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{e159f285-6867-4ec7-83de-ddc54070f211}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Chipset Device Software (HKLM\...\{94E05108-3E4E-4F2E-AC5F-33A1B22B779C}) (Version: 10.1.1.44 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{90291EBF-187A-4C7E-A9AD-DCCB6C946536}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{FBDA24D3-1A19-4D75-B3F1-F2A1FB6B61BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{8DEA4234-C97D-41BE-B2BC-313A196BCD09}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.8.3.1004 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{8AAC5651-3DE3-4C1C-80AD-9D6192B1AA1A}) (Version: 16.8.3.1004 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{0e10d82e-ed40-4871-b388-0a3476f48295}) (Version: 22.6.42.2 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{056c22c9-0ef2-4a10-ba00-4d68d16c5669}) (Version: 22.0.0.6 - Intel Corporation) Hidden
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.41.3 - Tonec Inc.)
Kingdom Come: Deliverance - A Woman's Lot (HKLM-x32\...\1460218995_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – Band of Bastards (HKLM-x32\...\1957357825_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – From the Ashes (HKLM-x32\...\1201995925_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – The Amorous Adventures of Bold Sir Hans Capon (HKLM-x32\...\1336069439_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance (HKLM-x32\...\1719198803_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance Treasures of the Past DLC (HKLM-x32\...\1300320746_is1) (Version: 1.9.6-404-504u - GOG.com)
Maxthon (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Maxthon) (Version: 6.2.0.2100 - The Maxthon Authors)
Microsoft .NET Core Host - 3.1.30 (x64) (HKLM\...\{D77D7F28-DFF8-4094-BDE8-DB54C562F0BD}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host - 3.1.30 (x86) (HKLM-x32\...\{E84366B0-16B1-4654-A703-ECA2315BE108}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.30 (x64) (HKLM\...\{2D772A67-7221-42A0-AB27-E9C976F6B4BB}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.30 (x86) (HKLM-x32\...\{88B988F0-613A-42E7-B91A-5A20B00B7D65}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x64) (HKLM\...\{B0C55E84-9C91-45FC-BB6C-17C3443E407F}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x64) (HKLM-x32\...\{2bda8a50-ea78-4b46-8d76-4ad21ef0dfe6}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft .NET Core Runtime - 3.1.30 (x86) (HKLM-x32\...\{AB6A8B3F-E0BE-4512-AE2D-1216AB45061D}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x86) (HKLM-x32\...\{ac54aca9-d76d-4e88-80e4-3e8a1027dfb3}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.15330.20196 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.24 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office 2016 pre študentov a domácnosti - sk-sk (HKLM\...\HomeStudentRetail - sk-sk) (Version: 16.0.15330.20196 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.151.0717.0001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{BD2E4F7B-30B0-46A7-8E5C-D99D21C52336}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{200969CA-4114-4553-832D-4286C5ACBB98}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.30 (x64) (HKLM\...\{EE30190F-7A08-4282-9508-5AD06D8F2F6C}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.30 (x64) (HKLM-x32\...\{2bf259bf-46a4-46d1-94db-bc6033579f24}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.30 (x86) (HKLM-x32\...\{c7ad0c1d-96aa-4db8-965e-c497ef09d22c}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.30 (x86) (HKLM-x32\...\{FBC966CD-EF26-4D70-8E37-393652209F0E}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 106.0.2 (x64 sk)) (Version: 106.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.1 - Mozilla)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.33.123 (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.33.123 - NVIDIA Corporation)
NVIDIA Grafický ovládač 526.47 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 526.47 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15330.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15128.20178 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.15330.20196 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{E91052A0-E7C9-4462-B7B5-2C7279F7203B}) (Version: 4.3.12 - dotPDN LLC)
PicosmosTools 2.6.0.0 (HKLM-x32\...\PicosmosTools) (Version: 2.6.0.0 - Free Time)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.154 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9225.1 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Registrácia používateľa produktu Canon MG3600 series (HKLM-x32\...\Registrácia používateľa produktu Canon MG3600 series) (Version: - Canon Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.50.548 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.3.2 - Rockstar Games)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Stardew Valley (HKLM-x32\...\1453375253_is1) (Version: 1.5.6.1988831614 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tipard Video Converter Ultimate 9.2.52 (HKLM-x32\...\{F2922911-108A-4d9e-B33A-2A101444F4CE}_is1) (Version: 9.2.52 - Tipard Studio)
TuneFab Spotify Music Converter version 2.9.9 (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\{d74bba79-1439-43b1-b4df-0fbc70498bde}_is1) (Version: 2.9.9 - TuneFab, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 51.2 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{B8B01E04-5393-4902-98E6-0E2787F03C80}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Video Logo Remover (HKLM-x32\...\Video Logo Remover_is1) (Version: - AuDane)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WD Quick View (HKLM-x32\...\{E7A242F9-B59B-4E66-A544-222123E999FD}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{F2E73439-F82E-402D-AB38-61EF3BAC974D}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{1495b866-ed65-4968-8bf2-903313e0ac39}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
Web Companion (HKLM-x32\...\{81384ef7-f601-4ab9-b7e7-4537791353a6}) (Version: 7.0.2417.4248 - Lavasoft)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Xperia Companion (HKLM-x32\...\{74C27C4F-BCDF-4D88-8B04-E5C7609AB1EB}) (Version: 1.9.2.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{b677a3f8-01ab-49df-92a8-d039691c0e2d}) (Version: 1.9.2.0 - Sony)
Xperia Companion Service (HKLM\...\{826B080E-3B85-448D-99C3-D843D54ED116}) (Version: 1.9.2.0 - Sony) Hidden
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-18] (Canon Inc.)
Crunchyroll -> C:\Program Files\WindowsApps\15EF7777.Crunchyroll_1.3.1.0_x64__mgdgtskya6f22 [2019-11-04] (Ellation, Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.40.5.0_x64__6rarf9sa4v8jt [2022-10-19] (Disney)
ELAN Touchpad Setting -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ELANTouchpadSetting_11.2.63.0_x64__stws0m115j6hg [2022-07-29] (ELAN Microelectronics Corporation)
ETD Properties -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ETDProperties_1.0.9.0_x64__stws0m115j6hg [2022-07-30] (ELAN Microelectronics Corporation)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.378.0_x64__v10z8vjag6ke6 [2017-10-08] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.3.0_x64__v10z8vjag6ke6 [2022-10-05] (HP Inc.)
