Dobrý den,
posledních pár dnů mi přestal notebook zvládat přehrávání videí - zasekává se opakovaně, nutno natvrdo odpojit od proudu. Pomůžete prosím? Děkuju
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by User (administrator) on DESKTOP-Q0A57OS (Acer Aspire E5-551G) (15-10-2023 17:36:21)
Running from C:\Users\User\Desktop\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\BOINC\boincmgr.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe
(DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atieclxx.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(explorer.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe
(explorer.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boinctray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atiesrxx.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\23.199.0924.0001\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrRec.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69664 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [8280608 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4131264 2023-10-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [ScreenRec] => C:\Users\User\AppData\Local\StreamingVideoProvider\ScreenRec_app\screenrec.exe (No File)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [utweb] => "C:\Users\User\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (No File)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374888 2023-09-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [BingWallpaperApp] => C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14037384 2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\boinc.scr [956448 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Windows x64\Print Processors\shm4mPC: C:\Windows\System32\spool\prtprocs\x64\shm4mpc.dll [73832 2019-07-21] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\shm4m Langmon: C:\WINDOWS\system32\shm4mlm.dll [52840 2019-07-21] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.70\Installer\chrmstp.exe [2023-10-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2019-04-22] () [File not signed] <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {6D17877F-22AD-415E-A8B6-011EE51ECEB2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-08-02] (Adobe Inc. -> Adobe Inc.)
Task: {9A360BBE-88C4-4BD0-8331-A3C10659D22C} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F0DF36A-7BBB-4870-A87C-4A004469808A} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem119.0.6042.0{111B82BD-7E71-4B97-A22F-423C6D2EE8F5} => C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC) <==== ATTENTION
Task: {84868DF7-F46A-4BA9-982F-CC01CF3A52A5} - System32\Tasks\iTop Screen Recorder SkipUAC (User) => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14520320 2021-12-07] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {5D77C268-EC45-4F16-87B0-63D5638B0C90} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14520320 2021-12-07] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {ED4BB296-58C3-4985-BD67-F5B6D59F3ACC} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files\iTop Screen Recorder\iScrInit.exe [1549824 2021-12-03] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {7718A876-0F67-40CB-ADF3-BAD68C80B1AA} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files\iTop Screen Recorder\AutoUpdate.exe [2822144 2021-11-29] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {4C70F4CB-EB5A-422E-9425-12F15B141FB4} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {E90371C0-517E-4EDA-8AB6-2F905027BF13} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42C64FA4-487E-43B5-BE68-673170D131A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {37D51B46-6791-4F58-9B05-B86197F6149B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86CA072C-972D-4EEC-9EEA-1FD4FA11C456} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4264766A-B98E-4E27-BBE0-5E8A9C410709} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A43FB70E-B897-4583-9B23-CFA5EB0B6693} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-11] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2B14C973-912D-4B36-88DF-703961CE15E7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {C978410F-2884-4C5A-A946-EEE5DA23A9C9} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [62752 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A7DC021F-7303-4629-A016-7ED4BD3DFA3C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [268576 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{90bd0f5d-10cd-4664-a1f7-f87523fe24d2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{98b04665-33cb-4c69-b93e-f548c47f0793}: [DhcpNameServer] 192.168.204.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-15]
Edge Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-29]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13]
FireFox:
========
FF DefaultProfile: h532vs4c.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h532vs4c.default [2023-04-14]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release [2023-10-15]
FF Extension: (Video DownloadHelper) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-25]
FF Extension: (No Name) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-03]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-10-15]
CHR DownloadDir: C:\Users\User\Desktop
CHR Notifications: Default -> hxxps://en.softonic.com
CHR Extension: (MrtkiBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmlajoobakfffnddclhgdbfomjmaeeen [2021-11-08]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-30]
CHR Extension: (Flash Player Emulator 2023) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecbnojockcgfohpopbphhgefkfbigcej [2023-08-16]
CHR Extension: (Return YouTube Dislike) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2023-10-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-30]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-10-12]
CHR Extension: (Screen Recorder) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdopnakmnlnccgpfpmjmdjjohmcdgabp [2022-07-21]
CHR Extension: (Flash Player) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nggcofmehaobnolkeaemkchbceihlkoj [2022-08-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-08]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-30]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-12-01]
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-30]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-30]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-30]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-30]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-30]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-30]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-30]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-08-02] (Adobe Inc. -> Adobe Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-06-29] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed]
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated -> Acer Incorporated)
S2 GoogleUpdaterInternalService119.0.6042.0; C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC)
S2 GoogleUpdaterService119.0.6042.0; C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2019-10-10] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [23312 2021-05-17] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237376 2019-10-11] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-10-11] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
S3 MpKslbb1bf027; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{463C230B-0743-467F-AF53-D5CD93B3B73A}\MpKslDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-15 17:36 - 2023-10-15 17:38 - 000019279 _____ C:\Users\User\Desktop\FRST.txt
2023-10-15 17:35 - 2023-10-15 17:37 - 000000000 ____D C:\FRST
2023-10-15 17:34 - 2023-10-15 17:35 - 000000000 ____D C:\Users\User\Documents\plocha
2023-10-15 17:33 - 2023-10-15 17:33 - 002383360 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2023-10-15 14:56 - 2023-10-15 17:42 - 804486433 _____ C:\Users\User\Desktop\Game Over, Man Komedie CZ titulky.mkv.crdownload
2023-10-15 10:47 - 2023-10-15 11:21 - 618856030 _____ C:\Users\User\Desktop\Jednotky vesmírného nasazení (Space Force) S01E10 Přiměřená reakce.mkv.crdownload
2023-10-15 00:25 - 2023-10-15 01:14 - 852973134 _____ C:\Users\User\Desktop\Dr. House - S03E10 - Šťastné mini Vánoce.mkv
2023-10-14 17:57 - 2023-10-15 00:20 - 2724637497 _____ C:\Users\User\Desktop\Men-WEBRip-CZ-2022.mkv
2023-10-12 14:06 - 2023-10-12 14:06 - 000000000 ____D C:\Users\User\AppData\Local\Backup
2023-10-11 17:41 - 2023-10-11 17:41 - 000000000 ____D C:\ProgramData\PLUG
2023-10-11 17:27 - 2023-10-12 00:23 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-11 16:49 - 2023-10-11 16:49 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 16:25 - 2023-10-11 16:25 - 000000000 ___HD C:\$WinREAgent
2023-10-11 13:41 - 2023-10-11 13:41 - 000000000 ____D C:\Program Files\RUXIM
2023-09-22 19:43 - 2023-09-22 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\State of War 2 Arcon
2023-09-22 19:41 - 2023-09-22 19:44 - 000000000 ____D C:\Program Files (x86)\sow2arcon
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-15 17:42 - 2023-03-29 23:44 - 000000000 ____D C:\ProgramData\BOINC
2023-10-15 17:37 - 2022-02-08 22:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-15 17:36 - 2022-06-26 02:10 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-15 17:36 - 2019-12-07 16:41 - 000717850 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-15 17:36 - 2019-12-07 16:41 - 000144992 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-15 17:36 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-15 17:35 - 2022-07-21 15:27 - 000000000 ____D C:\Program Files\iTop Screen Recorder
2023-10-15 17:31 - 2021-11-08 18:40 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-10-15 17:31 - 2021-11-08 10:55 - 000000000 ___RD C:\Users\User\OneDrive
2023-10-15 17:30 - 2022-06-26 02:13 - 000003124 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-10-15 17:30 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-15 17:29 - 2022-06-26 02:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-15 17:29 - 2022-06-26 02:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-15 17:29 - 2021-11-08 10:44 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-15 14:54 - 2021-11-08 21:34 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2023-10-15 11:46 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-15 11:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-15 10:49 - 2021-11-08 10:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-15 00:47 - 2021-11-28 22:11 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Word
2023-10-14 22:03 - 2021-11-28 22:13 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Excel
2023-10-14 19:58 - 2023-04-14 16:10 - 000000000 ____D C:\Log
2023-10-14 15:13 - 2021-11-08 10:59 - 000000000 ____D C:\WINDOWS\system32\AMD
2023-10-14 15:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-12 00:29 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-12 00:23 - 2022-06-26 02:00 - 000442944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-12 00:23 - 2021-11-08 18:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-12 00:22 - 2021-11-08 11:00 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-10-12 00:22 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-10-12 00:21 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-12 00:21 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-12 00:20 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-12 00:20 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-12 00:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-11 21:32 - 2021-11-08 18:40 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-11 17:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 17:07 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-11 17:07 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-11 17:07 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-11 16:48 - 2022-06-26 02:03 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 15:13 - 2021-11-08 11:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 15:05 - 2021-11-08 11:04 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-11 13:43 - 2022-06-26 02:48 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-11 13:43 - 2021-11-08 18:38 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-11 13:42 - 2022-06-26 02:13 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1754279021-717169719-1477358722-1001
2023-10-11 13:42 - 2022-06-26 02:13 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1754279021-717169719-1477358722-1001
2023-10-11 13:42 - 2022-06-26 02:02 - 000002374 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-07 19:30 - 2023-02-23 22:51 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-07 13:57 - 2023-02-23 22:59 - 000000000 ____D C:\Users\User\AppData\Local\Steam
2023-10-06 23:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-10-05 14:44 - 2021-11-08 10:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-10-04 19:48 - 2021-12-25 21:07 - 000000000 ____D C:\Users\User\AppData\Local\AMD_Common
2023-09-30 10:18 - 2022-10-20 16:50 - 000095736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-09-30 10:18 - 2022-10-20 16:50 - 000075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-09-30 10:18 - 2021-12-24 21:42 - 002709096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-09-30 10:18 - 2021-12-24 21:42 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000181864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2023-09-21 20:28 - 2021-11-26 19:15 - 000000000 ____D C:\Users\User\Documents\povídky
2023-09-20 20:54 - 2021-12-22 21:57 - 000000000 ____D C:\Program Files\Guild Wars 2
2023-09-15 14:16 - 2022-05-14 00:03 - 000000000 ____D C:\XboxGames
==================== Files in the root of some directories ========
2022-07-21 19:53 - 2022-07-21 19:53 - 000000128 ____H () C:\Users\User\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by User (15-10-2023 17:44:19)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2022-06-26 00:13:42)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1754279021-717169719-1477358722-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1754279021-717169719-1477358722-503 - Limited - Disabled)
Guest (S-1-5-21-1754279021-717169719-1477358722-501 - Limited - Disabled)
