Velké zatížení HDD a RAM

Zpráva

milda81 · #1 Příspěvek od **milda81** » 03 lis 2024 13:03

Dobrý den,

prosím o kontrolu. Notebook je téměř nepoužitelný, ve správci úloh je velké zatížení HDD a RAM. Chtěl bych se ujistit, zda to je HW problém, nebo jestli tam je nějaká breberka.

Děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-11-2024
Ran by David Lukáš (administrator) on DESKTOP-FOK2JQQ (Sony Corporation VPCF13M1E) (03-11-2024 12:45:45)
Running from C:\Users\David Lukáš\Desktop\FRST64.exe
Loaded Profiles: David Lukáš
Platform: Microsoft Windows 10 Home Version 22H2 19045.5011 (X64) Language: Čeština (Česko)
Default browser not detected!
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (AltisikDevLM Group LM -> ) [File not signed] [File is in use] C:\Program Files (x86)\AltisikApplication\AltisikService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe
(services.exe ->) (Reason Cybersecurity Inc. -> Reason Software Company Inc.) C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <3>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeC2RClient.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.5071_none_7e3c4e707c6a2679\TiWorker.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta.exe
(wuauclt.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\MpSigStub.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4406632 2024-09-17] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36764120 2024-10-09] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3386464 2024-10-09] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\Run: [Walliant] => C:\Users\David Lukáš\AppData\Local\Programs\Walliant\Walliant.exe [388664 2024-07-12] (Cleversort FZ-LLC -> Globalhop) <==== ATTENTION
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\MountPoints2: {4f1e6804-2c15-11ef-b859-c0cb38ebc569} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\130.0.6723.92\Installer\chrmstp.exe [2024-10-31] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {9153E68C-1804-4AA6-9798-3BC8624ACA77} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {6D807B7B-0A73-468E-A13E-08AD13094F13} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe (No File)
Task: {6E71BA94-1295-4E96-9E20-786E1E3EE170} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe /from_scheduler:1 (No File)
Task: {C4DB7A3D-3162-40F1-9A60-053ED41B8275} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{398A1135-D1F9-4886-96FB-DA14354E12F5} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
Task: {78336780-0620-4C0C-AC04-E0E2B02EF045} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64472 2024-08-16] (HP Inc. -> HP Inc.)
Task: {D2C3E31A-1CF5-4A5E-BD98-C76D3C861FAA} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [64472 2024-08-16] (HP Inc. -> HP Inc.)
Task: {A89C2F56-45A8-4189-AB6E-B0217CFEE2FF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {949F339C-1299-44A4-9F50-6BFFA97AA0B4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-10-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {7FBC21F3-D45A-4F92-A66D-EE937BD815D9} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {765E29DD-5896-42C7-AF42-573734BBFE0C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312520 2024-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {C4F656C2-9A0D-4325-867F-41538512C5DE} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [187328 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7FAB741-4725-4495-A439-348C088A7EEC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {64348A54-5C6F-4B92-AF6B-5E1ED803AE96} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3606D57-592D-4938-B023-6115FF2DC728} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {09305478-A698-4992-83B3-1F20968A0586} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe [1687320 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5C40FB74-C5FC-4FFA-9AC6-4E947A596529} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1588777837-2161469333-1616248303-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {6361EB4B-6C9E-49CD-A5F0-D981C26E3FAB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (No File)
Task: {C3654091-3A3D-4B44-9604-B17AA1C68BD4} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvContainer\-d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {B0C7E519-7061-4431-9710-3E9A3D226C67} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {718CE76C-E432-4D31-A951-97DF7868E0C3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2AFB4A29-510C-4894-AC6D-5EA1EB77BECB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {F1486865-9DCA-4781-B547-D3DE1BEFBA9C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EAEE72C4-9A7A-41F4-841E-6C8763EBD26D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {319C26D2-5595-46AA-A4FF-056F43833356} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {AD4F36F9-D3AA-4ACB-8F9B-83DE65B176FF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{17e620e5-d07f-4f74-81c6-56b2569dd682}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{17e620e5-d07f-4f74-81c6-56b2569dd682}: [DhcpDomain] home
Tcpip\..\Interfaces\{17e620e5-d07f-4f74-81c6-56b2569dd682}\A74656C657B6: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{17e620e5-d07f-4f74-81c6-56b2569dd682}\A74656C657B6: [DhcpDomain] docsis.vodafone.cz
Tcpip\..\Interfaces\{c89a7e43-3283-4f3a-b1e4-6b9e806dda05}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{c89a7e43-3283-4f3a-b1e4-6b9e806dda05}: [DhcpDomain] docsis.vodafone.cz

Edge:
=======
Edge Profile: C:\Users\David Lukáš\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-26]
Edge Extension: (Dokumenty Google offline) - C:\Users\David Lukáš\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-04-19]
Edge Extension: (Edge relevant text changes) - C:\Users\David Lukáš\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-04-19]

FireFox:
========
FF DefaultProfile: nav76ln4.default
FF ProfilePath: C:\Users\David Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\nav76ln4.default [2024-06-22]
FF ProfilePath: C:\Users\David Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\cpgti450.default-release [2024-10-17]
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-08-23] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-04] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]