Manga Reader -> C:\Program Files\WindowsApps\30065minh91a1.MangaReader_1.2.2.0_x64__9mvf5des1n9pr [2021-09-04] (minh91a1) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-28] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-07-27] (INTEL CORP) [Startup Task]
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2022-07-29] (Plex)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0 [2022-10-28] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{17E4BF0C-4D8C-4B09-B7E1-0607E6CAEFCA}\InprocServer32 -> C:\Program Files\Mozilla Firefox\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{635EFA6F-08D6-4EC9-BD14-8A0FDE975159}\localserver32 -> C:\Users\dberg\AppData\Local\Maxthon\Application\6.2.0.2100\notification_helper.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2021-03-03] (Tonec Inc. -> Tonec FZE)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [File not signed]
ContextMenuHandlers1: [PicosmosShell] -> {A3888921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\PicosmosTools\ShellEx_102.dll [2020-02-18] (Free Time) [File not signed]
ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\nvshext.dll [2022-10-27] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FICV] => C:\windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Maxthon\Reddit.lnk -> C:\Users\dberg\AppData\Local\Maxthon\Application\chrome_proxy.exe (Maxthon Ltd.) -> --profile-directory=Default --app-id=lgnggepjiihbfdbedefdhcffnmhcahbm
==================== Loaded Modules (Whitelisted) =============
2018-05-21 10:16 - 2017-05-02 16:06 - 000123904 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJPLM\CNMPU.DLL
2018-05-21 10:22 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2022-04-19 12:20 - 2022-04-19 12:20 - 000344064 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll
2020-02-18 16:23 - 2020-02-18 16:23 - 000354304 _____ (Free Time) [File not signed] C:\Program Files\PicosmosTools\ShellEx_102.dll
2022-07-27 01:15 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2022-04-21 05:57 - 2022-04-21 13:10 - 042859520 _____ (Intel Corporation) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.dll
2022-05-05 17:44 - 2022-05-05 17:44 - 002122240 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKLM -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-878381589-1358594340-2859947446-1001 -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2021-11-09] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2021-11-09] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\localhost -> localhost
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2019-01-09 16:57 - 000000834 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Control Panel\Desktop\\Wallpaper -> G:\Saved Pictures\IMG_3297_UPweb-X3.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "WD Quick View"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "WallpaperEngine"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Picosmos"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "XperiaCompanionAgent"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "CanonImageDisplay"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "ut"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Web Companion"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{136AFF68-6B83-46A7-A9BF-577877491F23}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{18262E8D-24AE-448F-9EA2-FEAEA02074EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{5EC45D6B-E744-493D-B5D5-972B24894D0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{B2C97696-2806-4694-8996-17CE8D68AAE6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{31D283A9-768F-44DB-AAAB-067B1C96E4CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{4E95B31C-E251-46CC-9AB8-FF67DEBF491B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BD73D76C-9FA0-40FF-8791-E5AA4AB410CB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{591E6DBC-8FB2-46EB-8CB0-33E4BCB4DA28}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{78545788-9E90-4715-AF96-5DC857BD210B}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{ADFAF58D-B072-4F71-A71D-29D749B2476D}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{EA885E4B-88BD-4E4B-AE68-4F28AAE6B2E5}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{313FDF59-4C84-4EDB-B63F-CBB9FAA51161}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{02DDDEF2-975E-4D61-B140-649B600E4244}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F52C05BD-04E5-4CE8-9A8A-A71712437C5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{577FC8DA-5489-4F0F-B626-05754C277288}] => (Allow) C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A9EEB4C9-FB54-4A51-84BB-B88E0F0D2184}] => (Allow) C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{5FDB168D-F336-403E-AC70-9E6674E85CFC}C:\program files (x86)\internet download manager\idman.exe] => (Allow) C:\program files (x86)\internet download manager\idman.exe (Tonec Inc. -> Tonec Inc.)
FirewallRules: [TCP Query User{497BA90A-7B32-4AB6-B8B3-348C8AC0248F}C:\program files (x86)\internet download manager\idman.exe] => (Allow) C:\program files (x86)\internet download manager\idman.exe (Tonec Inc. -> Tonec Inc.)
FirewallRules: [{C57ACEF1-4056-4E28-8E9A-67EF69A9A9E3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2D788320-64CA-4DF4-853F-506796E7BCC9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{392D6217-7668-4529-8734-373D11CA5BDA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D032D88E-760B-40D3-8C5B-2E99BC8990A7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DA63C63F-7437-4E09-95D6-C9B79E563128}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{8BD3DF65-C9D3-4FC0-B73A-FF16B872F04D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{160DE882-91A7-4BC3-8AB2-7FB78A8D7CAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A259B956-2166-4D7C-904D-2C456397506E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A5F14CFE-139A-4493-92F1-F38A62C009C3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9A410666-7493-40E7-BBDA-2B7D24E0B60B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BA84ED75-542A-4838-9372-3A50354F7364}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{014E6CCC-6FA7-4B9A-92FA-C78BE26BB2ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{B8B680CE-D085-45B2-9CEA-36BB38CEEB7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{804EE291-26C4-4069-A8AC-D73AE3857628}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D228760D-DAED-4415-95DF-689124794644}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{622DD10C-3688-4ACA-BDBC-2E9F932A21C5}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) [File not signed]
FirewallRules: [{9BD469E6-DFD2-4ECA-BF89-EC694A688789}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{C16D145A-4A78-43B0-A813-81DCDF73EAF8}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{F6B23EAF-D756-4EE8-B94E-A294C320B1E3}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{A861D62E-8D2D-4ACA-A8F8-6212A56EAD01}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{589487CE-DB9B-4719-8FD3-9E5475F8C20E}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{ABD0F770-3A49-4A63-BB22-63AF0508EFD6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CD18BDB2-A8E3-4002-A1DD-AFFAB502745C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2D3DCD76-29CD-40E4-93F4-D199C73A3A15}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D440827B-2E19-4D14-A445-C24073B3BC19}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{982F92D4-A576-4ECC-A453-F14E1D3E8583}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{6F8142FB-ADCD-4EF0-97D5-F1BA1333AAE6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{BEA962B8-0B00-4C9E-8D3D-171B7698F7D4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{E53C0790-A480-4A49-B8CE-EC4F0D15C215}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C39F3E30-0951-458F-956A-E93A01DF72EE}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{0A5A678C-35F1-4130-A329-29F59A3044F5}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{85C96591-27C8-4136-9598-FBD31E30FE91}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [TCP Query User{08CF2954-4D43-4567-89DD-9165EF9851A0}D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{BADE0484-5807-4F69-A1CB-25EEC5111B13}D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{1469E8C2-AA18-4283-89AB-C33C40DD31CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BB07136D-378B-46D3-A5C1-C1C9769317B6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{9990F2B5-C950-40A0-81F0-6EF80BFCBE4B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{DAAB105C-0892-4CEE-B583-77DF47F5ACD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{B5DE7194-EA34-455F-9EE8-5F4E0F2BC9BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{1E3DD1E0-021C-4725-B5D4-E63849922A1E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{61AEF2AF-C8FC-44D3-A5B7-193A102C649F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{6E4C9FA5-F09F-4427-A676-FFB8514FE8B5}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{1114E133-CE91-4BB9-823F-19529F41A2DF}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{43B560C8-1858-455A-956F-A48676B5116A}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{37FE5898-DE94-46A5-9A22-5D200B157F9D}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{C4F84520-2CA0-42A2-A363-064F139FF392}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\City Car Driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [{DB9AC62D-7CF5-40C7-AEDD-5B51CE144269}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\City Car Driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [{F0FC0F01-9ABA-4AC7-AE23-B35F9310150B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{42BE969B-A6BA-4A54-B1E4-2895477E9FC4}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{1C59CEA0-37F0-4C2B-B541-D7ED732DFC20}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{032CB92C-770C-4476-91DF-CCC7A5FCCDC2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{47D4559E-B2D5-4A88-BF48-64EF37EF3C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF24BD59-3152-4780-98E9-1077DB12CE38}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0DCF976F-63BF-47E2-AE8A-2B947FD00A89}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{93B80F29-6F15-49CC-BF88-81BC5867865B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EE270903-10B1-4245-9507-C2980A56CEF8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C17A47F2-CE0F-4F5B-AFCF-C3DD5E28CEDC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D7E7A751-65B5-467E-9418-FAEECB8AF321}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{70FEBB05-EA1E-4D44-9462-FF57AA2DCC3D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7D9F185C-51D0-4DF3-AAA8-93F0DDEF64FA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{219B7CDA-C253-4A3C-B194-83B8E64AA61B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB5A332D-5B35-4963-8E22-6EB83FC1E1A3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6CC54449-8D93-4096-A237-7A4334B703A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5BC23745-B13E-46BA-A802-78D38A9618D4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5B7807FE-C0BA-49B3-A4AA-9E86AABB33CD}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FDBF8931-BD6B-4F98-864A-CFB415FB7732}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{00E0059B-B19C-4389-96A1-F4D0C2AA4972}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{119C7EF6-875F-4264-95DD-5F65935364B7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{763E028C-3346-475B-AAF6-C92BBE5CAA39}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{409E87A2-6EF9-4C3F-A06E-28E90A8E179F}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{A821D7D4-FC7F-408D-A9CF-D160CAF5B4DC}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{B3CBAABA-086F-41C8-AF28-1AF382C2EC89}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{C376AABE-749E-4381-8AD1-F2E0D37F3E10}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{5B829C24-5F66-47A4-9048-A74AD04F2ED1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9637360A-B316-4FF5-8E4D-7769306904D9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF83BDE4-CE3D-4A82-A2C6-939C06E34066}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{3B75C57C-215E-4F1C-BB0E-7EACE9C9C5BA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{1B9FD445-26E1-48E6-A909-2F7143E79763}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{259A89AA-E413-468C-B322-82885EF88739}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5D8DACA6-4015-4046-A8E7-5CB938F2A8DB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{70AA4705-D3BE-4D55-81D9-B57DAEBCD6E3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7C4D6B5B-4982-43B4-982D-28A20DBD6AFE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{662D55C9-AD3E-4BC8-97B5-35E3BA63C724}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{06D691E1-5FD4-423D-8BFD-97B70E77BFC2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{08B978B1-5016-495F-ABA2-191CF1AA714C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E0B123AE-7C4C-4740-A7FA-797F92578556}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A3890611-B34F-4121-B503-12ED49EE2AA4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6B62799D-11B4-4E8E-BE4F-617D5D72D99E}] => (Allow) C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
FirewallRules: [{44F07E03-8CE6-4C6B-9D5D-3C2CAA08A32F}] => (Allow) C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
FirewallRules: [{0914DFAB-2BDE-427F-B195-3E773DB206E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CC40ADA7-3808-44E3-8809-8BA3582925BB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B4B005BF-9385-4FD9-8A02-EBCFACE1B292}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A0844F3E-2D51-4991-92D8-FA2A7B6DED86}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{AC93FF2B-6FE1-4AC4-A55B-7F09AF12DDB9}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.24\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B8E1DF9-A755-4849-A00E-AAFE9AE3116F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BC613893-283C-42B4-ABF1-10FC02D667D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{79787E72-818E-422B-9D46-E21BE06A6023}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9C7904FB-FE66-46A9-B967-A371921E53D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{27DDEC70-5F10-4632-A13D-88852B0B326A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3BFB814C-46D8-4236-AC3E-A6A64E5DA560}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6235075F-EB9B-40AE-BBA1-E98B14A04B03}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8AFCDC71-D2CA-4BE7-8BDF-821EDD7F5F06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
Name: Microsoft Bluetooth Avrcp Transport Driver
Description: Microsoft Bluetooth Avrcp Transport Driver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: Microsoft_Bluetooth_AvrcpTransport
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Periférne zariadenie Bluetooth
Description: Periférne zariadenie Bluetooth
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Microsoft Bluetooth Avrcp Transport Driver
Description: Microsoft Bluetooth Avrcp Transport Driver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: Microsoft_Bluetooth_AvrcpTransport
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Periférne zariadenie Bluetooth
Description: Periférne zariadenie Bluetooth
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2022 10:27:58 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-O3EIVOGP)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe, PID: 3984, ProfSvc PID: 1884.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe, PID: 3984, ProfSvc PID: 1884.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe, PID: 5220, ProfSvc PID: 1884.
Error: (10/28/2022 09:57:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 324c
Start Time: 01d8eaa2e481d4c0
Termination Time: 19
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 014f0db2-28d5-472d-bc76-7c8395843928
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 09:56:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 20f8
Start Time: 01d8eaa2b732df15
Termination Time: 25
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 491ca456-b2a7-4381-b267-8a81fbffefe9
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 09:55:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: f38
Start Time: 01d8eaa264607e31
Termination Time: 22
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 18a06026-ed8e-4ad5-8a5b-3907d9a6bc1f
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 07:50:27 AM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.IO.IOException: The process cannot access the file 'C:\Windows\Temp\signtool.exe' because it is being used by another process.
at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
at System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
at System.IO.FileStream..ctor(String path, FileMode mode)
at _HPCommRecovery.Tools.Signtool.ExtractSignTool()
at _HPCommRecovery.Tools.Signtool.Verify(String arg)
at _HPCommRecovery.HPAHAgent.CallAgent()
at _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
at _HPCommRecovery.HPAHLogger.NewSession()
at _HPCommRecovery.....
System errors:
=============
Error: (10/28/2022 10:28:43 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Energy Server Service queencreek sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (10/28/2022 10:17:55 AM) (Source: Service Control Manager) (EventID: 7046) (User: )
Description: Nasledujúca služba sa opakovane zastavila pri reakcii na požiadavky riadenia služieb: Windows Search
Informujte sa u dodávateľa služby alebo správcu systému, kde možno túto službu vypnúť, kým sa nezistí problém.
Pred vypnutím služby možno budete musieť reštartovať počítač v bezpečnom režime.
Error: (10/28/2022 10:17:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:16:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:16:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:15:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:15:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:14:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
CodeIntegrity:
===============
Date: 2022-10-28 10:28:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-10-28 10:27:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2022-10-28 10:23:00
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: Insyde F.16 06/22/2018
Motherboard: HP 8368
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 55%
Total physical RAM: 8077.22 MB
Available physical RAM: 3561.17 MB
Total Virtual: 16269.22 MB
Available Virtual: 11431.51 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:236.68 GB) (Free:65.54 GB) (Model: RTIMF256VGM2MBDH) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:190.02 GB) (Model: WDC WD10JFCX-68N6GN0) NTFS
Drive f: (Elements) (Fixed) (Total:2794.49 GB) (Free:1049.49 GB) (Model: WD Elements 25A1 USB Device) NTFS
\\?\Volume{45493c86-b09c-44cc-bf04-ccda2db9fa25}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS
\\?\Volume{30a7055a-bacd-4916-8aa8-e4c49a2b3ad1}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.49 GB) NTFS
\\?\Volume{089a7fc9-3dd0-4158-8004-323fbb8d640d}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 2 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by dberg (28-10-2022 10:30:17)
Running from C:\Users\dberg\OneDrive\Desktop
Microsoft Windows 10 Home Version 21H1 19043.2130 (X64) (2020-10-10 11:58:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-878381589-1358594340-2859947446-500 - Administrator - Disabled)
dberg (S-1-5-21-878381589-1358594340-2859947446-1001 - Administrator - Enabled) => C:\Users\dberg
DefaultAccount (S-1-5-21-878381589-1358594340-2859947446-503 - Limited - Disabled)
Guest (S-1-5-21-878381589-1358594340-2859947446-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-878381589-1358594340-2859947446-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\uTorrent) (Version: 3.5.5.46514 - BitTorrent Inc.)
