Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu, občas zamrzá při čtení z disku.

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
bilejpes
Návštěvník
Návštěvník
Příspěvky: 104
Registrován: 24 úno 2011 17:50

Prosím o kontrolu, občas zamrzá při čtení z disku.

#1 Příspěvek od bilejpes »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2023
Ran by dvacl (administrator) on RUDOLF (MSI MS-7758) (08-06-2023 00:46:35)
Running from C:\Users\dvacl\Desktop\FRST64.exe
Loaded Profiles: dvacl
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3031 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(0) [File not signed] C:\Program Files\SPC_Gear\GK550.exe
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe ->) (remotemouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
(C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe ->) (RemoteMouse.net) [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <9>
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0392410.inf_amd64_db8e7eec2f31b31d\B392251\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0392410.inf_amd64_db8e7eec2f31b31d\B392251\atieclxx.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\75.0.3.0\crashpad_handler.exe
(explorer.exe ->) (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.) C:\Program Files\Pentablet\PenTablet.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <16>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) () [File not signed] C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Elements 2023 Organizer\Adobe Elements 2023 Update Service.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0392410.inf_amd64_db8e7eec2f31b31d\B392251\atiesrxx.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PenTablet] => C:\Program Files\Pentablet\PenTablet.exe [870136 2021-10-28] (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.)
HKLM\...\Run: [AdobePSE21AutoAnalyzer] => C:\Program Files\Adobe\Elements 2023 Organizer\Elements Auto Creations 2023.exe [3069456 2023-03-29] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Launch 0 FwCustom] => C:\Program Files\SPC_Gear\GK550.exe [3572224 2018-11-30] (0) [File not signed]
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\75.0.3.0\GoogleDriveFS.exe [53970712 2023-06-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642832 2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\75.0.3.0\GoogleDriveFS.exe [53970712 2023-06-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2642832 2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-05-25] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Run: [MicrosoftEdgeAutoLaunch_DD7281EFDCD22F0502B4473C5E1909BC] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4113856 2023-06-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\75.0.3.0\GoogleDriveFS.exe [53970712 2023-06-01] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38274576 2022-08-27] (Piriform Software Ltd -> Piriform Software Ltd) [File not signed]
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Run: [Gaijin.Net Updater] => C:\Users\dvacl\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3036096 2022-10-20] (Gaijin Network LTD -> Gaijin)
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-06-07] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37132752 2023-05-18] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\75.0.3.0\GoogleDriveFS.exe [53970712 2023-06-01] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\stkMonitor: C:\WINDOWS\system32\stkMonitor.dll [65680 2022-11-29] (Amazon.com Services LLC -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\114.0.5735.110\Installer\chrmstp.exe [2023-06-06] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {22B8EBDB-ED10-4B01-BA17-94EF44AAA3C1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-87297680-2717088268-3221549041-1005 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4172168 2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {2FA666CB-A8A6-4311-B377-B2F2D44B4974} - System32\Tasks\GoogleUpdateTaskMachineCore{D0CEB5C9-71B1-4BC2-A638-9334B6878FC3} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-15] (Google LLC -> Google LLC)
Task: {3710A6CE-9B57-4B91-A22B-F8A3431F7F57} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {3E30E0A9-E6A5-4760-B32C-5C5847BD3DD3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-08-12] (Piriform Software Ltd -> Piriform)
Task: {57E14E79-B8F8-4956-A745-AD4D31012EDD} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {7B4EC20C-D70B-45DB-B500-FB6FE6E86794} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [59832 2023-05-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {8A0AAF48-2927-45EE-A980-BF267E4A5E1F} - System32\Tasks\MXWTPTTTYKDUYVXJ_run => C:\Users\dvacl\AppData\Roaming\CyberLink\MediaCache\MXWTPTTTYKDUYVXJ.exe (No File)
Task: {99678388-5B32-4116-AB37-DD921B871E4D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4172168 2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {9EB1120D-61DE-4B67-8C59-8EFBAC2E1FFD} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-87297680-2717088268-3221549041-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4172168 2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {A780E263-A6A2-4CB1-968A-33634972AC1A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A7ED06A6-2C6E-42C5-A2B9-E41135C3B510} - System32\Tasks\CCleanerSkipUAC - dvacl => C:\Program Files\CCleaner\CCleaner.exe [31990800 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A9DAEC88-FA8F-444A-AF51-AD8F3CD3B44B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AD5A67E6-3E08-4BDC-B16E-578A9FF33933} - System32\Tasks\GoogleUpdateTaskMachineUA{AC94A173-F393-4099-B9E0-4DEEB900D61B} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-06-15] (Google LLC -> Google LLC)
Task: {AE20C738-AB0B-43F6-865C-63573B26CE01} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (No File)
Task: {CBC103F4-C4F8-4F65-B331-10917DCCFFCF} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {D684C1C7-0B5C-4847-81E3-BACAACFD4C8E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DBB0E438-1834-4FE8-8ADE-38F020839944} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MpCmdRun.exe [1649976 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E6D33225-75ED-4289-8B29-545D64162CB2} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2023-05-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{b3e1bc0f-bea6-4274-929d-a19c14f68c18}: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{bef09cf7-70f0-4e9f-b189-f83e44c0c1eb}: [DhcpNameServer] 10.0.1.138

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default [2023-06-08]
Edge DownloadDir: Default -> H:\Download
Edge Notifications: Default -> hxxps://www.facebook.com
Edge HomePage: Default -> hxxp://www.centrum.cz/#utm_source=icq&utm_medium=centrum
Edge StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.google.cz/ ... oogle.com/"
Edge Extension: (Authenticator) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2023-05-11]
Edge Extension: (Video Player) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bobjnignhcpkfnjcgegmdjijonimcmke [2022-08-25]
Edge Extension: (Send to Kindle for Google Chrome™) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cgdjpilhipecahhcilnafpblkieebhea [2023-01-30]
Edge Extension: (Ruffle) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\donbcfbmhbcapadipfkeojnmajbakjdc [2023-06-07]
Edge Extension: (Dokumenty Google offline) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-24]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2023-04-25]
Edge Extension: (GAuth Authenticator) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ilgcnhelpchnceeipipijaljkblbcobl [2022-06-18]
Edge Extension: (Edge relevant text changes) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-04-25]
Edge Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2023-06-01]
Edge Profile: C:\Users\dvacl\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2023-01-12]