User (S-1-5-21-1754279021-717169719-1477358722-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-1754279021-717169719-1477358722-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8109 - Acer Incorporated)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601052}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.5.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Balíček ovladače systému Windows - Broadcom Corporation (bcbtums) Bluetooth (06/30/2015 12.0.1.653) (HKLM\...\96DD37B5CEC116731F3341757CD752145849002A) (Version: 06/30/2015 12.0.1.653 - Broadcom Corporation)
Bing Wallpaper (HKLM-x32\...\{243BC890-C6FB-42B3-8036-75B1CCA94D59}) (Version: 2.0.0.4 - Microsoft Corporation)
BOINC (HKLM\...\{F2444835-CE6A-483B-9966-D3EDD1FD3546}) (Version: 7.16.20 - Space Sciences Laboratory, U.C. Berkeley)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.1.710 - Broadcom Corporation)
Call of Duty 2 CZ (HKLM-x32\...\Call of Duty 2 CZ 1.3) (Version: 1.3 - Activision)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.70 - Google LLC)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes of Might and Magic V Sběratelská Edice (HKLM-x32\...\Heroes of Might and Magic V Sběratelská EdiceVerze: h5 1.0, h5hof 2.1, h5tote 3.0) (Version: Verze: h5 1.0, h5hof 2.1, h5tote 3.0 - Ubisoft By_Etnik23)
iTop Screen Recorder (HKLM-x32\...\iTop Screen Recorder_is1) (Version: 2.0.0.431 - iTop Inc.)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft Age of Empires (HKLM-x32\...\Age of Empires) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 117.0.2045.60 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2010 (HKLM\...\{90140000-0015-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (HKLM\...\{90140000-0016-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (HKLM\...\{90140000-00A1-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (Czech) 2010 (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (HKLM\...\{90140000-002C-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (HKLM\...\{90140000-0019-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2010 (HKLM\...\{90140000-0043-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (HKLM\...\{90140000-006E-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (HKLM\...\{90140000-001B-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.1 - Mozilla)
Oracle VM VirtualBox 6.0.14 (HKLM\...\{8E519428-0DC5-4A01-818A-73155A0AF8AF}) (Version: 6.0.14 - Oracle Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.55 - Qualcomm Atheros)
Resident Evil 4: UHD Edition (HKLM-x32\...\Resident Evil 4: UHD Edition_is1) (Version: - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}_Office14.SingleImage_{235F521F-C627-4957-A641-C4C161F78531}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.SingleImage_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.SingleImage_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}_Office14.SingleImage_{2E7C03CB-FE0A-4B95-BA37-742CD596760C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0405-1000-0000000FF1CE}_Office14.SingleImage_{FF4FCFC2-4935-49E4-B35E-5FCF7343412B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0405-1000-0000000FF1CE}_Office14.SingleImage_{62E2481E-63BB-4481-A0CE-071D6D663B1B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0405-1000-0000000FF1CE}_Office14.SingleImage_{BFFA0FE1-0823-4382-9DD3-49DA02375BBA}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
State of War 2: Arcon (HKLM-x32\...\State of War 2: Arcon_is1) (Version: - CINEMAX, s.r.o.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TagScanner (64bit) (HKLM\...\TagScanner 6.1.14 (64bit)_is1) (Version: 6.1.14 - Sergey Serkov)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
The Lord of the Rings The Battle for Middle-Earth Collection MULTi9 - ElAmigos version 2.01 (HKLM-x32\...\{5EE9E528-FC92-4C4F-AEE4-BCAFA7A2F6CF}_is1) (Version: 2.01 - Electronic Arts)
The Lord of the Rings, The Rise of the Witch-king (HKLM-x32\...\{B931FB80-537A-4600-00AD-AC5DEDB6C25B}) (Version: - )
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.19 - VideoLAN)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos)
Packages:
=========
Age of Empires IV -> C:\Program Files\WindowsApps\Microsoft.Cardinal_8.2.218.0_x64__8wekyb3d8bbwe [2023-09-27] (Microsoft Studios)
Age of Empires IV: 4K HDR Video Pack -> C:\Program Files\WindowsApps\Microsoft.4KAssetPack_5.0.11009.0_x64__8wekyb3d8bbwe [2022-02-09] (Microsoft Studios)
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_4.3.8.2_x64__h6adky7gbf63m [2023-10-02] (Gameloft SE)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-11] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-03-27] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-03-27] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-26] (Microsoft Corporation) [MS Ad]
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-11] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0 [2023-10-11] (Spotify AB) [Startup Task]
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.928.1334.242_neutral__8wekyb3d8bbwe [2023-09-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\ir41_32.dll [756736 1997-07-06] (Intel Corporation) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Loaded Modules (Whitelisted) =============
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2013-10-17 16:48 - 2013-10-17 16:48 - 000106496 _____ () [File not signed] C:\Program Files\BOINC\zlib1.dll
2016-12-18 16:46 - 2016-12-18 16:46 - 000362496 _____ (The cURL library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\BOINC\libcurl.dll
2019-12-25 21:46 - 2019-12-25 21:46 - 002287616 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\BOINC\LIBEAY32.dll
2019-12-25 21:46 - 2019-12-25 21:46 - 000386560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\BOINC\SSLEAY32.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000735232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000480256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData:iSpring Solutions [128]
AlternateDataStreams: C:\Users\All Users:iSpring Solutions [128]
AlternateDataStreams: C:\ProgramData\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\AppData\Roaming:iSpring Solutions [128]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\WPImages\20231015.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C"
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "ScreenRec"
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{F1713CCC-6676-40B1-9498-D644CDED5EA5}C:\program files\age of empires 2 cz!!!!\empires2.exe] => (Allow) C:\program files\age of empires 2 cz!!!!\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [TCP Query User{67CF65F4-9013-4571-B80F-D913DC9220F8}C:\program files\age of empires 2 cz!!!!\empires2.exe] => (Allow) C:\program files\age of empires 2 cz!!!!\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [UDP Query User{E3FD4045-3BAF-4981-A4F0-3AA96C409A1C}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CFC879F8-ED58-4E23-ADAF-F5EFF82FF300}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D897DAF2-1CDC-4A59-B7CC-5784342A38C4}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [TCP Query User{F9E898D5-5544-4221-9CCA-5CBB5E144AE6}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [UDP Query User{97EA95A5-B9E2-42FC-8B84-E11466AB4017}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [TCP Query User{EB9F7469-E4B3-4852-8851-322B14FCDB40}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [{CA616710-ED69-4D56-9416-A20FAF9A0725}] => (Allow) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe => No File
FirewallRules: [UDP Query User{3856D956-C056-4500-8F6B-C71B1BDAD271}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A105E004-1757-4236-A063-9C34281AFB6D}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{AC188889-1858-442F-91B8-4123AF2DD98E}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [TCP Query User{3CB6DBAC-E83C-43E3-B1D1-9C6136595A5F}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [UDP Query User{4ECEBBBF-96B7-4D8A-AF4D-81AD4BBFB3F3}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{A836A35C-8B6A-44CD-B072-222EC24D0F66}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [{C1CE4616-F9D9-4A01-A818-1566B0B033B9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{20C5348B-509E-4B69-87DF-0D0F20CE3E45}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E83DD6A0-0872-471A-BF5F-85AE7C553DA7}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [{8F88A77B-9241-41EA-9E98-EE5D25BE2B1B}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [TCP Query User{B759BADD-DD86-4CCF-AC7C-7306B2B64249}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D9384F78-A600-423C-A3B1-7514D5D57FC2}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A3BB8FCB-8674-4C95-B990-27240DD901CB}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [UDP Query User{030A6890-90E5-4A70-B7F9-1CD4ED689233}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{7BBC56A9-47A2-4FD8-8F1E-47434F99D22A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [UDP Query User{67F856E0-2C71-47C9-B9F3-9B8C5A061A0A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [{F8BB15A7-5A66-4028-B2D1-785551D88F5A}] => (Allow) C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe => No File
FirewallRules: [TCP Query User{826E5165-0FBB-4A2C-88AD-128DA0394790}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [UDP Query User{FBD73092-C77C-496F-9895-861321BBE85A}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [{798889BA-A045-4228-A114-5B2B2A50A813}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1EC29FA9-5677-48F5-B00E-ED7CC83275CB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AC3BEACA-9DF5-4967-8E64-C037EB267E3F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CB7D225E-6AC3-495C-A3EC-8AD386941760}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{E1ECD438-C20E-405B-91A9-453B92B424FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AC6ACEE8-2D00-4FDA-942E-0713ED47C6DB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B4FC2F1-CA3B-499E-8E22-F4FDD8F7BA05}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{77E4E9F6-B3D1-4332-8763-F22782C53B26}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{195D8E3F-BDD1-43B4-8E08-30B33466D883}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{54989E01-9801-4B5A-AAB2-3C22762D6E26}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0E509F6F-BCEB-46CD-BB7E-8ABC208CFB3E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{536C284E-8A10-4211-A05E-88DA7B84BC3B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2C7CED05-426D-44A9-953E-3B9275172E8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{29D10430-0FAE-4D75-861F-5FA3B980493C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6098255A-607F-4119-B87E-6626DDCD0B29}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{724D4180-89A1-4546-8F22-7EFF8833FF33}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{461806C7-9FFB-4177-B873-F501F864D555}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{66773410-3A56-4E8C-98DF-98BB29140039}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C0400A5-BC6F-4E8D-8A21-DCBB5F7BC580}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CE45F6F5-7C25-44F6-B2EF-45947C784841}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
==================== Restore Points =========================
11-10-2023 16:15:57 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/15/2023 12:56:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1e2c
Čas spuštění: 01d9ff509665b1ce
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: 0682ffaa-21db-4656-aa1d-6a1d27ebf51c
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:15:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 189c
Čas spuštění: 01d9ff5066144d96
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: dfaca48b-55c1-4bb0-8aeb-02eaa98cecf5
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:14:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 27c8
Čas spuštění: 01d9ff505d5f2c60
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: 07d6a22e-f83c-4416-a2ba-9e11c8627682
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:14:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 151c
Čas spuštění: 01d9fecd9dfec0d6
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: d49adacb-51c0-442f-a998-a0918c21065a
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/14/2023 08:43:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Název chybujícího modulu: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000003d7b82
ID chybujícího procesu: 0x10b0
Čas spuštění chybující aplikace: 0x01d9fecdaac928b5
Cesta k chybující aplikaci: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
Cesta k chybujícímu modulu: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
ID zprávy: 7e980c86-e4b9-429a-85e7-d1641fd34b9c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/14/2023 06:40:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Setup.exe_Microsoft Setup Bootstrapper, verze: 14.0.7011.1000, časové razítko: 0x5137020a
Název chybujícího modulu: combase.dll, verze: 10.0.19041.3570, časové razítko: 0xd690d294
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000072d71
ID chybujícího procesu: 0x2b58
Čas spuštění chybující aplikace: 0x01d9febd27005bd8
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: d89b0e9f-e263-4b21-baa9-dac4833d03d9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/14/2023 06:40:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Setup.exe_Microsoft Setup Bootstrapper, verze: 14.0.7011.1000, časové razítko: 0x5137020a
Název chybujícího modulu: combase.dll, verze: 10.0.19041.3570, časové razítko: 0xd690d294
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000072d71
ID chybujícího procesu: 0x838
Čas spuštění chybující aplikace: 0x01d9febd0df95387
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: c02c6b5c-8e22-47f5-bec5-c6ed907e6181
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/14/2023 03:17:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Název chybujícího modulu: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000003d7b82
ID chybujícího procesu: 0x1f78
Čas spuštění chybující aplikace: 0x01d9fea0a37feba7
Cesta k chybující aplikaci: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
Cesta k chybujícímu modulu: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
ID zprávy: 2f639d11-376f-401b-b4e9-48e23b118a8e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/15/2023 05:32:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/15/2023 05:32:06 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (10/15/2023 05:31:48 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/15/2023 05:30:01 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/15/2023 05:30:00 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/15/2023 05:29:58 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (17:04:39, 15.10.2023) bylo neočekávané.
