Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-06-2023
Ran by User (administrator) on DESKTOP-H92TJ3T (LENOVO F0CM001FCK) (03-07-2023 18:03:18)
Running from C:\Users\User\Desktop\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Home Version 22H2 19045.3086 (X64) Language: Čeština (Česká republika) -> Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Games\World_of_Tanks_EU\win64\cef_browser_process.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\Games\World_of_Tanks_EU\win64\cef_subprocess.exe
(C:\Games\World_of_Tanks_EU\win64\WorldOfTanks.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\Games\World_of_Tanks_EU\win64\cef_browser_process.exe
(C:\Games\World_of_Tanks_EU\win64\WorldOfTanks.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\Games\World_of_Tanks_EU\win64\WargamingErrorMonitor.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoBoostAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoBoostSystemAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(LenovoServiceBridgeAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(C:\Program Files\WD Desktop App\kdd.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files\WD Desktop App\wdsync.exe
(C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.616.100_x64__8wekyb3d8bbwe\olk.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe <6>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <3>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(C:\Windows\SysWOW64\cmd.exe ->) (Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files\WD Desktop App\kdd.exe
(cmd.exe ->) (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Users\User\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSB.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_eaf2229d3baf8a09\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_eaf2229d3baf8a09\igfxEM.exe
(explorer.exe ->) (Disig a.s. -> Disig a.s.) C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <14>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.616.100_x64__8wekyb3d8bbwe\olk.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(explorer.exe ->) (Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\User\AppData\Roaming\Telegram Desktop\Telegram.exe
(explorer.exe ->) (Viber Media S.à r.l. -> Viber Media S.Ã r.l.) C:\Users\User\AppData\Local\Viber\Viber.exe
(explorer.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.272\GoogleCrashHandler64.exe
(Lenovo) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Cloudflare, Inc. -> ) C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe
(services.exe ->) (DITEC, a.s. -> ) C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_eaf2229d3baf8a09\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_d8d8130c2588d45b\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_cff0174c1abadd0d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_cff0174c1abadd0d\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_00637c565008e749\RstMwService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvla.inf_amd64_a6a2da7e042e0376\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2324.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.6.0.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21490.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.21490.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2304.2.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Western Digital Technologies, Inc. -> ) C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe
(svchost.exe ->) (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe
(Wargaming.net Limited -> Wargaming.net) C:\Games\World_of_Tanks_EU\win64\WorldOfTanks.exe
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe <4>
(Western Digital Technologies, Inc. -> Western Digital Corporation) C:\Program Files (x86)\Western Digital\Discovery\Current\WDDiscoveryMonitor.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19572528 2021-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617864 2021-08-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Lenovo Silver Silk Wireless Keyboard] => C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe [1742336 2013-08-14] (Lenovo) [File not signed]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [WDDiscovery] => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Discovery.exe [81380632 2022-11-17] (Western Digital Technologies, Inc. -> Western Digital Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [711288 2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2192152 2023-06-15] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [eyeBeam SIP Client] => C:\Program Files (x86)\CounterPath\X-Lite\x-lite.exe [18550784 2006-05-31] () [File not signed]
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [40496032 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Run: [Disig Web Signer] => C:\Program Files (x86)\Disig\Web Signer\WebSignerTray.exe [254080 2021-02-04] (Disig a.s. -> Disig a.s.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\114.0.5735.199\Installer\chrmstp.exe [2023-06-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Cloudflare WARP.lnk [2022-06-20]
ShortcutTarget: Cloudflare WARP.lnk -> C:\Program Files\Cloudflare\Cloudflare WARP\Cloudflare WARP.exe (Cloudflare, Inc. -> Cloudflare)
BootExecute: autocheck autochk * icarus_rvrt.exe
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0BF765C7-19B4-4D93-9D4A-30773614EA94} - System32\Tasks\WD Discovery Service Task user => C:\Program Files (x86)\Western Digital\Discovery\Current\Service\WDDiscoveryService.exe [79640 2022-11-17] (Western Digital Technologies, Inc. -> )
Task: {0DD497DD-6ECA-4CCE-A8EE-0BEDBAAD58E3} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\cd00de34-d0f9-4427-b990-a5d894118af1 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {2323ECBE-C559-4572-B0F6-B454F9002816} - System32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {23477824-3C53-4AC5-9BCD-1B967CC324DD} - System32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {2FD88DDF-AA26-48FC-A4A3-F394642B77B9} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "dd54e99d-a043-4fc2-95a7-2d252dbcbe2f" --version "6.13.10517" --silent
Task: {33A6F03E-0CB2-4443-9D12-3E5477AAFB0D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {33BB1109-6899-4162-B8F9-E1215F40AF44} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {42D95DB7-BAF3-41D0-9B73-9A4EC2189C17} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {4B662C40-7A0A-4EDB-9915-5F6FE5E243E2} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e549d178-79f0-4db4-a7f7-1aad27bbde35 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {5BEAB852-CA02-4ACA-A37C-CB8EDB0AB3DF} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {5DE4F256-C57F-4940-86C9-A7621E5ED063} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2135448 2023-04-14] (Avast Software s.r.o. -> Avast Software)
Task: {6AAE34A8-F0AF-4E51-9A89-70E4AD38DF44} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {6DEF19B8-565B-485E-866C-5EA54075EDA3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564152 2023-04-03] (Adobe Inc. -> Adobe Inc.)
Task: {72231A84-CD15-4819-9C72-713039C20429} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6efe8544-f72f-4543-abe1-438414c93333 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {73956317-9685-4C0E-B79D-5D315E08ECB0} - System32\Tasks\WD Device Agent Task user => C:\Program Files (x86)\Western Digital\Discovery\Current\WD Device Agent.exe [724760 2022-11-17] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
Task: {7B7394F6-62FC-4361-8CF2-6F00835B9093} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8338E7D3-1941-47EB-A7D1-84126F41EEB1} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {88047D51-1FA1-46D8-92FE-D21F21D4E924} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c8e58ded-8f23-4d13-b246-f57b854cf695 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {8C6ED102-2D5F-4EEC-B88E-F624D4296237} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {91F20676-55CC-4369-8781-8EBA88099674} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {9546EA39-24DD-4080-93B5-052C6298368C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A655C4FB-9FFB-4B94-B1BE-F4EA6D84A52D} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1496144255-991381806-58249036-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {AA6F719F-C2D6-44A4-BFF4-385BB4BAEB37} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {B15E68DA-EC5C-4B5E-B5FE-706422D20DED} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BC36B622-2CB0-48CA-866D-803BB502A423} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {CD0E6DBC-43E1-4A24-98D8-39D9C28DB127} - System32\Tasks\TVT\TVSUUpdateTask_UserLogOn => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [1900320 2023-01-19] (Lenovo -> )
Task: {CF8D520D-DF44-4698-B44E-DC2C975B0AD4} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {CFAF9A9D-B1A5-4A28-98C2-6B91E3F9D96C} - System32\Tasks\CCleanerSkipUAC - User => C:\Program Files\CCleaner\CCleaner.exe [34304928 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E8469516-99FF-4C94-9BFA-9999E5BF8803} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MpCmdRun.exe [1650040 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E912DFB0-9A14-42DF-8667-8CD6A75058C3} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {EE1A56CA-F0EF-4EF6-A7CA-A929EBBD120C} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.43.0\ScheduleEventAction.exe [28888 2022-11-29] (Lenovo -> Lenovo Group Ltd.)
