Hromadně smazané soubory - kontrola Logu

[cr8g]

Z disku se mi smazalo asi 2TB souborů s tím, že po nich zůstali původní složky - tedy vše vypadalo ok, ale byli to pouze prázdné skořápky. Částečně obnoveno pomocí recovery toolu, ale byl bych klidnější, kdybych věděl, že PC je po virové stránce OK.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-09-2024
Ran by radov (administrator) on RADOBOT3000 (NZXT N7 Z790) (12-09-2024 19:10:58)
Running from C:\Users\radov\Desktop\FRST64.exe
Loaded Profiles: radov
Platform: Microsoft Windows 11 Pro Version 23H2 22631.4169 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\radov\AppData\Local\Programs\Opera GX\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe <8>
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe ->) (Adobe Inc. -> Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Creative Cloud UI Helper.exe <4>
(C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EACefSubProcess.exe <5>
(C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe
(C:\Program Files\Intel\Intel(R) Extreme Tuning Utility\Client\XtuUiLauncher.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Extreme Tuning Utility\Client\PerfTune.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.24900.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.67\msedgewebview2.exe <6>
(C:\Users\radov\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\radov\AppData\Local\Programs\Opera GX\112.0.5197.115\opera_crashreporter.exe
(E:\Programy\steam.exe ->) (Valve Corp. -> Valve Corporation) E:\Programy\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(explorer.exe ->) (BitTorrent Inc -> BitTorrent Limited) C:\Users\radov\AppData\Roaming\uTorrent Web\utweb.exe
(explorer.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Extreme Tuning Utility\Client\XtuUiLauncher.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\radov\AppData\Local\Programs\Opera GX\opera.exe <43>
(explorer.exe ->) (Valve Corp. -> Valve Corporation) E:\Programy\steam.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1196b342b24df5d1\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (CACCD12F-7BFA-4346-AD14-30B4E275348F -> Hewlett-Packard Development Company, L.P.) C:\Program Files\WindowsApps\33C30B79.HyperXNGenuity_5.27.1.0_x64__0a78dr3hq0pvt\Assets\Native\NGenuity2Helper.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Martin Malik - REALiX -> REALiX s.r.o.) C:\Users\radov\Downloads\hwi_772\HWiNFO64.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.4.0.0_x64__8wekyb3d8bbwe\WidgetService\WidgetService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\radov\AppData\Local\Microsoft\OneDrive\24.166.0818.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\iCUE Launcher.exe [189480 2024-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-05-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1136560 2024-07-05] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [MicrosoftEdgeAutoLaunch_1CB8CC53F15BA57A6B88AF3437DAFF32] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741256 2024-09-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [Opera GX Stable] => C:\Users\radov\AppData\Local\Programs\Opera GX\opera.exe [1511840 2024-09-03] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3380840 2024-09-05] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [Steam] => E:\Programy\steam.exe [4407656 2024-07-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [utweb] => C:\Users\radov\AppData\Roaming\uTorrent Web\utweb.exe [6425608 2024-07-08] (BitTorrent Inc -> BitTorrent Limited)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\radov\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45120304 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [12256672 2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\MountPoints2: {5a273da2-e2e0-11ee-8ae9-701ab89b13af} - "H:\HonorSuiteOnlineInstaller.exe"
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2024-02-22] (Adobe Inc. -> Adobe Systems Inc)
Startup: C:\Users\radov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel(R) Extreme Tuning Utility.lnk [2024-03-13]
ShortcutTarget: Intel(R) Extreme Tuning Utility.lnk -> C:\Windows\Installer\{DE741811-CEDB-4185-BC52-EE7BB62594D1}\PerfTuneIcon.B089625E_E454_492E_B2F2_7E934E4807F0.exe (Intel Corporation -> Intel(R) Corporation)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {BB20E663-CD9F-42DC-BC48-7FDC8A5889CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {DB84CC6B-D348-4979-B639-B42EFF271F8F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {B1111661-F352-413A-B611-5D19A97B6589} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5075248 2024-08-16] (Gen Digital Inc. -> Gen Digital Inc. All rights reserved.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "97cca5bf-b061-4d2a-8314-5765538d383a" --version "6.27.11214" --silent
Task: {F3028428-E4CD-4726-AD39-ED2A7096F7D7} - System32\Tasks\CCleanerSkipUAC - radov => C:\Program Files\CCleaner\CCleaner.exe [39072560 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {BF82075C-476C-4B06-A416-793396BB4B97} - System32\Tasks\HWiNFO => C:\Users\radov\Downloads\hwi_772\HWiNFO64.exe [8873952 2024-03-13] (Martin Malik - REALiX -> REALiX s.r.o.)
Task: {036BB233-156C-4B0F-9568-3CDEC9D446A7} - System32\Tasks\Intel\Intel Telemetry 3 => C:\Program Files\Intel\Telemetry 3.0\lrio.exe [5903008 2023-11-01] (Intel Corporation -> Intel Corporation)
Task: {B44F61E0-A0E6-4297-A046-6F8C9F2C975E} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-08-06] (Adobe Inc. -> Adobe Inc.)
Task: {C70BAFA9-D4E3-45A2-B77B-7F5B45A72206} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {9C9BD8F1-14D7-459F-8E40-DF7A14538509} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9C166D0F-0222-4AB6-824C-628D339F3876} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B3A04040-9D9D-457A-890A-B934E6E23C28} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {597D6F85-55AE-4969-8E3C-9DF78D56DDCE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {76B11C39-D249-491A-9544-E2D69B2885C7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {72EF2621-96BA-47EF-9413-07D7EDE981D4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0DC9D48-6C99-4E44-B754-F5AE659CE7B1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {92BD6C08-5E34-4D54-AB6F-0F95A0376AB6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BB463524-E41D-47BE-AD73-646AE7B66038} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {08B9FC05-79C1-4775-BB12-32D777807489} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F0B1C30E-0962-484F-A940-7846B8EB20D7} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66044687-9547-414F-8266-F43005742822} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0BDC7DCF-D979-4856-B021-640A8285F67E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8099DC10-FDAE-4C49-B352-55724659FD08} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1710417683 => C:\Users\radov\AppData\Local\Programs\Opera GX\launcher.exe [1306528 2024-09-12] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\radov\AppData\Local\Programs\Opera GX\assistant" $(Arg0)
Task: {EA536B60-6321-46F3-B014-BFB632C02576} - System32\Tasks\Opera GX scheduled Autoupdate 1710346660 => C:\Users\radov\AppData\Local\Programs\Opera GX\autoupdate\opera_autoupdate.exe [5779360 2024-09-01] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8722d140-5daf-458b-849f-52fc19e20f24}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a0416659-48f9-4be1-9570-465ba3da2795}: [DhcpNameServer] 192.168.194.203
Tcpip\..\Interfaces\{f9a9810b-8c63-40a4-a3fe-1bde14265c01}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{f9a9810b-8c63-40a4-a3fe-1bde14265c01}: [DhcpDomain] home