Chrome:
=======
CHR DefaultProfile: Profile 2
CHR Profile: C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Default [2023-06-04]
CHR HomePage: Default -> hxxp://www.centrum.cz/#utm_source=icq&utm_medium=centrum
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.google.cz/ ... google.com"
CHR Extension: (Send to Kindle for Google Chrome™) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgdjpilhipecahhcilnafpblkieebhea [2023-02-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-03]
CHR Extension: (Chrome Remote Desktop) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2022-12-09]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-02-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-06-20]
CHR Profile: C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-06-04]
CHR Profile: C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Profile 2 [2023-06-04]
CHR DownloadDir: H:\Download
CHR Extension: (Dokumenty Google offline) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-06-04]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-04-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-04-26]
CHR Profile: C:\Users\dvacl\AppData\Local\Google\Chrome\User Data\System Profile [2023-06-04]
CHR HKU\S-1-5-21-87297680-2717088268-3221549041-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

Opera:
=======
OPR Profile: C:\Users\dvacl\AppData\Roaming\Opera Software\Opera Stable [2023-06-04]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\dvacl\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-11-17]
OPR Extension: (Opera Wallet) - C:\Users\dvacl\AppData\Roaming\Opera Software\Opera Stable\Extensions\gojhcdgcpbpfigcaejpfhfegekdgiblk [2022-11-17]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\dvacl\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-08-27]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Adobe Elements 2023 Update Service; C:\Program Files\Adobe\Elements 2023 Organizer\Adobe Elements 2023 Update Service.exe [374296 2023-03-29] (Adobe Inc. -> Adobe Systems Incorporated)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082896 2022-08-12] (Piriform Software Ltd -> Piriform Software Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-03-17] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
S4 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncHelper.exe [3389832 2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10195200 2023-05-25] (Logitech Inc -> Logitech, Inc.)
S4 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.161.0731.0002\OneDriveUpdaterService.exe [3830152 2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
R2 RemoteMouseService; C:\Program Files (x86)\Remote Mouse\RemoteMouseService.exe [11264 2023-03-21] () [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [336208 2023-05-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\NisSrv.exe [3228464 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe [133592 2023-06-01] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25560 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [63392 2020-06-16] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0392410.inf_amd64_db8e7eec2f31b31d\B392251\amdkmdag.sys [100296080 2023-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 CLFCL5.20; C:\WINDOWS\System32\drivers\CLFCL5.20\000.fcl [46952 2021-03-24] (CyberLink Corp. -> CyberLink Corp.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 googledrivefs31092; C:\WINDOWS\System32\DRIVERS\googledrivefs31092.sys [384600 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 hanvonugeemfilter; C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys [9728 2021-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 HWHandSet; C:\WINDOWS\System32\drivers\hw_quusbmdm.sys [226560 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hwusb_cdcacm; C:\WINDOWS\System32\drivers\hw_cdcacm.sys [127360 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hw_usbdev; C:\WINDOWS\System32\drivers\hw_usbdev.sys [116864 2021-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [79624 2022-02-25] (Intel Corporation -> Intel Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-24] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-24] (Logitech Inc -> Logitech)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\ControlCenter\Sleep\NTIOLib_X64.sys [13368 2012-11-09] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-10-08] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49616 2023-06-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498984 2023-06-01] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-06-01] (Microsoft Windows -> Microsoft Corporation)
R3 XPPenTablet; C:\WINDOWS\System32\drivers\XPPenTablet.sys [10752 2021-10-07] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 MpKsl7aa0c8f8; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A23945F4-8426-46E9-AB92-F41A02981471}\MpKslDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-08 00:46 - 2023-06-08 00:47 - 000024606 _____ C:\Users\dvacl\Desktop\FRST.txt
2023-06-08 00:45 - 2023-06-08 00:45 - 002383360 _____ (Farbar) C:\Users\dvacl\Desktop\FRST64.exe
2023-06-07 20:48 - 2023-06-08 00:25 - 000000000 ___RD C:\Users\dvacl\Desktop\100CANON
2023-06-06 20:59 - 2023-06-06 21:00 - 000000000 ____D C:\WINDOWS\Minidump
2023-06-06 20:59 - 2023-06-06 20:59 - 001895084 _____ C:\WINDOWS\Minidump\060623-27171-01.dmp
2023-06-04 23:58 - 2023-06-04 23:58 - 000000000 ____D C:\Users\dvacl\OneDrive\Dokumenty\4a games
2023-06-04 23:58 - 2023-06-04 23:58 - 000000000 ____D C:\Users\dvacl\AppData\Local\4A Games
2023-06-04 14:12 - 2023-06-07 17:58 - 000003100 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-06-04 13:56 - 2023-06-07 17:58 - 000003092 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2023-06-04 13:56 - 2023-06-04 13:56 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2023-06-04 13:56 - 2023-06-04 13:56 - 000000000 ____D C:\Users\dvacl\AppData\LocalLow\AMD
2023-06-04 13:56 - 2023-06-04 13:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2023-06-04 13:55 - 2023-06-04 13:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2023-06-04 13:49 - 2023-06-04 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Photo AI
2023-06-04 13:48 - 2023-05-31 21:36 - 002185152 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-06-04 13:48 - 2023-05-31 21:36 - 002185152 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-06-04 13:48 - 2023-05-31 21:35 - 001619392 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-06-04 13:48 - 2023-05-31 21:35 - 001619392 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-06-04 13:48 - 2023-05-31 21:35 - 001500328 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 001500328 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 001231488 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 001231488 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000791488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000721304 _____ C:\WINDOWS\system32\hiprt0200064.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000668608 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000596368 _____ C:\WINDOWS\system32\GameManager64.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000538048 _____ C:\WINDOWS\system32\libsmi_guest.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000532368 _____ C:\WINDOWS\system32\dgtrayicon.exe
2023-06-04 13:48 - 2023-05-31 21:35 - 000531352 _____ C:\WINDOWS\system32\libsmi_host.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000492432 _____ C:\WINDOWS\system32\EEURestart.exe
2023-06-04 13:48 - 2023-05-31 21:35 - 000351120 _____ C:\WINDOWS\system32\clinfo.exe
2023-06-04 13:48 - 2023-05-31 21:35 - 000196496 _____ C:\WINDOWS\system32\mantle64.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000176016 _____ C:\WINDOWS\system32\mantleaxl64.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000173968 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000153488 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000137616 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000137112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000041408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2023-06-04 13:48 - 2023-05-31 21:35 - 000038288 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 100644800 _____ C:\WINDOWS\system32\amd_comgr.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 084656576 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 001537984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 001537984 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000938384 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2023-06-04 13:48 - 2023-05-31 21:34 - 000525712 _____ C:\WINDOWS\system32\atieah64.exe
2023-06-04 13:48 - 2023-05-31 21:34 - 000514496 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000463296 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000394688 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2023-06-04 13:48 - 2023-05-31 21:34 - 000379840 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000256400 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000216976 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000200432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000186256 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000163328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000128448 _____ C:\WINDOWS\system32\amdxc64.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000103872 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2023-06-04 13:48 - 2023-05-31 21:34 - 000064960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 016164752 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 007190496 _____ C:\WINDOWS\system32\amdsmi.exe