Task: {F8A94A1F-34E0-4851-B599-7C584E98585D} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-1496144255-991381806-58249036-1001 => C:\Users\User\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe [89096 2023-04-10] (Lenovo (Beijing) Limited -> Lenovo Group Limited)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{5c362e89-8288-4ab5-958b-95c3bff238f2}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-07-03]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\dtplugin\npDeployJava1.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.361.2 -> C:\Program Files\Java\jre1.8.0_361\bin\plugin2\npjp2.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2023-06-14] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: ditec.sk/DAsicFac -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~1.DLL [2021-02-09] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/DitecZepDViewerFb -> C:\PROGRA~2\Ditec\DViewer\NPDITE~1.DLL [2021-02-09] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigMessageContainer -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~2.DLL [2021-02-09] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesExtender -> C:\PROGRA~2\Ditec\DSIGNE~2.NET\NPDITE~3.DLL [2021-02-09] (DITEC, a.s. -> Ditec, a.s.)
FF Plugin-x32: ditec.sk/DSigXadesFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~1.DLL [2021-09-06] (DITEC, a.s. -> Ditec,a.s.)
FF Plugin-x32: ditec.sk/XmlDataContainerFb -> C:\PROGRA~2\Ditec\DSIGNE~1.NET\NPDITE~2.DLL [2021-09-06] (DITEC, a.s. -> Ditec,a.s.)
Chrome:
=======
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-07-03]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://metro-sk.os.tc; hxxps://notifytor.info; hxxps://optolov.ru; hxxps://vodyanoynasos.com; hxxps://web.whatsapp.com; hxxps://www.banggood.com; hxxps://www.facebook.com; hxxps://www.youtube.com; hxxps://xiaomiplanet.sk
CHR Session Restore: Default -> is enabled.
CHR Extension: (Authenticator) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2023-05-20]
CHR Extension: (Adblock pre Youtube™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2023-05-25]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-05-18]
CHR Extension: (AVG SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2023-04-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-04-03] (Adobe Inc. -> Adobe Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1063840 2023-06-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CloudflareWARP; C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe [18228128 2022-06-16] (Cloudflare, Inc. -> )
R2 dLauncherLoopback; C:\Program Files (x86)\Ditec\DLauncher\dLauncherLoopback.exe [154960 2019-08-02] (DITEC, a.s. -> )
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2020-06-02] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\\3.13.43.0\LenovoVantageService.exe [32464 ] (Lenovo -> Lenovo Group Ltd.)
R2 QcomWlanSrv; C:\WINDOWS\System32\drivers\QcomWlanSrvx64.exe [189792 2022-04-25] (Qualcomm Atheros, Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_a6a2da7e042e0376\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_a6a2da7e042e0376\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 LenovoBoost; C:\WINDOWS\system32\DRIVERS\vanboost.sys [47888 2022-08-24] (Lenovo -> Lenovo Group Ltd.)
R3 MpKsl3f67dceb; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E68DA2CF-5496-4B54-A781-D65595C75CB8}\MpKslDrv.sys [213288 2023-07-03] (Microsoft Windows -> Microsoft Corporation)
R3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [347224 2020-05-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49560 2023-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [498944 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
R1 wdfsconnect2017; C:\WINDOWS\system32\drivers\wdfsconnect2017.sys [468112 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
R3 wdvpnpbus; C:\WINDOWS\System32\drivers\wdvpnpbus.sys [20624 2017-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-03 18:03 - 2023-07-03 18:03 - 000028108 ____C C:\Users\User\Desktop\FRST.txt
2023-07-03 18:03 - 2023-07-03 18:03 - 000000000 ___DC C:\FRST
2023-07-03 18:01 - 2023-07-03 18:01 - 002383360 ____C (Farbar) C:\Users\User\Desktop\FRST64.exe
2023-07-02 05:19 - 2023-07-02 05:19 - 000038465 ____C C:\Users\User\Downloads\4021722609_20230630_6_MSKB.zip
2023-07-02 05:19 - 2023-07-02 05:19 - 000038465 ____C C:\Users\User\Downloads\4021722609_20230630_6_MSKB (3).zip
2023-07-02 05:19 - 2023-07-02 05:19 - 000038465 ____C C:\Users\User\Downloads\4021722609_20230630_6_MSKB (2).zip
2023-07-02 05:19 - 2023-07-02 05:19 - 000038465 ____C C:\Users\User\Downloads\4021722609_20230630_6_MSKB (1).zip
2023-07-01 20:16 - 2023-07-01 20:16 - 000004030 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-1496144255-991381806-58249036-1001_17
2023-06-29 15:31 - 2023-06-29 15:31 - 000000000 ___DC C:\Users\User\Desktop\kata
2023-06-29 09:15 - 2023-06-29 09:15 - 000080408 ____C C:\Users\User\Downloads\[SkT]Jak_dostat_tatínka_do_polepšovny_(1978)(CZ)[1080p][WEB-DL]_=_CSFD_87%.torrent
2023-06-29 09:15 - 2023-06-29 09:15 - 000070886 ____C C:\Users\User\Downloads\[SkT]Jak_vytrhnout_velrybě_stoličku_(1977)(CZ)[1080p][WEB-DL]_=_CSFD_85%.torrent
2023-06-24 08:32 - 2023-06-24 08:32 - 000020508 ____C C:\Users\User\Downloads\[SkT]Nájomný_žoldnier___The_Contractor_(2022)(SK)[WebRip][1080p]_=_CSFD_57%.torrent
2023-06-24 08:32 - 2023-06-24 08:32 - 000017176 ____C C:\Users\User\Downloads\[SkT]_Infinity_Pool_(2023)(CZ)[WebRip][720p]_=_CSFD_57%.torrent
2023-06-24 08:31 - 2023-06-24 08:31 - 000099922 ____C C:\Users\User\Downloads\[SkT]Zitra_to_roztocime,_drahousku...!_(1976)_WEBRip._CZ.1080p_=_CSFD_78%.torrent
2023-06-24 08:31 - 2023-06-24 08:31 - 000019336 ____C C:\Users\User\Downloads\[SkT]_Král_temné_síly___King_of_the_Ants_(2003)(CZ)[WebRip]_=_CSFD_48%.torrent
2023-06-24 08:30 - 2023-06-24 08:30 - 000020645 ____C C:\Users\User\Downloads\[SkT]_Poslední_paprsek___Dernier_Soleil_(2021)(CZ_FR)[WebRip][720p]_=_CSFD_50%.torrent
2023-06-19 08:34 - 2023-06-19 08:34 - 000081517 ____C C:\Users\User\Downloads\[SkT]Já_to_tedy_beru,_šéfe...!_(1977)(CZ)[1080p][WEB-DL]_=_CSFD_59%.torrent
2023-06-19 08:34 - 2023-06-19 08:34 - 000014158 ____C C:\Users\User\Downloads\[SkT]_Bezúhonnost_Josepha_Chamberse___The_Integrity_of_Joseph_Chambers_(2022)(CZ_EN)[WebRip][720p]_=_CSFD_50%.torrent
2023-06-19 08:22 - 2023-06-19 08:22 - 000037753 ____C C:\Users\User\Downloads\4021722609_20230531_5_MSKB.zip
2023-06-18 18:40 - 2023-06-18 18:40 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2023-06-18 18:39 - 2023-05-26 07:52 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-06-18 18:39 - 2023-05-26 07:52 - 002172472 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-06-18 18:39 - 2023-05-26 07:52 - 001607728 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-06-18 18:39 - 2023-05-26 07:52 - 001607728 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-06-18 18:39 - 2023-05-26 07:52 - 001487872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-06-18 18:39 - 2023-05-26 07:52 - 001479216 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-06-18 18:39 - 2023-05-26 07:52 - 001479216 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-06-18 18:39 - 2023-05-26 07:52 - 001227264 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-06-18 18:39 - 2023-05-26 07:52 - 001211440 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-06-18 18:39 - 2023-05-26 07:52 - 001211440 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-06-18 18:39 - 2023-05-26 07:48 - 001536024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-06-18 18:39 - 2023-05-26 07:48 - 001195048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-06-18 18:39 - 2023-05-26 07:48 - 000851440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-06-18 18:39 - 2023-05-26 07:48 - 000741400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-06-18 