Error: (10/15/2023 05:06:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/15/2023 05:06:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================
Date: 2023-10-14 17:55:22
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {30811D82-4205-48F3-A6E5-B0878A420EC9}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-13 18:08:42
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4817F7E1-0E97-4A87-A7CE-F456908FB2DF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-12 21:21:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {CFF11F01-E10A-4B32-82B8-4B5A38188BAC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-12 20:52:26
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {F9B31F4B-D7FC-4546-9933-E9FDADC7A220}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-11 15:04:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {34976046-445B-44E8-A6EB-B32945721F0E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-07-20 20:48:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.887.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-04 20:08:23
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3531.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x8024402f
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-03 18:22:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3393.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x8024402c
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-02 17:20:27
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3313.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-05-20 15:31:02
Description:
Modul Antivirová ochrana v programu Microsoft Defender byl ukončen z důvodu neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000005
Prostředek: kód modulu
: 0
CodeIntegrity:
===============
Date: 2023-10-15 15:00:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-10-04 19:34:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: Insyde Corp. V1.15 07/06/2015
Motherboard: Acer EA50_KV
Processor: AMD A8-7100 Radeon R5, 8 Compute Cores 4C+4G
Percentage of memory in use: 60%
Total physical RAM: 7114.26 MB
Available physical RAM: 2802.49 MB
Total Virtual: 15561.7 MB
Available Virtual: 9859.15 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:476.33 GB) (Free:23.09 GB) (Model: Patriot P210 512GB) NTFS
\\?\Volume{8eefda25-ab68-4679-8f17-07c4fd5dcd77}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
\\?\Volume{42fbe5ab-fcbf-d618-6d25-a161ef71cab2}\ () (Fixed) (Total:131.46 GB) (Free:0 GB) NTFS
\\?\Volume{dcb77e43-2664-4f5a-eb13-21538ac4ba09}\ () (Fixed) (Total:83.61 GB) (Free:0 GB) NTFS
\\?\Volume{84a8664b-03df-4206-b41a-eb0db29d43b6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: ABF2BD7E)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý notebook Win 10
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý notebook Win 10
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
sladekr177
- Návštěvník
- Příspěvky: 3
- Registrován: 18 říj 2023 19:21
Re: Pomalý notebook Win 10
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-19-2023
# Duration: 00:00:00
# OS: Windows 10 (Build 19045.3570)
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\{DAF8B7E5-449D-4180-8281-10E536E597F2}
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1676 octets] - [19/10/2023 22:24:26]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2023-07-19.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-19-2023
# Duration: 00:00:00
# OS: Windows 10 (Build 19045.3570)
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\Software\{DAF8B7E5-449D-4180-8281-10E536E597F2}
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1676 octets] - [19/10/2023 22:24:26]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý notebook Win 10
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
sladekr177
- Návštěvník
- Příspěvky: 3
- Registrován: 18 říj 2023 19:21
Re: Pomalý notebook Win 10
Zdá se to v pořádku, videa se přestala sekat, děkuju moc 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by User (administrator) on DESKTOP-Q0A57OS (Acer Aspire E5-551G) (22-10-2023 18:32:53)
Running from C:\Users\User\Desktop\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\BOINC\boinc.exe ->) () [File not signed] C:\ProgramData\BOINC\projects\milkyway.cs.rpi.edu_milkyway\milkyway_nbody_1.82_windows_x86_64__mt.exe
(C:\Program Files\BOINC\boincmgr.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe
(DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atieclxx.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(explorer.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe
(explorer.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boinctray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atiesrxx.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\23.204.1001.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrRec.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69664 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [8280608 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [ScreenRec] => C:\Users\User\AppData\Local\StreamingVideoProvider\ScreenRec_app\screenrec.exe (No File)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [utweb] => "C:\Users\User\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (No File)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374888 2023-09-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [BingWallpaperApp] => C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14037384 2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\boinc.scr [956448 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Windows x64\Print Processors\shm4mPC: C:\Windows\System32\spool\prtprocs\x64\shm4mpc.dll [73832 2019-07-21] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\shm4m Langmon: C:\WINDOWS\system32\shm4mlm.dll [52840 2019-07-21] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-19] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2019-04-22] () [File not signed] <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {35D8F11D-2B5E-4C6A-970C-720359D60DE5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {49598430-EF68-4F98-B116-46F15B4E7A06} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F0DF36A-7BBB-4870-A87C-4A004469808A} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem119.0.6042.0{111B82BD-7E71-4B97-A22F-423C6D2EE8F5} => C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC) <==== ATTENTION
Task: {84868DF7-F46A-4BA9-982F-CC01CF3A52A5} - System32\Tasks\iTop Screen Recorder SkipUAC (User) => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14520320 2021-12-07] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {5D77C268-EC45-4F16-87B0-63D5638B0C90} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14520320 2021-12-07] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {ED4BB296-58C3-4985-BD67-F5B6D59F3ACC} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files\iTop Screen Recorder\iScrInit.exe [1549824 2021-12-03] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {7718A876-0F67-40CB-ADF3-BAD68C80B1AA} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files\iTop Screen Recorder\AutoUpdate.exe [2822144 2021-11-29] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {4C70F4CB-EB5A-422E-9425-12F15B141FB4} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {E90371C0-517E-4EDA-8AB6-2F905027BF13} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42C64FA4-487E-43B5-BE68-673170D131A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {37D51B46-6791-4F58-9B05-B86197F6149B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86CA072C-972D-4EEC-9EEA-1FD4FA11C456} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4264766A-B98E-4E27-BBE0-5E8A9C410709} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A43FB70E-B897-4583-9B23-CFA5EB0B6693} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-11] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2B14C973-912D-4B36-88DF-703961CE15E7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {C978410F-2884-4C5A-A946-EEE5DA23A9C9} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [62752 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A7DC021F-7303-4629-A016-7ED4BD3DFA3C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [268576 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{90bd0f5d-10cd-4664-a1f7-f87523fe24d2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{98b04665-33cb-4c69-b93e-f548c47f0793}: [DhcpNameServer] 192.168.204.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-22]
Edge Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-29]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13]
FireFox:
========
FF DefaultProfile: h532vs4c.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h532vs4c.default [2023-04-14]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release [2023-10-22]
FF Extension: (Video DownloadHelper) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-25]
FF Extension: (No Name) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-03]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-10-22]
CHR DownloadDir: C:\Users\User\Desktop
CHR Notifications: Default -> hxxps://en.softonic.com
CHR Extension: (MrtkiBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmlajoobakfffnddclhgdbfomjmaeeen [2021-11-08]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-30]
CHR Extension: (Flash Player Emulator 2023) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecbnojockcgfohpopbphhgefkfbigcej [2023-08-16]
CHR Extension: (Return YouTube Dislike) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2023-10-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-10-18]
CHR Extension: (Screen Recorder) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdopnakmnlnccgpfpmjmdjjohmcdgabp [2022-07-21]
CHR Extension: (Flash Player) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nggcofmehaobnolkeaemkchbceihlkoj [2022-08-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-08]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-30]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-12-01]
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-30]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-30]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-30]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-30]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-30]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-30]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-30]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-06-29] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed]
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated -> Acer Incorporated)
S2 GoogleUpdaterInternalService119.0.6042.0; C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC)
S2 GoogleUpdaterService119.0.6042.0; C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2019-10-10] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 MpKslcc07e272; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{56B24CE7-3778-4D4E-A35D-BA45DA3EB1CB}\MpKslDrv.sys [263560 2023-10-22] (Microsoft Windows -> Microsoft Corporation)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [23312 2021-05-17] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237376 2019-10-11] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-10-11] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-22 13:05 - 2023-10-22 13:33 - 500359701 _____ C:\Users\User\Desktop\Jednotky vesmírného nasazení (Space Force) S02E07 Nabourání do systému.mkv
2023-10-22 11:02 - 2023-10-22 11:48 - 849837347 _____ C:\Users\User\Desktop\Dr. House - S03E17 - Poloha plodu.mkv
2023-10-21 20:48 - 2023-10-22 11:02 - 2160394015 _____ C:\Users\User\Desktop\O těle a duši (2017) CZtit (720p_25fps_H264-128kbit_AAC).mkv
2023-10-20 17:28 - 2023-10-20 19:41 - 1060442112 _____ C:\Users\User\Desktop\Červená Karkulka _2011 Cz.avi
2023-10-19 22:24 - 2023-10-19 22:24 - 000000000 ____D C:\AdwCleaner
2023-10-19 22:22 - 2023-10-19 22:23 - 008791352 _____ (Malwarebytes) C:\Users\User\Desktop\AdwCleaner.exe
2023-10-15 17:44 - 2023-10-15 17:47 - 000053181 _____ C:\Users\User\Desktop\Addition.txt
2023-10-15 17:36 - 2023-10-22 18:34 - 000019839 _____ C:\Users\User\Desktop\FRST.txt
2023-10-15 17:35 - 2023-10-22 18:33 - 000000000 ____D C:\FRST
2023-10-15 17:34 - 2023-10-16 16:18 - 000000000 ____D C:\Users\User\Documents\plocha
2023-10-15 17:33 - 2023-10-15 17:33 - 002383360 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2023-10-12 14:06 - 2023-10-12 14:06 - 000000000 ____D C:\Users\User\AppData\Local\Backup
2023-10-11 17:41 - 2023-10-11 17:41 - 000000000 ____D C:\ProgramData\PLUG
2023-10-11 17:27 - 2023-10-12 00:23 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-11 16:49 - 2023-10-11 16:49 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 16:25 - 2023-10-11 16:25 - 000000000 ___HD C:\$WinREAgent
2023-10-11 13:41 - 2023-10-11 13:41 - 000000000 ____D C:\Program Files\RUXIM
2023-09-22 19:43 - 2023-09-22 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\State of War 2 Arcon
2023-09-22 19:41 - 2023-09-22 19:44 - 000000000 ____D C:\Program Files (x86)\sow2arcon
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-22 18:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-10-22 18:24 - 2022-06-26 02:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-22 18:22 - 2023-03-29 23:44 - 000000000 ____D C:\ProgramData\BOINC