Edge:
=======
Edge Profile: C:\Users\radov\AppData\Local\Microsoft\Edge\User Data\Default [2024-09-11]
Edge Extension: (Dokumenty Google offline) - C:\Users\radov\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-10]
Edge Extension: (Edge relevant text changes) - C:\Users\radov\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-13]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-07-05] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR HKU\S-1-5-21-3776361053-776600149-1209017496-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-3776361053-776600149-1209017496-1001) Opera GXStable - "C:\Users\radov\AppData\Local\Programs\Opera GX\opera.exe"

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944048 2024-07-05] (Adobe Inc. -> Adobe Inc.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2569352 2024-08-05] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1086256 2024-08-16] (Gen Digital Inc. -> Piriform Software Ltd)
S3 CorsairCpuIdService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairCpuIdService.exe [300584 2024-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\CorsairDeviceListerService.exe [175656 2024-08-31] (Corsair Memory, Inc. -> )
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [89779592 2024-08-22] (Electronic Arts, Inc. -> Electronic Arts)
R3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [13928552 2024-09-05] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2024-03-13] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\iCUEUpdateService.exe [459304 2024-08-31] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 Intel(R) Platform License Manager Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray_service.exe [9903656 2024-04-18] (Logitech Inc -> Logitech, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1196b342b24df5d1\Display.NvContainer\NVDisplay.Container.exe [1275424 2024-07-11] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [530448 2024-09-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [188416 2023-12-04] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HWiNFO_191; C:\Users\radov\AppData\Local\Temp\HWiNFO64A_191.SYS [57936 2024-09-12] (Microsoft Windows Hardware Compatibility Publisher -> REALiX) <==== ATTENTION
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_cdf3ca3c77d5f267\logi_lamparray.sys [98864 2024-04-18] (Logitech Inc -> Logitech, Inc.)
R3 MpKsla200e756; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0221B651-B9C9-4FD3-996B-859FC8334B7F}\MpKslDrv.sys [271640 2024-09-12] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 sshid; C:\WINDOWS\System32\drivers\sshid.sys [48800 2022-02-23] (SteelSeries ApS -> SteelSeries ApS)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602504 2024-08-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-09] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz158; \??\C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S3 MpKslcdecf25f; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D1F3392A-F045-42B6-9712-96F0A9C315A5}\MpKslDrv.sys [X]
S3 NEProtect; \??\E:\Programy\steamapps\common\Once Human\NEProtect.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-09-12 19:10 - 2024-09-12 19:11 - 000026674 _____ C:\Users\radov\Desktop\FRST.txt
2024-09-12 19:10 - 2024-09-12 19:11 - 000000000 ____D C:\FRST
2024-09-12 19:06 - 2024-09-12 19:06 - 002397696 _____ (Farbar) C:\Users\radov\Desktop\FRST64.exe
2024-09-12 18:59 - 2024-09-12 18:59 - 000691448 _____ C:\WINDOWS\system32\perfh005.dat
2024-09-12 18:59 - 2024-09-12 18:59 - 000143354 _____ C:\WINDOWS\system32\perfc005.dat
2024-09-11 17:11 - 2024-09-11 18:37 - 000022167 _____ C:\Users\radov\Desktop\jak si vybrat herní křeslo.odt
2024-09-11 04:43 - 2024-09-11 04:43 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk
2024-09-10 20:54 - 2024-09-11 06:43 - 000000000 ____D C:\Program Files\Recuva
2024-09-10 20:54 - 2024-09-10 20:54 - 000001699 _____ C:\Users\Public\Desktop\Recuva.lnk
2024-09-10 20:54 - 2024-09-10 20:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2024-09-10 20:36 - 2024-09-10 20:36 - 000008924 _____ C:\Users\radov\Desktop\Bose soundlink Max.odt
2024-09-05 16:18 - 2024-09-05 16:18 - 000000000 ____D C:\Users\radov\AppData\Roaming\Fatshark
2024-09-05 11:09 - 2024-09-05 11:09 - 004299135 _____ C:\Users\radov\Downloads\LMC_prez_Promise_CZ_fin_mail TZ-1.pdf
2024-09-02 13:43 - 2024-09-02 13:43 - 067246344 _____ C:\Users\radov\Downloads\C2562.MP4
2024-08-31 22:01 - 2024-08-31 22:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2024-08-31 18:40 - 2024-08-31 18:40 - 000100944 _____ C:\Users\radov\Downloads\the_bold_font.zip
2024-08-29 18:48 - 2024-08-29 18:48 - 000200692 _____ C:\Users\radov\Downloads\AdobeStock_316766423_Preview.jpeg
2024-08-29 09:47 - 2024-08-29 09:47 - 1145362189 _____ C:\Users\radov\Desktop\Swat 2024.mp4
2024-08-25 17:42 - 2024-08-25 17:43 - 000000000 ____D C:\Users\radov\Desktop\Dragon ball prodej
2024-08-25 15:29 - 2024-08-25 15:29 - 067246808 _____ C:\Users\radov\Downloads\C2202.MP4
2024-08-23 20:31 - 2024-08-23 20:31 - 000022518 _____ C:\Users\radov\Downloads\Longlegs(0000403225).zip
2024-08-23 18:16 - 2024-08-23 18:16 - 000863152 _____ C:\Users\radov\Downloads\ApplyForm_PRG3240819AL2700049.pdf
2024-08-23 13:47 - 2024-08-23 13:47 - 000000000 ____D C:\Users\radov\AppData\Local\UniCompactView
2024-08-23 13:45 - 2024-08-23 13:45 - 000000000 ____D C:\Users\radov\AppData\Roaming\Netease
2024-08-23 13:43 - 2024-08-23 13:43 - 000000000 ____D C:\Users\radov\AppData\Roaming\CC
2024-08-23 13:43 - 2024-08-23 13:43 - 000000000 ____D C:\Users\radov\AppData\Local\UniSDK_FirstOpen
2024-08-21 15:39 - 2024-08-21 15:40 - 326490703 _____ C:\Users\radov\Desktop\kcd2 podepisování short.mp4
2024-08-21 08:53 - 2022-09-30 05:24 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2024-08-17 00:14 - 2024-08-17 00:14 - 000884405 _____ C:\Users\radov\Desktop\7ca1485bdd4242c5bdb928ed0c2213ea.pdf
2024-08-16 22:23 - 2024-08-16 22:23 - 000001050 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom.lnk
2024-08-16 22:23 - 2024-08-16 22:23 - 000001038 _____ C:\Users\radov\Desktop\Lightroom.lnk
2024-08-16 11:56 - 2024-08-16 11:56 - 000338066 _____ C:\Users\radov\Downloads\HOLOVSKY_RADOVAN MR 17SEP2024 PRG HEL.eml
2024-08-16 11:56 - 2024-08-16 11:56 - 000338002 _____ C:\Users\radov\Downloads\JEDLAN_MATOUS MR 17SEP2024 PRG HEL.eml
2024-08-15 21:56 - 2024-08-15 21:56 - 000026169 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-08-15 21:55 - 2024-08-15 21:55 - 000026169 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-08-14 23:25 - 2024-08-14 23:25 - 000000000 ____D C:\Users\radov\Desktop\Maty monitor a PC
2024-08-13 22:24 - 2024-08-13 22:24 - 000027376 _____ (EasyAntiCheat Oy) C:\WINDOWS\system32\eac_usermode_112300357523888.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-09-12 19:09 - 2024-03-13 17:58 - 000000000 ___HD C:\Program Files\WindowsApps
2024-09-12 19:09 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-09-12 19:03 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-09-12 19:02 - 2024-03-13 18:17 - 000000000 ____D C:\Users\radov\AppData\Local\D3DSCache
