Dobrý den, prosím o preventivní kontrolu, poslední dobou pozoruji pomalejší chod PC.
Děkuji.
FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2024 01
Ran by Petr (administrator) on DESKTOP-MQ5PIOV (02-02-2024 15:30:49)
Running from C:\Users\Petr\Desktop\FRST64.exe
Loaded Profiles: Petr
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3930 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avpui.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Users\Petr\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Petr\AppData\Local\Programs\Opera\106.0.4998.66\opera_crashreporter.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0391252.inf_amd64_b298c070ddf486e2\B391109\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0391252.inf_amd64_b298c070ddf486e2\B391109\atieclxx.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Opera Norway AS -> Opera Software) C:\Users\Petr\AppData\Local\Programs\Opera\opera.exe <28>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0391252.inf_amd64_b298c070ddf486e2\B391109\atiesrxx.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(svchost.exe ->) () [File not signed] C:\Windows\DAODx.exe
(svchost.exe ->) (Hewlett-Packard Company -> Hewlett Packard) C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe
(svchost.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe
(svchost.exe ->) (Lespeed Technology Co., Ltd -> WiseCleaner.COM) [File not signed] C:\Program Files (x86)\Wise\Wise Auto Shutdown\WiseAutoShutdown.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2311.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2021-07-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [330176 2014-08-19] (Hewlett-Packard Company -> Hewlett-Packard Company)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44540320 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13799776 2022-04-10] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37277648 2024-01-29] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [MicrosoftEdgeAutoLaunch_88D36A2D9DF9AF2106D8CF7538FE64F2] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3788224 2024-01-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [2729576 2024-01-30] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Run: [Opera Browser Assistant] => C:\Users\Petr\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3746208 2023-12-19] (Opera Norway AS -> Opera Software)
HKLM\...\Windows x64\Print Processors\hpcpp117: C:\Windows\System32\spool\prtprocs\x64\hpcpp117.DLL [467456 2013-03-21] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON PX730 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMHQE.DLL [120320 2011-04-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [558592 2012-11-12] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\121.0.6167.139\Installer\chrmstp.exe [2024-02-01] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.92\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
Startup: C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-19]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\Petr\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [File not signed]
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {04AB7286-4B23-4F45-965C-D80A0A56C7E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {DAEC6F55-3FD5-4062-8DFE-CD69B6EC2547} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1071544 2023-04-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {236F22F1-5DCC-4316-8FCC-059DEA5F1009} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-04-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {1F969E18-FCE8-4D2C-A8CF-506406726ED9} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-04-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {0078BC36-4613-4DDB-A0CC-72862D8867B5} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [32768 2009-03-30] () [File not signed]
Task: {906997E9-4C07-4FEA-AC5E-D717C2670974} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2144664 2023-08-01] (Avast Software s.r.o. -> Avast Software)
Task: {E111307A-866F-44CF-82E1-2C38958E22F4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {8224F489-159B-4E57-B2B4-24D7DF55E557} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "5cf9cc9b-29b2-452f-a05d-e00f4b521b26" --version "6.20.10897" --silent
Task: {8C8EC371-19A2-4939-BF45-953086A95465} - System32\Tasks\CCleanerSkipUAC - Petr => C:\Program Files\CCleaner\CCleaner.exe [38319520 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E1863B17-91BF-41FB-B7E7-91B5B3AD883F} - System32\Tasks\GoogleUpdateTaskMachineCore{668B2923-E4AB-421B-81D7-55E10922FEE6} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
Task: {5CA1DAC9-D595-44F2-B890-9D6EB3CE2780} - System32\Tasks\GoogleUpdateTaskMachineUA{0FD161AF-FE13-4708-94AE-F7111341AA00} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-04] (Google LLC -> Google LLC)
Task: {D94F3E2F-FFCB-48B1-A03A-48D8DB2BB455} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [89840 2014-10-19] (Hewlett-Packard Company -> Hewlett Packard)
Task: {22CA1C79-A822-4215-9D7D-447374F199E0} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [743488 2021-05-02] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {4001D54D-D799-451C-A7B1-B27E3E1B19E0} - System32\Tasks\kpm_tray.exe => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_tray.exe [622168 2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
Task: {9A53190A-6BD3-48FC-8BB1-E4B948A54567} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0287F144-ACE5-4235-A03F-82AC9B793285} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {78FB8134-2B2B-4E9D-87BF-FFDA563E7780} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {51027365-5F65-42C2-A60C-A50774E63EAF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.10-0\MpCmdRun.exe [473544 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3B835E20-DEA4-4873-B59C-F33E4F72473F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1024440 2023-04-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {BA4EEA76-3212-4002-B131-2EBDC0914466} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2019-04-30] () [File not signed]
Task: {86522C46-3F65-4E6E-B56C-CD72C7410C1B} - System32\Tasks\Opera scheduled assistant Autoupdate 1580107984 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-25] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Petr\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {DA80C696-D52F-4ABB-AEBB-F00CB8253B87} - System32\Tasks\Opera scheduled Autoupdate 1567089129 => C:\Users\Petr\AppData\Local\Programs\Opera\launcher.exe [2350496 2024-01-25] (Opera Norway AS -> Opera Software)
Task: {CA3524F2-712C-4B52-8D8A-3799707439F2} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [59832 2023-04-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {7279FE72-717A-45B1-B529-B74EAF00A9CC} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2023-04-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {A4CAE264-E26B-4AFE-8C35-A08CD8802346} - System32\Tasks\Wise Auto Shutdown Task.job => C:\Program Files (x86)\Wise\Wise Auto Shutdown\WiseAutoShutdown.exe [7631096 2021-09-02] (Lespeed Technology Co., Ltd -> WiseCleaner.COM) [File not signed] -> -a