2023-06-04 13:48 - 2023-05-31 21:33 - 002257344 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 001310656 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 001039256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 000933264 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 000761232 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 000558480 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 000461248 _____ C:\WINDOWS\system32\amdlogum.exe
2023-06-04 13:48 - 2023-05-31 21:33 - 000422288 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 000177712 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 000155936 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2023-06-04 13:48 - 2023-05-31 21:33 - 000125704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 004354496 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 004160400 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 001701008 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 001378312 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 000553256 _____ C:\WINDOWS\system32\amdmiracast.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 000165832 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 000155984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 000145520 _____ C:\WINDOWS\system32\atidxx64.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 000140264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 000125744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2023-06-04 13:48 - 2023-05-31 21:32 - 000118968 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2023-06-04 13:48 - 2023-05-31 16:42 - 095242336 _____ C:\WINDOWS\system32\amdxc64.so
2023-05-26 05:29 - 2023-05-26 05:29 - 000000000 ___HD C:\$WinREAgent
2023-05-25 22:39 - 2023-05-23 19:24 - 031938072 _____ C:\WINDOWS\system32\hiprt02000_amd.hipfb
2023-05-25 22:39 - 2023-05-23 19:24 - 023302232 _____ C:\WINDOWS\system32\hiprt02000_nv.fatbin
2023-05-25 22:39 - 2023-05-23 19:24 - 002433848 _____ C:\WINDOWS\system32\oro_compiled_kernels.hipfb
2023-05-25 22:39 - 2023-05-23 19:24 - 002000584 _____ C:\WINDOWS\system32\oro_compiled_kernels.fatbin
2023-05-25 22:14 - 2023-05-25 22:15 - 000000000 ____D C:\Program Files\LGHUB
2023-05-25 22:14 - 2023-05-25 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-05-23 01:49 - 2023-05-23 01:49 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-05-23 01:49 - 2023-05-23 01:49 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies
2023-05-21 22:13 - 2023-05-21 22:13 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player PRO.lnk
2023-05-21 22:13 - 2023-05-21 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Webteh
2023-05-21 22:12 - 2023-05-24 03:14 - 000000000 ____D C:\Users\dvacl\AppData\Roaming\BSplayer PRO
2023-05-21 22:12 - 2023-05-21 22:12 - 000000000 ____D C:\Program Files (x86)\Webteh
2023-05-21 05:31 - 2023-05-21 05:31 - 000000000 ___HD C:\$WINDOWS.~BT
2023-05-21 01:49 - 2023-05-21 01:49 - 000001113 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe DNG Converter.lnk
2023-05-21 01:42 - 2023-05-21 01:42 - 000000000 ____D C:\Users\dvacl\AppData\Local\HeliconFocus
2023-05-21 01:42 - 2023-05-21 01:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Helicon Software
2023-05-21 01:42 - 2023-05-21 01:42 - 000000000 ____D C:\Program Files\Helicon Software
2023-05-18 04:37 - 2023-05-18 04:37 - 000000000 ____D C:\Users\dvacl\AppData\Local\UnrealEngineLauncher
2023-05-18 04:37 - 2023-05-18 04:37 - 000000000 ____D C:\Users\dvacl\AppData\Local\EpicGamesLauncher
2023-05-18 04:35 - 2023-05-18 04:35 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2023-05-12 03:54 - 2023-05-12 03:54 - 000000000 ____D C:\Users\dvacl\AppData\Roaming\TT Isle of Man Ride on the Edge 3
2023-05-12 03:53 - 2023-05-12 03:53 - 000000000 ____D C:\Users\dvacl\AppData\Local\TT Isle of Man Ride on the Edge 3
2023-05-12 03:51 - 2023-05-12 03:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TT Isle Of Man Ride on the Edge 3
2023-05-11 18:32 - 2023-05-31 21:35 - 000449936 _____ C:\WINDOWS\SysWOW64\GameManager32.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-06-08 00:47 - 2022-12-17 18:59 - 000000000 ____D C:\FRST
2023-06-08 00:45 - 2022-06-15 17:54 - 000000000 ____D C:\Program Files (x86)\Google
2023-06-08 00:37 - 2023-02-18 17:20 - 000000000 ____D C:\Program Files (x86)\Steam
2023-06-07 23:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-06-07 23:39 - 2023-03-29 16:13 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-07 19:48 - 2022-06-15 12:48 - 000000000 ___HD C:\Users\dvacl\AppData\Local\AMD_Common
2023-06-07 18:47 - 2022-07-18 01:04 - 000000000 ___HD C:\Users\dvacl\AppData\Local\CrashDumps
2023-06-07 18:47 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-06-07 18:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-06-07 18:05 - 2023-03-29 16:48 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-06-07 18:05 - 2019-12-07 16:43 - 000716726 _____ C:\WINDOWS\system32\perfh005.dat
2023-06-07 18:05 - 2019-12-07 16:43 - 000144904 _____ C:\WINDOWS\system32\perfc005.dat
2023-06-07 18:05 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-06-07 18:00 - 2022-08-27 03:57 - 000000000 ____D C:\Program Files\CCleaner
2023-06-07 17:58 - 2023-03-29 16:46 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-06-07 17:58 - 2022-06-18 00:56 - 000000000 ___HD C:\Users\dvacl\AppData\Roaming\LGHUB
2023-06-07 17:58 - 2019-12-07 10:32 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-07 17:03 - 2023-03-29 16:03 - 000000000 ____D C:\Users\dvacl
2023-06-07 16:42 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-06-06 16:08 - 2022-12-09 01:27 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-06 08:34 - 2022-06-15 12:25 - 000000000 ___HD C:\Users\dvacl\AppData\Local\LGHUB
2023-06-05 01:47 - 2023-01-04 04:04 - 000000000 ____D C:\Users\dvacl\AppData\Roaming\AIMP
2023-06-04 23:00 - 2022-10-26 21:42 - 000000000 ___HD C:\Users\dvacl\AppData\Local\Webshare
2023-06-04 15:58 - 2023-03-29 16:46 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-06-04 14:43 - 2020-08-28 00:24 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-04 14:19 - 2022-06-15 12:15 - 000000000 ___HD C:\Users\dvacl\AppData\Local\AMD
2023-06-04 14:13 - 2020-06-05 17:40 - 000000000 ____D C:\AMD
2023-06-04 14:12 - 2022-06-15 11:51 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-06-04 14:12 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-06-04 13:56 - 2022-06-15 11:51 - 000000000 ____D C:\Program Files\AMD
2023-06-04 13:55 - 2023-04-27 09:40 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2023-06-04 13:55 - 2023-03-29 16:46 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2023-06-04 12:04 - 2022-06-15 12:15 - 000000000 ___HD C:\Users\dvacl\AppData\Local\D3DSCache
2023-06-04 12:02 - 2022-06-15 12:15 - 000000000 ___HD C:\Users\dvacl\AppData\Local\Packages
2023-06-04 12:02 - 2022-06-15 12:15 - 000000000 ____D C:\ProgramData\Packages
2023-06-01 20:14 - 2022-06-15 17:54 - 000002063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-06-01 10:13 - 2022-06-15 11:57 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-01 10:12 - 2022-09-08 05:11 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-05-31 21:34 - 2023-03-23 00:11 - 002018752 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2023-05-31 21:33 - 2023-03-23 00:11 - 000222032 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2023-05-26 05:46 - 2023-03-29 16:13 - 000258096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-05-26 05:45 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-05-26 05:45 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-05-26 05:37 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-05-26 05:35 - 2023-03-29 16:43 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-05-24 00:37 - 2022-06-15 12:39 - 003032800 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2023-05-22 02:27 - 2022-08-18 02:04 - 000000000 ___HD C:\Users\dvacl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-05-21 05:31 - 2023-03-29 16:45 - 000001908 _____ C:\WINDOWS\diagwrn.xml
2023-05-21 05:31 - 2023-03-29 16:45 - 000001908 _____ C:\WINDOWS\diagerr.xml
2023-05-21 01:47 - 2022-06-15 16:47 - 000000000 ____D C:\Program Files\Adobe
2023-05-21 01:42 - 2023-01-29 05:31 - 000000000 ____D C:\Users\dvacl\AppData\Local\CaptureOne
2023-05-18 23:39 - 2023-04-11 21:06 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{AC94A173-F393-4099-B9E0-4DEEB900D61B}
2023-05-18 23:39 - 2023-04-11 21:06 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{D0CEB5C9-71B1-4BC2-A638-9334B6878FC3}
2023-05-18 04:37 - 2023-01-05 05:02 - 000000000 ____D C:\ProgramData\Epic
2023-05-18 04:37 - 2022-10-29 22:09 - 000000000 ___HD C:\Users\dvacl\AppData\Local\UnrealEngine
2023-05-18 04:36 - 2023-01-05 05:02 - 000000000 ____D C:\Program Files (x86)\Epic Games
2023-05-13 02:36 - 2023-03-29 16:46 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-05-13 02:36 - 2023-03-29 16:46 - 000003546 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d8809d8963615e
2023-05-12 03:53 - 2022-07-07 01:29 - 000000000 ____D C:\Users\dvacl\OneDrive\Dokumenty\My Games
2023-05-10 21:02 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2023-05-10 16:06 - 2022-06-16 21:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-05-10 16:03 - 2022-06-16 21:11 - 159583304 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ========