18:39 - 2023-05-26 07:48 - 000671208 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-06-18 18:39 - 2023-05-26 07:48 - 000506880 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-06-18 18:39 - 2023-05-26 07:47 - 002166824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-06-18 18:39 - 2023-05-26 07:47 - 001621016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-06-18 18:39 - 2023-05-26 07:47 - 000979496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-06-18 18:39 - 2023-05-26 07:47 - 000758808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-06-18 18:39 - 2023-05-26 07:46 - 013769256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-06-18 18:39 - 2023-05-26 07:46 - 011650048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-06-18 18:39 - 2023-05-26 07:46 - 006084136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-06-18 18:39 - 2023-05-26 07:46 - 005911592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-06-18 18:39 - 2023-05-26 07:46 - 005835304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-06-18 18:39 - 2023-05-26 07:46 - 003429912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-06-18 18:39 - 2023-05-26 07:46 - 000457752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-06-18 18:39 - 2023-05-26 07:45 - 000853504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-06-18 18:39 - 2023-05-26 07:43 - 006798784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-06-18 18:39 - 2023-05-26 07:13 - 000104369 _____ C:\WINDOWS\system32\nvinfo.pb
2023-06-15 13:26 - 2023-06-15 13:26 - 000000000 __HDC C:\$WinREAgent
2023-06-12 09:06 - 2023-06-12 09:06 - 167772160 ____C C:\Users\User\Downloads\NO20230616-052212-006103.MP4
2023-06-12 08:56 - 2023-06-12 06:24 - 167772160 ____C C:\Users\User\Desktop\12.6.2023.MP4
2023-06-11 04:51 - 2023-06-11 04:51 - 000089020 ____C C:\Users\User\Downloads\[SkT]Za_lepším_světem___Down_with_the_King_(CZ_EN)(2021)(720p)(Web-DL)(HEVC)_=_CSFD_38%.torrent
2023-06-11 04:50 - 2023-06-11 04:50 - 000016994 ____C C:\Users\User\Downloads\[SkT]_Alpskí_policajti__Zabijak_s_kušou___Einsatz_in_den_Alpen_-_Der_Armbrustkiller_(2022)(SK)[WebRip][1080p]_=_CSFD_50%.torrent
2023-06-09 11:06 - 2023-06-09 11:06 - 000015515 ____C C:\Users\User\Downloads\[SkT]_Paradise_City_(2022)(CZ_EN)[1080p]_=_CSFD_30%.torrent
2023-06-09 11:03 - 2023-06-09 11:03 - 000089020 ____C C:\Users\User\Downloads\[SkT]Za_lepším_světem___Down_with_the_King_(CZ_EN)(2021)(720p)(Web-DL)(HEVC)_=_CSFD_51%.torrent
2023-06-09 06:53 - 2023-06-09 06:53 - 000103087 ____C C:\Users\User\Downloads\[SkT]Hra___Play_(CZ_SE)(2011)(720p)(Web-DL)(HEVC)_=_CSFD_73%.torrent
2023-06-09 05:48 - 2023-06-09 05:48 - 001839674 ____C C:\Users\User\Downloads\navod-na-pouzitie (2).pdf
2023-06-09 05:35 - 2023-06-09 05:35 - 001839674 ____C C:\Users\User\Downloads\navod-na-pouzitie (1).pdf
2023-06-09 05:28 - 2023-06-09 05:28 - 011606478 ____C C:\Users\User\Downloads\navod-na-pouzitie.pdf
2023-06-09 04:50 - 2023-06-09 04:50 - 000022476 ____C C:\Users\User\Downloads\052023_107477.pdf
2023-06-07 19:23 - 2023-06-07 19:23 - 000056617 ____C C:\Users\User\Downloads\001.jfif
2023-06-07 19:23 - 2023-06-07 19:23 - 000024364 ____C C:\Users\User\Downloads\Poloha na vrabca.jfif
2023-06-06 15:47 - 2023-06-06 15:47 - 000183927 ____C C:\Users\User\Downloads\e328a351-48cb-440d-a79b-906c61ed2e43.pdf
2023-06-06 11:14 - 2023-06-06 11:14 - 000004729 ____C C:\Users\User\Downloads\[SkT]Inside_Man___Spojenec_(2006)(Mastered)(1080p)(BluRay)(EN_CZ)_=_CSFD_80%.torrent
2023-06-04 05:39 - 2023-06-04 05:39 - 000018637 ____C C:\Users\User\Downloads\[SkT]_Uväznená_pod_zemou___Girl_in_the_Bunker_(2018)(SK)[TvRip][1080p]_=_CSFD_44%.torrent
2023-06-04 05:38 - 2023-06-04 05:38 - 000016802 ____C C:\Users\User\Downloads\[SkT]_Příběh_z_Montany___Montana_Story_(2021)(CZ_EN)[WebRip][720p]_=_CSFD_62%.torrent
2023-06-04 05:38 - 2023-06-04 05:38 - 000014419 ____C C:\Users\User\Downloads\[SkT]_Poslední_klient___Klienten_(2022)(CZ_DA)[WebRip][720p]_=_CSFD_40%.torrent
2023-06-04 05:37 - 2023-06-04 05:37 - 000055886 ____C C:\Users\User\Downloads\[SkT]Blizenec___Gemini_Man_(2019)_BDRip.CZ.EN.1080p_=_CSFD_57%.torrent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-07-03 18:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-07-03 18:00 - 2019-10-08 13:15 - 000000000 ____D C:\Program Files\CCleaner
2023-07-03 17:59 - 2022-10-25 09:02 - 000003470 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-07-03 17:59 - 2022-10-25 09:02 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-07-03 17:59 - 2021-12-17 21:08 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-07-03 17:59 - 2020-12-06 08:52 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-07-03 17:59 - 2019-10-10 07:51 - 000000000 ____D C:\Users\User\AppData\Local\CrashDumps
2023-07-03 17:59 - 2019-06-05 11:05 - 000000000 ____D C:\Program Files (x86)\Google
2023-07-03 17:30 - 2019-06-25 09:44 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-07-03 17:26 - 2020-12-06 08:56 - 001693346 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-07-03 17:26 - 2019-12-07 16:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2023-07-03 17:26 - 2019-12-07 16:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2023-07-03 17:26 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-07-03 17:20 - 2022-11-17 06:27 - 000000000 ____D C:\Users\User\AppData\Roaming\WD Discovery
2023-07-03 17:20 - 2022-11-17 06:26 - 000000000 ____D C:\Users\User\.wdc
2023-07-03 17:20 - 2021-10-26 17:33 - 000000000 ____D C:\Users\User\AppData\Roaming\Telegram Desktop
2023-07-03 17:20 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\ViberDownloads
2023-07-03 17:20 - 2019-05-30 22:02 - 000000000 _SHDC C:\Users\User\IntelGraphicsProfiles
2023-07-03 17:19 - 2020-12-06 08:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-07-03 17:19 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-07-03 17:19 - 2019-05-30 21:47 - 000000000 __HDC C:\Intel
2023-07-03 17:19 - 2019-05-30 21:42 - 000000000 ____D C:\ProgramData\NVIDIA
2023-07-03 08:58 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-07-03 08:33 - 2020-11-04 16:09 - 001416704 ____C C:\Users\User\Desktop\Zmena D.xls
2023-07-02 07:36 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-07-02 07:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-07-02 05:32 - 2021-12-11 08:21 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1496144255-991381806-58249036-1001
2023-07-02 05:32 - 2020-12-06 08:52 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1496144255-991381806-58249036-1001
2023-07-02 05:32 - 2020-12-06 08:48 - 000002367 ____C C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-07-02 05:19 - 2022-08-30 07:48 - 000000000 ___DC C:\Users\User\AppData\Local\Viber
2023-07-02 05:19 - 2019-06-05 11:35 - 000000000 ___DC C:\Users\User\AppData\Roaming\ViberPC
2023-07-01 20:11 - 2020-06-10 10:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-06-29 10:00 - 2019-06-05 11:36 - 000000000 ___DC C:\Users\User\AppData\Roaming\uTorrent
2023-06-29 05:10 - 2019-06-05 11:06 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-06-27 18:35 - 2020-12-06 08:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-06-23 18:51 - 2021-02-27 09:55 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-06-23 18:50 - 2022-10-12 18:38 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-06-18 18:41 - 2019-05-30 21:42 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-06-16 10:28 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\Faktúry , odpočty
2023-06-16 04:53 - 2023-04-12 07:52 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}
2023-06-16 04:53 - 2023-04-12 07:52 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}