Chrome:
=======
CHR Profile: C:\Users\David Lukáš\AppData\Local\Google\Chrome\User Data\Default [2024-10-31]
CHR Notifications: Default -> hxxps://www.talkie-ai.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Extension: (Dokumenty Google offline) - C:\Users\David Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-02]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\David Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-10-08]
CHR Extension: (SteamDB) - C:\Users\David Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdbmhfkmnlmbkgbabkdealhhbfhlmmon [2024-10-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-25]
CHR Profile: C:\Users\David Lukáš\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-19]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
R2 AltisikService; C:\Program Files (x86)\AltisikApplication\AltisikService.exe [71937664 2024-06-17] (AltisikDevLM Group LM -> ) [File not signed] [File is in use] <==== ATTENTION
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [18663720 2024-09-15] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13861080 2024-10-05] (Microsoft Corporation -> Microsoft Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [14037088 2024-10-09] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [584680 2024-08-30] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [375248 2024-02-13] (Epic Games Inc. -> Epic Games, Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [241104 2024-08-16] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 rsVPNClientSvc; C:\Program Files\ReasonLabs\VPN\rsVPNClientSvc.exe [672400 2024-10-10] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
R2 rsVPNSvc; C:\Program Files\ReasonLabs\VPN\rsVPNSvc.exe [231048 2024-10-10] (Reason Cybersecurity Inc. -> Reason Software Company Inc.)
S3 TavernWorker_1_1; C:\Program Files\IRONMACE\Tavern\Steam\TavernApp_1_1\TavernWorker.exe [20841904 2024-07-20] (IRONMACE Co., Ltd. -> IRONMACE Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-09] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEDaisy; C:\Program Files (x86)\Common Files\BattlEye\BEDaisy.sys [5148848 2024-09-15] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R2 rimspci; C:\Windows\system32\DRIVERS\rimspe64.sys [57344 2009-02-12] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R2 risdpcie; C:\Windows\system32\DRIVERS\risdpe64.sys [80384 2009-03-30] (Microsoft Windows Hardware Compatibility Publisher -> REDC)
R3 SFEP; C:\Windows\System32\drivers\SFEP.sys [12032 2024-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Sony Corporation)
R3 SteamStreamingMicrophone; C:\Windows\system32\drivers\SteamStreamingMicrophone.sys [40736 2020-06-01] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\Windows\system32\drivers\SteamStreamingSpeakers.sys [40736 2020-06-01] (Valve Corp. -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22080 2024-08-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [602504 2024-08-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-09] (Microsoft Windows -> Microsoft Corporation)
R3 yukonw8; C:\Windows\System32\drivers\yk63x64.sys [288768 2019-12-07] (Microsoft Windows -> Marvell)
S3 NEProtect; \??\C:\Program Files (x86)\Steam\steamapps\common\Lost Light\Engine\Binaries\Win64\NEProtect.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-03 12:45 - 2024-11-03 12:53 - 000021068 _____ C:\Users\David Lukáš\Desktop\FRST.txt
2024-11-03 12:43 - 2024-11-03 12:51 - 000000000 ____D C:\FRST
2024-11-03 12:42 - 2024-11-03 12:37 - 002397696 _____ (Farbar) C:\Users\David Lukáš\Desktop\FRST64.exe
2024-11-03 11:47 - 2024-11-03 11:47 - 000000000 ___HD C:\$WinREAgent
2024-11-03 11:38 - 2024-11-03 11:38 - 000007605 _____ C:\Users\David Lukáš\AppData\Local\Resmon.ResmonCfg
2024-11-03 11:28 - 2024-11-03 11:28 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Sun
2024-11-03 11:28 - 2024-11-03 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2024-11-03 11:28 - 2024-09-30 08:34 - 000213120 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2024-11-03 11:26 - 2024-11-03 11:29 - 000000000 ____D C:\Program Files\Java
2024-10-31 17:56 - 2024-10-31 17:56 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2024-10-31 17:55 - 2024-10-31 18:00 - 000243056 _____ C:\Windows\ntbtlog.txt
2024-10-14 18:35 - 2024-10-14 18:35 - 000000222 _____ C:\Users\David Lukáš\Desktop\Assassin's Creed Rogue.url
2024-10-14 18:16 - 2024-10-14 18:16 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-10-14 18:05 - 2024-10-14 18:05 - 000000030 _____ C:\Windows\system32\.HQargq
2024-10-13 20:32 - 2024-10-13 20:32 - 000000000 ____D C:\Users\David Lukáš\Documents\Vlastní šablony Office
2024-10-13 19:28 - 2024-10-13 19:29 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Microsoft\UProof
2024-10-13 19:28 - 2024-10-13 19:28 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Microsoft\Proof
2024-10-13 18:35 - 2024-10-14 18:36 - 000000000 ____D C:\Users\David Lukáš\Documents\Assassin's Creed Rogue
2024-10-13 14:14 - 2024-10-13 14:14 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Microsoft\HTML Help
2024-10-11 19:46 - 2024-10-11 19:46 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\rsappui
2024-10-11 14:01 - 2024-10-13 11:31 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\ReasonLabs
2024-10-11 13:46 - 2024-10-11 13:46 - 000001248 _____ C:\Users\David Lukáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RAV VPN.lnk
2024-10-10 21:34 - 2024-10-10 21:34 - 000000000 ____D C:\ProgramData\VPNBackup
2024-10-10 21:30 - 2024-10-13 11:32 - 000000000 ____D C:\ProgramData\ReasonLabs
2024-10-10 21:24 - 2024-10-13 11:36 - 000000000 ____D C:\Program Files\ReasonLabs
2024-10-10 21:16 - 2024-10-10 21:16 - 000000000 ____D C:\Program Files (x86)\rsStubActivator-1.1.1
2024-10-10 21:15 - 2024-10-10 21:15 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Walliant
2024-10-10 21:13 - 2024-10-10 21:13 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Midnight Commander
2024-10-10 21:12 - 2024-10-10 21:12 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\AgreementlwfTool
2024-10-10 21:12 - 2024-10-10 21:12 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\AgreementixvTool
2024-10-10 21:11 - 2024-10-10 21:11 - 000000000 ____D C:\Program Files (x86)\AgreementjpsTool