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{59f1904d-f80a-439d-815e-b3875d5fa31f}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{f2a704ac-5388-452f-8acf-04bff41a0794}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{f2a704ac-5388-452f-8acf-04bff41a0794}: [DhcpDomain] home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default [2024-01-29]
Edge Extension: (Ochrana Kaspersky) - C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-01-14]
Edge Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-11]
Edge Extension: (Edge relevant text changes) - C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-04]
Edge Profile: C:\Users\Petr\AppData\Local\Microsoft\Edge\User Data\Guest Profile [2024-01-29]
Edge HKU\S-1-5-21-1509276542-816349280-2872763448-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
FireFox:
========
FF DefaultProfile: rfpgykbk.default
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\rfpgykbk.default [2021-05-02]
FF ProfilePath: C:\Users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\w62eji53.default-release-1625304406484 [2024-01-29]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\FFExt\light_plugin_firefox\addon.xpi => not found
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default [2024-01-29]
CHR Extension: (Ochrana Kaspersky) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2024-01-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-28]
CHR Extension: (EPUBReader) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhhclmfgfllimlhabjkgkeebkbiadflb [2021-05-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-03-10]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\avp.exe [184768 2021-06-10] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8628224 2020-06-13] (BattlEye Innovations e.K. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [50516344 2023-11-01] (Electronic Arts, Inc. -> Electronic Arts)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [12019816 2024-01-30] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-12-21] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1959776 2022-04-10] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2022-04-10] (GOG Sp. z o.o. -> GOG.com)
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [176128 2014-06-24] (HP) [File not signed]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [357272 2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2011-04-13] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2011-04-13] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2021-06-22] (Even Balance, Inc. -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534472 2023-12-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\NisSrv.exe [3228400 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2303.8-0\MsMpEng.exe [133536 2023-04-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25560 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0391252.inf_amd64_b298c070ddf486e2\B391109\amdkmdag.sys [100259712 2023-04-26] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AsrSetupDrv3_0_38; C:\Windows\SysWOW64\Drivers\AsrSetupDrv3_0_38.sys [23304 2019-08-29] (ASROCK Incorporation -> RW-Everything) [File not signed]
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [314016 2020-04-13] (Tages SA -> )
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159864 2021-06-29] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [824528 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1999568 2024-01-18] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [235720 2023-02-08] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [353896 2023-03-29] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [350352 2023-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [179320 2023-04-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [259488 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-10] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [43680 2020-04-13] (Tages SA -> )
S3 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [69952 2020-02-03] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 npf; C:\WINDOWS\system32\drivers\npf.sys [36600 2019-07-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49600 2023-04-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [497920 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99608 2023-04-13] (Microsoft Windows -> Microsoft Corporation)
S2 AODDriver4.3.0; \??\C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-02-02 15:30 - 2024-02-02 15:31 - 000028968 _____ C:\Users\Petr\Desktop\FRST.txt
2024-02-02 15:30 - 2024-02-02 15:30 - 002389504 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2024-01-29 15:19 - 2024-01-29 15:19 - 000000000 ____D C:\Users\Petr\AppData\Local\AMDIdentifyWindow
2024-01-27 00:42 - 2024-01-27 00:44 - 000000000 ___HD C:\$WinREAgent
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-02-02 15:31 - 2019-12-27 10:32 - 000000000 ____D C:\FRST
2024-02-02 15:27 - 2021-12-20 14:59 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-02-02 15:27 - 2019-08-29 17:09 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-02 15:23 - 2019-08-29 16:53 - 000000000 ____D C:\Users\Petr\AppData\Local\D3DSCache
2024-02-02 14:59 - 2020-11-26 17:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-02-02 14:59 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-02 09:02 - 2023-05-14 22:59 - 000003116 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-02-02 09:02 - 2023-05-14 22:59 - 000003108 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-02-02 00:17 - 2019-11-24 19:56 - 000000000 ____D C:\Program Files (x86)\Steam
2024-02-01 23:44 - 2019-08-31 19:11 - 000000000 ____D C:\Users\Petr\AppData\Roaming\vlc
2024-02-01 22:12 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-02-01 22:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-02-01 18:28 - 2021-01-04 17:47 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-01 18:28 - 2021-01-04 17:47 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-02-01 13:22 - 2023-04-10 23:30 - 000003844 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA{0FD161AF-FE13-4708-94AE-F7111341AA00}
2024-02-01 13:22 - 2023-04-10 23:30 - 000003720 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore{668B2923-E4AB-421B-81D7-55E10922FEE6}
2024-01-30 22:34 - 2023-01-05 10:31 - 000000000 ____D C:\ProgramData\EA Desktop
2024-01-30 22:34 - 2020-01-11 13:28 - 000000000 ____D C:\Users\Petr\AppData\Local\CrashDumps
2024-01-29 15:21 - 2019-08-29 14:01 - 000000000 ____D C:\AMD
2024-01-29 12:25 - 2019-12-11 18:05 - 000000000 ____D C:\Program Files\CCleaner