2023-06-15 16:18 - 2020-12-06 08:46 - 000443160 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-06-15 16:17 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-06-15 13:35 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-06-15 13:32 - 2020-12-06 08:49 - 003015168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-06-15 06:53 - 2020-12-06 08:52 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-06-15 06:53 - 2020-12-06 08:52 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-06-14 16:05 - 2019-06-05 03:17 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-06-14 16:03 - 2019-06-05 03:17 - 170078616 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-06-13 18:32 - 2019-06-19 09:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-06-11 20:02 - 2019-06-05 15:55 - 000000000 ___DC C:\Users\User\AppData\Roaming\Microsoft\Word
2023-06-09 08:00 - 2019-06-05 11:20 - 000000000 ___DC C:\Users\User\Documents\uživatelske priručky
2023-06-09 05:37 - 2023-05-20 05:46 - 000000000 ___DC C:\Users\User\Desktop\prúdovy chranič
2023-06-07 16:21 - 2019-05-30 22:02 - 000000000 ___DC C:\Users\User\AppData\Local\Packages
2023-06-07 05:51 - 2020-12-06 08:46 - 000008192 ___SH C:\DumpStack.log.tmp
2023-06-04 16:05 - 2023-01-24 10:29 - 000000000 ____D C:\Users\User\AppData\Local\EseeCloud
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrlu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrlu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-06-2023
Ran by User (03-07-2023 18:07:49)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3086 (X64) (2020-12-06 06:52:43)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1496144255-991381806-58249036-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1496144255-991381806-58249036-503 - Limited - Disabled)
Guest (S-1-5-21-1496144255-991381806-58249036-501 - Limited - Disabled)
User (S-1-5-21-1496144255-991381806-58249036-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-1496144255-991381806-58249036-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat Reader - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 23.003.20215 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Balík softvéru eID (HKLM-x32\...\{d2c66c1e-5862-43e7-abe2-9c895312112c}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
CCleaner (HKLM\...\CCleaner) (Version: 6.13 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Cloudflare WARP (HKLM\...\{CD74AC63-0675-4287-8122-77446741A85E}) (Version: 22.5.341.0 - Cloudflare, Inc.)
D.Launcher (x86) (HKLM-x32\...\{0DC85C46-746B-4BC5-B727-D5434DF7E5D0}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{EDB276CE-A945-4201-A552-2683B13C321F}) (Version: 4.0.24 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{6648F510-5044-4CA9-BC21-494A2A198B3A}) (Version: 4.0.17 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{8d169eac-87e2-4981-825f-701b32f24d72}) (Version: 1.0.29 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{73D635BE-5D6F-43D3-8C1F-63B5CD4D5953}) (Version: 4.0.2033 - DITEC, a.s.)
Disig Web Signer (HKLM-x32\...\{41C0F02D-2389-4AB5-975C-C2363E7C554C}) (Version: 2.0.7 - Disig)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
eID Klient (HKLM-x32\...\{0E5EC102-7423-4945-8CAB-A9A1BCBDCCB7}) (Version: 4.5.0 - MV SR)
EseeCloud 3.0.3 (HKLM-x32\...\EseeCloud) (Version: 3.0.3 - My company, Inc.)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{94E05108-3E4E-4F2E-AC5F-33A1B22B779C}) (Version: 10.1.1.44 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2105.15.0.2157 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{A9B23394-82C4-4885-92F6-5C21D2AFAF14}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{AF5173C2-31A0-45CF-A5DF-F964F35B4034}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{322B58FC-7AB5-43B6-B27C-1635DD3A573C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7757 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c3964069-17c1-45dd-85a5-949576ceeaa3}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Java 8 Update 361 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180361F0}) (Version: 8.0.3610.9 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Service Bridge (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.2.14 - Lenovo)
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo) Hidden
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\InstallShield_{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.08.01.0009 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.43.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Office Access MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0015-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Slovak) 2007 (HKLM-x32\...\{90120000-00BA-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0044-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Slovak) 2007 (HKLM-x32\...\{90120000-00A1-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001A-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1026 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2007 (HKLM-x32\...\{90120000-001F-040E-0000-0000000FF1CE}) (Version: 12.0.4518.1033 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Slovak) 2007 (HKLM-x32\...\{90120000-002C-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0019-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Slovak) 2007 (HKLM\...\{90120000-002A-041B-1000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Slovak) 2007 (HKLM-x32\...\{90120000-006E-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\OneDriveSetup.exe) (Version: 23.122.0611.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{FEA4AB50-D01D-4E6C-AC61-B2ACF1501CEE}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{4E004F00-9000-4EBC-8660-2C10404143ED}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24123 (HKLM\...\{21134089-9B59-34C8-BE11-929D26AD5207}) (Version: 14.0.24123 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24123 (HKLM\...\{FDBE9DB4-7A91-3A28-B27E-705EF7CFAE57}) (Version: 14.0.24123 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
neroxml (HKLM-x32\...\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}) (Version: 1.0.0 - Nero AG) Hidden
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version: - )
NVIDIA Ovladače grafiky 531.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.68 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
PDF PW Locker Remover (HKLM-x32\...\{25889EF9-CD9A-4A83-96F1-1AC7371429DE}) (Version: 3.3.2 - PDF Protect Free)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10442 - Qualcomm)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.29093 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.19.627.2017 - Realtek)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
Telegram Desktop (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.3 - Telegram FZ-LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
Viber (HKLM-x32\...\{BCFF3282-3299-47F2-95C3-3C0165260EB2}) (Version: 10.3.0.36 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{8ce90cb2-6f65-4b26-bd5c-e9627995f807}) (Version: 10.3.0.36 - Viber Media S.a.r.l)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Wargaming.net Game Center) (Version: 23.2.2.2776 - Wargaming.net)
WD Desktop App 2.1.0.335 (HKLM-x32\...\{fdd55732-32b6-4783-9b31-db9ad9f96792}) (Version: 2.1.0.335 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.335 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.335 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 4.4.407 - Western Digital Technologies, Inc.)
WD SES Driver Setup (HKLM-x32\...\{D9ABF771-729C-471F-A6DF-1010527DB376}) (Version: 2.1.0 - Western Digital) Hidden
WhatsApp (Outdated) (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WhatsApp) (Version: 2.2319.9 - WhatsApp)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\2314027414) (Version: - Wargaming.net)
World_of_Warships (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WOWS.WW.PRODUCTION) (Version: - Wargaming.net)
X-Lite 3.0 (HKLM-x32\...\X-Lite 1.5_is1) (Version: - CounterPath Solutions Inc.)
Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-16] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2023-06-13] (INTEL CORP)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2305.16.0_x64__k1h2ywk1493x8 [2023-06-12] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.4.0_x64__w1wdnht996qgy [2023-06-24] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-10] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.616.100_x64__8wekyb3d8bbwe [2023-06-22] (Microsoft Corporation)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-02] (INTEL CORP) [Startup Task]
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-28] (Microsoft Corporation)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2324.6.0_x64__cv1g1gvanyjgm [2023-07-02] (WhatsApp Inc.) [Startup Task]
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x64__8wekyb3d8bbwe [2023-07-02] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x86__8wekyb3d8bbwe [2023-07-02] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
SSODL: WDFSMountNotificator-wdfsconnect2017 - {B7221D65-6632-4B2A-926A-00386CBCE4DF} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {B7221D65-6632-4B2A-926A-00386CBCE4DF} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects: Virtual Storage Mount Notification -> {B7221D65-6632-4B2A-926A-00386CBCE4DF} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {B7221D65-6632-4B2A-926A-00386CBCE4DF} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WDDesktopContextMenu] -> {f97d48aa-d72e-39ad-bf37-0b90de70ca2a} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [WDDesktopContextMenu] -> {f97d48aa-d72e-39ad-bf37-0b90de70ca2a} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_a6a2da7e042e0376\nvshext.dll [2023-05-26] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-03-19 15:12 - 2018-03-19 15:12 - 000113678 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libgcc_s_dw2-1.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 001542158 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libstdc++-6.dll
2011-11-03 20:48 - 2011-11-03 20:48 - 000056320 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skfunc.dll
2022-11-17 06:27 - 2022-11-17 06:27 - 001987072 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll
2022-11-17 06:27 - 2022-11-17 06:27 - 000117248 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libegl.dll
2022-11-17 06:27 - 2022-11-17 06:27 - 002250240 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libglesv2.dll
2022-09-29 18:34 - 2022-09-29 18:34 - 002637985 _____ () [File not signed] C:\Program Files\WD Desktop App\libfusewdfs.dll
2011-10-21 22:41 - 2011-10-21 22:41 - 000061952 _____ (LITE-ON Corp.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skhooks.dll
2011-11-18 19:07 - 2011-11-18 19:07 - 000054272 _____ (LITE-ON TECHNOLOGY CORP.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\SKHidKbd.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 000047104 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libwinpthread-1.dll
2019-07-01 14:51 - 2019-07-01 14:51 - 006623384 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\Qt5Core.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;c:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;c:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Cloudflare\Cloudflare WARP\;C:\Program Files (x86)\eID_klient\
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "Cloudflare WARP.lnk"
HKLM\...\StartupApproved\Run32: => "EAC_MW_klient"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_EA977365BF5B2185FA52414E130E9AF9"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "eyeBeam SIP Client"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{2A0F24BE-0417-4B7C-82E0-AEA49A5356A2}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3EFEAA9B-8E1C-466F-9831-189CE8295854}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{6080D66F-0A15-409F-B9A3-D282267C8458}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{517FA03E-29DF-4BDE-95D1-91029A573004}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{FA7DBE6C-B9A9-4798-9DDE-6FC0E4FE169C}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{0F7A0131-4AEE-48A9-B4AB-F6A23E62E44D}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{019D165E-A783-4C39-86D3-0A8FD000C4D1}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D4A89DBE-2E5C-4FBE-93ED-9F06AF475218}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D7BB254C-3614-49B3-A3BB-BE7E93812E12}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{9758F37C-1793-44E7-A5B7-D2D28DF780EF}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{CEDD63DE-AE5E-4D08-84FE-3220C65B3BB0}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{64DCF168-9DCF-4125-BDB5-E881E6203267}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{331E87CE-36BC-47C6-9148-6B8C87826BA1}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{EA4170DF-452A-452C-A8C1-F23E2A456910}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{44905811-9B97-4AE0-B73F-958796A7B300}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{E5EA4172-128A-49AE-BD0F-4CA1CE87067D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{BC60B747-848A-47CF-B5BF-6089E8D7CFF4}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{CFE743D3-8BF9-4736-B25C-C035E8E17071}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [TCP Query User{605ED459-90F6-4154-8240-19D04E9DBEAE}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{10E7DA12-E224-4476-9339-2E684D4ACB4C}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D50A21ED-BEFD-495C-9E92-52774C1256E6}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
FirewallRules: [UDP Query User{4C422C61-43B3-47DA-80B6-4B31EFA74A69}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
FirewallRules: [TCP Query User{AB882D7B-A6FD-4E27-8CD1-81130BCFB503}C:\users\user\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [UDP Query User{7F80D843-15C9-429D-89A2-1345EABCE936}C:\users\user\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{6CC495C7-51BD-4B6B-AF14-8BF90DAC3E5A}] => (Block) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{B44FBF90-BE2C-490A-B5C0-86409A6D627F}] => (Block) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{B0F7E24F-FAD8-42AF-8E71-8F38ED9764E5}] => (Allow) C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe (Cloudflare, Inc. -> )
FirewallRules: [TCP Query User{B457D1F4-52DC-4E29-B4B0-A3868001E334}C:\program files (x86)\eseecloud\eseecloud.exe] => (Allow) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [UDP Query User{D058892F-FE80-4A14-8BB8-86F9BED7B59B}C:\program files (x86)\eseecloud\eseecloud.exe] => (Allow) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [{8847DA20-9CC3-4A2C-B9E8-1ABF180D68E8}] => (Block) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [{AC6B875D-0DE8-4C93-9305-4AD521DF65FF}] => (Block) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [TCP Query User{8F808F16-DDBE-4245-9211-B9C0E544C7ED}C:\program files\java\jre1.8.0_361\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_361\bin\javaw.exe
FirewallRules: [UDP Query User{64AEE14F-13BC-4878-AC7C-9CFB18A8CE1B}C:\program files\java\jre1.8.0_361\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_361\bin\javaw.exe
FirewallRules: [{6F0984AC-7666-4DA8-BCA8-5D24A3DC7892}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{809D3915-7E76-46AE-8903-38C804AB3FE7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{8762CE30-1CC4-476C-8FA7-77329DE829B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16501.20210.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{130054E2-2A44-44A5-BB9B-B8E5303E46B0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00150885-CA1D-435D-A8A0-A9B604101BD1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00E8C999-222F-47C0-A566-5C780BD28C2E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E10FA56E-4AEF-40CB-A038-258463D90FF4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DE31AA79-A378-4338-8D1E-5586A4CD1DD9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{57AEF7B3-951B-4AA0-9259-CC2D8B451CFC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:117.89 GB) (Free:13.94 GB) (12%)
==================== Faulty Device Manager Devices ============
Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Event log errors: ========================
Application errors:
==================
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/03/2023 08:58:36 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: kdd.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentException
at System.Diagnostics.Process.GetProcessById(Int32, System.String)
at System.Diagnostics.Process.GetProcessById(Int32)
at wdc.DesktopApp.ServiceWrapper.KDDProcess.Start()
at wdc.DesktopApp.ServiceWrapper.KDDProcess.Kdd_Exited(System.Object, System.EventArgs)
at System.Diagnostics.Process.OnExited()
at System.Diagnostics.Process.RaiseOnExited()
at System.Diagnostics.Process.CompletionCallback(System.Object, Boolean)
at System.Threading._ThreadPoolWaitOrTimerCallback.WaitOrTimerCallback_Context(System.Object, Boolean)
at System.Threading._ThreadPoolWaitOrTimerCallback.WaitOrTimerCallback_Context_f(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading._ThreadPoolWaitOrTimerCallback.PerformWaitOrTimerCallback(System.Object, Boolean)
Error: (07/02/2023 07:42:02 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/02/2023 07:42:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (06/30/2023 07:28:52 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
System errors:
=============
Error: (07/03/2023 08:58:34 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-H92TJ3T)
Description: DCOM got error "1053" attempting to start the service BcastDVRUserService_839db with arguments "Není k dispozici" in order to run the server:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (07/03/2023 08:58:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Uživatelská služba pro GameDVR a vysílání her_839db zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.
Error: (07/03/2023 08:58:34 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Uživatelská služba pro GameDVR a vysílání her_839db bol dosiahnutý časový limit (60000 ms).