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-03 12:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2024-11-03 12:50 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-11-03 12:47 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-11-03 12:34 - 2024-02-23 22:10 - 000000000 ____D C:\ProgramData\NVIDIA
2024-11-03 12:33 - 2024-02-23 21:37 - 000008192 ___SH C:\DumpStack.log.tmp
2024-11-03 12:33 - 2024-02-23 21:37 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-11-03 12:32 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2024-11-03 12:12 - 2024-06-17 21:37 - 000000000 ____D C:\ProgramData\AltisikApplication
2024-11-03 12:01 - 2024-02-23 21:37 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-11-03 11:39 - 2024-02-23 21:38 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-03 11:39 - 2024-02-23 21:38 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-31 19:36 - 2024-02-23 21:47 - 000000000 ____D C:\Users\David Lukáš
2024-10-31 19:14 - 2024-02-23 21:39 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-10-31 18:52 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-31 18:23 - 2024-02-25 11:54 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-10-31 18:23 - 2023-05-05 13:27 - 000000000 ____D C:\Windows\SystemTemp
2024-10-31 18:10 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2024-10-31 18:03 - 2024-09-05 16:07 - 000000000 ____D C:\ProgramData\Avast Software
2024-10-31 18:01 - 2024-09-05 16:52 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\Avast Software
2024-10-31 18:00 - 2024-06-22 23:04 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-10-31 17:46 - 2024-02-23 22:09 - 000000000 ____D C:\Program Files\RUXIM
2024-10-31 17:38 - 2024-04-01 12:33 - 000000000 ____D C:\Program Files (x86)\Steam
2024-10-31 17:37 - 2024-02-23 21:49 - 000005858 _____ C:\Windows\system32\PerfStringBackup.INI
2024-10-31 17:37 - 2019-12-07 15:41 - 002898546 _____ C:\Windows\system32\perfh005.dat
2024-10-31 17:37 - 2019-12-07 15:41 - 000791128 _____ C:\Windows\system32\perfc005.dat
2024-10-31 17:23 - 2024-05-29 17:08 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\D3DSCache
2024-10-18 18:57 - 2024-06-17 21:37 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\AltisikApplication
2024-10-18 18:37 - 2024-04-01 20:37 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\CrashDumps
2024-10-17 21:15 - 2024-09-05 16:14 - 000000000 ____D C:\Windows\system32\Tasks\Avast Software
2024-10-17 21:04 - 2024-04-01 12:35 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\.minecraft
2024-10-17 20:49 - 2024-04-01 12:35 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\.tlauncher
2024-10-17 20:20 - 2024-04-01 13:24 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-10-17 20:00 - 2024-04-02 13:16 - 000000000 ____D C:\Program Files\Epic Games
2024-10-15 18:58 - 2024-04-02 18:48 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\SpaceEngineers
2024-10-14 21:26 - 2024-04-05 14:48 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\RenPy
2024-10-14 18:35 - 2024-04-05 17:54 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\Ubisoft Game Launcher
2024-10-14 18:18 - 2024-02-25 12:47 - 000000000 ____D C:\Program Files\Microsoft Office
2024-10-14 18:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-10-14 18:07 - 2024-02-23 21:37 - 000438968 _____ C:\Windows\system32\FNTCACHE.DAT
2024-10-14 18:04 - 2019-12-07 15:42 - 000000000 ____D C:\Windows\system32\OpenSSH
2024-10-14 18:04 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-10-14 18:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-10-14 18:03 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-10-14 16:50 - 2024-02-25 13:14 - 000000000 ____D C:\Users\David Lukáš\AppData\Roaming\Microsoft\Word
2024-10-14 16:19 - 2024-02-23 21:40 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-10-13 15:02 - 2024-02-25 12:28 - 000000000 ____D C:\ProgramData\Package Cache
2024-10-13 15:01 - 2024-04-01 21:40 - 000000000 ____D C:\Program Files\dotnet
2024-10-13 14:38 - 2024-02-23 22:13 - 000000000 ____D C:\Windows\system32\MRT
2024-10-13 14:25 - 2024-02-23 22:12 - 201324920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2024-10-13 11:56 - 2024-06-17 21:37 - 000000000 ____D C:\Program Files (x86)\AltisikApplication
2024-10-12 23:05 - 2024-05-24 14:16 - 000000000 ____D C:\ProgramData\EA Desktop
2024-10-11 22:57 - 2024-09-17 06:48 - 000000000 ____D C:\Users\David Lukáš\Documents\My Games
2024-10-11 22:56 - 2024-09-16 22:57 - 000000000 ____D C:\Users\David Lukáš\Documents\Hry
2024-10-11 22:51 - 2024-04-15 16:39 - 000000000 ____D C:\Windows\Minidump
2024-10-11 22:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\LiveKernelReports
2024-10-10 21:13 - 2024-02-23 21:48 - 000000000 ____D C:\Users\David Lukáš\AppData\Local\VirtualStore
2024-10-08 16:43 - 2024-06-22 23:04 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2024-10-08 16:22 - 2024-02-25 11:33 - 000003126 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1588777837-2161469333-1616248303-1001
2024-10-08 16:22 - 2024-02-23 22:02 - 000002922 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1588777837-2161469333-1616248303-1001