2024-09-12 18:59 - 2024-03-13 18:08 - 001630886 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-09-12 18:59 - 2024-03-13 18:05 - 000000000 ____D C:\ProgramData\NVIDIA
2024-09-12 18:59 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\INF
2024-09-12 18:59 - 2024-03-13 17:58 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-09-12 18:53 - 2024-03-13 18:29 - 000000000 ___RD C:\Users\radov\Creative Cloud Files
2024-09-12 18:52 - 2024-03-13 23:48 - 000000000 ____D C:\Users\radov\AppData\Roaming\uTorrent Web
2024-09-12 18:52 - 2024-03-13 21:35 - 000000000 ____D C:\Program Files\CCleaner
2024-09-12 18:52 - 2024-03-13 18:17 - 000004254 _____ C:\WINDOWS\system32\Tasks\Opera GX scheduled Autoupdate 1710346660
2024-09-12 18:52 - 2024-03-13 18:17 - 000001415 _____ C:\Users\radov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera GX.lnk
2024-09-12 18:52 - 2024-03-13 18:16 - 000000000 ___RD C:\Users\radov\OneDrive
2024-09-12 18:52 - 2024-03-13 18:00 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-12 18:52 - 2024-03-13 18:00 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2024-09-12 18:52 - 2024-03-13 18:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-09-12 18:52 - 2024-03-13 18:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-09-12 18:52 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\ServiceState
2024-09-11 20:55 - 2024-03-13 18:11 - 000000000 ____D C:\Users\radov
2024-09-11 20:50 - 2024-03-14 11:17 - 000000000 ____D C:\Users\radov\AppData\Roaming\vlc
2024-09-11 04:51 - 2024-03-13 17:58 - 000000000 ____D C:\ProgramData\USOPrivate
2024-09-11 04:48 - 2024-03-13 18:14 - 000000000 ____D C:\Users\radov\AppData\Roaming\Adobe
2024-09-11 04:43 - 2024-03-13 18:28 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-09-11 04:36 - 2024-03-13 18:00 - 000333432 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-09-11 04:36 - 2024-03-13 17:56 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\WUModels
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\SystemResources
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\Provisioning
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-09-11 04:35 - 2024-03-13 17:58 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-09-11 04:33 - 2024-04-11 01:26 - 000000000 ____D C:\Users\radov\AppData\Local\Battle.net
2024-09-11 03:47 - 2024-03-13 18:59 - 000003566 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2024-09-11 01:24 - 2024-03-13 17:57 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-09-11 01:23 - 2024-03-13 18:04 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-09-11 01:21 - 2024-03-14 04:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-11 01:20 - 2024-03-14 04:12 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-09-11 00:24 - 2024-03-13 18:45 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-09-11 00:24 - 2024-03-13 18:45 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2024-09-11 00:24 - 2024-03-13 18:45 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-09-10 20:55 - 2024-03-27 10:33 - 000000000 ____D C:\ProgramData\Piriform
2024-09-10 20:55 - 2024-03-13 20:00 - 000000000 ____D C:\Users\radov\AppData\Local\CrashDumps
2024-09-10 20:48 - 2024-03-13 18:16 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3776361053-776600149-1209017496-1001
2024-09-10 20:48 - 2024-03-13 18:16 - 000003370 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3776361053-776600149-1209017496-1001
2024-09-10 20:48 - 2024-03-13 18:16 - 000002377 _____ C:\Users\radov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-09-10 20:44 - 2024-03-13 18:15 - 000000000 ____D C:\Users\radov\AppData\Local\PlaceholderTileLogoFolder
2024-09-10 20:44 - 2024-03-13 18:14 - 000000000 ____D C:\Users\radov\AppData\Local\Packages
2024-09-10 20:44 - 2024-03-13 18:02 - 000000000 ____D C:\ProgramData\Packages
2024-09-10 18:09 - 2024-03-13 23:20 - 000000000 ___RD C:\Users\radov\Desktop\Texty
2024-09-10 13:19 - 2024-06-24 18:51 - 000000000 ____D C:\Users\radov\Desktop\100MSDCF
2024-09-09 08:21 - 2024-03-13 18:00 - 000003716 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{B6063BE2-0B29-4E63-B439-2E475DDE5139}
2024-09-09 08:21 - 2024-03-13 18:00 - 000003592 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{184243DB-1C3E-483E-A5A4-453926116309}
2024-09-07 20:00 - 2024-03-13 18:01 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-05 16:05 - 2024-03-13 18:42 - 000000000 ____D C:\Users\radov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-09-05 11:02 - 2024-03-13 18:18 - 002799144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-09-05 11:02 - 2024-03-13 18:18 - 000783912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-09-05 11:02 - 2024-03-13 18:18 - 000284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_4.dll
2024-09-05 11:02 - 2024-03-13 18:18 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-09-05 11:02 - 2024-03-13 18:18 - 000210360 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-09-05 11:02 - 2024-03-13 18:18 - 000149032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-09-05 11:02 - 2024-03-13 18:18 - 000124344 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-09-05 11:02 - 2024-03-13 18:18 - 000075192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-09-05 08:10 - 2024-03-13 18:28 - 000000000 ____D C:\ProgramData\EA Desktop
2024-09-02 13:45 - 2024-03-13 22:22 - 000000000 ____D C:\Users\radov\Desktop\Programy
2024-08-31 21:57 - 2024-03-13 20:24 - 000000000 ____D C:\Users\radov\AppData\Roaming\Corsair
2024-08-29 21:48 - 2024-03-13 21:40 - 000000000 ____D C:\ProgramData\Packer
2024-08-29 18:19 - 2024-05-27 08:58 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2024.lnk
2024-08-27 23:53 - 2024-03-13 18:28 - 000000000 ____D C:\ProgramData\Adobe
2024-08-27 13:36 - 2024-03-17 10:49 - 000000000 ____D C:\Users\radov\Desktop\4K Stock Footage
2024-08-25 15:34 - 2024-08-06 20:29 - 000000000 ____D C:\Users\radov\Desktop\Adobe Premiere Pro Auto-Save
2024-08-22 20:49 - 2024-03-13 21:35 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-08-22 14:53 - 2024-03-13 21:35 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-08-22 14:53 - 2024-03-13 21:35 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-08-20 15:57 - 2024-03-13 21:40 - 000000000 ____D C:\Program Files\EA
2024-08-16 22:23 - 2024-03-13 18:28 - 000000000 ____D C:\Program Files\Adobe
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ___SD C:\WINDOWS\system32\AppV
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\UUS
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\SystemApps
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-08-16 11:44 - 2024-03-13 17:58 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-08-15 21:57 - 2024-03-13 17:58 - 000249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2024-08-15 21:57 - 2024-03-13 17:58 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2024-08-14 23:34 - 2024-03-13 22:57 - 000000000 ____D C:\Users\radov\Desktop\Generali pojištění
2024-08-14 19:40 - 2024-03-13 23:21 - 000000000 ____D C:\Users\radov\Desktop\Thumby special
2024-08-13 17:52 - 2024-03-13 18:18 - 000000000 ____D C:\XboxGames
2024-08-13 14:42 - 2024-03-13 21:40 - 000000000 ____D C:\Users\radov\AppData\Roaming\EAAntiCheat.Installer.Tool