2023-10-22 15:40 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-22 13:52 - 2022-02-08 22:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-22 11:47 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-22 11:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-22 10:48 - 2021-11-08 10:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-22 10:47 - 2022-07-21 15:27 - 000000000 ____D C:\Program Files\iTop Screen Recorder
2023-10-22 10:47 - 2022-06-26 02:13 - 000003124 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-10-21 23:42 - 2021-11-08 21:34 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2023-10-21 21:52 - 2022-06-26 02:10 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-21 21:52 - 2019-12-07 16:41 - 000717850 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-21 21:52 - 2019-12-07 16:41 - 000144992 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-21 21:52 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-21 21:47 - 2021-11-08 10:55 - 000000000 ___RD C:\Users\User\OneDrive
2023-10-21 21:45 - 2022-06-26 02:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-21 21:45 - 2021-11-08 10:44 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-21 20:51 - 2021-11-28 22:13 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Excel
2023-10-21 20:35 - 2023-04-14 16:10 - 000000000 ____D C:\Log
2023-10-21 20:26 - 2021-11-28 22:11 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Word
2023-10-21 12:06 - 2021-11-08 11:00 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-10-21 12:06 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-10-19 21:17 - 2022-06-26 02:48 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-19 21:17 - 2021-11-08 18:38 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-18 23:23 - 2022-06-26 02:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-18 23:23 - 2021-11-08 10:50 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2023-10-18 23:22 - 2022-10-13 23:04 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-10-18 19:48 - 2021-12-25 21:07 - 000000000 ____D C:\Users\User\AppData\Local\AMD_Common
2023-10-16 22:58 - 2022-06-26 02:13 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1754279021-717169719-1477358722-1001
2023-10-16 22:58 - 2022-06-26 02:13 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1754279021-717169719-1477358722-1001
2023-10-16 22:58 - 2022-06-26 02:02 - 000002374 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-15 17:31 - 2021-11-08 18:40 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-10-14 15:13 - 2021-11-08 10:59 - 000000000 ____D C:\WINDOWS\system32\AMD
2023-10-14 15:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-12 00:29 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-12 00:23 - 2022-06-26 02:00 - 000442944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-12 00:23 - 2021-11-08 18:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-12 00:21 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-12 00:21 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-12 00:20 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-12 00:20 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-12 00:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-11 21:32 - 2021-11-08 18:40 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-11 17:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 17:07 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-11 17:07 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-11 17:07 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-11 16:48 - 2022-06-26 02:03 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 15:13 - 2021-11-08 11:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 15:05 - 2021-11-08 11:04 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-07 19:30 - 2023-02-23 22:51 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-07 13:57 - 2023-02-23 22:59 - 000000000 ____D C:\Users\User\AppData\Local\Steam
2023-10-05 14:44 - 2021-11-08 10:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-09-30 10:18 - 2023-09-15 14:15 - 000255592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_3.dll
2023-09-30 10:18 - 2022-10-20 16:50 - 000095736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-09-30 10:18 - 2022-10-20 16:50 - 000075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-09-30 10:18 - 2021-12-24 21:42 - 002709096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-09-30 10:18 - 2021-12-24 21:42 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000181864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
==================== Files in the root of some directories ========
2022-07-21 19:53 - 2022-07-21 19:53 - 000000128 ____H () C:\Users\User\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by User (22-10-2023 18:39:39)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2022-06-26 00:13:42)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1754279021-717169719-1477358722-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1754279021-717169719-1477358722-503 - Limited - Disabled)
Guest (S-1-5-21-1754279021-717169719-1477358722-501 - Limited - Disabled)
User (S-1-5-21-1754279021-717169719-1477358722-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-1754279021-717169719-1477358722-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8109 - Acer Incorporated)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20360 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.5.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Balíček ovladače systému Windows - Broadcom Corporation (bcbtums) Bluetooth (06/30/2015 12.0.1.653) (HKLM\...\96DD37B5CEC116731F3341757CD752145849002A) (Version: 06/30/2015 12.0.1.653 - Broadcom Corporation)
Bing Wallpaper (HKLM-x32\...\{243BC890-C6FB-42B3-8036-75B1CCA94D59}) (Version: 2.0.0.4 - Microsoft Corporation)
BOINC (HKLM\...\{F2444835-CE6A-483B-9966-D3EDD1FD3546}) (Version: 7.16.20 - Space Sciences Laboratory, U.C. Berkeley)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.1.710 - Broadcom Corporation)
Call of Duty 2 CZ (HKLM-x32\...\Call of Duty 2 CZ 1.3) (Version: 1.3 - Activision)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes of Might and Magic V Sběratelská Edice (HKLM-x32\...\Heroes of Might and Magic V Sběratelská EdiceVerze: h5 1.0, h5hof 2.1, h5tote 3.0) (Version: Verze: h5 1.0, h5hof 2.1, h5tote 3.0 - Ubisoft By_Etnik23)
iTop Screen Recorder (HKLM-x32\...\iTop Screen Recorder_is1) (Version: 2.0.0.431 - iTop Inc.)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft Age of Empires (HKLM-x32\...\Age of Empires) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.61 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2010 (HKLM\...\{90140000-0015-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (HKLM\...\{90140000-0016-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (HKLM\...\{90140000-00A1-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (Czech) 2010 (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (HKLM\...\{90140000-002C-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (HKLM\...\{90140000-0019-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2010 (HKLM\...\{90140000-0043-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (HKLM\...\{90140000-006E-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (HKLM\...\{90140000-001B-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\OneDriveSetup.exe) (Version: 23.204.1001.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.1 - Mozilla)
Oracle VM VirtualBox 6.0.14 (HKLM\...\{8E519428-0DC5-4A01-818A-73155A0AF8AF}) (Version: 6.0.14 - Oracle Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.55 - Qualcomm Atheros)
Resident Evil 4: UHD Edition (HKLM-x32\...\Resident Evil 4: UHD Edition_is1) (Version: - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}_Office14.SingleImage_{235F521F-C627-4957-A641-C4C161F78531}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.SingleImage_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.SingleImage_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}_Office14.SingleImage_{2E7C03CB-FE0A-4B95-BA37-742CD596760C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0405-1000-0000000FF1CE}_Office14.SingleImage_{FF4FCFC2-4935-49E4-B35E-5FCF7343412B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0405-1000-0000000FF1CE}_Office14.SingleImage_{62E2481E-63BB-4481-A0CE-071D6D663B1B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0405-1000-0000000FF1CE}_Office14.SingleImage_{BFFA0FE1-0823-4382-9DD3-49DA02375BBA}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
State of War 2: Arcon (HKLM-x32\...\State of War 2: Arcon_is1) (Version: - CINEMAX, s.r.o.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TagScanner (64bit) (HKLM\...\TagScanner 6.1.14 (64bit)_is1) (Version: 6.1.14 - Sergey Serkov)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
The Lord of the Rings The Battle for Middle-Earth Collection MULTi9 - ElAmigos version 2.01 (HKLM-x32\...\{5EE9E528-FC92-4C4F-AEE4-BCAFA7A2F6CF}_is1) (Version: 2.01 - Electronic Arts)
The Lord of the Rings, The Rise of the Witch-king (HKLM-x32\...\{B931FB80-537A-4600-00AD-AC5DEDB6C25B}) (Version: - )
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.19 - VideoLAN)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-10-18] ()
Age of Empires IV -> C:\Program Files\WindowsApps\Microsoft.Cardinal_8.2.218.0_x64__8wekyb3d8bbwe [2023-09-27] (Microsoft Studios)
Age of Empires IV: 4K HDR Video Pack -> C:\Program Files\WindowsApps\Microsoft.4KAssetPack_5.0.11009.0_x64__8wekyb3d8bbwe [2022-02-09] (Microsoft Studios)
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_4.3.8.2_x64__h6adky7gbf63m [2023-10-02] (Gameloft SE)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-11] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-03-27] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-03-27] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-26] (Microsoft Corporation) [MS Ad]
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10160.0_x64__8wekyb3d8bbwe [2023-10-18] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0 [2023-10-11] (Spotify AB) [Startup Task]
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.928.1334.242_neutral__8wekyb3d8bbwe [2023-09-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1754279021-717169719-1477358722-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\ir41_32.dll [756736 1997-07-06] (Intel Corporation) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Loaded Modules (Whitelisted) =============
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2013-10-17 16:48 - 2013-10-17 16:48 - 000106496 _____ () [File not signed] C:\Program Files\BOINC\zlib1.dll
2021-12-24 21:42 - 2023-09-30 10:17 - 000503808 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\SYSTEM32\gameplatformservices.dll
2016-12-18 16:46 - 2016-12-18 16:46 - 000362496 _____ (The cURL library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\BOINC\libcurl.dll
2019-12-25 21:46 - 2019-12-25 21:46 - 002287616 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\BOINC\LIBEAY32.dll
2019-12-25 21:46 - 2019-12-25 21:46 - 000386560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\BOINC\SSLEAY32.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000735232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000480256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData:iSpring Solutions [128]
AlternateDataStreams: C:\Users\All Users:iSpring Solutions [128]
AlternateDataStreams: C:\ProgramData\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\AppData\Roaming:iSpring Solutions [128]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\WPImages\20231021.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C"
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "ScreenRec"
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{F1713CCC-6676-40B1-9498-D644CDED5EA5}C:\program files\age of empires 2 cz!!!!\empires2.exe] => (Allow) C:\program files\age of empires 2 cz!!!!\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [TCP Query User{67CF65F4-9013-4571-B80F-D913DC9220F8}C:\program files\age of empires 2 cz!!!!\empires2.exe] => (Allow) C:\program files\age of empires 2 cz!!!!\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [UDP Query User{E3FD4045-3BAF-4981-A4F0-3AA96C409A1C}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CFC879F8-ED58-4E23-ADAF-F5EFF82FF300}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D897DAF2-1CDC-4A59-B7CC-5784342A38C4}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [TCP Query User{F9E898D5-5544-4221-9CCA-5CBB5E144AE6}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [UDP Query User{97EA95A5-B9E2-42FC-8B84-E11466AB4017}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [TCP Query User{EB9F7469-E4B3-4852-8851-322B14FCDB40}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [{CA616710-ED69-4D56-9416-A20FAF9A0725}] => (Allow) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe => No File