==================== Files in the root of some directories ========

2024-11-03 11:38 - 2024-11-03 11:38 - 000007605 _____ () C:\Users\David Lukáš\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

milda81 · #2 Příspěvek od **milda81** » 03 lis 2024 13:04

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-11-2024
Ran by David Lukáš (03-11-2024 12:55:29)
Running from C:\Users\David Lukáš\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5011 (X64) (2024-02-23 20:44:43)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1588777837-2161469333-1616248303-500 - Administrator - Disabled)
David Lukáš (S-1-5-21-1588777837-2161469333-1616248303-1001 - Administrator - Enabled) => C:\Users\David Lukáš
DefaultAccount (S-1-5-21-1588777837-2161469333-1616248303-503 - Limited - Disabled)
Guest (S-1-5-21-1588777837-2161469333-1616248303-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1588777837-2161469333-1616248303-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.003.20054 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AltisikApplication (HKLM\...\AltisikApplication) (Version: 1.7.7.6 - Altisik Software) <==== ATTENTION
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1697.6 - AVAST Software) Hidden
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.314.0.5827 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{4566c3be-2b12-4de0-9f0f-72bd6e3b1c4d}) (Version: 13.314.0.5827 - Electronic Arts)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{44E0B48B-701F-4267-95D1-1EE1C029B6D0}) (Version: 2.6.1 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 130.0.6723.92 - Google LLC)
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft .NET Host - 6.0.35 (x64) (HKLM\...\{C59601A1-771B-426B-A9F7-6CACCAC4DB4E}) (Version: 48.140.21458 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.35 (x64) (HKLM\...\{E91F8AC1-4917-455E-AACA-B40B193C7A62}) (Version: 48.140.21458 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.35 (x64) (HKLM\...\{C79F6EEC-3A2B-487D-A3B6-EDF4057B4E4B}) (Version: 48.140.21458 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 130.0.2849.56 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 129.0.2792.89 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Volume - cs-cz) (Version: 16.0.18025.20140 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\OneDriveSetup.exe) (Version: 24.180.0905.0001 - Microsoft Corporation)
Microsoft Project Professional 2021 - cs-cz (HKLM\...\ProjectPro2021Volume - cs-cz) (Version: 16.0.18025.20140 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visio LTSC Professional 2021 - cs-cz (HKLM\...\VisioPro2021Volume - cs-cz) (Version: 16.0.18025.20140 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.35 (x64) (HKLM\...\{8AA69679-CCD6-42D9-BCDA-99BE386D57B7}) (Version: 48.140.21525 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.35 (x64) (HKLM-x32\...\{ed3bbfea-cc20-425e-b845-bc087d129675}) (Version: 6.0.35.34113 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (HKLM-x32\...\NVIDIAStereo) (Version: 7.17.13.7500 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20140 - Microsoft Corporation) Hidden
Paradox Launcher v2 (HKLM\...\{992827AC-2312-4B8A-BF33-C5DD19C61CEF}) (Version: 2.4.0 - Paradox Interactive)
RICOH R5U241 / R5C847 Media Driver ver.2.04.01.00 (HKLM-x32\...\{2B818257-E6C7-4841-8C29-C5C9A982BCE5}) (Version: 2.04.01.00 - RICOH)
Roblox Player for David Lukáš (HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\roblox-player) (Version: - Roblox Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TavernWorker for Dark and Darker - Steam (HKLM\...\TavernWorker for Dark and Darker - Steam) (Version: - IRONMACE)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.899 - TLauncher Inc.)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 151.2.11050 - Ubisoft)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.11.7 - Black Tree Gaming Ltd.)
VPN by RAV (HKLM\...\ReasonLabs-VPN) (Version: 2.18.0 - Reason Cybersecurity Inc.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Walliant version 1.0.16.1 (HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\{E72E2194-F430-4F4A-A262-1C8FF081B3A5}_is1) (Version: 1.0.16.1 - Globalhop)
WinRAR 6.24 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.24.0 - win.rar GmbH)