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4K Video Downloader (HKLM\...\{2C3AAB92-8764-42BE-8937-D83A2ADAFFDB}) (Version: 4.31.2.0102 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{1b21aeef-6c1c-4c82-9ffb-99cd75479321}) (Version: 4.23.3.5250 - Open Media LLC)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 24.003.20112 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.3.0.207 - Adobe Inc.)
Adobe Lightroom (HKLM-x32\...\LRCC_7_5) (Version: 7.5 - Adobe Inc.)
Adobe Media Encoder 2024 (HKLM-x32\...\AME_24_6_1) (Version: 24.6.1 - Adobe Inc.)
Adobe Photoshop 2024 (HKLM-x32\...\PHSP_25_12) (Version: 25.12.0.806 - Adobe Inc.)
Adobe Premiere Pro 2024 (HKLM-x32\...\PPRO_24_5) (Version: 24.5 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Audacity 3.4.2 (HKLM\...\Audacity_is1) (Version: 3.4.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Battlefield™ 2042 (HKLM-x32\...\{45e281f3-1414-47ea-bb64-4f50d50121f3}) (Version: 1.0.78.6621 - Electronic Arts)
CCleaner (HKLM\...\CCleaner) (Version: 6.27 - Piriform)
Corsair iCUE5 Software (HKLM\...\{A9B0B2D7-8C59-4413-A2FB-99EDBE65A608}) (Version: 5.18.106 - Corsair)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.288.0.5801 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{c467f425-8ccb-480e-a66d-e77fad36e5b2}) (Version: 13.288.0.5801 - Electronic Arts)
EA SPORTS FC 24 (HKLM-x32\...\{D599A8A7-E083-496C-B891-5752CD4E04F3}) (Version: 1.0.90.31158 - Electronic Arts)
Endorfy LIV PLUS Wireless version 1.0.0.4 (HKLM-x32\...\{A21AA658-691E-4927-8912-BC429F6E799B}_is1) (Version: 1.0.0.4 - Endorfy, Inc.)
F1® 23 (HKLM-x32\...\{8EC807D1-1401-4E28-8FA8-10472750C71E}) (Version: 1.0.109.3534 - Electronic Arts, Inc.)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{4b1ea825-5460-4802-bc3d-1236936fd189}) (Version: 7.14.0.15 - Intel Corporation)
Kinect for Windows Speech Recognition Language Pack (de-DE) (HKLM-x32\...\{898AA67F-99B8-4C7F-9611-B11F98EF6E78}) (Version: 11.0.7413.611 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-ES) (HKLM-x32\...\{F49AF755-A5C3-4252-A190-5772B2669C3B}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-MX) (HKLM-x32\...\{E8F3B154-03CE-4120-8B9D-9E83ED5F3AD7}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-CA) (HKLM-x32\...\{7D179500-CA0C-4456-B624-C15876B15F39}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (it-IT) (HKLM-x32\...\{969D900A-3481-4A77-B888-D24160D4D727}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (ja-JP) (HKLM-x32\...\{EDA8693D-9E82-4FD1-98C8-0DC4F9141E0F}) (Version: 11.0.7400.336 - Microsoft Corporation)
K-Lite Codec Pack 16.9.0 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 16.9.0 - KLCP)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 128.0.2739.67 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 128.0.2739.67 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\OneDriveSetup.exe) (Version: 24.166.0818.0003 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pt-BR) (HKLM-x32\...\{F6B5EB21-0ABF-487C-B9A9-D9DB259C4403}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (zh-CN) (HKLM-x32\...\{BAD2A75A-1708-47BA-A498-20890D2C78A7}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (HKLM\...\{764384C5-BCA9-307C-9AAC-FD443662686A}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (HKLM\...\{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}) (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Mister Horse Product Manager (HKLM\...\Mister Horse Product Manager_is1) (Version: 2.1.0 - )
MSI Afterburner 4.6.5 (HKLM-x32\...\Afterburner) (Version: 4.6.5 - MSI Co., LTD)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.70 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.1.0 - OBS Project)
OpenOffice 4.1.15 (HKLM-x32\...\{45B154A5-9E97-452F-94DE-08EBE6BD0D85}) (Version: 4.115.9813 - Apache Software Foundation)
Opera GX Stable 113.0.5230.75 (HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\Opera GX 113.0.5230.75) (Version: 113.0.5230.75 - Opera Software)
Recuva (HKLM\...\Recuva) (Version: 1.54 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
uTorrent Web (HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\utweb) (Version: 1.4.0 - BitTorrent Limited)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)