7-Zip 22.00 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2200-000001000000}) (Version: 22.00.00.0 - Igor Pavlov)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Action! (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Mirillis Action!) (Version: 4.29.2 - Mirillis)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 22.003.20263 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Assassin's Creed Valhalla (HKLM-x32\...\Uplay Install 13504) (Version: - Ubisoft)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM-x32\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avast Premium Security (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 5.5.0 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon MG3600 series On-screen Manual (HKLM-x32\...\Canon MG3600 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform)
CLIP STUDIO 1.12.8 (HKLM-x32\...\{49274EB8-4598-47E6-8039-9BB7CE07627E}) (Version: 1.12.8 - CELSYS)
CLIP STUDIO PAINT 1.12.11 (HKLM-x32\...\{1E4572D2-28BC-4BC9-B743-13DC6CFD71DB}) (Version: 1.12.11 - CELSYS)
Cyberpunk 2077 (HKLM-x32\...\1423049311_is1) (Version: 1.6 - GOG.com)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Divinity: Original Sin 2 - Definitive Edition (HKLM-x32\...\1584823040_is1) (Version: 3.6.117.3735_ptbr - GOG.com)
Divinity: Original Sin 2 - Sir Lora (HKLM-x32\...\1326441817_is1) (Version: 3.6.117.3735_ptbr - GOG.com)
Documentation Manager (HKLM\...\{82FBBBC9-616A-4247-BEAD-87B8132D49D2}) (Version: 22.0.0.6 - Intel Corporation) Hidden
Dropbox 25 GB (HKLM-x32\...\{84D8451D-2ED6-3A59-ABA5-2A447F7C6310}) (Version: 4.1.2.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.583.1 - Dropbox, Inc.) Hidden
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Far Cry 5 (HKLM-x32\...\Uplay Install 1803) (Version: - Ubisoft)
FormatFactory 5.12.2.0 (HKLM-x32\...\FormatFactory) (Version: 5.12.2.0 - Free Time)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2372.2 - Rockstar Games)
HP 3D DriveGuard (HKLM-x32\...\{8F183B2E-D21D-4070-8132-DD39C3CBFA5C}) (Version: 6.0.41.1 - HP)
HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.)
HP CoolSense (HKLM-x32\...\{20CC03C7-7B48-4130-B7FA-39BC128E3A9E}) (Version: 2.21.5 - HP Inc.)
HP Customer Experience Enhancements (HKLM-x32\...\{64228DFB-7450-49B7-935C-B97342CB6659}) (Version: 6.0.10.1 - HP Development Company, L.P.) Hidden
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM\...\{20185BDA-D396-4C93-95C7-ECD0FB397FF7}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{5BBB44D5-3CC0-4434-AA0C-5883B975E45E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{6884D818-9E0E-4984-A6CA-B17757DCB8FA}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM\...\{F7E8A494-97B6-4786-9E2C-A42A082483EB}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{2889C948-F002-4992-815F-DBE0AFB5DC6E}) (Version: 5.3.22034 - HP Inc.) Hidden
HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{98AA8BB0-0C0A-411A-BB43-1265CA769155}) (Version: 5.3.22034 - HP Inc.) Hidden
HP JumpStart Bridge (HKLM-x32\...\{EB0912FF-C311-4E0F-A6B1-420FDD3C295E}) (Version: 1.3.0.407 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{81CA40FD-E11B-4DC1-AE33-A71EB044B8B7}) (Version: 1.1.275.0 - HP Inc.)
HP PC Hardware Diagnostics Windows (HKLM-x32\...\{3EC04ABB-D60E-44B6-9403-0D9DE44F56D9}) (Version: 1.6.0.0 - HP Inc.)
HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1510 - HP) Hidden
HP Support Solutions Framework (HKLM-x32\...\{2EE4E89E-F0A2-44D8-A7E9-AB7660379B05}) (Version: 12.19.53.13 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{9DD60999-A4F0-4333-9D00-E45C718EA6C1}) (Version: 1.4.30 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{119A6F59-D6D4-4091-A593-019EB9C9300E}) (Version: 1.1.22.1 - HP)
Intel Driver && Support Assistant (HKLM-x32\...\{B9BD5D9C-F427-4277-89DB-3784197C77CF}) (Version: 22.6.42.2 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{D17293BC-1678-4281-B94E-DBCF66AE7611}) (Version: 2.4.08919 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10208.5644 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{8b5a8e04-659a-4407-b2e1-04ad55a2e72e}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{9454a0e6-0762-48ec-b153-2a75b252d1fb}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Graphics Driver Software (HKLM-x32\...\{e159f285-6867-4ec7-83de-ddc54070f211}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Chipset Device Software (HKLM\...\{94E05108-3E4E-4F2E-AC5F-33A1B22B779C}) (Version: 10.1.1.44 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{90291EBF-187A-4C7E-A9AD-DCCB6C946536}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{FBDA24D3-1A19-4D75-B3F1-F2A1FB6B61BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{8DEA4234-C97D-41BE-B2BC-313A196BCD09}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.8.3.1004 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{8AAC5651-3DE3-4C1C-80AD-9D6192B1AA1A}) (Version: 16.8.3.1004 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{0e10d82e-ed40-4871-b388-0a3476f48295}) (Version: 22.6.42.2 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden
Intel® Software Installer (HKLM-x32\...\{056c22c9-0ef2-4a10-ba00-4d68d16c5669}) (Version: 22.0.0.6 - Intel Corporation) Hidden
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.41.3 - Tonec Inc.)