Packages:
=========

HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_155.1.1088.0_x64__v10z8vjag6ke6 [2024-08-16] (HP Inc.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0 [2024-10-03] (Spotify AB) [Startup Task]
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-08-03] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1588777837-2161469333-1616248303-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-10-03] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-02-25 12:54 - 2024-02-25 12:54 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2024-02-25 12:54 - 2024-02-25 12:54 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2024-02-25 12:31 - 2018-03-24 00:05 - 000880024 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2024-02-25 12:31 - 2018-03-24 00:05 - 000343728 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\David Lukáš\AppData\Local\Microsoft:ISBD [32]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller -> yk63x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Wi-Fi: Intel(R) Centrino(R) Advanced-N 6200 AGN -> Netwsw00.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "AvastUI.exe"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\StartupApproved\Run: => "Opera GX Stable"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_911D7DFBAA99D22634CBBAF5DDAF2268"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\StartupApproved\Run: => "Walliant"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{E9043528-B142-4628-B0DB-C8C03FF60538}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2CBA9B0E-70BE-488B-99B2-3709B230A593}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E033B025-09F4-4179-808B-AA8342EACB8C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{17779CBA-D758-425F-988A-93CF79067622}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{464882F6-F763-45CE-AE15-95FFA0B5FD5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F3F523EA-06B8-45C6-ADC7-55D018B456D9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{35801164-DFAE-4CED-ACC1-98348F61003E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AA3CACF7-86D0-4C2A-9B76-0960AF5110ED}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{26039662-C04C-459E-B9B5-362E2F693065}C:\users\david lukáš\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\david lukáš\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{B8FF72F9-EBBD-41C6-90A2-07E80E682CF4}C:\users\david lukáš\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\david lukáš\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [{5A24E32A-A7E7-4D85-81AF-818EEB9E85AC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{11558FB8-E184-46E2-8BAD-92AF3B4FA683}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{29511190-9DBC-4A91-A766-ABCE52A12B3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe (Keen Software House s.r.o. -> Keen Software House)
FirewallRules: [{CE875199-AB69-4866-A7E7-72253BF1C267}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SpaceEngineers\Bin64\SpaceEngineers.exe (Keen Software House s.r.o. -> Keen Software House)
FirewallRules: [{F0C0EA22-24AA-4B11-85F6-8D820C615A39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [File not signed]
FirewallRules: [{5B0879DE-F066-4286-AEE1-85C5C1756585}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraria\Terraria.exe (Re-Logic) [File not signed]
FirewallRules: [TCP Query User{74F74A43-C656-48CF-B5E9-E1254661F3DE}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [UDP Query User{76472C7A-F05D-489F-9C73-ADD47A248822}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [{209AFD78-30DF-47D0-BD6E-F00C79F339DD}] => (Allow) C:\Users\David Lukáš\AppData\Local\Temp\7zS67CF\HP.EasyStart.exe => No File
FirewallRules: [{096ECF27-FD26-45C0-9433-EAB46C31A6E9}] => (Allow) C:\Users\David Lukáš\AppData\Local\Temp\7zS057D\HP.EasyStart.exe => No File
FirewallRules: [TCP Query User{FF95137D-FA2A-46B2-82C3-E18D6C573B0A}C:\users\david lukáš\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe] => (Allow) C:\users\david lukáš\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [UDP Query User{7A096772-2C26-4982-8464-AC676461BD2C}C:\users\david lukáš\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe] => (Allow) C:\users\david lukáš\appdata\roaming\.tlauncher\starter\jre_default\jre-17.0.10-windows-x64\bin\java.exe
FirewallRules: [{C4D66739-8AE9-4DB8-A5E0-59B44882CB36}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\worldbox\worldbox.exe () [File not signed]
FirewallRules: [{5D7B86D3-2EC5-476F-AF3F-340B04373DA9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\worldbox\worldbox.exe () [File not signed]
FirewallRules: [{F1F7994B-DA2B-4548-9C72-2E3387E06DD6}] => (Allow) C:\Program Files\EA Games\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{6CCBBAD6-6CC0-48C6-91EA-732A5F9C808B}] => (Allow) C:\Program Files\EA Games\Dragon Age Inquisition\DragonAgeInquisition.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [{2D18DFBE-E88E-4C37-AB75-C0223DE6B9AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [{565B72F7-74EC-43E1-A8BC-2151DA4975BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [{8DC4684F-C3B5-4034-A409-F6EB868DCC98}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Castle\Project Castle\castle.exe => No File
FirewallRules: [{DDC786CA-2580-41F2-9BF5-49D991F776D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Castle\Project Castle\castle.exe => No File
FirewallRules: [{F79D346A-D809-4398-B672-BDE818D8B440}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{07F93082-BAA5-496D-92D8-58D16E0735AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{6695ADCB-5611-48B6-AD9D-6EC9D58364E5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{D1C65FC5-F3FB-49B2-8B3B-D2D97F6AED9A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{B77FA4F9-2DD5-4487-A39C-B8E4F218DE4D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1839F310-EEAA-4AF7-8296-49EF05CAA52E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{73FBEA29-9790-47E8-8922-BF4A9342383A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{71BD89BD-BF18-46B9-9B1F-0E9A4E3294BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{DDDB3764-0B99-41F9-85CC-686ED7C42012}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MountBlade Warband\mb_warband.exe ( Taleworlds Entertainment) [File not signed]
FirewallRules: [{1CF8DB25-7E9E-4300-B011-90BC8FBC001C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Liftlands Demo\Liftlands.exe () [File not signed]
FirewallRules: [{C85F5B9B-06EE-40F2-B6EE-F6B9AB7C6552}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Liftlands Demo\Liftlands.exe () [File not signed]
FirewallRules: [{26BD9455-CB94-4A48-9DD0-96ED514A39A7}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe => No File
FirewallRules: [{3417446A-87D0-4EA8-ABAF-0A9232BA5183}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe => No File
FirewallRules: [TCP Query User{F7B47074-60AC-46A9-B70F-9CF1A4FDC6FA}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [UDP Query User{17D9DDFF-8637-4DD6-8F37-421D67908885}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [{DECE124B-94C7-455B-9E83-83A0CEA3C93D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [{151CA33C-41FE-4829-A814-9B4D40D6B981}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [TCP Query User{0BEB7499-E761-4298-BE18-EA17E618A643}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe] => (Block) C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe => No File
FirewallRules: [UDP Query User{EC60CFC9-5FF2-44E1-ACC3-F02229FF4DAA}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe] => (Block) C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe => No File
FirewallRules: [{FED76974-8ABF-4BC0-BB15-159E9C9C2E90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{440F8CDC-FD99-4094-A242-53569DE52F60}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{26B89918-1A7D-4FB6-9F48-4BB0CD853484}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{959640C5-3396-4F43-A690-2556977AE5D4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{36A12BC8-2BB5-43C6-9188-EDA9CFFA485B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{238852C3-E151-4435-88DB-3490AA7AF601}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E64BB764-D37E-41A7-905B-0CF08E1EBA91}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DD56CD9E-E9D3-4E9C-9A51-34DB7DFC6C15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2C674A2B-4C2E-4DDC-AEBF-098364D8D184}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E743C4B7-FA6B-4230-BE96-36881D5F2E7B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4599190A-1C8D-4151-A260-6B9E0BCD929B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7B040E3D-0DEB-4DF7-B7BF-1B60D802B3DA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C8535D3-52FB-4CE0-B845-15A28CED3B45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BC7020DF-A90E-41A1-A1A2-C61B62A20A08}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.247.366.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C3F8FD63-3996-4F11-A8CB-1A1078E6402B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.89\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C759EEEE-BE2F-4971-B56B-0E26A839BF79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed Rogue\ACC.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{7F32C181-5C9C-4C4F-9061-A8A461805217}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Assassin's Creed Rogue\ACC.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [TCP Query User{DB9F4981-0A9B-46A5-BDF9-606CA015553A}C:\users\david lukáš\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\david lukáš\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{9801F28C-47F4-4647-BBF9-5CFB18838C25}C:\users\david lukáš\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\david lukáš\appdata\roaming\.minecraft\runtime\java-runtime-delta\windows\java-runtime-delta\bin\javaw.exe
FirewallRules: [{FF451CD4-F5CA-4181-99AB-7C10FDAAE152}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0FC73B1F-B9BA-443A-B6A9-01377AA04AD0}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D5007DDB-A82D-4623-B9F0-D4A460D6FFEE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D822C80A-8DAD-4F8F-BF58-4F796D6638C1}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{59D9EAEC-4735-4116-8D59-60A9DE6E7EEE}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F3085DA5-D9CF-4845-8B40-BBEFCFC0A3AB}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E8D94511-00F6-4DFA-BC14-DA833B31E681}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{58DB47FE-A799-47DA-8A76-182AC41EE717}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{08A17C94-DD64-472F-B404-98F5EE8496A2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{1395090D-ED38-4B4F-946A-4351D04AB961}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F2443A67-3DB2-4C60-B962-C296D9BFF778}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{19D7C238-521A-43E7-9918-3FCA45488E73}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