Error: (06/30/2023 06:41:43 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50008. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50007. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50006. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50005. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50004. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Windows Defender:
================
Date: 2023-07-03 08:55:36
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-02 07:42:02
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-02 07:37:23
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-02 07:00:46
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-01 20:16:25
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
CodeIntegrity:
===============
Date: 2023-07-03 17:28:10
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_cff0174c1abadd0d\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-07-03 08:54:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO O2NKT14A 12/06/2016
Motherboard: LENOVO 0x36BF
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 76%
Total physical RAM: 8091.23 MB
Available physical RAM: 1898.39 MB
Total Virtual: 16283.23 MB
Available Virtual: 5386.71 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:117.89 GB) (Free:13.94 GB) (Model: SAMSUNG MZVLW128HEGR-000L1) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:479.5 GB) (Model: WDC WD10EZEX-08WN4A0) NTFS
Drive e: (Elements) (Fixed) (Total:1862.98 GB) (Free:226.46 GB) (Model: WD Elements 2620 USB Device) NTFS
\\?\Volume{4bac9e1f-892f-4d84-8532-a01cb260de31}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS
\\?\Volume{003ce010-b35e-46c2-9700-b79d3c51d944}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: FB131764)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: FB131755)
Partition: GPT.
==========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by User (03-07-2023 18:07:49)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3086 (X64) (2020-12-06 06:52:43)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1496144255-991381806-58249036-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1496144255-991381806-58249036-503 - Limited - Disabled)
Guest (S-1-5-21-1496144255-991381806-58249036-501 - Limited - Disabled)
User (S-1-5-21-1496144255-991381806-58249036-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-1496144255-991381806-58249036-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat Reader - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AC0F074E4100}) (Version: 23.003.20215 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Balík softvéru eID (HKLM-x32\...\{d2c66c1e-5862-43e7-abe2-9c895312112c}) (Version: 1.0.0.0 - Ministerstvo vnútra Slovenskej republiky) Hidden
Bit4id - miniLector (HKLM-x32\...\Bit4id - miniLector) (Version: 3.7 - Bit4id)
CCleaner (HKLM\...\CCleaner) (Version: 6.13 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1208.2 - Piriform Software) Hidden
Cloudflare WARP (HKLM\...\{CD74AC63-0675-4287-8122-77446741A85E}) (Version: 22.5.341.0 - Cloudflare, Inc.)
D.Launcher (x86) (HKLM-x32\...\{0DC85C46-746B-4BC5-B727-D5434DF7E5D0}) (Version: 1.2.0.2 - DITEC, a.s.)
D.Signer/XAdES .NET so zásuvnými modulmi (x86) (HKLM-x32\...\{EDB276CE-A945-4201-A552-2683B13C321F}) (Version: 4.0.24 - DITEC, a.s.)
D.Signer/XAdES .NET Tools (x86) (HKLM-x32\...\{6648F510-5044-4CA9-BC21-494A2A198B3A}) (Version: 4.0.17 - DITEC, a.s.)
D.Suite/eIDAS (x86) (HKLM-x32\...\{8d169eac-87e2-4981-825f-701b32f24d72}) (Version: 1.0.29 - DITEC, a.s.)
D.Viewer .NET (x86) (HKLM-x32\...\{73D635BE-5D6F-43D3-8C1F-63B5CD4D5953}) (Version: 4.0.2033 - DITEC, a.s.)
Disig Web Signer (HKLM-x32\...\{41C0F02D-2389-4AB5-975C-C2363E7C554C}) (Version: 2.0.7 - Disig)
Dolby Audio X2 Windows API SDK (HKLM\...\{FA0735B6-9E18-437A-A1CD-9152650FC52B}) (Version: 0.8.8.90 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{D0D32569-4680-490A-905C-5117CEAAB3EF}) (Version: 0.8.8.76 - Dolby Laboratories, Inc.)
eID Klient (HKLM-x32\...\{0E5EC102-7423-4945-8CAB-A9A1BCBDCCB7}) (Version: 4.5.0 - MV SR)
EseeCloud 3.0.3 (HKLM-x32\...\EseeCloud) (Version: 3.0.3 - My company, Inc.)
GemPcCCID (HKLM\...\{C2C14C20-A217-4FCA-B668-89B6C70B6EFF}) (Version: 2.0.7 - Gemalto)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 114.0.5735.199 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{94E05108-3E4E-4F2E-AC5F-33A1B22B779C}) (Version: 10.1.1.44 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2105.15.0.2157 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{A9B23394-82C4-4885-92F6-5C21D2AFAF14}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{AF5173C2-31A0-45CF-A5DF-F964F35B4034}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{322B58FC-7AB5-43B6-B27C-1635DD3A573C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 26.20.100.7757 - Intel Corporation)
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c3964069-17c1-45dd-85a5-949576ceeaa3}) (Version: 1.62.321.1 - Intel Corporation) Hidden
Java 8 Update 361 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180361F0}) (Version: 8.0.3610.9 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo Service Bridge (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.2.14 - Lenovo)
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo) Hidden
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\InstallShield_{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.05 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.08.01.0009 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.43.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 114.0.1823.67 - Microsoft Corporation)
Microsoft Office Access MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0015-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0016-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Slovak) 2007 (HKLM-x32\...\{90120000-00BA-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0044-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Slovak) 2007 (HKLM-x32\...\{90120000-00A1-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001A-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0018-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1026 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Hungarian) 2007 (HKLM-x32\...\{90120000-001F-040E-0000-0000000FF1CE}) (Version: 12.0.4518.1033 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Slovak) 2007 (HKLM-x32\...\{90120000-002C-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Slovak) 2007 (HKLM-x32\...\{90120000-0019-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Slovak) 2007 (HKLM\...\{90120000-002A-041B-1000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Slovak) 2007 (HKLM-x32\...\{90120000-006E-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Slovak) 2007 (HKLM-x32\...\{90120000-001B-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1039 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\OneDriveSetup.exe) (Version: 23.122.0611.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{FEA4AB50-D01D-4E6C-AC61-B2ACF1501CEE}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{4E004F00-9000-4EBC-8660-2C10404143ED}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24123 (HKLM\...\{21134089-9B59-34C8-BE11-929D26AD5207}) (Version: 14.0.24123 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24123 (HKLM\...\{FDBE9DB4-7A91-3A28-B27E-705EF7CFAE57}) (Version: 14.0.24123 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24215 (HKLM-x32\...\{69BCE4AC-9572-3271-A2FB-9423BDA36A43}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24215 (HKLM-x32\...\{BBF2AC74-720C-3CB3-8291-5E34039232FA}) (Version: 14.0.24215 - Microsoft Corporation) Hidden
neroxml (HKLM-x32\...\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}) (Version: 1.0.0 - Nero AG) Hidden
NirSoft Wireless Network Watcher (HKLM-x32\...\NirSoft Wireless Network Watcher) (Version: - )
NVIDIA Ovladače grafiky 531.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 531.68 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
PDF PW Locker Remover (HKLM-x32\...\{25889EF9-CD9A-4A83-96F1-1AC7371429DE}) (Version: 3.3.2 - PDF Protect Free)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10442 - Qualcomm)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.29093 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.19.627.2017 - Realtek)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
Telegram Desktop (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.8.3 - Telegram FZ-LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{C22F49B1-0F67-47DC-A490-E8B4B6558EA9}) (Version: 8.91.0.0 - Microsoft Corporation)
Viber (HKLM-x32\...\{BCFF3282-3299-47F2-95C3-3C0165260EB2}) (Version: 10.3.0.36 - Viber Media S.a.r.l) Hidden
Viber (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\{8ce90cb2-6f65-4b26-bd5c-e9627995f807}) (Version: 10.3.0.36 - Viber Media S.a.r.l)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\Wargaming.net Game Center) (Version: 23.2.2.2776 - Wargaming.net)
WD Desktop App 2.1.0.335 (HKLM-x32\...\{fdd55732-32b6-4783-9b31-db9ad9f96792}) (Version: 2.1.0.335 - Western Digital Corporation) Hidden
WD Desktop App 2.1.0.335 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.335 - Western Digital Corporation) Hidden
WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 4.4.407 - Western Digital Technologies, Inc.)