Kingdom Come: Deliverance - A Woman's Lot (HKLM-x32\...\1460218995_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – Band of Bastards (HKLM-x32\...\1957357825_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – From the Ashes (HKLM-x32\...\1201995925_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance – The Amorous Adventures of Bold Sir Hans Capon (HKLM-x32\...\1336069439_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance (HKLM-x32\...\1719198803_is1) (Version: 1.9.6-404-504u - GOG.com)
Kingdom Come: Deliverance Treasures of the Past DLC (HKLM-x32\...\1300320746_is1) (Version: 1.9.6-404-504u - GOG.com)
Maxthon (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\Maxthon) (Version: 6.2.0.2100 - The Maxthon Authors)
Microsoft .NET Core Host - 3.1.30 (x64) (HKLM\...\{D77D7F28-DFF8-4094-BDE8-DB54C562F0BD}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host - 3.1.30 (x86) (HKLM-x32\...\{E84366B0-16B1-4654-A703-ECA2315BE108}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.30 (x64) (HKLM\...\{2D772A67-7221-42A0-AB27-E9C976F6B4BB}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.30 (x86) (HKLM-x32\...\{88B988F0-613A-42E7-B91A-5A20B00B7D65}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x64) (HKLM\...\{B0C55E84-9C91-45FC-BB6C-17C3443E407F}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x64) (HKLM-x32\...\{2bda8a50-ea78-4b46-8d76-4ad21ef0dfe6}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft .NET Core Runtime - 3.1.30 (x86) (HKLM-x32\...\{AB6A8B3F-E0BE-4512-AE2D-1216AB45061D}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.30 (x86) (HKLM-x32\...\{ac54aca9-d76d-4e88-80e4-3e8a1027dfb3}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft 365 - sk-sk (HKLM\...\O365HomePremRetail - sk-sk) (Version: 16.0.15330.20196 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.52 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 107.0.1418.24 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office 2016 pre študentov a domácnosti - sk-sk (HKLM\...\HomeStudentRetail - sk-sk) (Version: 16.0.15330.20196 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.151.0717.0001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{BD2E4F7B-30B0-46A7-8E5C-D99D21C52336}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{200969CA-4114-4553-832D-4286C5ACBB98}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.30 (x64) (HKLM\...\{EE30190F-7A08-4282-9508-5AD06D8F2F6C}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.30 (x64) (HKLM-x32\...\{2bf259bf-46a4-46d1-94db-bc6033579f24}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.30 (x86) (HKLM-x32\...\{c7ad0c1d-96aa-4db8-965e-c497ef09d22c}) (Version: 3.1.30.31726 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.30 (x86) (HKLM-x32\...\{FBC966CD-EF26-4D70-8E37-393652209F0E}) (Version: 24.120.31726 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 sk) (HKLM\...\Mozilla Firefox 106.0.2 (x64 sk)) (Version: 106.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.1 - Mozilla)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.154 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.154 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.33.123 (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.33.123 - NVIDIA Corporation)
NVIDIA Grafický ovládač 526.47 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 526.47 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.15330.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.15128.20178 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.15330.20196 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{E91052A0-E7C9-4462-B7B5-2C7279F7203B}) (Version: 4.3.12 - dotPDN LLC)
PicosmosTools 2.6.0.0 (HKLM-x32\...\PicosmosTools) (Version: 2.6.0.0 - Free Time)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.154 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9225.1 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Registrácia používateľa produktu Canon MG3600 series (HKLM-x32\...\Registrácia používateľa produktu Canon MG3600 series) (Version: - Canon Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.50.548 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.3.2 - Rockstar Games)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Stardew Valley (HKLM-x32\...\1453375253_is1) (Version: 1.5.6.1988831614 - GOG.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tipard Video Converter Ultimate 9.2.52 (HKLM-x32\...\{F2922911-108A-4d9e-B33A-2A101444F4CE}_is1) (Version: 9.2.52 - Tipard Studio)
TuneFab Spotify Music Converter version 2.9.9 (HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\{d74bba79-1439-43b1-b4df-0fbc70498bde}_is1) (Version: 2.9.9 - TuneFab, Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 51.2 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{B8B01E04-5393-4902-98E6-0E2787F03C80}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Video Logo Remover (HKLM-x32\...\Video Logo Remover_is1) (Version: - AuDane)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WD Quick View (HKLM-x32\...\{E7A242F9-B59B-4E66-A544-222123E999FD}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{F2E73439-F82E-402D-AB38-61EF3BAC974D}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{1495b866-ed65-4968-8bf2-903313e0ac39}) (Version: 2.4.20.48 - Western Digital Technologies, Inc.)
Web Companion (HKLM-x32\...\{81384ef7-f601-4ab9-b7e7-4537791353a6}) (Version: 7.0.2417.4248 - Lavasoft)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
Xperia Companion (HKLM-x32\...\{74C27C4F-BCDF-4D88-8B04-E5C7609AB1EB}) (Version: 1.9.2.0 - Sony) Hidden
Xperia Companion (HKLM-x32\...\{b677a3f8-01ab-49df-92a8-d039691c0e2d}) (Version: 1.9.2.0 - Sony)
Xperia Companion Service (HKLM\...\{826B080E-3B85-448D-99C3-D843D54ED116}) (Version: 1.9.2.0 - Sony) Hidden
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-18] (Canon Inc.)
Crunchyroll -> C:\Program Files\WindowsApps\15EF7777.Crunchyroll_1.3.1.0_x64__mgdgtskya6f22 [2019-11-04] (Ellation, Inc.)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.40.5.0_x64__6rarf9sa4v8jt [2022-10-19] (Disney)
ELAN Touchpad Setting -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ELANTouchpadSetting_11.2.63.0_x64__stws0m115j6hg [2022-07-29] (ELAN Microelectronics Corporation)
ETD Properties -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ETDProperties_1.0.9.0_x64__stws0m115j6hg [2022-07-30] (ELAN Microelectronics Corporation)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.378.0_x64__v10z8vjag6ke6 [2017-10-08] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.3.0_x64__v10z8vjag6ke6 [2022-10-05] (HP Inc.)
Manga Reader -> C:\Program Files\WindowsApps\30065minh91a1.MangaReader_1.2.2.0_x64__9mvf5des1n9pr [2021-09-04] (minh91a1) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2022-10-28] (NVIDIA Corp.)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-07-27] (INTEL CORP) [Startup Task]
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2022-07-29] (Plex)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0 [2022-10-28] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{17E4BF0C-4D8C-4B09-B7E1-0607E6CAEFCA}\InprocServer32 -> C:\Program Files\Mozilla Firefox\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel)
CustomCLSID: HKU\S-1-5-21-878381589-1358594340-2859947446-1001_Classes\CLSID\{635EFA6F-08D6-4EC9-BD14-8A0FDE975159}\localserver32 -> C:\Users\dberg\AppData\Local\Maxthon\Application\6.2.0.2100\notification_helper.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2021-03-03] (Tonec Inc. -> Tonec FZE)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [File not signed]
ContextMenuHandlers1: [PicosmosShell] -> {A3888921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\PicosmosTools\ShellEx_102.dll [2020-02-18] (Free Time) [File not signed]
ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2022-04-19] (Free Time) [File not signed]
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.151.0717.0001\FileSyncShell64.dll [2022-08-14] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_cb26b5a9a532190f\nvshext.dll [2022-10-27] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-09-30] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-06-15] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2017-06-11] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FICV] => C:\windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\dberg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikácie Maxthon\Reddit.lnk -> C:\Users\dberg\AppData\Local\Maxthon\Application\chrome_proxy.exe (Maxthon Ltd.) -> --profile-directory=Default --app-id=lgnggepjiihbfdbedefdhcffnmhcahbm
==================== Loaded Modules (Whitelisted) =============
2018-05-21 10:16 - 2017-05-02 16:06 - 000123904 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJPLM\CNMPU.DLL
2018-05-21 10:22 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2022-04-19 12:20 - 2022-04-19 12:20 - 000344064 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll
2020-02-18 16:23 - 2020-02-18 16:23 - 000354304 _____ (Free Time) [File not signed] C:\Program Files\PicosmosTools\ShellEx_102.dll
2022-07-27 01:15 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2022-04-21 05:57 - 2022-04-21 13:10 - 042859520 _____ (Intel Corporation) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.dll
2022-05-05 17:44 - 2022-05-05 17:44 - 002122240 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKLM -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-878381589-1358594340-2859947446-1001 -> {FBF5F865-E637-420A-9FDB-B485980F8848} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2021-11-09] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2021-11-09] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-07-02] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\localhost -> localhost
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2019-01-09 16:57 - 000000834 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Control Panel\Desktop\\Wallpaper -> G:\Saved Pictures\IMG_3297_UPweb-X3.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "WD Quick View"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\StartupFolder: => "Odoslanie do aplikácie OneNote.lnk"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "WallpaperEngine"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Picosmos"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "XperiaCompanionAgent"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "CanonImageDisplay"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "ut"
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\...\StartupApproved\Run: => "Web Companion"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{136AFF68-6B83-46A7-A9BF-577877491F23}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{18262E8D-24AE-448F-9EA2-FEAEA02074EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{5EC45D6B-E744-493D-B5D5-972B24894D0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{B2C97696-2806-4694-8996-17CE8D68AAE6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{31D283A9-768F-44DB-AAAB-067B1C96E4CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{4E95B31C-E251-46CC-9AB8-FF67DEBF491B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BD73D76C-9FA0-40FF-8791-E5AA4AB410CB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{591E6DBC-8FB2-46EB-8CB0-33E4BCB4DA28}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{78545788-9E90-4715-AF96-5DC857BD210B}] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{ADFAF58D-B072-4F71-A71D-29D749B2476D}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{EA885E4B-88BD-4E4B-AE68-4F28AAE6B2E5}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{313FDF59-4C84-4EDB-B63F-CBB9FAA51161}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{02DDDEF2-975E-4D61-B140-649B600E4244}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F52C05BD-04E5-4CE8-9A8A-A71712437C5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{577FC8DA-5489-4F0F-B626-05754C277288}] => (Allow) C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{A9EEB4C9-FB54-4A51-84BB-B88E0F0D2184}] => (Allow) C:\Users\dberg\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{5FDB168D-F336-403E-AC70-9E6674E85CFC}C:\program files (x86)\internet download manager\idman.exe] => (Allow) C:\program files (x86)\internet download manager\idman.exe (Tonec Inc. -> Tonec Inc.)