14-10-2024 15:37:41 Instalační služba modulů systému Windows
31-10-2024 19:06:52 Instalační služba modulů systému Windows
03-11-2024 11:43:55 Instalační služba modulů systému Windows
03-11-2024 12:04:03 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

Name: Ricoh PCIe SD/MMC Host Controller
Description: Ricoh PCIe SD/MMC Host Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: Ricoh Company
Service: risdpcie
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

==================== Event log errors: ========================

Application errors:
==================
Error: (11/03/2024 12:20:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wuauclt.exe, verze: 10.0.19041.4597, časové razítko: 0x90a2b675
Název chybujícího modulu: ntdll.dll, verze: 10.0.19041.5007, časové razítko: 0x688f8c4b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000649e6
ID chybujícího procesu: 0x2594
Čas spuštění chybující aplikace: 0x01db2ddd37ae7344
Cesta k chybující aplikaci: C:\Windows\system32\wuauclt.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 68a99e4f-adc0-4bcd-b359-ee3eea2a2328
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/03/2024 12:18:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.4957 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2790

Čas spuštění: 01db2de1c6937065

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: 3c5b26cc-dd03-4eb6-8605-bbbee8d1f858

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: ShellFeedsUI

Typ zablokování: Cross-thread

Error: (11/03/2024 11:31:43 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.4957 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2380

Čas spuštění: 01db2dda5c3917ba

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: 7f59355e-31ed-462a-9d27-39e89090b620

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: ShellFeedsUI

Typ zablokování: Quiesce

Error: (10/31/2024 06:26:56 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (10/31/2024 06:26:56 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (10/31/2024 06:26:56 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (10/31/2024 06:26:56 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (10/31/2024 06:03:37 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.

System errors:
=============
Error: (11/03/2024 12:43:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80240016): Aktualizace bezpečnostních informací pro Microsoft Defender Antivirus – KB2267602 (verze 1.421.73.0) – Aktuální kanál (široká distribuce).

Error: (11/03/2024 12:39:46 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Zprostředkovatel monitorování Ochrany System Guard v režimu runtime přestala během spouštění reagovat.

Error: (11/03/2024 12:37:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/03/2024 12:37:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (11/03/2024 12:32:37 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ClickToRunSvc bylo dosaženo časového limitu (30000 ms).

Error: (11/03/2024 12:31:57 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.

Error: (11/03/2024 12:31:36 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru:
{4991D34B-80A1-4291-83B6-3328366B9097}

Error: (11/03/2024 12:31:35 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru:
{4991D34B-80A1-4291-83B6-3328366B9097}

Windows Defender:
================
Date: 2024-08-04 09:30:37
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {F8060294-01FE-4138-9FFB-6466772187CC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-08-02 00:06:17
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {249EEC76-002F-4692-B9D7-D465BD387A15}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-07-23 14:16:31
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {EB91534E-C0FA-4E66-B287-B4B63CDDDDEE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-06-28 22:35:20
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D61C8A01-52CA-47EF-B414-5B2B790CB130}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-06-26 19:37:06
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {119CF114-C642-4076-85A4-8C326FDE554D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2024-11-03 12:53:02
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.513.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.

Date: 2024-11-03 12:53:02
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.513.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.

Date: 2024-11-03 12:53:02
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.513.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.

Date: 2024-11-03 11:54:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.513.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.

Date: 2024-11-03 11:54:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.513.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070020
Popis chyby: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.

CodeIntegrity:
===============
Date: 2024-10-31 17:46:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2024-10-31 17:44:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2024-10-31 17:35:26
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. R0180Y9 09/03/2010
Motherboard: Sony Corporation VAIO
Processor: Intel(R) Core(TM) i5 CPU M 560 @ 2.67GHz
Percentage of memory in use: 94%
Total physical RAM: 4012.96 MB
Available physical RAM: 229.93 MB
Total Virtual: 10412.96 MB
Available Virtual: 5549.1 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.2 GB) (Free:278.44 GB) (Model: ST9500420AS) NTFS

\\?\Volume{167b8c33-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{167b8c33-0000-0000-0000-f04f74000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 167B8C33)
Partition 1: (Active) - (Size=50 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=523 MB) - (Type=27)