Packages:
=========

Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-03-31] (Adobe Systems Incorporated)
Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC [2024-09-11] ()
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc [2024-05-21] (Adobe Systems Incorporated)
Close to the Sun (Windows) -> C:\Program Files\WindowsApps\WiredProductions.ClosetotheSunWindows_1.1.11.0_x64__hxzk6evwjr6sy [2024-09-05] (Wired Productions)
Dev Home (Preview) -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1701.597.0_x64__8wekyb3d8bbwe [2024-08-22] (Microsoft Corporation) [Startup Task]
Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-09] (Microsoft Corporation) [Startup Task]
Hell Let Loose -> C:\Program Files\WindowsApps\Team17DigitalLimited.HellLetLoose_1.0.803.0_x64__j5x4vj4y67jhc [2024-09-12] (Team17 Digital Limited)
HyperX NGENUITY -> C:\Program Files\WindowsApps\33C30B79.HyperXNGenuity_5.27.1.0_x64__0a78dr3hq0pvt [2024-09-07] (HP Inc.) [Startup Task]
Isonzo (Windows) -> C:\Program Files\WindowsApps\M2H.IsonzoWindows_1.0.55542.0_x64__73vxs2k1v93r0 [2024-09-05] (M2H)
Manor Lords -> C:\Program Files\WindowsApps\HoodedHorse.ManorLords_0.7.975.0_x64__znaey1dw2bdpr [2024-06-18] (Hooded Horse)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-23] (Microsoft Corporation)
Microsoft.ForzaMotorsport -> C:\Program Files\WindowsApps\Microsoft.ForzaMotorsport_1.660.6389.0_x64__8wekyb3d8bbwe [2024-09-10] (Microsoft Studios)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.144.0_x64__8wekyb3d8bbwe [2024-09-07] (Microsoft Corporation) [Startup Task]
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy [2024-09-05] (Microsoft Windows) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-07-22] (NVIDIA Corp.)
Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2408.175.0_x64__8wekyb3d8bbwe [2024-09-06] (Microsoft Corporation) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0 [2024-09-04] (Spotify AB) [Startup Task]
Turtle Beach VelocityOne Tuner -> C:\Program Files\WindowsApps\TurtleBeachInc.TurtleBeachVelocityOneTuner_1.0.19.0_x64__3pzeze0ym1bc2 [2024-08-20] (Turtle Beach, Inc)
Warhammer 40,000: Darktide -> C:\Program Files\WindowsApps\FatsharkAB.Warhammer40000DarktideNew_1.4.2886.0_x64__hwm6pnepa3ng2 [2024-09-10] (Fatshark AB)
Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.4.0.0_x64__8wekyb3d8bbwe [2024-09-10] (Microsoft Corporation)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.214.1843.0_x64__8wekyb3d8bbwe [2024-08-18] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.242.101.0_x64__8wekyb3d8bbwe [2024-09-06] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-09-11] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2024-03-13] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3776361053-776600149-1209017496-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-B7BAC3B224C9} -> [Creative Cloud Files] => C:\Users\radov\Creative Cloud Files [2024-03-13 18:29]
CustomCLSID: HKU\S-1-5-21-3776361053-776600149-1209017496-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-3776361053-776600149-1209017496-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3776361053-776600149-1209017496-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-17] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-17] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-17] (Adobe Inc. -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-17] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-03-27] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2024-05-22] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1196b342b24df5d1\nvshext.dll [2024-07-11] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-17] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-03-27] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2024-05-22] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-02-01 22:49 - 2021-02-01 22:49 - 000010240 _____ () [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\cs_cz\AcroTray.cze
2024-09-05 08:09 - 2024-09-05 08:09 - 196495872 _____ () [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcef.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000473088 _____ () [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libEGL.DLL
2024-09-05 08:09 - 2024-09-05 08:09 - 007472640 _____ () [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libGLESv2.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 004950528 _____ () [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\vk_swiftshader.dll
2024-07-08 00:14 - 2024-07-08 00:14 - 001490944 _____ () [File not signed] C:\Users\radov\AppData\Roaming\uTorrent Web\avcodec-58.dll
2024-07-08 00:14 - 2024-07-08 00:14 - 000949248 _____ () [File not signed] C:\Users\radov\AppData\Roaming\uTorrent Web\avformat-58.dll
2024-07-08 00:14 - 2024-07-08 00:14 - 000635392 _____ () [File not signed] C:\Users\radov\AppData\Roaming\uTorrent Web\avutil-56.dll
2024-07-08 00:14 - 2024-07-08 00:14 - 000153088 _____ () [File not signed] C:\Users\radov\AppData\Roaming\uTorrent Web\swresample-3.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 001416192 _____ (The Chromium Authors) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\chrome_elf.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 002849280 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000685056 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2024-07-08 00:14 - 2024-07-08 00:14 - 002554880 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\radov\AppData\Roaming\uTorrent Web\libcrypto-1_1.dll
2024-07-08 00:14 - 2024-07-08 00:14 - 000537600 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Users\radov\AppData\Roaming\uTorrent Web\libssl-1_1.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000046592 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qgif.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000039936 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qicns.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000031232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qico.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000415232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qjpeg.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000025600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qsvg.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qtga.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000380416 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qtiff.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qwbmp.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000532992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\imageformats\qwebp.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 001455616 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\platforms\qwindows.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000227328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt\labs\platform\qtlabsplatformplugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 006270976 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Core.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 006947328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Gui.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 001389568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Network.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 003798528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Qml.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000440832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QmlModels.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000054784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QmlWorkerScript.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 004254720 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Quick.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000171520 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QuickControls2.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000222208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QuickShapes.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 001128960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5QuickTemplates2.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000334848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Svg.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000133120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebChannel.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000157184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WebSockets.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 005611520 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Widgets.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5WinExtras.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000210432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\Qt5Xml.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000056832 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000018432 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick.2\qtquick2plugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000294400 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000106496 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Layouts\qquicklayoutsplugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Shapes\qmlshapesplugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000325120 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000045568 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\QtQuick\Window.2\windowplugin.dll