2023-03-29 21:25 - 2023-03-29 21:25 - 000000058 _____ () C:\Users\dvacl\AppData\Roaming\epm_user.ini
2022-06-24 02:13 - 2022-06-24 02:15 - 000007604 ____H () C:\Users\dvacl\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2023
Ran by dvacl (08-06-2023 00:48:13)
Running from C:\Users\dvacl\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.3031 (X64) (2023-03-29 14:46:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-87297680-2717088268-3221549041-500 - Administrator - Disabled)
adolf (S-1-5-21-87297680-2717088268-3221549041-1005 - Administrator - Enabled)
DefaultAccount (S-1-5-21-87297680-2717088268-3221549041-503 - Limited - Disabled)
dvacl (S-1-5-21-87297680-2717088268-3221549041-1001 - Administrator - Enabled) => C:\Users\dvacl
Guest (S-1-5-21-87297680-2717088268-3221549041-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-87297680-2717088268-3221549041-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Photoshop Elements 2023 (HKLM-x32\...\PSE_21_1) (Version: 21.0 - Adobe Inc.)
Adobe Photoshop Elements Add-on Utilities 2023 (HKLM-x32\...\EPLG_21_1) (Version: 21.0 - Adobe Inc.)
AIMP (HKLM\...\AIMP) (Version: 5.11.2429 - Artem Izmaylov)
Amazon Send to Kindle (HKLM-x32\...\SendToKindle) (Version: 1.1.0.254 - Amazon)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.5.2 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{2A677A6A-43E8-4FE3-A273-07B0E27DADAE}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.78.1094 - AB Team, d.o.o.)
calibre 64bit (HKLM\...\{D4FEC296-DE73-48EF-9A9D-690884FB897A}) (Version: 6.15.1 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 6.03 - Piriform)
Epic Games Launcher (HKLM-x32\...\{37D87A98-763A-44A7-AD9E-8D661616A2C4}) (Version: 1.3.78.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 75.0.3.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.110 - Google LLC)
Helicon Focus 8.2.2.0 (HKLM\...\Helicon Focus 8_is1) (Version: - Helicon Soft Ltd.)
KMPlayer 64X (remove only) (HKLM\...\KMPlayer 64X) (Version: 2023.5.30.17 - PandoraTV)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.4.407679 - Logitech)
Microsoft .NET Host - 6.0.5 (x64) (HKLM\...\{F3B3A61B-DC16-429A-A260-DBAFE66741A9}) (Version: 48.23.40665 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.5 (x64) (HKLM\...\{3E6CCD41-6B96-47BD-8E1E-D7B593CEE976}) (Version: 48.23.40665 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.5 (x64) (HKLM\...\{089A177D-98AE-4195-A115-D3C45613B875}) (Version: 48.23.40665 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.37 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.37 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.161.0731.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.5 (x64) (HKLM\...\{DE578B32-084A-49E7-8E55-6F58A37578C0}) (Version: 48.23.40699 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.5 (x64) (HKLM-x32\...\{0f711ee3-eb88-456d-acb4-c2ee31add211}) (Version: 6.0.5.31215 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
Pentablet verze 3.2.2.211028 (HKLM\...\{5DAB8C1A-6D8E-467D-BE62-AC13087AA950}_is1) (Version: 3.2.2.211028 - XP-PEN Technology)
Remote Mouse version 4.601 (HKLM-x32\...\{01E4BC6D-3ACC-45E1-8928-C2FF626F63F3}_is1) (Version: 4.601 - Remote Mouse)
SPC Gear GK550 Omnis Kailh RGB (HKLM-x32\...\{12F382E1-63D4-4B94-BD32-5F845E74FC79}) (Version: 1.00 - COOLING.PL Zdziech Spolka Jawna)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: 2.53.0 - TechPowerUp)
Topaz Photo AI (HKLM\...\{0598842A-B905-4218-9A53-7B3C2345D7A7}) (Version: 1.3.6 - Topaz Labs LLC)
Topaz Video AI (HKLM\...\{A0C578C6-7CEB-4807-9FA1-9367D2C32ECE}) (Version: 3.1.7 - Topaz Labs LLC)
TT Isle Of Man Ride on the Edge 3 (HKLM-x32\...\TT Isle Of Man Ride on the Edge 3_is1) (Version: - )
Wargaming.net Game Center (HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\Wargaming.net Game Center) (Version: 23.2.1.2705 - Wargaming.net)
Webshare klient (HKLM-x32\...\Webshare klient) (Version: - )
WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\2314027414) (Version: - Wargaming.net)
Youtube Downloader HD v. 5.1 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Zoner Photo Studio X 19.2209.2.437 (HKLM-x32\...\Zoner Photo Studio X_is1) (Version: 19.2209.2.437 - LR)