==================== End of Addition.txt =======================

#3 Příspěvek od **Rudy** » 03 lis 2024 14:05

Zdravím!
OK, zkusíme vyčistit. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
AlternateDataStreams: C:\Users\David Lukáš\AppData\Local\Microsoft:ISBD [32]
FirewallRules: [TCP Query User{74F74A43-C656-48CF-B5E9-E1254661F3DE}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [UDP Query User{76472C7A-F05D-489F-9C73-ADD47A248822}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [{209AFD78-30DF-47D0-BD6E-F00C79F339DD}] => (Allow) C:\Users\David Lukáš\AppData\Local\Temp\7zS67CF\HP.EasyStart.exe => No File
FirewallRules: [{096ECF27-FD26-45C0-9433-EAB46C31A6E9}] => (Allow) C:\Users\David Lukáš\AppData\Local\Temp\7zS057D\HP.EasyStart.exe => No File
FirewallRules: [{2D18DFBE-E88E-4C37-AB75-C0223DE6B9AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [{565B72F7-74EC-43E1-A8BC-2151DA4975BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [{8DC4684F-C3B5-4034-A409-F6EB868DCC98}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Castle\Project Castle\castle.exe => No File
FirewallRules: [{DDC786CA-2580-41F2-9BF5-49D991F776D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Castle\Project Castle\castle.exe => No File
FirewallRules: [{6695ADCB-5611-48B6-AD9D-6EC9D58364E5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{D1C65FC5-F3FB-49B2-8B3B-D2D97F6AED9A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{1839F310-EEAA-4AF7-8296-49EF05CAA52E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{73FBEA29-9790-47E8-8922-BF4A9342383A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{26BD9455-CB94-4A48-9DD0-96ED514A39A7}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe => No File
FirewallRules: [{3417446A-87D0-4EA8-ABAF-0A9232BA5183}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe => No File
FirewallRules: [TCP Query User{F7B47074-60AC-46A9-B70F-9CF1A4FDC6FA}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [UDP Query User{17D9DDFF-8637-4DD6-8F37-421D67908885}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [{DECE124B-94C7-455B-9E83-83A0CEA3C93D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [{151CA33C-41FE-4829-A814-9B4D40D6B981}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [TCP Query User{0BEB7499-E761-4298-BE18-EA17E618A643}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe] => (Block) C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe => No File
FirewallRules: [UDP Query User{EC60CFC9-5FF2-44E1-ACC3-F02229FF4DAA}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe] => (Block) C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe => No File
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\MountPoints2: {4f1e6804-2c15-11ef-b859-c0cb38ebc569} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\Run: [Walliant] => C:\Users\David Lukáš\AppData\Local\Programs\Walliant\Walliant.exe [388664 2024-07-12] (Cleversort FZ-LLC -> Globalhop) <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {6D807B7B-0A73-468E-A13E-08AD13094F13} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe (No File)
Task: {6E71BA94-1295-4E96-9E20-786E1E3EE170} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe /from_scheduler:1 (No File)
Task: {C4DB7A3D-3162-40F1-9A60-053ED41B8275} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{398A1135-D1F9-4886-96FB-DA14354E12F5} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
ask: {6361EB4B-6C9E-49CD-A5F0-D981C26E3FAB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (No File)
R2 AltisikService; C:\Program Files (x86)\AltisikApplication\AltisikService.exe [71937664 2024-06-17] (AltisikDevLM Group LM -> ) [File not signed] [File is in use] <==== ATTENTION
S3 NEProtect; \??\C:\Program Files (x86)\Steam\steamapps\common\Lost Light\Engine\Binaries\Win64\NEProtect.sys [X]
C:\DumpStack.log.tmp

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

milda81 · #4 Příspěvek od **milda81** » 03 lis 2024 14:42

Fix result of Farbar Recovery Scan Tool (x64) Version: 02-11-2024
Ran by David Lukáš (03-11-2024 14:19:55) Run:1
Running from C:\Users\David Lukáš\Desktop
Loaded Profiles: David Lukáš
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
AlternateDataStreams: C:\Users\David Lukáš\AppData\Local\Microsoft:ISBD [32]
FirewallRules: [TCP Query User{74F74A43-C656-48CF-B5E9-E1254661F3DE}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [UDP Query User{76472C7A-F05D-489F-9C73-ADD47A248822}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe => No File
FirewallRules: [{209AFD78-30DF-47D0-BD6E-F00C79F339DD}] => (Allow) C:\Users\David Lukáš\AppData\Local\Temp\7zS67CF\HP.EasyStart.exe => No File
FirewallRules: [{096ECF27-FD26-45C0-9433-EAB46C31A6E9}] => (Allow) C:\Users\David Lukáš\AppData\Local\Temp\7zS057D\HP.EasyStart.exe => No File
FirewallRules: [{2D18DFBE-E88E-4C37-AB75-C0223DE6B9AE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [{565B72F7-74EC-43E1-A8BC-2151DA4975BE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\A.V.A\Binaries\start_protected_game.exe => No File
FirewallRules: [{8DC4684F-C3B5-4034-A409-F6EB868DCC98}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Castle\Project Castle\castle.exe => No File
FirewallRules: [{DDC786CA-2580-41F2-9BF5-49D991F776D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Project Castle\Project Castle\castle.exe => No File
FirewallRules: [{6695ADCB-5611-48B6-AD9D-6EC9D58364E5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{D1C65FC5-F3FB-49B2-8B3B-D2D97F6AED9A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{1839F310-EEAA-4AF7-8296-49EF05CAA52E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{73FBEA29-9790-47E8-8922-BF4A9342383A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe => No File
FirewallRules: [{26BD9455-CB94-4A48-9DD0-96ED514A39A7}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe => No File
FirewallRules: [{3417446A-87D0-4EA8-ABAF-0A9232BA5183}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe => No File
FirewallRules: [TCP Query User{F7B47074-60AC-46A9-B70F-9CF1A4FDC6FA}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [UDP Query User{17D9DDFF-8637-4DD6-8F37-421D67908885}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe => No File
FirewallRules: [{DECE124B-94C7-455B-9E83-83A0CEA3C93D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [{151CA33C-41FE-4829-A814-9B4D40D6B981}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crusader Kings III\launcher\dowser.exe => No File
FirewallRules: [TCP Query User{0BEB7499-E761-4298-BE18-EA17E618A643}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe] => (Block) C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe => No File
FirewallRules: [UDP Query User{EC60CFC9-5FF2-44E1-ACC3-F02229FF4DAA}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe] => (Block) C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe => No File
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\MountPoints2: {4f1e6804-2c15-11ef-b859-c0cb38ebc569} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\...\Run: [Walliant] => C:\Users\David Lukáš\AppData\Local\Programs\Walliant\Walliant.exe [388664 2024-07-12] (Cleversort FZ-LLC -> Globalhop) <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {6D807B7B-0A73-468E-A13E-08AD13094F13} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe (No File)
Task: {6E71BA94-1295-4E96-9E20-786E1E3EE170} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe /from_scheduler:1 (No File)
Task: {C4DB7A3D-3162-40F1-9A60-053ED41B8275} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{398A1135-D1F9-4886-96FB-DA14354E12F5} => C:\Program Files (x86)\Google\GoogleUpdater\131.0.6776.0\updater.exe [5507168 2024-10-14] (Google LLC -> Google LLC)
ask: {6361EB4B-6C9E-49CD-A5F0-D981C26E3FAB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (No File)
R2 AltisikService; C:\Program Files (x86)\AltisikApplication\AltisikService.exe [71937664 2024-06-17] (AltisikDevLM Group LM -> ) [File not signed] [File is in use] <==== ATTENTION
S3 NEProtect; \??\C:\Program Files (x86)\Steam\steamapps\common\Lost Light\Engine\Binaries\Win64\NEProtect.sys [X]
C:\DumpStack.log.tmp