FirewallRules: [TCP Query User{497BA90A-7B32-4AB6-B8B3-348C8AC0248F}C:\program files (x86)\internet download manager\idman.exe] => (Allow) C:\program files (x86)\internet download manager\idman.exe (Tonec Inc. -> Tonec Inc.)
FirewallRules: [{C57ACEF1-4056-4E28-8E9A-67EF69A9A9E3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2D788320-64CA-4DF4-853F-506796E7BCC9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{392D6217-7668-4529-8734-373D11CA5BDA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D032D88E-760B-40D3-8C5B-2E99BC8990A7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DA63C63F-7437-4E09-95D6-C9B79E563128}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{8BD3DF65-C9D3-4FC0-B73A-FF16B872F04D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{160DE882-91A7-4BC3-8AB2-7FB78A8D7CAC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A259B956-2166-4D7C-904D-2C456397506E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A5F14CFE-139A-4493-92F1-F38A62C009C3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9A410666-7493-40E7-BBDA-2B7D24E0B60B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BA84ED75-542A-4838-9372-3A50354F7364}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{014E6CCC-6FA7-4B9A-92FA-C78BE26BB2ED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{B8B680CE-D085-45B2-9CEA-36BB38CEEB7D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Skutta, Kristjan -> )
FirewallRules: [{804EE291-26C4-4069-A8AC-D73AE3857628}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D228760D-DAED-4415-95DF-689124794644}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{622DD10C-3688-4ACA-BDBC-2E9F932A21C5}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) [File not signed]
FirewallRules: [{9BD469E6-DFD2-4ECA-BF89-EC694A688789}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{C16D145A-4A78-43B0-A813-81DCDF73EAF8}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{F6B23EAF-D756-4EE8-B94E-A294C320B1E3}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{A861D62E-8D2D-4ACA-A8F8-6212A56EAD01}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{589487CE-DB9B-4719-8FD3-9E5475F8C20E}] => (Allow) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe (GOG Sp. z o.o. -> GOG.com)
FirewallRules: [{ABD0F770-3A49-4A63-BB22-63AF0508EFD6}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CD18BDB2-A8E3-4002-A1DD-AFFAB502745C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2D3DCD76-29CD-40E4-93F4-D199C73A3A15}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D440827B-2E19-4D14-A445-C24073B3BC19}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{982F92D4-A576-4ECC-A453-F14E1D3E8583}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{6F8142FB-ADCD-4EF0-97D5-F1BA1333AAE6}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{BEA962B8-0B00-4C9E-8D3D-171B7698F7D4}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{E53C0790-A480-4A49-B8CE-EC4F0D15C215}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C39F3E30-0951-458F-956A-E93A01DF72EE}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{0A5A678C-35F1-4130-A329-29F59A3044F5}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{85C96591-27C8-4136-9598-FBD31E30FE91}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [TCP Query User{08CF2954-4D43-4567-89DD-9165EF9851A0}D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{BADE0484-5807-4F69-A1CB-25EEC5111B13}D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:\game\gog\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{1469E8C2-AA18-4283-89AB-C33C40DD31CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BB07136D-378B-46D3-A5C1-C1C9769317B6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{9990F2B5-C950-40A0-81F0-6EF80BFCBE4B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{DAAB105C-0892-4CEE-B583-77DF47F5ACD7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{B5DE7194-EA34-455F-9EE8-5F4E0F2BC9BF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{1E3DD1E0-021C-4725-B5D4-E63849922A1E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{61AEF2AF-C8FC-44D3-A5B7-193A102C649F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{6E4C9FA5-F09F-4427-A676-FFB8514FE8B5}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{1114E133-CE91-4BB9-823F-19529F41A2DF}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{43B560C8-1858-455A-956F-A48676B5116A}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\FarCry5.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{37FE5898-DE94-46A5-9A22-5D200B157F9D}] => (Allow) D:\Game\Ubi\Far Cry 5\bin\ArcadeEditor64.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{C4F84520-2CA0-42A2-A363-064F139FF392}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\City Car Driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [{DB9AC62D-7CF5-40C7-AEDD-5B51CE144269}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\City Car Driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [{F0FC0F01-9ABA-4AC7-AE23-B35F9310150B}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{42BE969B-A6BA-4A54-B1E4-2895477E9FC4}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{1C59CEA0-37F0-4C2B-B541-D7ED732DFC20}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{032CB92C-770C-4476-91DF-CCC7A5FCCDC2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{47D4559E-B2D5-4A88-BF48-64EF37EF3C9D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF24BD59-3152-4780-98E9-1077DB12CE38}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0DCF976F-63BF-47E2-AE8A-2B947FD00A89}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{93B80F29-6F15-49CC-BF88-81BC5867865B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{EE270903-10B1-4245-9507-C2980A56CEF8}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{C17A47F2-CE0F-4F5B-AFCF-C3DD5E28CEDC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D7E7A751-65B5-467E-9418-FAEECB8AF321}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{70FEBB05-EA1E-4D44-9462-FF57AA2DCC3D}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7D9F185C-51D0-4DF3-AAA8-93F0DDEF64FA}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{219B7CDA-C253-4A3C-B194-83B8E64AA61B}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FB5A332D-5B35-4963-8E22-6EB83FC1E1A3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6CC54449-8D93-4096-A237-7A4334B703A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5BC23745-B13E-46BA-A802-78D38A9618D4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5B7807FE-C0BA-49B3-A4AA-9E86AABB33CD}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{FDBF8931-BD6B-4F98-864A-CFB415FB7732}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{00E0059B-B19C-4389-96A1-F4D0C2AA4972}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{119C7EF6-875F-4264-95DD-5F65935364B7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{763E028C-3346-475B-AAF6-C92BBE5CAA39}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{409E87A2-6EF9-4C3F-A06E-28E90A8E179F}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{A821D7D4-FC7F-408D-A9CF-D160CAF5B4DC}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{B3CBAABA-086F-41C8-AF28-1AF382C2EC89}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{C376AABE-749E-4381-8AD1-F2E0D37F3E10}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel Corporation -> )
FirewallRules: [{5B829C24-5F66-47A4-9048-A74AD04F2ED1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{9637360A-B316-4FF5-8E4D-7769306904D9}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{DF83BDE4-CE3D-4A82-A2C6-939C06E34066}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{3B75C57C-215E-4F1C-BB0E-7EACE9C9C5BA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{1B9FD445-26E1-48E6-A909-2F7143E79763}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{259A89AA-E413-468C-B322-82885EF88739}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{5D8DACA6-4015-4046-A8E7-5CB938F2A8DB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{70AA4705-D3BE-4D55-81D9-B57DAEBCD6E3}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{7C4D6B5B-4982-43B4-982D-28A20DBD6AFE}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{662D55C9-AD3E-4BC8-97B5-35E3BA63C724}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{06D691E1-5FD4-423D-8BFD-97B70E77BFC2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{08B978B1-5016-495F-ABA2-191CF1AA714C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Software Technology Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{E0B123AE-7C4C-4740-A7FA-797F92578556}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{A3890611-B34F-4121-B503-12ED49EE2AA4}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{6B62799D-11B4-4E8E-BE4F-617D5D72D99E}] => (Allow) C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
FirewallRules: [{44F07E03-8CE6-4C6B-9D5D-3C2CAA08A32F}] => (Allow) C:\Users\dberg\AppData\Local\Maxthon\Application\Maxthon.exe (Maxthon Technology Co, Ltd. -> Maxthon Ltd.)