Packages:
=========
AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.22.40028.0_x64__0a9344xs7nr4m [2023-03-29] (Advanced Micro Devices Inc.)
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.60961.0_x64__8wekyb3d8bbwe [2023-05-11] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.17.945.0_x64__rz1tebttyb220 [2023-05-09] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-03-29] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2023-03-29] (Microsoft Corporation)
Ink Draft -> C:\Program Files\WindowsApps\Microsoft.InkDraft_1.0.1.0_neutral__8wekyb3d8bbwe [2023-03-29] (Microsoft Corporation)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2023-03-29] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-87297680-2717088268-3221549041-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2020}\localserver32 -> C:\Program Files\Adobe\Elements 2023 Organizer\Elements Auto Creations 2023.exe (Adobe Inc. -> Adobe Systems Incorporated)
CustomCLSID: HKU\S-1-5-21-87297680-2717088268-3221549041-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2023}\localserver32 -> C:\Program Files\Adobe\Elements 2023 Organizer\Elements Auto Creations 2023.exe (Adobe Inc. -> Adobe Systems Incorporated)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\75.0.3.0\drivefsext.dll [2023-06-01] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\75.0.3.0\drivefsext.dll [2023-06-01] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\75.0.3.0\drivefsext.dll [2023-06-01] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\75.0.3.0\drivefsext.dll [2023-06-01] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-03-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-03-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-03-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-03-28] (Adobe Inc. -> )
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\75.0.3.0\drivefsext.dll [2023-06-01] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => -> No File
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\75.0.3.0\drivefsext.dll [2023-06-01] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.161.0731.0002\FileSyncShell64.dll [2022-08-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2023-05-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\75.0.3.0\drivefsext.dll [2023-06-01] (Google LLC -> Google, Inc.)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-03-28] (Adobe Inc. -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-07-11 02:36 - 2023-02-04 19:56 - 000073728 _____ () [File not signed] C:\Program Files (x86)\Remote Mouse\windows_api.dll
2023-02-18 17:21 - 2022-11-07 12:17 - 000387072 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2023-02-18 17:21 - 2022-11-07 12:17 - 008052736 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2023-03-22 09:48 - 2023-03-22 09:48 - 000017408 _____ () [File not signed] C:\Program Files\Adobe\Elements 2023 Organizer\AIDWrapper.dll
2023-03-22 09:48 - 2023-03-22 09:48 - 000129024 _____ () [File not signed] C:\Program Files\Adobe\Elements 2023 Organizer\CommConduit.dll
2023-05-25 22:14 - 2023-05-25 13:02 - 000164864 _____ () [File not signed] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2022-11-20 14:37 - 2013-12-01 12:38 - 000036352 _____ (0) [File not signed] C:\Program Files\SPC_Gear\HidServ.dll
2022-07-24 15:21 - 2019-12-30 22:01 - 000036352 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qdds.dll
2022-07-24 15:21 - 2019-12-30 22:00 - 000022016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qgif.dll
2022-07-24 15:21 - 2019-12-30 22:01 - 000029184 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qicns.dll
2022-07-24 15:21 - 2019-12-30 22:00 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qico.dll
2022-07-24 15:21 - 2019-12-30 22:00 - 000206848 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qjpeg.dll
2022-07-24 15:21 - 2019-12-30 22:12 - 000016896 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qsvg.dll
2022-07-24 15:21 - 2019-12-30 22:01 - 000016384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qtga.dll
2022-07-24 15:21 - 2019-12-30 22:02 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qtiff.dll
2022-07-24 15:21 - 2019-12-30 22:02 - 000015360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qwbmp.dll
2022-07-24 15:21 - 2019-12-30 22:03 - 000287232 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\imageformats\qwebp.dll
2022-07-24 15:21 - 2019-12-30 22:00 - 000966144 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\platforms\qwindows.dll
2022-07-24 15:21 - 2019-12-31 13:35 - 004686848 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\Qt5Core.dll
2022-07-24 15:21 - 2019-12-30 21:33 - 005035008 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\Qt5Gui.dll
2022-07-24 15:21 - 2019-12-30 21:24 - 000674816 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\Qt5Network.dll
2022-07-24 15:21 - 2019-12-30 22:12 - 000251392 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\Qt5Svg.dll
2022-07-24 15:21 - 2019-12-30 21:49 - 004518912 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\Qt5Widgets.dll
2022-07-24 15:21 - 2019-12-30 21:24 - 000151040 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\Pentablet\Qt5Xml.dll
2022-07-24 15:21 - 2020-04-13 15:24 - 000146944 _____ (TODO: <公司名>) [File not signed] C:\WINDOWS\system32\wintab32.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-12-16 06:52 - 2023-03-26 10:07 - 000000545 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 easeus.com
127.0.0.1 www.easeus.com
127.0.0.1 activation.easeus.com
127.0.0.1 easeus.com.cn
127.0.0.1 www.easeus.com.cn
127.0.0.1 track.easeus.com