2024-01-29 09:21 - 2020-11-26 17:55 - 000004198 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1567089129
2024-01-29 09:21 - 2019-08-29 15:32 - 000001447 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-01-28 01:01 - 2020-06-03 23:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-01-28 01:01 - 2020-06-03 23:44 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-01-27 00:45 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-01-24 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-01-24 09:28 - 2023-03-10 11:30 - 000000000 ____D C:\Users\Petr\AppData\Roaming\DeepL_SE
2024-01-23 21:07 - 2022-09-30 06:34 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-01-23 21:07 - 2022-09-30 06:34 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-01-23 21:07 - 2020-11-26 17:55 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-01-21 23:05 - 2021-01-02 10:04 - 000000000 ____D C:\Users\Petr\AppData\Local\AMD_Common
2024-01-21 18:46 - 2019-10-08 17:47 - 000226168 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2024-01-19 02:37 - 2020-11-26 17:48 - 000000000 ____D C:\Users\Petr
2024-01-18 20:02 - 2019-06-13 08:30 - 001999568 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2024-01-18 20:02 - 2019-06-13 08:09 - 000824528 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klgse.sys
2024-01-18 11:47 - 2020-11-26 17:52 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-01-18 11:47 - 2019-12-07 15:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2024-01-18 11:47 - 2019-12-07 15:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2024-01-18 11:47 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-01-18 11:43 - 2020-11-26 17:55 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-01-18 11:43 - 2020-11-26 17:46 - 000008192 ___SH C:\DumpStack.log.tmp
2024-01-17 02:51 - 2022-10-12 05:08 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-01-17 02:51 - 2022-10-12 05:08 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-01-17 02:51 - 2020-11-26 17:55 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-01-12 22:32 - 2020-11-26 17:46 - 000269344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-01-12 22:32 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-01-12 22:32 - 2019-08-29 14:01 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2024-01-12 22:31 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-01-12 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-01-12 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-01-12 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-01-12 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-01-12 22:31 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-01-12 12:45 - 2019-08-29 14:14 - 000918944 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2024-01-09 21:04 - 2019-08-29 14:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-01-09 21:01 - 2019-08-29 14:13 - 189718008 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-01-05 09:25 - 2020-04-09 20:14 - 000000000 ____D C:\Users\Petr\AppData\LocalLow\Adobe
==================== Files in the root of some directories ========
2023-03-21 00:37 - 2023-03-21 00:37 - 009676800 _____ () C:\Program Files (x86)\GUTC1C.tmp
2020-05-15 17:44 - 2020-05-15 18:16 - 042886902 _____ () C:\Users\Petr\AppData\Roaming\gta5_patch.bin
2020-05-15 17:44 - 2020-05-15 17:44 - 000332800 _____ () C:\Users\Petr\AppData\Roaming\patcher.dll
2020-06-01 15:24 - 2020-06-03 12:31 - 000007602 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27.01.2024 01
Ran by Petr (02-02-2024 15:32:05)
Running from C:\Users\Petr\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.3930 (X64) (2020-11-26 16:56:02)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1509276542-816349280-2872763448-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1509276542-816349280-2872763448-503 - Limited - Disabled)
Guest (S-1-5-21-1509276542-816349280-2872763448-501 - Limited - Disabled)
Petr (S-1-5-21-1509276542-816349280-2872763448-1001 - Administrator - Enabled) => C:\Users\Petr
WDAGUtilityAccount (S-1-5-21-1509276542-816349280-2872763448-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Disabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Kaspersky Anti-Virus (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
FW: Kaspersky Internet Security (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (HKLM\...\{BC741628-0AFC-405C-8946-DD46D1005A0A}) (Version: 8.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.008.20470 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.)
AMD Product Verification Tool version 1.0.4.8 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.4.8 - AMD)
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.4.3 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{aebb22c8-1fcb-4e7d-92ae-98f1012da7a2}) (Version: 3.10.08.506 - Advanced Micro Devices, Inc.) Hidden
Anno 1404 - History Edition (HKLM-x32\...\Uplay Install 16232) (Version: - Ubisoft)
ANNO 1404 (HKLM-x32\...\{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}) (Version: 1.00.0000 - Ubisoft)
Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version: - Ubisoft)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.8.2.48475 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Battlefield™ 2042 (HKLM-x32\...\{45e281f3-1414-47ea-bb64-4f50d50121f3}) (Version: 1.0.77.25093 - Electronic Arts)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.64.43202 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 19.06.0006 - Bloody)
Branding64 (HKLM\...\{0DB6E0DC-607A-42C1-A3CE-7567A9F85AF4}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.20 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
DeepL (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\https%3a##appdownload.deepl.com#windows#0install#deepl.xml) (Version: - )
Discord (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.116.0.5629 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{980e8c2b-d40d-490d-a02c-b70dc032c133}) (Version: 13.116.0.5629 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{DCE27B29-200D-491A-BBC5-98ECEFEC0843}) (Version: 1.1.257.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
EPSON PX730 Series Printer Uninstall (HKLM\...\EPSON PX730 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Fallout Mod Manager 0.13.21 (HKLM-x32\...\Generic Mod Manager_is1) (Version: - Q, Timeslip)
Far Cry 3 (HKLM-x32\...\Uplay Install 46) (Version: - Ubisoft)
Far Cry 5 (HKLM-x32\...\Uplay Install 1803) (Version: - Ubisoft)
FastStone Image Viewer 7.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.4 - FastStone Soft)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 121.0.6167.139 - Google LLC)
Heroes of Might and Magic V (HKLM-x32\...\Uplay Install 87) (Version: - Ubisoft)
HHD Software Hex Editor Neo 7.30 (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}) (Version: 7.30.00.8482 - HHD Software, Ltd.)