WD SES Driver Setup (HKLM-x32\...\{D9ABF771-729C-471F-A6DF-1010527DB376}) (Version: 2.1.0 - Western Digital) Hidden
WhatsApp (Outdated) (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WhatsApp) (Version: 2.2319.9 - WhatsApp)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\2314027414) (Version: - Wargaming.net)
World_of_Warships (HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\WOWS.WW.PRODUCTION) (Version: - Wargaming.net)
X-Lite 3.0 (HKLM-x32\...\X-Lite 1.5_is1) (Version: - CounterPath Solutions Inc.)
Packages:
=========
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-16] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1037.0_x64__8j3eq9eme6ctt [2023-06-13] (INTEL CORP)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2305.16.0_x64__k1h2ywk1493x8 [2023-06-12] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.4.0_x64__w1wdnht996qgy [2023-06-24] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-06-05] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.16501.20210.0_x86__8wekyb3d8bbwe [2023-06-24] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-10] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.616.100_x64__8wekyb3d8bbwe [2023-06-22] (Microsoft Corporation)
Ovládacie centrum pre grafiku Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5131.0_x64__8j3eq9eme6ctt [2023-07-02] (INTEL CORP) [Startup Task]
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-28] (Microsoft Corporation)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2324.6.0_x64__cv1g1gvanyjgm [2023-07-02] (WhatsApp Inc.) [Startup Task]
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x64__8wekyb3d8bbwe [2023-07-02] (Microsoft Corporation)
WindowsAppRuntime.1.3 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.3_3000.882.2207.0_x86__8wekyb3d8bbwe [2023-07-02] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
SSODL: WDFSMountNotificator-wdfsconnect2017 - {B7221D65-6632-4B2A-926A-00386CBCE4DF} - C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {B7221D65-6632-4B2A-926A-00386CBCE4DF} - C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects: Virtual Storage Mount Notification -> {B7221D65-6632-4B2A-926A-00386CBCE4DF} => C:\WINDOWS\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {B7221D65-6632-4B2A-926A-00386CBCE4DF} => C:\WINDOWS\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [File not signed]
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WDDesktopContextMenu] -> {f97d48aa-d72e-39ad-bf37-0b90de70ca2a} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [WDDesktopContextMenu] -> {f97d48aa-d72e-39ad-bf37-0b90de70ca2a} => C:\Program Files\WD Desktop App\kda.DLL [2022-09-29] (Western Digital Technologies, Inc. -> Western Digital Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvla.inf_amd64_a6a2da7e042e0376\nvshext.dll [2023-05-26] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-03-19 15:12 - 2018-03-19 15:12 - 000113678 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libgcc_s_dw2-1.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 001542158 _____ () [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libstdc++-6.dll
2011-11-03 20:48 - 2011-11-03 20:48 - 000056320 _____ () [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skfunc.dll
2022-11-17 06:27 - 2022-11-17 06:27 - 001987072 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll
2022-11-17 06:27 - 2022-11-17 06:27 - 000117248 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libegl.dll
2022-11-17 06:27 - 2022-11-17 06:27 - 002250240 _____ () [File not signed] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libglesv2.dll
2022-09-29 18:34 - 2022-09-29 18:34 - 002637985 _____ () [File not signed] C:\Program Files\WD Desktop App\libfusewdfs.dll
2011-10-21 22:41 - 2011-10-21 22:41 - 000061952 _____ (LITE-ON Corp.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skhooks.dll
2011-11-18 19:07 - 2011-11-18 19:07 - 000054272 _____ (LITE-ON TECHNOLOGY CORP.) [File not signed] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\SKHidKbd.dll
2018-03-19 15:12 - 2018-03-19 15:12 - 000047104 _____ (MingW-W64 Project. All rights reserved.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\libwinpthread-1.dll
2019-07-01 14:51 - 2019-07-01 14:51 - 006623384 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Ditec\DLauncher\Qt5Core.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_361\bin\ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_361\bin\jp2ssv.dll [2023-01-09] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;c:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;c:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Cloudflare\Cloudflare WARP\;C:\Program Files (x86)\eID_klient\
HKU\S-1-5-21-1496144255-991381806-58249036-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\LenovoWallPaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "Cloudflare WARP.lnk"
HKLM\...\StartupApproved\Run32: => "EAC_MW_klient"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_EA977365BF5B2185FA52414E130E9AF9"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "eyeBeam SIP Client"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1496144255-991381806-58249036-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{2A0F24BE-0417-4B7C-82E0-AEA49A5356A2}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3EFEAA9B-8E1C-466F-9831-189CE8295854}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{6080D66F-0A15-409F-B9A3-D282267C8458}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{517FA03E-29DF-4BDE-95D1-91029A573004}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{FA7DBE6C-B9A9-4798-9DDE-6FC0E4FE169C}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{0F7A0131-4AEE-48A9-B4AB-F6A23E62E44D}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{019D165E-A783-4C39-86D3-0A8FD000C4D1}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D4A89DBE-2E5C-4FBE-93ED-9F06AF475218}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D7BB254C-3614-49B3-A3BB-BE7E93812E12}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{9758F37C-1793-44E7-A5B7-D2D28DF780EF}C:\users\user\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\user\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{CEDD63DE-AE5E-4D08-84FE-3220C65B3BB0}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{64DCF168-9DCF-4125-BDB5-E881E6203267}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{331E87CE-36BC-47C6-9148-6B8C87826BA1}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [UDP Query User{EA4170DF-452A-452C-A8C1-F23E2A456910}C:\program files (x86)\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files (x86)\counterpath\x-lite\x-lite.exe () [File not signed]
FirewallRules: [TCP Query User{44905811-9B97-4AE0-B73F-958796A7B300}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{E5EA4172-128A-49AE-BD0F-4CA1CE87067D}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{BC60B747-848A-47CF-B5BF-6089E8D7CFF4}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{CFE743D3-8BF9-4736-B25C-C035E8E17071}] => (Block) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [TCP Query User{605ED459-90F6-4154-8240-19D04E9DBEAE}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{10E7DA12-E224-4476-9339-2E684D4ACB4C}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{D50A21ED-BEFD-495C-9E92-52774C1256E6}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
FirewallRules: [UDP Query User{4C422C61-43B3-47DA-80B6-4B31EFA74A69}C:\users\user\appdata\local\viber\viber.exe] => (Allow) C:\users\user\appdata\local\viber\viber.exe (Viber Media S.à r.l. -> Viber Media S.Ã r.l.)
FirewallRules: [TCP Query User{AB882D7B-A6FD-4E27-8CD1-81130BCFB503}C:\users\user\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [UDP Query User{7F80D843-15C9-429D-89A2-1345EABCE936}C:\users\user\appdata\roaming\telegram desktop\telegram.exe] => (Allow) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{6CC495C7-51BD-4B6B-AF14-8BF90DAC3E5A}] => (Block) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{B44FBF90-BE2C-490A-B5C0-86409A6D627F}] => (Block) C:\users\user\appdata\roaming\telegram desktop\telegram.exe (Telegram FZ-LLC -> Telegram FZ-LLC)
FirewallRules: [{B0F7E24F-FAD8-42AF-8E71-8F38ED9764E5}] => (Allow) C:\Program Files\Cloudflare\Cloudflare WARP\warp-svc.exe (Cloudflare, Inc. -> )
FirewallRules: [TCP Query User{B457D1F4-52DC-4E29-B4B0-A3868001E334}C:\program files (x86)\eseecloud\eseecloud.exe] => (Allow) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [UDP Query User{D058892F-FE80-4A14-8BB8-86F9BED7B59B}C:\program files (x86)\eseecloud\eseecloud.exe] => (Allow) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [{8847DA20-9CC3-4A2C-B9E8-1ABF180D68E8}] => (Block) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [{AC6B875D-0DE8-4C93-9305-4AD521DF65FF}] => (Block) C:\program files (x86)\eseecloud\eseecloud.exe (Guangzhou Yuege Electronic Trading Co., Ltd. -> comelit, Inc.)