127.0.0.1 track.easeus.com.cn
127.0.0.1 api.easeus.com
127.0.0.1 update.easeus.com
127.0.0.1 map2.hwcdn.net
127.0.0.1 easeusinfo.us-east-1.log.aliyuncs.com
127.0.0.1 aaa100cd68bbe03f3.awsglobalaccelerator.com
127.0.0.1 uompro.easeus.com
127.0.0.1 order.easeus.com
127.0.0.1 curl.haxx.se
127.0.0.1 buy.easeus.com
127.0.0.1 v2api-uoss.easeus.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Calibre2\;C:\Users\dvacl\AppData\Local\Microsoft\WindowsApps;C:\adb;C:\Program Files\dotnet\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\dvacl\Desktop\Nová složka\IMG_0282 (2)-to.jpeg
DNS Servers: 10.0.1.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "PowerDVD22Agent"
HKLM\...\StartupApproved\Run32: => "ccleaner_update_helper"
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\StartupApproved\Run: => "CyberlinkPowerPlayerMediaServer_PowerDVD22"
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-87297680-2717088268-3221549041-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9E2FF481-7DDB-4B4D-A0D3-98D6B02C6CF6}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe (RemoteMouse.net) [File not signed]
FirewallRules: [{ECE019F3-3FE1-4BEB-893A-E234795AEEF4}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe (RemoteMouse.net) [File not signed]
FirewallRules: [{8D621E16-E833-4755-99A5-BB786E753835}] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe (remotemouse.net) [File not signed]
FirewallRules: [{FEEA67DA-B594-4102-95E1-F053FA61415E}] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe (remotemouse.net) [File not signed]
FirewallRules: [{2FB2333F-51E8-4D70-8B21-BD295DC75876}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{6F52ABAF-8CCE-4B17-AA53-4587AF0CEDD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{8E2194C5-2A36-47AF-B016-7AE47AB33DE7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EC36E85C-D186-4CA5-BEC4-9C2A5C214355}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7CD9F1A7-2BC8-4C47-9189-75860286038C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8FCA58B3-E8CD-460D-8970-BFBBEF797A1D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{8A656EA6-3E64-4ED4-A02E-F7AC67AC7350}C:\users\dvacl\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\dvacl\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [TCP Query User{7DE5E24F-2F46-43E4-84CB-D05B392360A1}C:\users\dvacl\appdata\local\warthunder\win64\aces.exe] => (Allow) C:\users\dvacl\appdata\local\warthunder\win64\aces.exe (Gaijin Network LTD -> Gaijin Entertainment)
FirewallRules: [UDP Query User{73F40275-8F63-4011-93CD-DDD2B00F9BBD}C:\users\dvacl\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\dvacl\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [TCP Query User{62D5740B-AA9E-4284-A96F-F0B425696495}C:\users\dvacl\appdata\local\warthunder\launcher.exe] => (Allow) C:\users\dvacl\appdata\local\warthunder\launcher.exe (Gaijin Network LTD -> Gaijin)
FirewallRules: [{6C18F54D-71B9-4C69-96E9-4CA2A873FE6F}] => (Block) C:\Program Files\Adobe\Adobe Photoshop 2023\Photoshop.exe (Adobe Inc. -> Adobe) [File not signed]
FirewallRules: [{A2D71F58-6B64-421B-85FC-5310CA44B3F6}] => (Block) C:\Program Files\CCleaner\CCleaner64.exe (Piriform Software Ltd -> Piriform Software Ltd) [File not signed]
FirewallRules: [{ADA8C4FF-681A-4CBF-BCE7-A9C97DA4628A}] => (Block) C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{53BA0509-8FD4-4A15-92D1-BE570B7B9C88}] => (Block) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{E52E1085-3270-483C-BBBB-BDCB2EA98314}] => (Allow) LPort=32682
FirewallRules: [{1D8C30F3-78EB-42A4-BF60-6C2853C26199}] => (Allow) LPort=26822
FirewallRules: [UDP Query User{48CBDE99-2422-47E4-B172-5A879CC15355}C:\program files (x86)\remote mouse\remotemouse.exe] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe (remotemouse.net) [File not signed]
FirewallRules: [TCP Query User{2AEB318E-7B64-4189-A6D1-D35F29E53AB7}C:\program files (x86)\remote mouse\remotemouse.exe] => (Allow) C:\program files (x86)\remote mouse\remotemouse.exe (remotemouse.net) [File not signed]
FirewallRules: [UDP Query User{0B7F1EF0-CAB0-4E7E-AF7C-FCA7924E3196}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{F0213B8D-881A-4E5B-A2A3-5644B758C148}C:\program files (x86)\microsoft\edge\application\msedge.exe] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{18F78D5F-7B1E-4DEA-920E-104329AC65C6}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{1FFED861-7EE8-417E-91EF-B844246D70C5}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{BBA33140-D84C-41BB-B375-F11E954DE56A}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{3B9BEFB4-5301-4914-9FF1-84FC5337CC2E}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [TCP Query User{9B6CFA8A-A8E3-4A16-B460-161E1B55D2E6}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{09939950-51DB-475E-A108-A414F5AE7EC9}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{E52DE377-234B-415C-919A-2A7898669082}] => (Block) C:\Program Files\Adobe\Photoshop Elements 2023\Elements Home\Adobe Photoshop Elements 2023.exe (Adobe Inc. -> Adobe)
FirewallRules: [{ECBDA6F7-FF56-403F-AC91-A6D0D4CF6B2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro Last Light\MetroLL.exe (Koch Media GmbH -> 4A Games)
FirewallRules: [{97BF6001-5CB7-4947-99C5-6C417C00703D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro Last Light\MetroLL.exe (Koch Media GmbH -> 4A Games)
FirewallRules: [{D90CB4DA-946E-47D3-B007-6AB47FA83311}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.37\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EEC2A638-7BD1-4888-9F8F-B51EE9577C7B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