HP LaserJet 200 color M251 (HKLM-x32\...\{6682B5C4-530A-4FB8-ACAC-80DB5CCC68DD}) (Version: 15.0.15188.1774 - Hewlett-Packard)
HP Product FWUpdater (HKLM-x32\...\{A0F45DF9-0FF7-4C45-A119-1EBA27E6DD50}) (Version: 4.0.0.7242 - Hewlett-Packard Company) Hidden
HP Unified IO (HKLM\...\{5C76ED0D-0F6F-4985-8B34-F9AE7834848F}) (Version: 2.0.0.434 - HP) Hidden
HP Unified IO (HKLM-x32\...\{F1390872-2500-4408-A46C-CD16C960C661}) (Version: 2.0.0.434 - HP) Hidden
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPLaserJet200color-M251_HelpLearnCenter_SI (HKLM-x32\...\{DDEBEA89-2B5A-4E5B-8702-369882BB3F52}) (Version: 1.01.0000 - Hewlett-Packard)
HPLJUTCore (HKLM-x32\...\{B445502B-2F83-4873-90F1-06059F71A46A}) (Version: 014.000.0001 - HP) Hidden
HPLJUTM251 (HKLM-x32\...\{663A3950-CA55-4541-8B46-646BD548641D}) (Version: 3.00.0003 - HP) Hidden
hppM251LaserJetService (HKLM-x32\...\{09C0DA15-AB94-43BC-9B02-57DF3FEB469F}) (Version: 001.019.00639 - Hewlett-Packard) Hidden
hpStatusAlerts (HKLM-x32\...\{E35D0ED5-716B-4E1F-8477-54DD746DF527}) (Version: 140.040.00231 - Hewlett Packard) Hidden
hpStatusAlertsM251 (HKLM-x32\...\{A1EF28FB-74A8-4157-91E9-9C164CAB10F8}) (Version: 050.034.00131 - Hewlett-Packard) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{145AE349-477A-45E5-A57C-5F5BF2BB5775}) (Version: 20.0.14.1085 - Kaspersky)
Kontrola stavu osobního počítače s Windows (HKLM\...\{95548B78-8547-4E91-B0DA-1CBB82150917}) (Version: 3.7.2204.15001 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{E496AFB7-CB04-46CF-8FBB-5D665BC8811B}) (Version: 3.3.2110.22002 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Host - 6.0.6 (x64) (HKLM\...\{F48FB46C-3334-47AA-98ED-D5A47DED33F1}) (Version: 48.27.42327 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.6 (x64) (HKLM\...\{089493D9-430B-4210-8A47-8F611288F461}) (Version: 48.27.42327 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.6 (x64) (HKLM\...\{00478901-CD97-4A20-8FF3-3276865A2B44}) (Version: 48.27.42327 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 121.0.2277.83 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.144 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30133 (HKLM\...\{E699E009-1C3C-4E50-9B57-2B39F0954C7F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30133 (HKLM\...\{6CD9E9ED-906D-4196-8DC3-F987D2F6615F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.6 (x64) (HKLM\...\{B9E46F95-AC34-4943-AFE2-B72EFD56C6C0}) (Version: 48.27.42342 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.6 (x64) (HKLM-x32\...\{aad3b888-fde2-48c0-95c2-2f7a729283fb}) (Version: 6.0.6.31318 - Microsoft Corporation)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 3.18.5.761538 - NNG Llc.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Npcap OEM (HKLM-x32\...\NpcapInst) (Version: 0.9987 - Nmap Project)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
Opera Stable 106.0.4998.66 (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Opera 106.0.4998.66) (Version: 106.0.4998.66 - Opera Software)
PhotoFiltre (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\PhotoFiltre) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QElectroTech (remove only) (HKLM-x32\...\QElectroTech) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.8.16162 - Electronic Arts)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Tom Clancy's The Division 2 (HKLM-x32\...\Uplay Install 4932) (Version: - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 148.1.10975 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.6.14 - Black Tree Gaming Ltd.)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\Wargaming.net Game Center) (Version: 21.0.0.3580 - Wargaming.net)
WATCH_DOGS2 (HKLM-x32\...\Uplay Install 2688) (Version: - Ubisoft)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Wise Auto Shutdown 2.0.1 (HKLM-x32\...\Wise Auto Shutdown_is1) (Version: 2.0.1 - WiseCleaner.com, Inc.)