2024-09-05 08:09 - 2024-09-05 08:09 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-09-07] (Adobe Inc. -> Adobe Systems Incorporated)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2024-03-13 17:58 - 2024-03-13 17:57 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3776361053-776600149-1209017496-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\radov\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\peakpx (1).jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rtcx21x64.sys
Wi-Fi: Intel(R) Wi-Fi 6E AX211 160MHz -> Netwtw14.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Corsair iCUE5 Software"
HKU\S-1-5-21-3776361053-776600149-1209017496-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_1CB8CC53F15BA57A6B88AF3437DAFF32"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{BEB8B01D-3F86-4EDD-A719-B97ABB0F76A9}C:\users\radov\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\radov\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{510DF899-5BB7-4CF2-BE34-1B22B39CA8A8}C:\users\radov\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\radov\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{4E02FE52-E9C3-40A2-A0AD-864C3111CA27}] => (Allow) E:\Programy\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3449F729-7231-4B7A-BF47-004D78064F4D}] => (Allow) E:\Programy\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{2396A20C-A5C7-4A0A-8FDF-CB1D4AEC7F9C}] => (Allow) E:\Programy\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9EE02DE6-AE1B-4BF4-9557-19371773C936}] => (Allow) E:\Programy\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{751D341B-22B6-4BF4-9BE5-3C671413AC97}] => (Allow) E:\Programy\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{0AD54981-0F8D-4057-BC3F-AB20C76B4412}] => (Allow) E:\Programy\steamapps\common\Helldivers 2\bin\helldivers2.exe (Arrowhead Game Studios AB -> Arrowhead Game Studios AB)
FirewallRules: [{F45DB3C1-879B-4A94-9A7F-1EC60D0BE9D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AED4A2FC-B810-42FE-8671-43B766412DB4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{6911687F-14FE-4CCF-86AF-10BE7717316D}E:\hry\battlefield 2042\bf2042.exe] => (Allow) E:\hry\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [UDP Query User{7151723A-52D5-4418-97F0-CB9D2D10DAE8}E:\hry\battlefield 2042\bf2042.exe] => (Allow) E:\hry\battlefield 2042\bf2042.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{C96F4D17-EDA9-41ED-96AF-F0DB9B149E81}] => (Allow) C:\Users\radov\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{FE10B114-DE4E-40B0-9AA6-14CB39895CB9}] => (Allow) C:\Users\radov\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [TCP Query User{DF1E2548-8008-488B-A3B2-03632CE4CD23}E:\hry\hell let loose\content\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) E:\hry\hell let loose\content\hll\binaries\win64\hll-win64-shipping.exe (Access Denied) [File not signed]
FirewallRules: [UDP Query User{30A6FAAE-D7C2-4562-8F79-363481DE0A50}E:\hry\hell let loose\content\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) E:\hry\hell let loose\content\hll\binaries\win64\hll-win64-shipping.exe (Access Denied) [File not signed]
FirewallRules: [TCP Query User{7B9C182C-16BE-47AB-9302-E42FD8B50DE2}C:\program files\adobe\adobe premiere pro 2024\adobe premiere pro.exe] => (Allow) C:\program files\adobe\adobe premiere pro 2024\adobe premiere pro.exe (Adobe Inc. -> Adobe)
FirewallRules: [UDP Query User{2A206006-F69C-43E0-B435-B73FF6D7BF1B}C:\program files\adobe\adobe premiere pro 2024\adobe premiere pro.exe] => (Allow) C:\program files\adobe\adobe premiere pro 2024\adobe premiere pro.exe (Adobe Inc. -> Adobe)
FirewallRules: [TCP Query User{F15ADA7B-714D-4C36-8291-A92F1AADBBEB}E:\hry\orcs must die! 3\content\omd\binaries\wingdk\omd-wingdk-shipping.exe] => (Block) E:\hry\orcs must die! 3\content\omd\binaries\wingdk\omd-wingdk-shipping.exe => No File
FirewallRules: [UDP Query User{7513DB36-464E-4555-AB90-05E7E7FB74D0}E:\hry\orcs must die! 3\content\omd\binaries\wingdk\omd-wingdk-shipping.exe] => (Block) E:\hry\orcs must die! 3\content\omd\binaries\wingdk\omd-wingdk-shipping.exe => No File
FirewallRules: [{41AAB0CD-2212-4927-B56A-0C6B4F678E67}] => (Allow) E:\Hry\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{6281E258-27B7-421A-B597-C2F32D07E9EC}] => (Allow) E:\Hry\Battlefield 1\bf1Trial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{CDA56AE8-6558-4539-A808-F78099A9C680}] => (Allow) E:\Hry\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{BB583300-9A61-4EEE-AE8A-90F98ADC21B8}] => (Allow) E:\Hry\Battlefield 1\bf1.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [TCP Query User{5E10632B-1A29-4829-A3F6-A5BC662FC300}E:\hry\fifa 23\fifa23.exe] => (Allow) E:\hry\fifa 23\fifa23.exe => No File
FirewallRules: [UDP Query User{318AC593-AA19-4FED-A109-47E0B19EE4F6}E:\hry\fifa 23\fifa23.exe] => (Allow) E:\hry\fifa 23\fifa23.exe => No File
FirewallRules: [TCP Query User{4448569B-8897-4D5D-89B6-70C7BB8C82C6}E:\hry\ea sports fc 24\fc24.exe] => (Allow) E:\hry\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{2CB330FB-8D90-4F10-A14C-75466B7C2DE2}E:\hry\ea sports fc 24\fc24.exe] => (Allow) E:\hry\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{04A071B7-3924-4D3F-B374-02B2119A643C}] => (Allow) E:\Hry\F1 23\F1_23.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{669598E7-92B9-4591-AE59-1B8DB6463385}] => (Allow) E:\Hry\F1 23\F1_23.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7142D9EB-6FB5-41E5-89C4-08A8E0ECC004}] => (Allow) E:\Hry\F1 23\F1_23_Trial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7C0ADBCB-B0DE-4FCA-A5EF-B7A85CEECD0B}] => (Allow) E:\Hry\F1 23\F1_23_Trial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A0CFFB63-C8A6-405F-8B83-C5A7102D690E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D420FEFB-EE81-4FE5-B37A-6ABBDD202CE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AACF065F-DEE4-49CA-AB20-B31E6FA3430D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{803A7909-513F-439C-B78D-4D0075C95E63}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{6A5B9DAA-E583-4A86-93CB-552E46CFD533}C:\xboxgames\forza motorsport\content\forza_gaming.desktop.x64_release_final.exe] => (Allow) C:\xboxgames\forza motorsport\content\forza_gaming.desktop.x64_release_final.exe (Access Denied) [File not signed]
FirewallRules: [UDP Query User{742C1AF6-1C57-4EF2-B43D-A21FBB196034}C:\xboxgames\forza motorsport\content\forza_gaming.desktop.x64_release_final.exe] => (Allow) C:\xboxgames\forza motorsport\content\forza_gaming.desktop.x64_release_final.exe (Access Denied) [File not signed]
FirewallRules: [{FAE0A694-BC01-427F-B645-06B966844666}] => (Allow) E:\Hry\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{BAC10F24-AAE3-4237-9980-B9F383E86802}] => (Allow) E:\Hry\EA SPORTS FC 24\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{271F1FE2-312E-4126-95D2-CF14D168A8E4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F2D2DFD0-7659-444F-BE78-8EA5A5059E66}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CA7B5D43-C688-4B5F-B58E-83270F9B610F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{97170360-D6F6-4BF2-8FA7-A10F295603A2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ADD040D6-FE60-405F-8AF1-2BA8E7E12526}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8FF9922F-6C31-42A6-AE8A-DE79887C0B61}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8200317F-1BD4-479A-ADED-8391C18712B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{267308C6-A0D1-42A8-8EF6-545A4E26B282}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0D43054C-2575-4456-A889-EDCA5081F298}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9DFA3C5B-F576-4ED6-AE71-2238210F75A5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{170829A0-0492-4BDE-B825-17C00794A5D2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E290170F-EDF2-46E1-974A-DA076D24EB91}] => (Allow) E:\Hry\Battlefield 2042\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6D865824-7BD8-4029-AD2D-008C768F76FF}] => (Allow) E:\Hry\Battlefield 2042\EAAntiCheat.GameServiceLauncher.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A85B138D-D983-4CC0-8F0C-8993EBB7CF8E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{2B17529A-C0F9-40BE-9D07-A089038FD020}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{27B87C18-4C70-4F4C-B1FC-FD0A19AFAEE6}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{9B514F0C-5AE9-4D1B-81A4-D13C62327406}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{88D7DCF2-FDAC-4096-993B-8BDDA2104D6E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6A7A8F60-6E86-41E7-8C03-F2BCE1F52658}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6BBD9A52-7F26-4A58-8471-E6048C6E1328}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{CA8B8F64-2BDB-44C5-B782-C52DB7459524}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{54FF9C7E-58D4-45EF-9C07-5260D32FE9EC}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DCFC3DB5-9E24-4510-B428-2AE9D99F23EE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5622A717-8F16-40F3-A679-65243764E8C8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)