EmptyTemp:
End
*****************

Processes closed successfully.
C:\Users\David Lukáš\AppData\Local\Microsoft => ":ISBD" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{74F74A43-C656-48CF-B5E9-E1254661F3DE}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{76472C7A-F05D-489F-9C73-ADD47A248822}C:\program files (x86)\steam\steamapps\common\the witcher 2\bin\witcher2.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{209AFD78-30DF-47D0-BD6E-F00C79F339DD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{096ECF27-FD26-45C0-9433-EAB46C31A6E9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2D18DFBE-E88E-4C37-AB75-C0223DE6B9AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{565B72F7-74EC-43E1-A8BC-2151DA4975BE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8DC4684F-C3B5-4034-A409-F6EB868DCC98}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DDC786CA-2580-41F2-9BF5-49D991F776D4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6695ADCB-5611-48B6-AD9D-6EC9D58364E5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D1C65FC5-F3FB-49B2-8B3B-D2D97F6AED9A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1839F310-EEAA-4AF7-8296-49EF05CAA52E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{73FBEA29-9790-47E8-8922-BF4A9342383A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{26BD9455-CB94-4A48-9DD0-96ED514A39A7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3417446A-87D0-4EA8-ABAF-0A9232BA5183}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F7B47074-60AC-46A9-B70F-9CF1A4FDC6FA}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{17D9DDFF-8637-4DD6-8F37-421D67908885}C:\users\david lukáš\appdata\local\programs\opera gx\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DECE124B-94C7-455B-9E83-83A0CEA3C93D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{151CA33C-41FE-4829-A814-9B4D40D6B981}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0BEB7499-E761-4298-BE18-EA17E618A643}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EC60CFC9-5FF2-44E1-ACC3-F02229FF4DAA}C:\program files\epic games\sniperghostwarriorco0ugt6\win_x64\sgwcontracts.exe" => removed successfully
HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4f1e6804-2c15-11ef-b859-c0cb38ebc569} => removed successfully
"HKU\S-1-5-21-1588777837-2161469333-1616248303-1001\Software\Microsoft\Windows\CurrentVersion\Run\\Walliant" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{6D807B7B-0A73-468E-A13E-08AD13094F13}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D807B7B-0A73-468E-A13E-08AD13094F13}" => removed successfully
C:\Windows\System32\Tasks\Avast Software\Avast Emergency Update => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Avast Emergency Update" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{6E71BA94-1295-4E96-9E20-786E1E3EE170}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6E71BA94-1295-4E96-9E20-786E1E3EE170}" => removed successfully
C:\Windows\System32\Tasks\Avast Software\Overseer => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C4DB7A3D-3162-40F1-9A60-053ED41B8275}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4DB7A3D-3162-40F1-9A60-053ED41B8275}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{398A1135-D1F9-4886-96FB-DA14354E12F5} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem131.0.6776.0{398A1135-D1F9-4886-96FB-DA14354E12F5}" => removed successfully
ask: {6361EB4B-6C9E-49CD-A5F0-D981C26E3FAB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB" (No File) => Error: No automatic fix found for this entry.
AltisikService => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\AltisikService" => removed successfully
AltisikService => service removed successfully
HKLM\System\CurrentControlSet\Services\NEProtect => removed successfully
NEProtect => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 51642688 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 380612602 B
Windows/system/drivers => 1181784503 B
Edge => 0 B
Chrome => 445680660 B
Firefox => 71259593 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 516732 B
NetworkService => 666864 B
David Lukáš => 643911155 B

RecycleBin => 0 B
EmptyTemp: => 2.6 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 03-11-2024 14:35:01)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 14:35:02 ====

#5 Příspěvek od **Rudy** » 03 lis 2024 14:49

Smazáno. Nastala změna k lepšímu?

milda81 · #6 Příspěvek od **milda81** » 03 lis 2024 14:51

Vypadá to, že ano. Mockrát děkuji.

#7 Příspěvek od **Rudy** » 03 lis 2024 15:51

Rádo se stalo!

VIRY.CZ

Velké zatížení HDD a RAM

Velké zatížení HDD a RAM

Re: Velké zatížení HDD a RAM

Re: Velké zatížení HDD a RAM

Re: Velké zatížení HDD a RAM

Re: Velké zatížení HDD a RAM

Re: Velké zatížení HDD a RAM

Re: Velké zatížení HDD a RAM