World of Tanks EU (HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-01-04] ()
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-25] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_151.3.1092.0_x64__v10z8vjag6ke6 [2024-01-18] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-29] (Microsoft Corporation) [MS Ad]
Neat Office - DOCX, XLSX & PDF App -> C:\Program Files\WindowsApps\15191PeakPlayer.NeatOffice_3.4.5.0_x64__y5c4dfz5b21fm [2024-02-01] (Any DVD & Office App)
OverDrive - Library eBooks & Audiobooks -> C:\Program Files\WindowsApps\2FA138F6.OverDriveMediaConsole_3.8.0.5_neutral__daecb9042jmvt [2021-05-04] (OverDrive Inc.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-05] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0 [2024-01-23] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1509276542-816349280-2872763448-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1509276542-816349280-2872763448-1001_Classes\CLSID\{6DB27B2E-87AC-4354-927A-AD711A0ED77E}\InprocServer32 -> C:\Users\Petr\AppData\Local\HHD Software\Hex Editor Neo\FileDocument.dll (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
CustomCLSID: HKU\S-1-5-21-1509276542-816349280-2872763448-1001_Classes\CLSID\{A244CEC5-DB63-4ED9-B0D7-A0527C064113}\InprocServer32 -> C:\Users\Petr\AppData\Local\HHD Software\Hex Editor Neo\FileDocument.dll (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
CustomCLSID: HKU\S-1-5-21-1509276542-816349280-2872763448-1001_Classes\CLSID\{ab489625-a513-41bc-8265-f880c3f2111e}\InprocServer32 -> C:\Users\Petr\AppData\Local\HHD Software\Hex Editor Neo\hhdhexneo.dll (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
CustomCLSID: HKU\S-1-5-21-1509276542-816349280-2872763448-1001_Classes\CLSID\{AE1514A4-5D7D-4D1B-BC7F-320E6962B0DD}\InprocServer32 -> C:\Users\Petr\AppData\Local\HHD Software\Hex Editor Neo\FileDocument.dll (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
CustomCLSID: HKU\S-1-5-21-1509276542-816349280-2872763448-1001_Classes\CLSID\{c3cefb22-817f-44c4-834c-3a823225f48a}\InprocServer32 -> C:\Users\Petr\AppData\Local\HHD Software\Hex Editor Neo\hhdhexneo.dll (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
CustomCLSID: HKU\S-1-5-21-1509276542-816349280-2872763448-1001_Classes\CLSID\{f59c8ee2-a833-4caf-bf96-14713c4eeaa5}\InprocServer32 -> C:\Users\Petr\AppData\Local\HHD Software\Hex Editor Neo\hhdhexneo.dll (HHD SOFTWARE LIMITED -> HHD Software Ltd.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\shellex.dll [2022-02-10] (AO Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 000041472 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 000073728 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPTools.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 001222656 _____ (Hewlett-Packard Company) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\LEDMXMLObjects.dll
2014-06-24 22:31 - 2014-06-24 22:31 - 000034816 _____ (HP) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
2019-10-10 16:07 - 2012-11-12 14:15 - 000558592 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2019-10-10 16:07 - 2012-10-22 16:19 - 000219648 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enpres.dll
2024-01-30 22:34 - 2024-01-30 22:34 - 002849280 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2024-01-30 22:34 - 2024-01-30 22:34 - 000685056 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2024-01-30 22:34 - 2024-01-30 22:34 - 000046592 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2024-01-30 22:34 - 2024-01-30 22:34 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll
2024-01-30 22:34 - 2024-01-30 22:34 - 001389568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll
2024-01-30 22:34 - 2024-01-30 22:34 - 000157184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Roaming\FastStone\FSIV\FSViewerWallPaper.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
Ethernet 2: Npcap Packet Driver (NPCAP) -> INSECURE_NPCAP (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run32: => "StatusAlerts"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\StartupFolder: => "DeepL auto-start.lnk"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Bloody2"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_99DE362BF37F05AF23B8D5CFF8AAB751"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "iFunBox"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "CCleanerBrowserAutoLaunch_5A829DFA1AFA7F676ABE6FB5CF72AD00"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1509276542-816349280-2872763448-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_88D36A2D9DF9AF2106D8CF7538FE64F2"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{1417889F-1F82-4436-95FA-58EB5E2AB73F}] => (Allow) D:\hry\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{2B937FA7-4A81-483F-8C90-31DCF6423DC9}] => (Allow) D:\hry\Battlefield 4\BFLauncher_x86.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{C1B02EB9-175A-4580-B0D2-29589AB6AB57}] => (Allow) D:\hry\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{5159DB15-13B0-4908-8110-BAD60EDC9DB7}] => (Allow) D:\hry\Battlefield 4\BFLauncher.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{E806E2BD-6FC6-4749-9B73-E3D568E5F606}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{6AE797DA-D1A1-4DDA-BC0C-3D9A8167FA5E}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{D04AA49F-91DF-4DEE-92C4-C5FFDE0D5755}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3A6D23C1-B480-4561-94AD-FCC6C7F86685}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{492CAD26-AB2C-4A64-9498-961B54883E6B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7D27EBF7-1C7D-4404-880D-538A8A7EE5EE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BB8ACC7B-E2D1-4E88-9214-C72F3EDBE9F1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D7AC227F-0A37-4BE3-AF57-D36B2995251A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CE6EEF2D-1F36-462F-AB41-88FAB44C700E}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{9AAD93C6-52C7-4FE2-B87D-5DB01CAD76C3}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{E93EC311-5E58-4E08-B98C-0235B7A73406}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5B730B61-667C-4516-938B-EC15A9637983}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C39B6ACE-BCAD-4E21-83B8-AB537689C860}] => (Allow) D:\hry\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{C1B9E5B8-D5BE-428B-8CB6-CE3D076087CF}] => (Allow) D:\hry\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{8F06DE42-E106-4488-A580-5027682911BF}] => (Allow) D:\hry\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{112F24A0-5A91-4967-993D-2FBAE5FAE76A}] => (Allow) D:\hry\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{419682F2-C276-4CB3-9A35-93994FC2A461}D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [UDP Query User{44CF168D-A3FD-41F9-937E-FA651C93938B}D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe] => (Allow) D:\hry\snowrunner\en_us\sources\bin\snowrunner.exe (Focus Entertainment SA -> Focus Home Interactive)