FirewallRules: [{0914DFAB-2BDE-427F-B195-3E773DB206E1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{CC40ADA7-3808-44E3-8809-8BA3582925BB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B4B005BF-9385-4FD9-8A02-EBCFACE1B292}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{A0844F3E-2D51-4991-92D8-FA2A7B6DED86}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{AC93FF2B-6FE1-4AC4-A55B-7F09AF12DDB9}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\107.0.1418.24\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1B8E1DF9-A755-4849-A00E-AAFE9AE3116F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BC613893-283C-42B4-ABF1-10FC02D667D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{79787E72-818E-422B-9D46-E21BE06A6023}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9C7904FB-FE66-46A9-B967-A371921E53D2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{27DDEC70-5F10-4632-A13D-88852B0B326A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3BFB814C-46D8-4236-AC3E-A6A64E5DA560}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6235075F-EB9B-40AE-BBA1-E98B14A04B03}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8AFCDC71-D2CA-4BE7-8BDF-821EDD7F5F06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.197.962.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
Name: Microsoft Bluetooth Avrcp Transport Driver
Description: Microsoft Bluetooth Avrcp Transport Driver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: Microsoft_Bluetooth_AvrcpTransport
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Periférne zariadenie Bluetooth
Description: Periférne zariadenie Bluetooth
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Microsoft Bluetooth Avrcp Transport Driver
Description: Microsoft Bluetooth Avrcp Transport Driver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service: Microsoft_Bluetooth_AvrcpTransport
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
Name: Periférne zariadenie Bluetooth
Description: Periférne zariadenie Bluetooth
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2022 10:27:58 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: LAPTOP-O3EIVOGP)
Description: Unable to open the Server service performance object. The first four bytes (DWORD) of the Data section contains the status code.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe, PID: 3984, ProfSvc PID: 1884.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe, PID: 3984, ProfSvc PID: 1884.
Error: (10/28/2022 10:03:49 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: User hive is loaded by another process (Registry Lock) Process name: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe, PID: 5220, ProfSvc PID: 1884.
Error: (10/28/2022 09:57:42 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 324c
Start Time: 01d8eaa2e481d4c0
Termination Time: 19
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 014f0db2-28d5-472d-bc76-7c8395843928
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 09:56:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: 20f8
Start Time: 01d8eaa2b732df15
Termination Time: 25
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 491ca456-b2a7-4381-b267-8a81fbffefe9
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 09:55:50 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program FRST64.exe version 27.10.2022.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
Process ID: f38
Start Time: 01d8eaa264607e31
Termination Time: 22
Application Path: C:\Users\dberg\OneDrive\Desktop\FRST64.exe
Report Id: 18a06026-ed8e-4ad5-8a5b-3907d9a6bc1f
Faulting package full name:
Faulting package-relative application ID:
Hang type: Unknown
Error: (10/28/2022 07:50:27 AM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.IO.IOException: The process cannot access the file 'C:\Windows\Temp\signtool.exe' because it is being used by another process.
at System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
at System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
at System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
at System.IO.FileStream..ctor(String path, FileMode mode)
at _HPCommRecovery.Tools.Signtool.ExtractSignTool()
at _HPCommRecovery.Tools.Signtool.Verify(String arg)
at _HPCommRecovery.HPAHAgent.CallAgent()
at _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
at _HPCommRecovery.HPAHLogger.NewSession()
at _HPCommRecovery.....
System errors:
=============
Error: (10/28/2022 10:28:43 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Energy Server Service queencreek sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.
Error: (10/28/2022 10:17:55 AM) (Source: Service Control Manager) (EventID: 7046) (User: )
Description: Nasledujúca služba sa opakovane zastavila pri reakcii na požiadavky riadenia služieb: Windows Search
Informujte sa u dodávateľa služby alebo správcu systému, kde možno túto službu vypnúť, kým sa nezistí problém.
Pred vypnutím služby možno budete musieť reštartovať počítač v bezpečnom režime.
Error: (10/28/2022 10:17:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:16:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:16:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:15:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:15:25 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
Error: (10/28/2022 10:14:55 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Počas čakania na odpoveď transakcie od služby WSearch bol dosiahnutý časový limit (30000 ms).