22-05-2023 22:59:01 Installed Topaz Photo AI
26-05-2023 04:21:04 Radeon Installer
26-05-2023 05:29:07 Instalační služba modulů systému Windows
26-05-2023 05:30:19 Instalační služba modulů systému Windows
04-06-2023 13:47:54 Installed Topaz Photo AI
04-06-2023 13:53:16 Radeon Installer
07-06-2023 17:09:06 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/07/2023 06:47:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: HxOutlook.exe, verze: 16.0.14326.21468, časové razítko: 0x6477545d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x69314b12
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012d8b2
ID chybujícího procesu: 0xc70
Čas spuštění chybující aplikace: 0x01d9995fc782fa32
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21470.0_x64__8wekyb3d8bbwe\HxOutlook.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 98f3b3f0-2453-4bdf-a4fd-07d5acf5098d
Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_16005.14326.21470.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: microsoft.windowslive.mail

Error: (06/07/2023 06:08:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.3031, časové razítko: 0x30ed67b0
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x69314b12
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012d8b2
ID chybujícího procesu: 0x27f0
Čas spuštění chybující aplikace: 0x01d9995a02ff9cd0
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 57505f26-745e-435a-8fd9-8ad96acffc94
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (06/07/2023 06:06:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.3031, časové razítko: 0x30ed67b0
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x69314b12
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012d8b2
ID chybujícího procesu: 0x2260
Čas spuštění chybující aplikace: 0x01d99959bb9539d2
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 2b3e7e4a-1e2a-490e-9712-105f07e78899
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (06/07/2023 06:04:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.3031, časové razítko: 0x30ed67b0
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x69314b12
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012d8b2
ID chybujícího procesu: 0x2040
Čas spuštění chybující aplikace: 0x01d99959740b5b97
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: f9196210-1e24-4577-b18a-d283c9194936
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (06/07/2023 06:02:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.3031, časové razítko: 0x30ed67b0
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x69314b12
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012d8b2
ID chybujícího procesu: 0x2290
Čas spuštění chybující aplikace: 0x01d999592c22cc00
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 44b7ac6f-5766-48de-a631-715cd54b7cfa
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (06/07/2023 06:00:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.3031, časové razítko: 0x30ed67b0
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x69314b12
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012d8b2
ID chybujícího procesu: 0x46c
Čas spuštění chybující aplikace: 0x01d99958e78863aa
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 52f49df9-2fc2-46cd-a231-028a9be4f9b9
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI

Error: (06/07/2023 05:58:46 PM) (Source: ESENT) (EventID: 623) (User: )
Description: SearchIndexer (4052,D,23) Windows: Úložiště verzí pro tuto instanci (0) dosáhlo maximální velikosti 128 MB. Pravděpodobně došlo k tomu, že dlouhotrvající transakce zabraňuje vyčištění úložiště verzí a způsobuje jeho narůstání. Aktualizace se budou odmítat, dokud se dlouhotrvající transakce kompletně nepotvrdí nebo nevrátí zpět.

Možná dlouhotrvající transakce:

SessionId: 0x000001F6403B1CA0:0x47c4

Kontext relace: 0x00000000

ThreadId kontextu relace: 0x000000000000200C

Vyčištění: 1

Trasování relace:

45861@17:58:46
57573@17:58:41

Error: (06/07/2023 05:58:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SearchApp.exe, verze: 10.0.19041.3031, časové razítko: 0x30ed67b0
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3031, časové razítko: 0x69314b12
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000012d8b2
ID chybujícího procesu: 0x1d6c
Čas spuštění chybující aplikace: 0x01d99958e33e82f4
Cesta k chybující aplikaci: C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 13f3a148-9f55-4eb4-a546-9136107bc935
Úplný název chybujícího balíčku: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace související s chybujícím balíčkem: CortanaUI


System errors:
=============
Error: (06/08/2023 12:39:08 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/07/2023 09:25:26 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/07/2023 09:23:26 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/07/2023 05:58:11 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (17:48:37, ‎07.‎06.‎2023) bylo neočekávané.