FirewallRules: [TCP Query User{267FD1D4-7A03-444B-8C54-AFF2D4A22C57}D:\hry\battlefield 4\bf4.exe] => (Allow) D:\hry\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{C7FEFF94-A4CA-43D3-8C23-EA8C54734880}D:\hry\battlefield 4\bf4.exe] => (Allow) D:\hry\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{229A65EB-1F02-46C8-9A59-C15C8C20A25D}D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{97A09218-DB57-4DC9-8861-7BBCD4CE438E}D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{AA718639-A942-4333-AFEB-F1AC21D50040}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{423FEE19-DA11-4AEE-BF39-78BA62B4040A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{39A7A574-AF6E-463F-AEAC-17771FABA95E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B2D4B0DD-4385-4178-BF04-16F0ACA9C822}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{DDE30AB4-B3D2-4D18-BB23-76220C02165E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{3B7D9BA2-03A5-4DF4-9801-6583DFF34CE3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{3BD7433E-4AC6-473E-89F2-9B2CC37B5C43}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{DABEAA34-D532-4266-8967-C1AE933DF32F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12113.17.53090.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{DAC3207F-5268-4CFE-8233-D4311F813CDD}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{915873F8-A402-48BC-B709-4D8F9F9784B9}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{D4873D31-4ED2-4B5D-BE3A-6E6CDF7568C0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{65D332B4-4C82-4669-99C3-B578D6F7979D}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [TCP Query User{3E688CE8-1B32-45FF-A6C9-17618D8F6863}D:\hry\oddworldnewntasty\nnt.exe] => (Allow) D:\hry\oddworldnewntasty\nnt.exe () [File not signed]
FirewallRules: [UDP Query User{FC94920C-E83F-455D-8CF7-FEAC7E1E082F}D:\hry\oddworldnewntasty\nnt.exe] => (Allow) D:\hry\oddworldnewntasty\nnt.exe () [File not signed]
FirewallRules: [TCP Query User{163D6943-1A8C-48AD-A0CD-4C37BE4188A3}C:\users\petr\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\petr\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{C4F3D7C1-0235-42A0-AC8F-B9AFEA1F7F4E}C:\users\petr\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\petr\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{C1C70A86-51DF-4B21-810B-A9DE46B62D31}] => (Allow) D:\hry\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{308FC2A8-BE68-4C19-B3C4-22EB7EF0F7DB}] => (Allow) D:\hry\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{259305F9-5EED-463E-826C-287131346CC0}] => (Allow) D:\hry\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{6A33157B-0F05-4DA9-AA92-78DCEF1A2375}] => (Allow) D:\hry\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [TCP Query User{EB089206-14BB-40BD-B0AC-0864DC2EE02F}C:\users\petr\appdata\local\programs\opera\opera.exe] => (Block) C:\users\petr\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{309A9380-88E3-4D3D-99BA-DA9710A95F85}C:\users\petr\appdata\local\programs\opera\opera.exe] => (Block) C:\users\petr\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{7DF49F76-9D3F-4D02-BF25-AF6B3689EABA}D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{D9A4991D-68FE-493A-96C9-5110ED8A6D79}D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe] => (Allow) D:\hry\kingdomcomedeliverance\bin\win64mastermasterepicpgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [TCP Query User{B564F353-35FD-45D0-AB0A-7D4624DD9E7F}D:\hry\battlefield 2042\bf2042.exe] => (Allow) D:\hry\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{DA1DC76B-20DA-49A5-9C9C-760995439C60}D:\hry\battlefield 2042\bf2042.exe] => (Allow) D:\hry\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{085A3B03-2E4A-4E93-AD3E-5F64AE1AC389}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C855D5F3-500D-4E6F-BA33-560A82FCA723}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{A20E2876-A915-45FF-9EA8-9457AAB48ED1}D:\hry\battlefield v\bfv.exe] => (Allow) D:\hry\battlefield v\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [UDP Query User{37D5BBA4-B525-4BE5-A0A1-62AED06F3091}D:\hry\battlefield v\bfv.exe] => (Allow) D:\hry\battlefield v\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{5728B447-6E98-4B1C-B776-263F1117C350}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{677EDDB4-FC30-48C7-8B05-2AAF2DA241E1}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{E5A97E73-362B-48B0-A26B-CB8933C7CBC3}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{CAF73EFB-EB9B-4DCD-8096-7D23BC3FADBD}] => (Allow) D:\hry\SteamLibrary\steamapps\common\Fallout 4\Fallout4Launcher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{038E429A-04FF-41D8-8850-4E9AEC1E37A9}] => (Allow) D:\hry\Battlefield 2042\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7571795F-CCAD-4995-802F-CBCA03BA6CF4}] => (Allow) D:\hry\Battlefield 2042\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6068DA57-F1B7-4B02-A3F9-76E0919F6892}] => (Allow) D:\hry\SteamLibrary\steamapps\common\BioShock Infinite\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{63B38C49-2662-4C0E-8BF7-DD7F615E099C}] => (Allow) D:\hry\SteamLibrary\steamapps\common\BioShock Infinite\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [TCP Query User{2815EEAF-30FE-4D6F-8669-4691AC0BB592}D:\hry\steamlibrary\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe] => (Allow) D:\hry\steamlibrary\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe (Irrational Games) [File not signed]
FirewallRules: [UDP Query User{06F6D921-5076-4612-92F3-3949750725AC}D:\hry\steamlibrary\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe] => (Allow) D:\hry\steamlibrary\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe (Irrational Games) [File not signed]