==================== Restore Points =========================

07-09-2024 20:58:17 Windows Update
11-09-2024 01:20:01 Windows Update

==================== Faulty Device Manager Devices ============

Name: Řadič sběrnice SM
Description: Řadič sběrnice SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zařízení PCI
Description: Zařízení PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zařízení PCI
Description: Zařízení PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (09/10/2024 08:55:03 PM) (Source: Application Error) (EventID: 1000) (User: RADOBOT3000)
Description: Název chybující aplikace: rcsetup154.exe, verze: 1.54.0.120, časové razítko: 0x614f9d02
Název chybujícího modulu: InstallerHelper.DLL, verze: 1.54.0.120, časové razítko: 0x664e08d3
Kód výjimky: 0xc0000005
Posun chyby: 0x0036ae0b
ID chybujícího procesu: 0x0x747c
Čas spuštění chybující aplikace: 0x0x1db03b2ec010655
Cesta k chybující aplikaci: C:\Users\radov\Desktop\rcsetup154.exe
Cesta k chybujícímu modulu: C:\Users\radov\AppData\Local\Temp\nsdC527.tmp\p\InstallerHelper.DLL
ID zprávy: 79a777ba-fea4-4091-bbe2-700c87a16f6e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/10/2024 08:54:42 PM) (Source: MsiInstaller) (EventID: 1024) (User: NT AUTHORITY)
Description: Aktualizaci Adobe Acrobat (24.003.20112) produktu Adobe Acrobat (64-bit) nebylo možné nainstalovat. Kód chyby: 1603. Instalační služba systému Windows může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error: (09/10/2024 08:54:39 PM) (Source: MsiInstaller) (EventID: 11328) (User: NT AUTHORITY)
Description: Produkt: Adobe Acrobat (64-bit) -- Chyba 1328.Chyba při aplikování opravy na soubor C:\Program Files\Adobe\Acrobat DC\Acrobat\Locale\cs_CZ\PDFMaker\PDFMOfficeAddIn.CZE. Asi byl aktualizován jinými prostředky a nelze ho již upravovat touto opravou. Více informací získáte od dodavatele opravy. System Error: -1072807676

Error: (09/10/2024 08:39:29 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (09/05/2024 08:09:49 AM) (Source: SteelSeries GG Update Service Proxy) (EventID: 0) (User: )
Description: Službu nelze spustit. Neplatný popisovač

Error: (08/27/2024 11:53:20 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 24.5.0.57 programu Adobe Premiere Pro.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.