FirewallRules: [TCP Query User{8F808F16-DDBE-4245-9211-B9C0E544C7ED}C:\program files\java\jre1.8.0_361\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_361\bin\javaw.exe
FirewallRules: [UDP Query User{64AEE14F-13BC-4878-AC7C-9CFB18A8CE1B}C:\program files\java\jre1.8.0_361\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_361\bin\javaw.exe
FirewallRules: [{6F0984AC-7666-4DA8-BCA8-5D24A3DC7892}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{809D3915-7E76-46AE-8903-38C804AB3FE7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{8762CE30-1CC4-476C-8FA7-77329DE829B2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.16501.20210.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{130054E2-2A44-44A5-BB9B-B8E5303E46B0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00150885-CA1D-435D-A8A0-A9B604101BD1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{00E8C999-222F-47C0-A566-5C780BD28C2E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E10FA56E-4AEF-40CB-A038-258463D90FF4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DE31AA79-A378-4338-8D1E-5586A4CD1DD9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{57AEF7B3-951B-4AA0-9259-CC2D8B451CFC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\114.0.1823.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:117.89 GB) (Free:13.94 GB) (12%)
==================== Faulty Device Manager Devices ============
Name: Unknown USB Device (Device Descriptor Request Failed)
Description: Unknown USB Device (Device Descriptor Request Failed)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Event log errors: ========================
Application errors:
==================
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/03/2023 08:58:44 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (07/03/2023 08:58:36 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: kdd.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentException
at System.Diagnostics.Process.GetProcessById(Int32, System.String)
at System.Diagnostics.Process.GetProcessById(Int32)
at wdc.DesktopApp.ServiceWrapper.KDDProcess.Start()
at wdc.DesktopApp.ServiceWrapper.KDDProcess.Kdd_Exited(System.Object, System.EventArgs)
at System.Diagnostics.Process.OnExited()
at System.Diagnostics.Process.RaiseOnExited()
at System.Diagnostics.Process.CompletionCallback(System.Object, Boolean)
at System.Threading._ThreadPoolWaitOrTimerCallback.WaitOrTimerCallback_Context(System.Object, Boolean)
at System.Threading._ThreadPoolWaitOrTimerCallback.WaitOrTimerCallback_Context_f(System.Object)
at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading._ThreadPoolWaitOrTimerCallback.PerformWaitOrTimerCallback(System.Object, Boolean)
Error: (07/02/2023 07:42:02 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
Error: (07/02/2023 07:42:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volume Shadow Copy Service information: The COM Server with CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} and name CEventSystem cannot be started. [0x8007045b, Probíhá vypnutí systému.
]
Error: (06/30/2023 07:28:52 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volume Shadow Copy Service error: Unexpected error calling routine CoCreateInstance. hr = 0x8007045b, Probíhá vypnutí systému.
.
System errors:
=============
Error: (07/03/2023 08:58:34 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-H92TJ3T)
Description: DCOM got error "1053" attempting to start the service BcastDVRUserService_839db with arguments "Není k dispozici" in order to run the server:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (07/03/2023 08:58:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Uživatelská služba pro GameDVR a vysílání her_839db zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.
Error: (07/03/2023 08:58:34 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Uživatelská služba pro GameDVR a vysílání her_839db bol dosiahnutý časový limit (60000 ms).
Error: (06/30/2023 06:41:43 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50008. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50007. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50006. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50005. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Error: (06/30/2023 06:41:42 AM) (Source: HTTP) (EventID: 15005) (User: )
Description: Unable to bind to the underlying transport for 127.0.0.1:50004. The IP Listen-Only list may contain a reference to an interface which may not exist on this machine. The data field contains the error number.
Windows Defender:
================
Date: 2023-07-03 08:55:36
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-02 07:42:02
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-02 07:37:23
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-02 07:00:46
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
Date: 2023-07-01 20:16:25
Description:
Antivirová ochrana v programu Microsoft Defender scan has been stopped before completion.
Scan Type: Antimalwarový program
Scan Parameters: Rychlé prohledávání
CodeIntegrity:
===============
Date: 2023-07-03 17:28:10
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_cff0174c1abadd0d\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-07-03 08:54:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO O2NKT14A 12/06/2016
Motherboard: LENOVO 0x36BF
Processor: Intel(R) Core(TM) i7-7700 CPU @ 3.60GHz
Percentage of memory in use: 76%
Total physical RAM: 8091.23 MB
Available physical RAM: 1898.39 MB
Total Virtual: 16283.23 MB
Available Virtual: 5386.71 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:117.89 GB) (Free:13.94 GB) (Model: SAMSUNG MZVLW128HEGR-000L1) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:479.5 GB) (Model: WDC WD10EZEX-08WN4A0) NTFS
Drive e: (Elements) (Fixed) (Total:1862.98 GB) (Free:226.46 GB) (Model: WD Elements 2620 USB Device) NTFS
\\?\Volume{4bac9e1f-892f-4d84-8532-a01cb260de31}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS
\\?\Volume{003ce010-b35e-46c2-9700-b79d3c51d944}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: FB131764)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: FB131755)
Partition: GPT.
==========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 16F2A91F)
Partition: GPT.
==================== End of Addition.txt =======================
Re: Prosím o kontrlu
Opozdene reaguje, ignoruje ma už je to zopár dní
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrlu
Zdravím!
Otevřte poznám kový blok a zkopírujte do něj:
Otevřte poznám kový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
Task: {2323ECBE-C559-4572-B0F6-B454F9002816} - System32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {23477824-3C53-4AC5-9BCD-1B967CC324DD} - System32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}
C:\DumpStack.log.tmp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrlu
Fix result of Farbar Recovery Scan Tool (x64) Version: 08-07-2023
Ran by User (09-07-2023 07:31:41) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {2323ECBE-C559-4572-B0F6-B454F9002816} - System32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {23477824-3C53-4AC5-9BCD-1B967CC324DD} - System32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2323ECBE-C559-4572-B0F6-B454F9002816}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2323ECBE-C559-4572-B0F6-B454F9002816}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23477824-3C53-4AC5-9BCD-1B967CC324DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23477824-3C53-4AC5-9BCD-1B967CC324DD}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}" => not found
C:\DumpStack.log.tmp => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35816170 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 5706466 B
Edge => 0 B
Chrome => 305872957 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 5830 B
User => 81942285 B
RecycleBin => 808967 B
EmptyTemp: => 411.5 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 07:32:01 ====
Ran by User (09-07-2023 07:31:41) Run:1
Running from C:\Users\User\Desktop
Loaded Profiles: User
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {2323ECBE-C559-4572-B0F6-B454F9002816} - System32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
Task: {23477824-3C53-4AC5-9BCD-1B967CC324DD} - System32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-05] (Google Inc -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}
C:\DumpStack.log.tmp
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2323ECBE-C559-4572-B0F6-B454F9002816}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2323ECBE-C559-4572-B0F6-B454F9002816}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23477824-3C53-4AC5-9BCD-1B967CC324DD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23477824-3C53-4AC5-9BCD-1B967CC324DD}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{F4DBD747-BB77-4554-B908-C1E972E39C9E}" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{096B2A35-A03D-45D1-AD04-0196A9F39C4E}" => not found
C:\DumpStack.log.tmp => moved successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35816170 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 5706466 B
Edge => 0 B
Chrome => 305872957 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 5830 B
User => 81942285 B
RecycleBin => 808967 B
EmptyTemp: => 411.5 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 07:32:01 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrlu
OK, smazáno. Šlo jen o zbytečnosti.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrlu
Veľmi pekne ďakujem
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrlu
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?