FirewallRules: [UDP Query User{3856D956-C056-4500-8F6B-C71B1BDAD271}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A105E004-1757-4236-A063-9C34281AFB6D}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{AC188889-1858-442F-91B8-4123AF2DD98E}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [TCP Query User{3CB6DBAC-E83C-43E3-B1D1-9C6136595A5F}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [UDP Query User{4ECEBBBF-96B7-4D8A-AF4D-81AD4BBFB3F3}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{A836A35C-8B6A-44CD-B072-222EC24D0F66}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [{C1CE4616-F9D9-4A01-A818-1566B0B033B9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{20C5348B-509E-4B69-87DF-0D0F20CE3E45}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E83DD6A0-0872-471A-BF5F-85AE7C553DA7}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [{8F88A77B-9241-41EA-9E98-EE5D25BE2B1B}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [TCP Query User{B759BADD-DD86-4CCF-AC7C-7306B2B64249}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D9384F78-A600-423C-A3B1-7514D5D57FC2}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A3BB8FCB-8674-4C95-B990-27240DD901CB}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [UDP Query User{030A6890-90E5-4A70-B7F9-1CD4ED689233}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{7BBC56A9-47A2-4FD8-8F1E-47434F99D22A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [UDP Query User{67F856E0-2C71-47C9-B9F3-9B8C5A061A0A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [{F8BB15A7-5A66-4028-B2D1-785551D88F5A}] => (Allow) C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe => No File
FirewallRules: [TCP Query User{826E5165-0FBB-4A2C-88AD-128DA0394790}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [UDP Query User{FBD73092-C77C-496F-9895-861321BBE85A}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [{798889BA-A045-4228-A114-5B2B2A50A813}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1EC29FA9-5677-48F5-B00E-ED7CC83275CB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AC3BEACA-9DF5-4967-8E64-C037EB267E3F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CB7D225E-6AC3-495C-A3EC-8AD386941760}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0E509F6F-BCEB-46CD-BB7E-8ABC208CFB3E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{536C284E-8A10-4211-A05E-88DA7B84BC3B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2C7CED05-426D-44A9-953E-3B9275172E8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{29D10430-0FAE-4D75-861F-5FA3B980493C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6098255A-607F-4119-B87E-6626DDCD0B29}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{724D4180-89A1-4546-8F22-7EFF8833FF33}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{461806C7-9FFB-4177-B873-F501F864D555}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{66773410-3A56-4E8C-98DF-98BB29140039}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C0400A5-BC6F-4E8D-8A21-DCBB5F7BC580}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CE45F6F5-7C25-44F6-B2EF-45947C784841}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{90985C92-1426-4258-90DD-8D9AF19AE761}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{37C9D81E-ED7F-4140-A5CB-A2B6439163B3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3ACA42DC-2816-45EA-B29E-E94E86894625}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3F7CBFAA-5259-411B-82FB-68786C004489}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A49ABF5C-E46C-4C53-9480-03237B111EA7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C923F39-3A59-4D5C-AE89-AC1B432AB195}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
18-10-2023 21:49:30 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/18/2023 07:42:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 16cc
Čas spuštění: 01da01ea73627226
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 0d7ca42f-6d54-471f-ae35-c08dbfd1a3f5
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
Error: (10/15/2023 12:56:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1e2c
Čas spuštění: 01d9ff509665b1ce
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: 0682ffaa-21db-4656-aa1d-6a1d27ebf51c
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:15:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 189c
Čas spuštění: 01d9ff5066144d96
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: dfaca48b-55c1-4bb0-8aeb-02eaa98cecf5
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:14:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 27c8
Čas spuštění: 01d9ff505d5f2c60
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: 07d6a22e-f83c-4416-a2ba-9e11c8627682
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:14:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 151c
Čas spuštění: 01d9fecd9dfec0d6
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: d49adacb-51c0-442f-a998-a0918c21065a
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/14/2023 08:43:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Název chybujícího modulu: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000003d7b82
ID chybujícího procesu: 0x10b0
Čas spuštění chybující aplikace: 0x01d9fecdaac928b5
Cesta k chybující aplikaci: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
Cesta k chybujícímu modulu: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
ID zprávy: 7e980c86-e4b9-429a-85e7-d1641fd34b9c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/14/2023 06:40:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Setup.exe_Microsoft Setup Bootstrapper, verze: 14.0.7011.1000, časové razítko: 0x5137020a
Název chybujícího modulu: combase.dll, verze: 10.0.19041.3570, časové razítko: 0xd690d294
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000072d71
ID chybujícího procesu: 0x2b58
Čas spuštění chybující aplikace: 0x01d9febd27005bd8
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: d89b0e9f-e263-4b21-baa9-dac4833d03d9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/14/2023 06:40:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Setup.exe_Microsoft Setup Bootstrapper, verze: 14.0.7011.1000, časové razítko: 0x5137020a
Název chybujícího modulu: combase.dll, verze: 10.0.19041.3570, časové razítko: 0xd690d294
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000072d71
ID chybujícího procesu: 0x838
Čas spuštění chybující aplikace: 0x01d9febd0df95387
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: c02c6b5c-8e22-47f5-bec5-c6ed907e6181
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/22/2023 06:31:46 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/22/2023 06:30:00 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/22/2023 06:30:00 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/21/2023 09:48:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/21/2023 09:48:05 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (10/21/2023 09:47:44 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/21/2023 09:45:57 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/21/2023 09:45:56 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Windows Defender:
================
Date: 2023-10-21 18:12:27
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {AE28F304-D9F9-4453-9A9B-44CC96A8505E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-20 15:27:01
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {12A5B5AB-E8DB-4678-A48A-44777BD8463B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-17 20:03:26
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A53DAA3F-4304-4746-BB88-9A2E4E1E874A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-17 19:38:18
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5395921A-1728-498E-9848-971E478B20B8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-16 21:59:00
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {36971B39-B2EB-415C-85B3-49CB1B2BFC2D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-07-20 20:48:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.887.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-04 20:08:23
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3531.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x8024402f
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-03 18:22:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3393.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x8024402c
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-02 17:20:27
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3313.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-05-20 15:31:02
Description:
Modul Antivirová ochrana v programu Microsoft Defender byl ukončen z důvodu neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000005
Prostředek: kód modulu
: 0
CodeIntegrity:
===============
Date: 2023-10-22 15:46:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: Insyde Corp. V1.15 07/06/2015
Motherboard: Acer EA50_KV
Processor: AMD A8-7100 Radeon R5, 8 Compute Cores 4C+4G
Percentage of memory in use: 70%
Total physical RAM: 7114.26 MB
Available physical RAM: 2128.95 MB
Total Virtual: 15497.37 MB
Available Virtual: 9020.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:476.33 GB) (Free:22.83 GB) (Model: Patriot P210 512GB) NTFS
\\?\Volume{8eefda25-ab68-4679-8f17-07c4fd5dcd77}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
\\?\Volume{42fbe5ab-fcbf-d618-6d25-a161ef71cab2}\ () (Fixed) (Total:131.46 GB) (Free:0 GB) NTFS
\\?\Volume{dcb77e43-2664-4f5a-eb13-21538ac4ba09}\ () (Fixed) (Total:83.61 GB) (Free:0 GB) NTFS
\\?\Volume{84a8664b-03df-4206-b41a-eb0db29d43b6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: ABF2BD7E)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by User (administrator) on DESKTOP-Q0A57OS (Acer Aspire E5-551G) (22-10-2023 18:32:53)
Running from C:\Users\User\Desktop\FRST64.exe
Loaded Profiles: User
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\BOINC\boinc.exe ->) () [File not signed] C:\ProgramData\BOINC\projects\milkyway.cs.rpi.edu_milkyway\milkyway_nbody_1.82_windows_x86_64__mt.exe
(C:\Program Files\BOINC\boincmgr.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boinc.exe
(DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atieclxx.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <16>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe
(explorer.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boincmgr.exe
(explorer.exe ->) (University of California, Berkeley -> Space Sciences Laboratory) C:\Program Files\BOINC\boinctray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0368456.inf_amd64_fc65705fd5034968\B367348\atiesrxx.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed] C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\23.204.1001.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (ORANGE VIEW LIMITED -> iTop Inc.) C:\Program Files\iTop Screen Recorder\iScrRec.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [boinctray] => C:\Program Files\BOINC\boinctray.exe [69664 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Run: [boincmgr] => C:\Program Files\BOINC\boincmgr.exe [8280608 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187176 2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [ScreenRec] => C:\Users\User\AppData\Local\StreamingVideoProvider\ScreenRec_app\screenrec.exe (No File)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [utweb] => "C:\Users\User\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (No File)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374888 2023-09-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\Run: [BingWallpaperApp] => C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\BingWallpaperApp.exe [14037384 2023-08-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\boinc.scr [956448 2021-10-14] (University of California, Berkeley -> Space Sciences Laboratory)
HKLM\...\Windows x64\Print Processors\shm4mPC: C:\Windows\System32\spool\prtprocs\x64\shm4mpc.dll [73832 2019-07-21] (联想图像(天津)科技有限公司 -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\shm4m Langmon: C:\WINDOWS\system32\shm4mlm.dll [52840 2019-07-21] (联想图像(天津)科技有限公司 -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-19] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2019-04-22] () [File not signed] <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {35D8F11D-2B5E-4C6A-970C-720359D60DE5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {49598430-EF68-4F98-B116-46F15B4E7A06} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F0DF36A-7BBB-4870-A87C-4A004469808A} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem119.0.6042.0{111B82BD-7E71-4B97-A22F-423C6D2EE8F5} => C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC) <==== ATTENTION
Task: {84868DF7-F46A-4BA9-982F-CC01CF3A52A5} - System32\Tasks\iTop Screen Recorder SkipUAC (User) => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14520320 2021-12-07] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {5D77C268-EC45-4F16-87B0-63D5638B0C90} - System32\Tasks\iTop Screen Recorder Startup => C:\Program Files\iTop Screen Recorder\IScrRec.exe [14520320 2021-12-07] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {ED4BB296-58C3-4985-BD67-F5B6D59F3ACC} - System32\Tasks\iTop Screen Recorder UAC => C:\Program Files\iTop Screen Recorder\iScrInit.exe [1549824 2021-12-03] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {7718A876-0F67-40CB-ADF3-BAD68C80B1AA} - System32\Tasks\iTop Screen Recorder Update => C:\Program Files\iTop Screen Recorder\AutoUpdate.exe [2822144 2021-11-29] (ORANGE VIEW LIMITED -> iTop Inc.)