Error: (08/22/2024 08:48:45 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (08/22/2024 08:48:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]


System errors:
=============
Error: (09/12/2024 07:04:08 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.

Error: (09/12/2024 07:04:08 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (09/12/2024 07:00:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (09/12/2024 07:00:02 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.

Error: (09/12/2024 06:59:29 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (09/12/2024 06:52:16 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error -2147020471. For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (09/12/2024 06:52:13 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:36:25, ‎11.‎09.‎2024) bylo neočekávané.

Error: (09/12/2024 06:52:06 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.


Windows Defender:
================
Date: 2024-09-10 13:31:47
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A9505C97-4A3F-4242-B016-D2F67E6E6A44}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-08 17:40:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A5DBEB6C-DB8E-430F-A389-7CB59017EB9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-07 20:57:57
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A66A13D4-2651-4024-8C10-3CB9CC51BBE1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-05 14:12:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {BB518E33-3894-4CB5-A270-1EAAF3CFB8A6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-09-04 18:31:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8729C8EC-D135-4E32-B9F6-BF9B86CF128E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]

Date: 2024-05-16 00:05:59
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80501102
Popis chyby: Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Verze bezpečnostních informací: 1.411.160.0;1.411.160.0
Verze modulu: 1.1.24040.1

CodeIntegrity:
===============
Date: 2024-09-09 08:57:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\XboxGames\Warhammer 40,000- Darktide\Content\launcher\WebView2\Microsoft.WebView2.FixedVersionRuntime.116.0.1938.76.x64\msedgewebview2.exe) attempted to load \Device\HarddiskVolume6\Program Files\NVIDIA Corporation\NvContainer\MessageBus.dll that did not meet the Microsoft signing level requirements.

Date: 2024-05-19 17:12:40
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\fcon.dll because the set of per-page image hashes could not be found on the system.

Date: 2024-03-13 17:02:09
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.

Date: 2024-03-13 17:02:09
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: American Megatrends International, LLC. 6.06 09/26/2023
Motherboard: NZXT N7 Z790
Processor: 13th Gen Intel(R) Core(TM) i9-13900KF
Percentage of memory in use: 42%
Total physical RAM: 32604.33 MB
Available physical RAM: 18766.71 MB
Total Virtual: 39516.33 MB
Available Virtual: 24010.41 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.91 GB) (Free:442.06 GB) (Model: WDS100T1X0E-00AFY0) NTFS
Drive d: (Nový svazek) (Fixed) (Total:2794.52 GB) (Free:1666.67 GB) (Model: WDC WD30EFRX-68EUZN0) NTFS
Drive e: (Nový svazek) (Fixed) (Total:931.5 GB) (Free:218.29 GB) (Model: Viper M.2 VP4100) NTFS

\\?\Volume{f80fdb1f-a465-4137-a38b-9136d30a643f}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: E153DA30)

Partition: GPT.

==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: C7D5106D)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
S3 cpuz158; \??\C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION
C:\DumpStack.log.tmp
FirewallRules: [TCP Query User{5E10632B-1A29-4829-A3F6-A5BC662FC300}E:\hry\fifa 23\fifa23.exe] => (Allow) E:\hry\fifa 23\fifa23.exe => No File
FirewallRules: [UDP Query User{318AC593-AA19-4FED-A109-47E0B19EE4F6}E:\hry\fifa 23\fifa23.exe] => (Allow) E:\hry\fifa 23\fifa23.exe => No File

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[cr8g]

Provedeno a restartovalo mi to PC - předpokládám, že to tak mělo být

Fix result of Farbar Recovery Scan Tool (x64) Version: 09-09-2024
Ran by radov (12-09-2024 21:58:44) Run:1
Running from C:\Users\radov\Desktop
Loaded Profiles: radov
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
S3 cpuz158; \??\C:\WINDOWS\temp\cpuz158\cpuz158_x64.sys [X] <==== ATTENTION
C:\DumpStack.log.tmp
FirewallRules: [TCP Query User{5E10632B-1A29-4829-A3F6-A5BC662FC300}E:\hry\fifa 23\fifa23.exe] => (Allow) E:\hry\fifa 23\fifa23.exe => No File
FirewallRules: [UDP Query User{318AC593-AA19-4FED-A109-47E0B19EE4F6}E:\hry\fifa 23\fifa23.exe] => (Allow) E:\hry\fifa 23\fifa23.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\System\CurrentControlSet\Services\cpuz158 => removed successfully
cpuz158 => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5E10632B-1A29-4829-A3F6-A5BC662FC300}E:\hry\fifa 23\fifa23.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{318AC593-AA19-4FED-A109-47E0B19EE4F6}E:\hry\fifa 23\fifa23.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1434175287 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 385830648 B
Windows/system/drivers => 8796341 B
Edge => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 662290 B
NetworkService => 809958 B

[Rudy]

Ano, vše bylo smazáno, v logu jsem viděl jen zbytečnosti. Mohlo ale být něco v dočasných adresářích.

[cr8g]

Takže co dál? Nic, vše vypadá v pořádku?
Jinak samosebou, moc díky za kontrolu a za pomoc

[Rudy]

Po stránce malwaru je všechno v pořádku a PC máte vyčištěn i od zbytečností. Jak se ty soubory smazaly vám samozřejmě nepovím. Mohlo to být klidně nějakou nepozorností. Technika v tomto případě zřejmě neselhala.