CodeIntegrity:
===============
Date: 2022-10-28 10:28:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2022-10-28 10:27:51
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2022-10-28 10:23:00
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2209.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_51f685305808e3a5\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: Insyde F.16 06/22/2018
Motherboard: HP 8368
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 55%
Total physical RAM: 8077.22 MB
Available physical RAM: 3561.17 MB
Total Virtual: 16269.22 MB
Available Virtual: 11431.51 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:236.68 GB) (Free:65.54 GB) (Model: RTIMF256VGM2MBDH) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:190.02 GB) (Model: WDC WD10JFCX-68N6GN0) NTFS
Drive f: (Elements) (Fixed) (Total:2794.49 GB) (Free:1049.49 GB) (Model: WD Elements 25A1 USB Device) NTFS
\\?\Volume{45493c86-b09c-44cc-bf04-ccda2db9fa25}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS
\\?\Volume{30a7055a-bacd-4916-8aa8-e4c49a2b3ad1}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.49 GB) NTFS
\\?\Volume{089a7fc9-3dd0-4158-8004-323fbb8d640d}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 2 (Size: 2794.5 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB
Děkuji. Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\dberg\OneDrive\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
FirewallRules: [{D440827B-2E19-4D14-A445-C24073B3BC19}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{E53C0790-A480-4A49-B8CE-EC4F0D15C215}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C39F3E30-0951-458F-956A-E93A01DF72EE}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{0A5A678C-35F1-4130-A329-29F59A3044F5}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{85C96591-27C8-4136-9598-FBD31E30FE91}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {075BF93B-5600-44A9-90D6-68B6ADE20AEE} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {2136474B-99A2-4C26-838B-D0E34203C5A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {A2E68EB0-B0A1-4380-BFDE-0D8192380DB0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {E261075F-1970-41B1-85D0-62659DAA9CF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {E904DDD4-D3F1-4806-83B2-4D4D641017BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
C:\DumpStack.log.tmp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-10-2022
Ran by dberg (30-10-2022 18:16:40) Run:1
Running from C:\Users\dberg\OneDrive\Desktop
Loaded Profiles: dberg
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
FirewallRules: [{D440827B-2E19-4D14-A445-C24073B3BC19}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{E53C0790-A480-4A49-B8CE-EC4F0D15C215}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C39F3E30-0951-458F-956A-E93A01DF72EE}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{0A5A678C-35F1-4130-A329-29F59A3044F5}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{85C96591-27C8-4136-9598-FBD31E30FE91}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {075BF93B-5600-44A9-90D6-68B6ADE20AEE} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {2136474B-99A2-4C26-838B-D0E34203C5A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {A2E68EB0-B0A1-4380-BFDE-0D8192380DB0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {E261075F-1970-41B1-85D0-62659DAA9CF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {E904DDD4-D3F1-4806-83B2-4D4D641017BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL" => removed successfully
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D440827B-2E19-4D14-A445-C24073B3BC19}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E53C0790-A480-4A49-B8CE-EC4F0D15C215}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C39F3E30-0951-458F-956A-E93A01DF72EE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0A5A678C-35F1-4130-A329-29F59A3044F5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{85C96591-27C8-4136-9598-FBD31E30FE91}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe" => removed successfully
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION => restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{075BF93B-5600-44A9-90D6-68B6ADE20AEE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{075BF93B-5600-44A9-90D6-68B6ADE20AEE}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2136474B-99A2-4C26-838B-D0E34203C5A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2136474B-99A2-4C26-838B-D0E34203C5A1}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\Product Configurator" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2E68EB0-B0A1-4380-BFDE-0D8192380DB0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2E68EB0-B0A1-4380-BFDE-0D8192380DB0}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\PC Health Analysis" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E261075F-1970-41B1-85D0-62659DAA9CF0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E261075F-1970-41B1-85D0-62659DAA9CF0}" => removed successfully
C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E904DDD4-D3F1-4806-83B2-4D4D641017BB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E904DDD4-D3F1-4806-83B2-4D4D641017BB}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 2097152 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 54923414 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 361590111 B
Windows/system/drivers => 3852983 B
Edge => 0 B
Firefox => 71001212 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 81651 B
LocalService => 99187 B
NetworkService => 104313 B
dberg => 35554316 B
RecycleBin => 11393442556 B
EmptyTemp: => 11.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-10-2022 18:26:38)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 18:26:38 ====
Ran by dberg (30-10-2022 18:16:40) Run:1
Running from C:\Users\dberg\OneDrive\Desktop
Loaded Profiles: dberg
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
FirewallRules: [{D440827B-2E19-4D14-A445-C24073B3BC19}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}] => (Allow) D:2\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{E53C0790-A480-4A49-B8CE-EC4F0D15C215}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}] => (Allow) D:4\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{C39F3E30-0951-458F-956A-E93A01DF72EE}] => (Allow) D:0\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [{0A5A678C-35F1-4130-A329-29F59A3044F5}] => (Allow) D:7\Game\Uplay\Assassin's Creed\Hry\Assassin's Creed Unity\ACU.exe => No File
FirewallRules: [TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe] => (Allow) D:9\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe] => (Allow) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{85C96591-27C8-4136-9598-FBD31E30FE91}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}] => (Block) H:\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe] => (Allow) D:5\hry\rockstar\gta5\gta5.exe => No File
FirewallRules: [TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
FirewallRules: [UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Allow) D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe => No File
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {075BF93B-5600-44A9-90D6-68B6ADE20AEE} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA (No File)
Task: {2136474B-99A2-4C26-838B-D0E34203C5A1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport (No File)
Task: {A2E68EB0-B0A1-4380-BFDE-0D8192380DB0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis (No File)
Task: {E261075F-1970-41B1-85D0-62659DAA9CF0} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {E904DDD4-D3F1-4806-83B2-4D4D641017BB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart (No File)
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL" => removed successfully
HKU\S-1-5-21-878381589-1358594340-2859947446-1001\Software\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D440827B-2E19-4D14-A445-C24073B3BC19}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8B97BF4-A662-4BAF-AEE2-75EFB9AB360F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E53C0790-A480-4A49-B8CE-EC4F0D15C215}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9AC57B93-E0B6-4A80-905E-7DDDA1DDCA0F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21BB61DE-D7D0-40E7-8116-FF29B85B7F68}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C39F3E30-0951-458F-956A-E93A01DF72EE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6B49C6D9-C3FE-4DE2-BB9F-6FFF86474B7E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0A5A678C-35F1-4130-A329-29F59A3044F5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6985CC34-3D89-4848-8DF3-7AE3D20A2D91}D:9\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA77FDA4-CDAA-4833-BC2A-1BB0737418A4}D:9\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4F0DCCCA-B4FC-4B0B-B0D4-12C549E794A8}H:\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{49894A4A-D788-47A4-90F9-AA23D79B2BCB}H:\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{85C96591-27C8-4136-9598-FBD31E30FE91}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{57FFDF58-9A7C-4956-8EB9-8AB0080E78FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{185628F8-85F0-4AB1-88A3-E780CA98762B}D:5\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{13095539-C229-400A-A72C-9F99A201D1AC}D:5\hry\rockstar\gta5\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CD6B6855-BB12-444E-9AF4-6053E2AAAC9D}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3383756F-6A61-450E-AE02-03F6ABB77788}D:6\hry\gog\kingdom come deliverance\bin\win64\kingdomcome.exe" => removed successfully
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <==== ATTENTION => restored successfully
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <==== ATTENTION => restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{075BF93B-5600-44A9-90D6-68B6ADE20AEE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{075BF93B-5600-44A9-90D6-68B6ADE20AEE}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2136474B-99A2-4C26-838B-D0E34203C5A1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2136474B-99A2-4C26-838B-D0E34203C5A1}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\Product Configurator" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A2E68EB0-B0A1-4380-BFDE-0D8192380DB0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A2E68EB0-B0A1-4380-BFDE-0D8192380DB0}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\PC Health Analysis" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E261075F-1970-41B1-85D0-62659DAA9CF0}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E261075F-1970-41B1-85D0-62659DAA9CF0}" => removed successfully
C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E904DDD4-D3F1-4806-83B2-4D4D641017BB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E904DDD4-D3F1-4806-83B2-4D4D641017BB}" => removed successfully
C:\WINDOWS\System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 2097152 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 54923414 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 361590111 B
Windows/system/drivers => 3852983 B
Edge => 0 B
Firefox => 71001212 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 6656 B
systemprofile32 => 81651 B
LocalService => 99187 B
NetworkService => 104313 B
dberg => 35554316 B
RecycleBin => 11393442556 B
EmptyTemp: => 11.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 30-10-2022 18:26:38)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 18:26:38 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB
Smazáno. Zrychlil se chod?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý NTB
Už je to lepšie. Díky za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý NTB
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?