Task: {4C70F4CB-EB5A-422E-9425-12F15B141FB4} - System32\Tasks\Microsoft\Windows\WaaSMedic\MaintenanceWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {E90371C0-517E-4EDA-8AB6-2F905027BF13} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {42C64FA4-487E-43B5-BE68-673170D131A9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {37D51B46-6791-4F58-9B05-B86197F6149B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86CA072C-972D-4EEC-9EEA-1FD4FA11C456} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MpCmdRun.exe [1596304 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4264766A-B98E-4E27-BBE0-5E8A9C410709} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1713952 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A43FB70E-B897-4583-9B23-CFA5EB0B6693} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-11] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2B14C973-912D-4B36-88DF-703961CE15E7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {C978410F-2884-4C5A-A946-EEE5DA23A9C9} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [62752 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A7DC021F-7303-4629-A016-7ED4BD3DFA3C} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [268576 2021-05-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{90bd0f5d-10cd-4664-a1f7-f87523fe24d2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{98b04665-33cb-4c69-b93e-f548c47f0793}: [DhcpNameServer] 192.168.204.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-22]
Edge Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-29]
Edge Extension: (Edge relevant text changes) - C:\Users\User\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-13]
FireFox:
========
FF DefaultProfile: h532vs4c.default
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\h532vs4c.default [2023-04-14]
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release [2023-10-22]
FF Extension: (Video DownloadHelper) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-08-25]
FF Extension: (No Name) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\yfo2d34y.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2023-07-03]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-07] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2023-10-22]
CHR DownloadDir: C:\Users\User\Desktop
CHR Notifications: Default -> hxxps://en.softonic.com
CHR Extension: (MrtkiBlock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmlajoobakfffnddclhgdbfomjmaeeen [2021-11-08]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-08-30]
CHR Extension: (Flash Player Emulator 2023) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecbnojockcgfohpopbphhgefkfbigcej [2023-08-16]
CHR Extension: (Return YouTube Dislike) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebbhagfogifgggkldgodflihgfeippi [2023-10-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-10-16]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-10-18]
CHR Extension: (Screen Recorder) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdopnakmnlnccgpfpmjmdjjohmcdgabp [2022-07-21]
CHR Extension: (Flash Player) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nggcofmehaobnolkeaemkchbceihlkoj [2022-08-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-08]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-11-30]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-12-01]
CHR Extension: (Prezentace) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-11-30]
CHR Extension: (Dokumenty) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-11-30]
CHR Extension: (Disk Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-11-30]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-11-30]
CHR Extension: (Tabulky) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-11-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-11-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-11-30]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-11-30]
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\System Profile [2021-11-30]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-06-29] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) [File not signed]
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated -> Acer Incorporated)
S2 GoogleUpdaterInternalService119.0.6042.0; C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC)
S2 GoogleUpdaterService119.0.6042.0; C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC)
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2019-10-10] (Oracle Corporation -> Oracle Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\NisSrv.exe [3116904 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe [133584 2023-10-05] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [62056 2020-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 MpKslcc07e272; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{56B24CE7-3778-4D4E-A35D-BA45DA3EB1CB}\MpKslDrv.sys [263560 2023-10-22] (Microsoft Windows -> Microsoft Corporation)
R2 SSPORT; C:\WINDOWS\system32\Drivers\SSPORT.sys [23312 2021-05-17] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237376 2019-10-11] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-10-11] (Oracle Corporation -> Oracle Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [55856 2023-10-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [572712 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105872 2023-10-05] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-22 13:05 - 2023-10-22 13:33 - 500359701 _____ C:\Users\User\Desktop\Jednotky vesmírného nasazení (Space Force) S02E07 Nabourání do systému.mkv
2023-10-22 11:02 - 2023-10-22 11:48 - 849837347 _____ C:\Users\User\Desktop\Dr. House - S03E17 - Poloha plodu.mkv
2023-10-21 20:48 - 2023-10-22 11:02 - 2160394015 _____ C:\Users\User\Desktop\O těle a duši (2017) CZtit (720p_25fps_H264-128kbit_AAC).mkv
2023-10-20 17:28 - 2023-10-20 19:41 - 1060442112 _____ C:\Users\User\Desktop\Červená Karkulka _2011 Cz.avi
2023-10-19 22:24 - 2023-10-19 22:24 - 000000000 ____D C:\AdwCleaner
2023-10-19 22:22 - 2023-10-19 22:23 - 008791352 _____ (Malwarebytes) C:\Users\User\Desktop\AdwCleaner.exe
2023-10-15 17:44 - 2023-10-15 17:47 - 000053181 _____ C:\Users\User\Desktop\Addition.txt
2023-10-15 17:36 - 2023-10-22 18:34 - 000019839 _____ C:\Users\User\Desktop\FRST.txt
2023-10-15 17:35 - 2023-10-22 18:33 - 000000000 ____D C:\FRST
2023-10-15 17:34 - 2023-10-16 16:18 - 000000000 ____D C:\Users\User\Documents\plocha
2023-10-15 17:33 - 2023-10-15 17:33 - 002383360 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe
2023-10-12 14:06 - 2023-10-12 14:06 - 000000000 ____D C:\Users\User\AppData\Local\Backup
2023-10-11 17:41 - 2023-10-11 17:41 - 000000000 ____D C:\ProgramData\PLUG
2023-10-11 17:27 - 2023-10-12 00:23 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-11 16:49 - 2023-10-11 16:49 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 16:25 - 2023-10-11 16:25 - 000000000 ___HD C:\$WinREAgent
2023-10-11 13:41 - 2023-10-11 13:41 - 000000000 ____D C:\Program Files\RUXIM
2023-09-22 19:43 - 2023-09-22 19:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\State of War 2 Arcon
2023-09-22 19:41 - 2023-09-22 19:44 - 000000000 ____D C:\Program Files (x86)\sow2arcon
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-22 18:30 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-10-22 18:24 - 2022-06-26 02:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-22 18:22 - 2023-03-29 23:44 - 000000000 ____D C:\ProgramData\BOINC
2023-10-22 15:40 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-22 13:52 - 2022-02-08 22:40 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-22 11:47 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-22 11:47 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-22 10:48 - 2021-11-08 10:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-22 10:47 - 2022-07-21 15:27 - 000000000 ____D C:\Program Files\iTop Screen Recorder
2023-10-22 10:47 - 2022-06-26 02:13 - 000003124 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2023-10-21 23:42 - 2021-11-08 21:34 - 000000000 ____D C:\Users\User\AppData\Roaming\vlc
2023-10-21 21:52 - 2022-06-26 02:10 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-21 21:52 - 2019-12-07 16:41 - 000717850 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-21 21:52 - 2019-12-07 16:41 - 000144992 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-21 21:52 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-21 21:47 - 2021-11-08 10:55 - 000000000 ___RD C:\Users\User\OneDrive
2023-10-21 21:45 - 2022-06-26 02:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-21 21:45 - 2021-11-08 10:44 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-21 20:51 - 2021-11-28 22:13 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Excel
2023-10-21 20:35 - 2023-04-14 16:10 - 000000000 ____D C:\Log
2023-10-21 20:26 - 2021-11-28 22:11 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Word
2023-10-21 12:06 - 2021-11-08 11:00 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2023-10-21 12:06 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2023-10-19 21:17 - 2022-06-26 02:48 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-19 21:17 - 2021-11-08 18:38 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-18 23:23 - 2022-06-26 02:13 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-18 23:23 - 2021-11-08 10:50 - 000000000 ____D C:\Users\User\AppData\Local\Packages
2023-10-18 23:22 - 2022-10-13 23:04 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-10-18 19:48 - 2021-12-25 21:07 - 000000000 ____D C:\Users\User\AppData\Local\AMD_Common
2023-10-16 22:58 - 2022-06-26 02:13 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1754279021-717169719-1477358722-1001
2023-10-16 22:58 - 2022-06-26 02:13 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1754279021-717169719-1477358722-1001
2023-10-16 22:58 - 2022-06-26 02:02 - 000002374 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-15 17:31 - 2021-11-08 18:40 - 000000000 ____D C:\Users\User\AppData\Local\D3DSCache
2023-10-14 15:13 - 2021-11-08 10:59 - 000000000 ____D C:\WINDOWS\system32\AMD
2023-10-14 15:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-12 00:29 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-12 00:23 - 2022-06-26 02:00 - 000442944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-12 00:23 - 2021-11-08 18:40 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-12 00:21 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-12 00:21 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-12 00:21 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-12 00:20 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-12 00:20 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-12 00:20 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-12 00:20 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-11 21:32 - 2021-11-08 18:40 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-11 17:09 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 17:07 - 2019-12-07 16:44 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2023-10-11 17:07 - 2019-12-07 11:15 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2023-10-11 17:07 - 2019-12-07 11:14 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2023-10-11 16:48 - 2022-06-26 02:03 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 15:13 - 2021-11-08 11:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 15:05 - 2021-11-08 11:04 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-07 19:30 - 2023-02-23 22:51 - 000000000 ____D C:\Program Files (x86)\Steam
2023-10-07 13:57 - 2023-02-23 22:59 - 000000000 ____D C:\Users\User\AppData\Local\Steam
2023-10-05 14:44 - 2021-11-08 10:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-09-30 10:18 - 2023-09-15 14:15 - 000255592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_3.dll
2023-09-30 10:18 - 2022-10-20 16:50 - 000095736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2023-09-30 10:18 - 2022-10-20 16:50 - 000075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2023-09-30 10:18 - 2021-12-24 21:42 - 002709096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2023-09-30 10:18 - 2021-12-24 21:42 - 000145000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000210536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2023-09-30 10:17 - 2021-12-24 21:42 - 000181864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
==================== Files in the root of some directories ========
2022-07-21 19:53 - 2022-07-21 19:53 - 000000128 ____H () C:\Users\User\AppData\Roaming\ecf00c38dc807e105d881c433a6b455dd2c606b6