FirewallRules: [{A13F2C1D-1012-4CF4-8F3E-ED9F30695B8E}] => (Allow) D:\hry\SteamLibrary\steamapps\common\AoEDE\AoEDE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9A75F76D-96ED-44DA-92A5-61B34BC33A14}] => (Allow) D:\hry\SteamLibrary\steamapps\common\AoEDE\AoEDE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B3F51A13-61E1-4799-A6CD-FAFAC0E03094}] => (Allow) D:\hry\SteamLibrary\steamapps\common\AoEDE\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [{7107F9B9-22E2-42EA-980D-136904371C40}] => (Allow) D:\hry\SteamLibrary\steamapps\common\AoEDE\BattleServer.exe (Microsoft Corporation -> )
FirewallRules: [TCP Query User{3E4A1A8F-CB54-4EE8-B9A2-35BB8A934B5B}D:\hry\anno 1404 - history edition\anno1404addon.exe] => (Allow) D:\hry\anno 1404 - history edition\anno1404addon.exe (Ubisoft Blue Byte GmbH -> Ubisoft)
FirewallRules: [UDP Query User{CB8E4676-4696-4E6E-B17A-3244977C5EC3}D:\hry\anno 1404 - history edition\anno1404addon.exe] => (Allow) D:\hry\anno 1404 - history edition\anno1404addon.exe (Ubisoft Blue Byte GmbH -> Ubisoft)
FirewallRules: [TCP Query User{0592C326-B298-4A0A-AB28-7AB7B307D038}D:\hry\anno 1404 - history edition\anno1404.exe] => (Allow) D:\hry\anno 1404 - history edition\anno1404.exe (Ubisoft Blue Byte GmbH -> Ubisoft)
FirewallRules: [UDP Query User{E56DCAD3-B5AD-4B78-9708-ED722F077958}D:\hry\anno 1404 - history edition\anno1404.exe] => (Allow) D:\hry\anno 1404 - history edition\anno1404.exe (Ubisoft Blue Byte GmbH -> Ubisoft)
FirewallRules: [{E18615FB-C2E3-42DC-9B8D-87131ADCD54D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{112CD79C-B8D9-41F3-B53A-322E735DF9B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AE18884F-8479-4E74-8A8B-0B419D847726}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{825DDD29-9219-4635-A8F2-95603FB007D9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{707BB9A3-9EDB-4429-B9DE-594CED940BC2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{45D44D84-0709-4645-87FD-EF164D3733FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7B4537B1-C4AB-4F1D-90E0-ABE60CBC53A8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FC7A5AA4-79D3-4B5B-A1C4-1DD2FED09C80}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AD0AF5D9-9338-4746-B542-83D8A69C4C5F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{587BFF6F-4111-4435-96B5-FA6DB756D1D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.229.605.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2FD29FF8-2079-49F1-8FAB-B53975B6E7EC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.144\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{47BE11C0-56B6-4B18-BAB8-35A4179C2A01}D:\hry\battlefield 4\bf4.exe] => (Allow) D:\hry\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{F8BD5FE2-E7BC-47B0-A74A-19CAF3600B13}D:\hry\battlefield 4\bf4.exe] => (Allow) D:\hry\battlefield 4\bf4.exe (Electronic Arts -> EA Digital Illusions CE AB)
FirewallRules: [{BDFECD41-9C27-49FE-A15F-4DB895944FAA}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{58AEAB1E-AEB0-47D0-9A73-201F9173DCA8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A77C2D79-B09B-43C6-84B3-8E3F1D7CD94E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E3D1021C-5B0A-4028-8E70-5EFC7D09388A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5C324496-E025-4EA6-8CE1-51BC95B3A1C2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6AB8A488-27C5-4FC3-8DF7-7BEA54162795}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D0E5A3AA-9992-46DB-92FA-4298D3A06614}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{611DBFD8-386E-4692-86FD-1A1DDB9FDE9A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{77D06A96-C0CB-4E9B-859E-B28F36F2FBE0}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{76CC4B6D-5BA3-4C54-80D1-5FC75020A515}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7ADEEA0C-4343-4FA8-B697-43D8A6DBEBDD}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D25432C3-269B-4975-9E6E-A03F117B3266}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/01/2024 11:06:18 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Hry (H:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/01/2024 11:06:17 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Foto (G:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/01/2024 11:06:16 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/01/2024 11:06:06 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (02/01/2024 11:06:03 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na HDD (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (01/30/2024 10:34:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: EALaunchHelper.exe, verze: 13.116.0.5629, časové razítko: 0x65b2d1e4
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x473c
Čas spuštění chybující aplikace: 0x01da53c416a06227
Cesta k chybující aplikaci: C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: bf7753b5-6af7-495c-b200-6a15aea17903
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/25/2024 10:24:13 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Hry (H:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (01/25/2024 10:24:12 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Foto (G:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (02/02/2024 03:04:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace bezpečnostních informací pro Microsoft Defender Antivirus – KB2267602 (verze 1.403.3092.0) – Aktuální kanál (široká distribuce).
Error: (02/02/2024 03:04:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender byla ukončena s následující chybou:
Obecná chyba odepření přístupu
Error: (02/02/2024 09:04:12 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (02/02/2024 09:03:12 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace bezpečnostních informací pro Microsoft Defender Antivirus – KB2267602 (verze 1.403.3048.0) – Aktuální kanál (široká distribuce).
Error: (02/02/2024 09:03:10 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Služba Antivirová ochrana v programu Microsoft Defender byla ukončena s následující chybou:
Obecná chyba odepření přístupu
Error: (02/01/2024 07:27:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/01/2024 07:27:01 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (60000 ms).
Error: (02/01/2024 07:25:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace bezpečnostních informací pro Microsoft Defender Antivirus – KB2267602 (verze 1.403.3048.0) – Aktuální kanál (široká distribuce).