Error: (06/06/2023 08:59:57 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Počítač byl restartován z procesu kontroly chyb. Kontrola chyb: 0x000000a0 (0x00000000000000f0, 0x0000000000000000, 0x0000000000000009, 0xffffe60633b77240). Výpis byl uložen do: C:\WINDOWS\MEMORY.DMP. ID hlášení: e49c0e1e-d6c2-4900-9270-ec40195ee653


Windows Defender:
================
Date: 2023-06-06 16:17:52
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {133E6D31-D2DE-40A3-8DF6-D22A94B7CC67}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-06-03 10:30:01
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {16D86FCE-138C-4978-9A92-986EF9B1FA3F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-06-02 11:42:45
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {803737E1-1EF1-4469-BAF7-DFAEF4EA8E01}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-05-31 17:22:54
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8C1FF4B8-68D4-4281-95E1-B1C4E78DDEF9}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-05-30 19:06:17
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {10E1FCA5-E68A-4344-B57D-5C204038BEE1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2023-04-14 02:25:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive File Stream\73.0.4.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. V2.13 03/07/2014
Motherboard: MSI Z77A-G43 (MS-7758)
Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 27%
Total physical RAM: 24523.53 MB
Available physical RAM: 17740.48 MB
Total Virtual: 28107.53 MB
Available Virtual: 17235.55 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:446.44 GB) (Free:126.2 GB) (Model: Patriot Burst) NTFS
Drive d: (SSD) (Fixed) (Total:447.14 GB) (Free:255.73 GB) (Model: Patriot Burst) NTFS
Drive h: (HDD) (Fixed) (Total:763.72 GB) (Free:254.81 GB) (Model: Hitachi HTS543232L9A300) NTFS

\\?\Volume{b65e040e-a494-4b6d-93d6-0bc9300a99a3}\ () (Fixed) (Total:0.57 GB) (Free:0.08 GB) NTFS
\\?\Volume{d765b008-6d47-4712-b3df-090dbd5ce3c7}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 447.1 GB) (Disk ID: 0610802F)

Partition: GPT.

==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 098B4315)

Partition: GPT.

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: C87DD721)
Partition 1: (Not Active) - (Size=223.6 GB) - (Type=42)

==========================================================
Disk: 4 (Size: 298.1 GB) (Disk ID: 97646C29)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42)

==================== End of Addition.txt =======================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu, občas zamrzá při čtení z disku.

#2 Příspěvek od JaRon »

ahoj,
citat:
Tvorba fixlistu pro FRST
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>

Kód: Vybrat vše

Start
CloseProcesses:
S3 MpKsl7aa0c8f8; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A23945F4-8426-46E9-AB92-F41A02981471}\MpKslDrv.sys [X]
Task: {AE20C738-AB0B-43F6-865C-63573B26CE01} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (No File)
Task: {8A0AAF48-2927-45EE-A980-BF267E4A5E1F} - System32\Tasks\MXWTPTTTYKDUYVXJ_run => C:\Users\dvacl\AppData\Roaming\CyberLink\MediaCache\MXWTPTTTYKDUYVXJ.exe (No File)



EmptyTemp:
Reboot:
End
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST

:arrow: Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt

:arrow: Restart PC a dejte mi sem fixlog.txt
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

bilejpes
Návštěvník
Návštěvník
Příspěvky: 104
Registrován: 24 úno 2011 17:50

Re: Prosím o kontrolu, občas zamrzá při čtení z disku.

#3 Příspěvek od bilejpes »

Fix result of Farbar Recovery Scan Tool (x64) Version: 29-05-2023
Ran by dvacl (08-06-2023 21:54:15) Run:2
Running from C:\Users\dvacl\Desktop
Loaded Profiles: dvacl
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
S3 MpKsl7aa0c8f8; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A23945F4-8426-46E9-AB92-F41A02981471}\MpKslDrv.sys [X]
Task: {AE20C738-AB0B-43F6-865C-63573B26CE01} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe /s (No File)
Task: {8A0AAF48-2927-45EE-A980-BF267E4A5E1F} - System32\Tasks\MXWTPTTTYKDUYVXJ_run => C:\Users\dvacl\AppData\Roaming\CyberLink\MediaCache\MXWTPTTTYKDUYVXJ.exe (No File)



EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
HKLM\System\CurrentControlSet\Services\MpKsl7aa0c8f8 => removed successfully
MpKsl7aa0c8f8 => service removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{AE20C738-AB0B-43F6-865C-63573B26CE01}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AE20C738-AB0B-43F6-865C-63573B26CE01}" => removed successfully
C:\WINDOWS\System32\Tasks\MSIAfterburner => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MSIAfterburner" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8A0AAF48-2927-45EE-A980-BF267E4A5E1F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8A0AAF48-2927-45EE-A980-BF267E4A5E1F}" => removed successfully
C:\WINDOWS\System32\Tasks\MXWTPTTTYKDUYVXJ_run => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MXWTPTTTYKDUYVXJ_run" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 93480919 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 76143567 B
Windows/system/drivers => 2682477 B
Edge => 0 B
Chrome => 1433283 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 3498 B
dvacl => 123660629 B

RecycleBin => 0 B
EmptyTemp: => 284.9 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:54:22 ====

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu, občas zamrzá při čtení z disku.

#4 Příspěvek od JaRon »

Aky je stav ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

bilejpes
Návštěvník
Návštěvník
Příspěvky: 104
Registrován: 24 úno 2011 17:50

Re: Prosím o kontrolu, občas zamrzá při čtení z disku.

#5 Příspěvek od bilejpes »

Krátkej test zatím v pohodě. Zlobilo to hlavně u načítání fotek z disku D, hodně fotím a upravuji je. Teď jsem chvilku zkoušel a vše ok. Jako vždy jste nejlepší.

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15192
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu, občas zamrzá při čtení z disku.

#6 Příspěvek od JaRon »

dufam, ze to vydrzi, pretoze tam boli len nejake drobnosti :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Odpovědět