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by User (22-10-2023 18:39:39)
Running from C:\Users\User\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2022-06-26 00:13:42)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1754279021-717169719-1477358722-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1754279021-717169719-1477358722-503 - Limited - Disabled)
Guest (S-1-5-21-1754279021-717169719-1477358722-501 - Limited - Disabled)
User (S-1-5-21-1754279021-717169719-1477358722-1001 - Administrator - Enabled) => C:\Users\User
WDAGUtilityAccount (S-1-5-21-1754279021-717169719-1477358722-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.8109 - Acer Incorporated)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20360 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.5.2 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Balíček ovladače systému Windows - Broadcom Corporation (bcbtums) Bluetooth (06/30/2015 12.0.1.653) (HKLM\...\96DD37B5CEC116731F3341757CD752145849002A) (Version: 06/30/2015 12.0.1.653 - Broadcom Corporation)
Bing Wallpaper (HKLM-x32\...\{243BC890-C6FB-42B3-8036-75B1CCA94D59}) (Version: 2.0.0.4 - Microsoft Corporation)
BOINC (HKLM\...\{F2444835-CE6A-483B-9966-D3EDD1FD3546}) (Version: 7.16.20 - Space Sciences Laboratory, U.C. Berkeley)
Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden
Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.1.710 - Broadcom Corporation)
Call of Duty 2 CZ (HKLM-x32\...\Call of Duty 2 CZ 1.3) (Version: 1.3 - Activision)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes of Might and Magic V Sběratelská Edice (HKLM-x32\...\Heroes of Might and Magic V Sběratelská EdiceVerze: h5 1.0, h5hof 2.1, h5tote 3.0) (Version: Verze: h5 1.0, h5hof 2.1, h5tote 3.0 - Ubisoft By_Etnik23)
iTop Screen Recorder (HKLM-x32\...\iTop Screen Recorder_is1) (Version: 2.0.0.431 - iTop Inc.)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Microsoft Age of Empires (HKLM-x32\...\Age of Empires) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.61 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2010 (HKLM\...\{90140000-0015-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Czech) 2010 (HKLM\...\{90140000-0016-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2010 (HKLM\...\{90140000-00A1-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2010 (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2010 (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (Czech) 2010 (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2010 (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2010 (HKLM\...\{90140000-002C-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2010 (HKLM\...\{90140000-0019-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2010 (HKLM\...\{90140000-0043-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2010 (HKLM\...\{90140000-006E-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2010 (HKLM\...\{90140000-001B-0405-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\OneDriveSetup.exe) (Version: 23.204.1001.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30139 (HKLM-x32\...\{2c673fb6-3e65-4751-965d-33d30b68a8a6}) (Version: 14.29.30139.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30139 (HKLM\...\{7F4A9F52-173F-4B0D-B1EA-269C32EDA827}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30139 (HKLM\...\{A6D3F752-BF11-4D7C-B19C-F6F96A35CF50}) (Version: 14.29.30139 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.1 - Mozilla)
Oracle VM VirtualBox 6.0.14 (HKLM\...\{8E519428-0DC5-4A01-818A-73155A0AF8AF}) (Version: 6.0.14 - Oracle Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.1 - Qualcomm Atheros)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.55 - Qualcomm Atheros)
Resident Evil 4: UHD Edition (HKLM-x32\...\Resident Evil 4: UHD Edition_is1) (Version: - )
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0405-1000-0000000FF1CE}_Office14.SingleImage_{235F521F-C627-4957-A641-C4C161F78531}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.SingleImage_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.SingleImage_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-041B-1000-0000000FF1CE}_Office14.SingleImage_{2E7C03CB-FE0A-4B95-BA37-742CD596760C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0405-1000-0000000FF1CE}_Office14.SingleImage_{FF4FCFC2-4935-49E4-B35E-5FCF7343412B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0405-1000-0000000FF1CE}_Office14.SingleImage_{62E2481E-63BB-4481-A0CE-071D6D663B1B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0405-1000-0000000FF1CE}_Office14.SingleImage_{BFFA0FE1-0823-4382-9DD3-49DA02375BBA}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0405-1000-0000000FF1CE}_Office14.SingleImage_{0D84952B-2B1D-459C-9173-D3B033D58C2F}) (Version: - Microsoft) Hidden
State of War 2: Arcon (HKLM-x32\...\State of War 2: Arcon_is1) (Version: - CINEMAX, s.r.o.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TagScanner (64bit) (HKLM\...\TagScanner 6.1.14 (64bit)_is1) (Version: 6.1.14 - Sergey Serkov)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
The Lord of the Rings The Battle for Middle-Earth Collection MULTi9 - ElAmigos version 2.01 (HKLM-x32\...\{5EE9E528-FC92-4C4F-AEE4-BCAFA7A2F6CF}_is1) (Version: 2.01 - Electronic Arts)
The Lord of the Rings, The Rise of the Witch-king (HKLM-x32\...\{B931FB80-537A-4600-00AD-AC5DEDB6C25B}) (Version: - )
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VdhCoApp 1.6.3 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.19 - VideoLAN)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-10-18] ()
Age of Empires IV -> C:\Program Files\WindowsApps\Microsoft.Cardinal_8.2.218.0_x64__8wekyb3d8bbwe [2023-09-27] (Microsoft Studios)
Age of Empires IV: 4K HDR Video Pack -> C:\Program Files\WindowsApps\Microsoft.4KAssetPack_5.0.11009.0_x64__8wekyb3d8bbwe [2022-02-09] (Microsoft Studios)
Asphalt 9: Legends -> C:\Program Files\WindowsApps\A278AB0D.Asphalt9_4.3.8.2_x64__h6adky7gbf63m [2023-10-02] (Gameloft SE)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-11] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-03-27] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-03-27] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-26] (Microsoft Corporation) [MS Ad]
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10160.0_x64__8wekyb3d8bbwe [2023-10-18] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0 [2023-10-11] (Spotify AB) [Startup Task]
Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.928.1334.242_neutral__8wekyb3d8bbwe [2023-09-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1754279021-717169719-1477358722-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-06-17] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [File not signed]
HKLM\...\Drivers32: [VIDC.IV41] => C:\Windows\SysWOW64\ir41_32.dll [756736 1997-07-06] (Intel Corporation) [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Loaded Modules (Whitelisted) =============
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 003567616 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2013-10-17 16:48 - 2013-10-17 16:48 - 000106496 _____ () [File not signed] C:\Program Files\BOINC\zlib1.dll
2021-12-24 21:42 - 2023-09-30 10:17 - 000503808 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\SYSTEM32\gameplatformservices.dll
2016-12-18 16:46 - 2016-12-18 16:46 - 000362496 _____ (The cURL library, hxxps://curl.haxx.se/) [File not signed] C:\Program Files\BOINC\libcurl.dll
2019-12-25 21:46 - 2019-12-25 21:46 - 002287616 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\BOINC\LIBEAY32.dll
2019-12-25 21:46 - 2019-12-25 21:46 - 000386560 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\BOINC\SSLEAY32.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000039424 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001441792 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001189888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000134656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 006184448 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 006867456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000735232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001104896 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 003668480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000517120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000051712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 004228608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000171008 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 001085440 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000480256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5RemoteObjects.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000205824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000329728 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000390656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 095598080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000127488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 005587968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000462848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000188928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 002878464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000055808 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000284160 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000136704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000313856 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-03-09 20:48 - 2021-03-09 20:48 - 000091648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData:iSpring Solutions [128]
AlternateDataStreams: C:\Users\All Users:iSpring Solutions [128]
AlternateDataStreams: C:\ProgramData\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\AppData\Roaming:iSpring Solutions [128]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\User\AppData\Local\Microsoft\BingWallpaperApp\WPImages\20231021.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Wi-Fi: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_C46CFC0629905CC775E70B50EA8A519C"
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "ScreenRec"
HKU\S-1-5-21-1754279021-717169719-1477358722-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{F1713CCC-6676-40B1-9498-D644CDED5EA5}C:\program files\age of empires 2 cz!!!!\empires2.exe] => (Allow) C:\program files\age of empires 2 cz!!!!\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [TCP Query User{67CF65F4-9013-4571-B80F-D913DC9220F8}C:\program files\age of empires 2 cz!!!!\empires2.exe] => (Allow) C:\program files\age of empires 2 cz!!!!\empires2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [UDP Query User{E3FD4045-3BAF-4981-A4F0-3AA96C409A1C}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CFC879F8-ED58-4E23-ADAF-F5EFF82FF300}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D897DAF2-1CDC-4A59-B7CC-5784342A38C4}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [TCP Query User{F9E898D5-5544-4221-9CCA-5CBB5E144AE6}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [UDP Query User{97EA95A5-B9E2-42FC-8B84-E11466AB4017}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [TCP Query User{EB9F7469-E4B3-4852-8851-322B14FCDB40}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [{CA616710-ED69-4D56-9416-A20FAF9A0725}] => (Allow) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe => No File
FirewallRules: [UDP Query User{3856D956-C056-4500-8F6B-C71B1BDAD271}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A105E004-1757-4236-A063-9C34281AFB6D}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{AC188889-1858-442F-91B8-4123AF2DD98E}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [TCP Query User{3CB6DBAC-E83C-43E3-B1D1-9C6136595A5F}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [UDP Query User{4ECEBBBF-96B7-4D8A-AF4D-81AD4BBFB3F3}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{A836A35C-8B6A-44CD-B072-222EC24D0F66}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [{C1CE4616-F9D9-4A01-A818-1566B0B033B9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{20C5348B-509E-4B69-87DF-0D0F20CE3E45}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E83DD6A0-0872-471A-BF5F-85AE7C553DA7}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [{8F88A77B-9241-41EA-9E98-EE5D25BE2B1B}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [TCP Query User{B759BADD-DD86-4CCF-AC7C-7306B2B64249}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D9384F78-A600-423C-A3B1-7514D5D57FC2}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A3BB8FCB-8674-4C95-B990-27240DD901CB}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [UDP Query User{030A6890-90E5-4A70-B7F9-1CD4ED689233}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{7BBC56A9-47A2-4FD8-8F1E-47434F99D22A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [UDP Query User{67F856E0-2C71-47C9-B9F3-9B8C5A061A0A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [{F8BB15A7-5A66-4028-B2D1-785551D88F5A}] => (Allow) C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe => No File