Windows Defender:
================
Date: 2023-04-13 22:13:26
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8CDF7E06-71FA-46DB-9D10-E72326F93454}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-04-13 16:45:01
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {33A2D99A-89CF-4C75-8D9F-CFF293A3AD0C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-04-13 07:45:18
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2D04957C-CABF-416B-A94D-8175900A2969}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-04-12 19:55:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3FC6EB39-5AAC-48B6-B5F6-11FEB2F59188}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-04-13 22:24:28
Description:
Antivirová ochrana v programu Microsoft Defender ęηĝīņè ђāš вěзň ť℮ŕмĭⁿãтĕđ δúε тσ аņ ΰйз×φęçţêδ ēŕѓōя.%ʼn %ť₣ãїłύяě Ťýрĕ:%вChyba%и %ţĖхçęρтĭóπ сōďē:%в0xc0000005%ŋ %τŘĕŝöΰř¢з:%ъ%ń %ŧÉиġїñê Сθďė:%ъ0
CodeIntegrity:
===============
Date: 2024-02-02 15:25:11
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
Date: 2024-02-02 09:01:06
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2603 06/26/2015
Motherboard: ASUSTeK COMPUTER INC. M5A97 R2.0
Processor: AMD FX(tm)-8350 Eight-Core Processor
Percentage of memory in use: 38%
Total physical RAM: 16283.51 MB
Available physical RAM: 9957.7 MB
Total Virtual: 17457.9 MB
Available Virtual: 5077 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:110.55 GB) (Free:1.75 GB) (Model: KINGSTON SUV400S37120G) NTFS
Drive d: (HDD) (Fixed) (Total:931.51 GB) (Free:72.88 GB) (Model: WDC WD10EZEX-00WN4A0) NTFS
Drive e: () (Fixed) (Total:19.53 GB) (Free:10.19 GB) (Model: ST3160815AS) NTFS
Drive f: (Data) (Fixed) (Total:39.06 GB) (Free:2.98 GB) (Model: ST3160815AS) NTFS
Drive g: (Foto) (Fixed) (Total:14.65 GB) (Free:3.18 GB) (Model: ST3160815AS) NTFS
Drive h: (Hry) (Fixed) (Total:75.8 GB) (Free:3.8 GB) (Model: ST3160815AS) NTFS
\\?\Volume{d4618fa8-1499-48d2-9ae8-ddae5bc9040c}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.11 GB) NTFS
\\?\Volume{7fec1032-e377-4f4b-b3ea-078c0c0b21a4}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS
\\?\Volume{f7d463f0-f151-40c2-8963-640aacf0b21a}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: 9EBFDF90)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 63FEE4B8)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: A005A005)
Partition 1: (Active) - (Size=19.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=129.5 GB) - (Type=0F Extended)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivní kontrola
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivní kontrola
Ahoj,
Drive c: () (Fixed) (Total:110.55 GB) (Free:1.75 GB) (Model: KINGSTON SUV400S37120G
Toto moze byt problem - uvolni miesto na disku
Drive c: () (Fixed) (Total:110.55 GB) (Free:1.75 GB) (Model: KINGSTON SUV400S37120G
Toto moze byt problem - uvolni miesto na disku
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola
Místo uvolněno, mírná změna k lepšímu.
Log je v pořádku?
Díky.
Log je v pořádku?
Díky.
Re: Preventivní kontrola
Pouzi fixlist:
Start
CloseProcesses:
S2 AODDriver4.3.0; \??\C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
EmptyTemp:
End
Start
CloseProcesses:
S2 AODDriver4.3.0; \??\C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
EmptyTemp:
End
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola
Fix result of Farbar Recovery Scan Tool (x64) Version: 27.01.2024 01
Ran by Petr (03-02-2024 10:26:39) Run:1
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
S2 AODDriver4.3.0; \??\C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\System\CurrentControlSet\Services\AODDriver4.3.0 => removed successfully
AODDriver4.3.0 => service removed successfully
HKLM\System\CurrentControlSet\Services\EAAntiCheat => removed successfully
EAAntiCheat => service removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33853337 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 307362651 B
Windows/system/drivers => 9001418 B
Edge => 0 B
Chrome => 188416 B
Firefox => 0 B
Opera => 8232584 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 24 B
systemprofile32 => 24 B
LocalService => 24 B
NetworkService => 24 B
Petr => 52685139 B
RecycleBin => 0 B
EmptyTemp: => 393.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 10:27:00 ====
Ran by Petr (03-02-2024 10:26:39) Run:1
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
S2 AODDriver4.3.0; \??\C:\Program Files\AMD\Performance Profile Client\amd64\AODDriver2.sys [X]
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\System\CurrentControlSet\Services\AODDriver4.3.0 => removed successfully
AODDriver4.3.0 => service removed successfully
HKLM\System\CurrentControlSet\Services\EAAntiCheat => removed successfully
EAAntiCheat => service removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 33853337 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 307362651 B
Windows/system/drivers => 9001418 B
Edge => 0 B
Chrome => 188416 B
Firefox => 0 B
Opera => 8232584 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 24 B
systemprofile32 => 24 B
LocalService => 24 B
NetworkService => 24 B
Petr => 52685139 B
RecycleBin => 0 B
EmptyTemp: => 393.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 10:27:00 ====
Re: Preventivní kontrola
OK, malo by to byt ciste 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivní kontrola
Skvělé, moc děkuji za pomoc. 
Re: Preventivní kontrola
Rado sa stalo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?