FirewallRules: [TCP Query User{826E5165-0FBB-4A2C-88AD-128DA0394790}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [UDP Query User{FBD73092-C77C-496F-9895-861321BBE85A}C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe] => (Block) C:\program files (x86)\activision\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [{798889BA-A045-4228-A114-5B2B2A50A813}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1EC29FA9-5677-48F5-B00E-ED7CC83275CB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AC3BEACA-9DF5-4967-8E64-C037EB267E3F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CB7D225E-6AC3-495C-A3EC-8AD386941760}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0E509F6F-BCEB-46CD-BB7E-8ABC208CFB3E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{536C284E-8A10-4211-A05E-88DA7B84BC3B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2C7CED05-426D-44A9-953E-3B9275172E8D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{29D10430-0FAE-4D75-861F-5FA3B980493C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6098255A-607F-4119-B87E-6626DDCD0B29}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{724D4180-89A1-4546-8F22-7EFF8833FF33}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{461806C7-9FFB-4177-B873-F501F864D555}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{66773410-3A56-4E8C-98DF-98BB29140039}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C0400A5-BC6F-4E8D-8A21-DCBB5F7BC580}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CE45F6F5-7C25-44F6-B2EF-45947C784841}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{90985C92-1426-4258-90DD-8D9AF19AE761}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{37C9D81E-ED7F-4140-A5CB-A2B6439163B3}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3ACA42DC-2816-45EA-B29E-E94E86894625}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3F7CBFAA-5259-411B-82FB-68786C004489}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A49ABF5C-E46C-4C53-9480-03237B111EA7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C923F39-3A59-4D5C-AE89-AC1B432AB195}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
18-10-2023 21:49:30 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/18/2023 07:42:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 16cc
Čas spuštění: 01da01ea73627226
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe
ID hlášení: 0d7ca42f-6d54-471f-ae35-c08dbfd1a3f5
Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: ShellFeedsUI
Typ zablokování: Quiesce
Error: (10/15/2023 12:56:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1e2c
Čas spuštění: 01d9ff509665b1ce
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: 0682ffaa-21db-4656-aa1d-6a1d27ebf51c
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:15:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 189c
Čas spuštění: 01d9ff5066144d96
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: dfaca48b-55c1-4bb0-8aeb-02eaa98cecf5
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:14:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 27c8
Čas spuštění: 01d9ff505d5f2c60
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: 07d6a22e-f83c-4416-a2ba-9e11c8627682
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/15/2023 12:14:21 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program explorer.exe verze 10.0.19041.3570 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 151c
Čas spuštění: 01d9fecd9dfec0d6
Čas ukončení: 0
Cesta k aplikaci: C:\Windows\explorer.exe
ID hlášení: d49adacb-51c0-442f-a998-a0918c21065a
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (10/14/2023 08:43:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Název chybujícího modulu: Radeonsoftware.exe, verze: 10.1.2.1862, časové razítko: 0x609ac2c7
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000003d7b82
ID chybujícího procesu: 0x10b0
Čas spuštění chybující aplikace: 0x01d9fecdaac928b5
Cesta k chybující aplikaci: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
Cesta k chybujícímu modulu: C:\Program Files\AMD\CNext\CNext\Radeonsoftware.exe
ID zprávy: 7e980c86-e4b9-429a-85e7-d1641fd34b9c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/14/2023 06:40:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Setup.exe_Microsoft Setup Bootstrapper, verze: 14.0.7011.1000, časové razítko: 0x5137020a
Název chybujícího modulu: combase.dll, verze: 10.0.19041.3570, časové razítko: 0xd690d294
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000072d71
ID chybujícího procesu: 0x2b58
Čas spuštění chybující aplikace: 0x01d9febd27005bd8
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: d89b0e9f-e263-4b21-baa9-dac4833d03d9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/14/2023 06:40:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Setup.exe_Microsoft Setup Bootstrapper, verze: 14.0.7011.1000, časové razítko: 0x5137020a
Název chybujícího modulu: combase.dll, verze: 10.0.19041.3570, časové razítko: 0xd690d294
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000072d71
ID chybujícího procesu: 0x838
Čas spuštění chybující aplikace: 0x01d9febd0df95387
Cesta k chybující aplikaci: C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\combase.dll
ID zprávy: c02c6b5c-8e22-47f5-bec5-c6ed907e6181
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/22/2023 06:31:46 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/22/2023 06:30:00 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/22/2023 06:30:00 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/21/2023 09:48:05 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (10/21/2023 09:48:05 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (10/21/2023 09:47:44 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/21/2023 09:45:57 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Error: (10/21/2023 09:45:56 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
Windows Defender:
================
Date: 2023-10-21 18:12:27
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {AE28F304-D9F9-4453-9A9B-44CC96A8505E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-20 15:27:01
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {12A5B5AB-E8DB-4678-A48A-44777BD8463B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-17 20:03:26
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A53DAA3F-4304-4746-BB88-9A2E4E1E874A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-17 19:38:18
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5395921A-1728-498E-9848-971E478B20B8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-10-16 21:59:00
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {36971B39-B2EB-415C-85B3-49CB1B2BFC2D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-07-20 20:48:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.393.887.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-04 20:08:23
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3531.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x8024402f
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-03 18:22:42
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3393.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x8024402c
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-07-02 17:20:27
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.3313.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-05-20 15:31:02
Description:
Modul Antivirová ochrana v programu Microsoft Defender byl ukončen z důvodu neočekávané chyby.
Typ chyby: Chyba
Kód výjimky: 0xc0000005
Prostředek: kód modulu
: 0
CodeIntegrity:
===============
Date: 2023-10-22 15:46:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: Insyde Corp. V1.15 07/06/2015
Motherboard: Acer EA50_KV
Processor: AMD A8-7100 Radeon R5, 8 Compute Cores 4C+4G
Percentage of memory in use: 70%
Total physical RAM: 7114.26 MB
Available physical RAM: 2128.95 MB
Total Virtual: 15497.37 MB
Available Virtual: 9020.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:476.33 GB) (Free:22.83 GB) (Model: Patriot P210 512GB) NTFS
\\?\Volume{8eefda25-ab68-4679-8f17-07c4fd5dcd77}\ () (Fixed) (Total:0.5 GB) (Free:0.07 GB) NTFS
\\?\Volume{42fbe5ab-fcbf-d618-6d25-a161ef71cab2}\ () (Fixed) (Total:131.46 GB) (Free:0 GB) NTFS
\\?\Volume{dcb77e43-2664-4f5a-eb13-21538ac4ba09}\ () (Fixed) (Total:83.61 GB) (Free:0 GB) NTFS
\\?\Volume{84a8664b-03df-4206-b41a-eb0db29d43b6}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: ABF2BD7E)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý notebook Win 10
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\update.bat [2019-04-22] () [File not signed] <==== ATTENTION
Task: {9F0DF36A-7BBB-4870-A87C-4A004469808A} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem119.0.6042.0{111B82BD-7E71-4B97-A22F-423C6D2EE8F5} => C:\Program Files (x86)\Google\GoogleUpdater\119.0.6042.0\updater.exe [4449568 2023-10-01] (Google LLC -> Google LLC) <==== ATTENTION
C:\DumpStack.log.tmp
AlternateDataStreams: C:\ProgramData:iSpring Solutions [128]
AlternateDataStreams: C:\Users\All Users:iSpring Solutions [128]
AlternateDataStreams: C:\ProgramData\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\Data aplikací:iSpring Solutions [128]
AlternateDataStreams: C:\Users\User\AppData\Roaming:iSpring Solutions [128]
FirewallRules: [UDP Query User{E3FD4045-3BAF-4981-A4F0-3AA96C409A1C}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [TCP Query User{CFC879F8-ED58-4E23-ADAF-F5EFF82FF300}C:\program files\java\jre1.8.0_333\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_333\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D897DAF2-1CDC-4A59-B7CC-5784342A38C4}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [TCP Query User{F9E898D5-5544-4221-9CCA-5CBB5E144AE6}C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe] => (Block) C:\users\user\desktop\age of empires 2 cz!!!!\empires2.exe => No File
FirewallRules: [UDP Query User{97EA95A5-B9E2-42FC-8B84-E11466AB4017}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [TCP Query User{EB9F7469-E4B3-4852-8851-322B14FCDB40}C:\program files\java\jre1.8.0_321\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_321\bin\javaw.exe => No File
FirewallRules: [{CA616710-ED69-4D56-9416-A20FAF9A0725}] => (Allow) C:\Program Files (x86)\Real\RealPlayer\RPDS\Bin\rpdsvc.exe => No File
FirewallRules: [UDP Query User{3856D956-C056-4500-8F6B-C71B1BDAD271}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A105E004-1757-4236-A063-9C34281AFB6D}C:\program files\java\jre1.8.0_311\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_311\bin\javaw.exe => No File
FirewallRules: [UDP Query User{AC188889-1858-442F-91B8-4123AF2DD98E}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [TCP Query User{3CB6DBAC-E83C-43E3-B1D1-9C6136595A5F}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe => No File
FirewallRules: [UDP Query User{4ECEBBBF-96B7-4D8A-AF4D-81AD4BBFB3F3}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{A836A35C-8B6A-44CD-B072-222EC24D0F66}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [{E83DD6A0-0872-471A-BF5F-85AE7C553DA7}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [{8F88A77B-9241-41EA-9E98-EE5D25BE2B1B}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerREC\ApowerREC.exe => No File
FirewallRules: [TCP Query User{B759BADD-DD86-4CCF-AC7C-7306B2B64249}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [UDP Query User{D9384F78-A600-423C-A3B1-7514D5D57FC2}C:\program files\java\jre1.8.0_341\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_341\bin\javaw.exe => No File
FirewallRules: [TCP Query User{A3BB8FCB-8674-4C95-B990-27240DD901CB}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [UDP Query User{030A6890-90E5-4A70-B7F9-1CD4ED689233}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => No File
FirewallRules: [TCP Query User{7BBC56A9-47A2-4FD8-8F1E-47434F99D22A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [UDP Query User{67F856E0-2C71-47C9-B9F3-9B8C5A061A0A}C:\gog games\dead space\dead space.exe] => (Block) C:\gog games\dead space\dead space.exe => No File
FirewallRules: [{F8BB15A7-5A66-4028-B2D1-785551D88F5A}] => (Allow) C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?