Zdravím,,prosím o kontrolu.RSIT mi nejde udělat,,píše mi to na strankach neplatny SSl.děkuji
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by FranniCz (04-12-2024 11:37:52)
Running from C:\Users\FranniCz\Downloads
Microsoft Windows 10 Pro Version 22H2 19045.5131 (X64) (2020-11-08 20:43:14)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-65861828-2125363344-1227843266-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-65861828-2125363344-1227843266-503 - Limited - Disabled)
FranniCz (S-1-5-21-65861828-2125363344-1227843266-1001 - Administrator - Enabled) => C:\Users\FranniCz
Guest (S-1-5-21-65861828-2125363344-1227843266-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-65861828-2125363344-1227843266-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
AV: 360 Total Security (Enabled - Up to date) {FFDC234A-CE9B-08F9-406B-F876951CE066}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 11.0.0.1138 - 360 Security Center)
AIDA64 Extreme Edition v1.50 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 1.50 - FinalWire Ltd.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.133 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 6.07.22.037 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.30.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.9.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{a3a3f608-32f7-42e6-abeb-9312016404b4}) (Version: 6.07.22.037 - Advanced Micro Devices, Inc.) Hidden
Armored Warfare MyCom (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\gcgame_13.2000009) (Version: 1.404 - POSTMETA GAMES LIMITED)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.8.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.36.1 - Asmedia Technology)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
BeamMP-Launcher verze 2.0.71 (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\{4A233C59-AF33-417D-B19E-B49D67433455}_is1) (Version: 2.0.71 - BeamMP)
BlueStacks App Player (HKLM\...\BlueStacks_nxt) (Version: 5.21.550.1031 - now.gg, Inc.)
BlueStacks Services (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\BlueStacksServices) (Version: 3.0.9 - now.gg, Inc.)
BlueStacks X (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\BlueStacks X) (Version: 10.41.550.1001 - now.gg, Inc.)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.29 - Piriform)
CurseForge 1.253.0-17952 (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\ca0e291c-abd4-5fc3-b6a0-3d4333eccbd7) (Version: 1.253.0-17952 - Overwolf)
CwdStudio 1.2.7 (HKLM-x32\...\CwdStudio_is1) (Version: - ITPro CZ)
Discord (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Discord) (Version: 1.0.9051 - Discord Inc.)
Driver Booster 7 (HKLM-x32\...\Driver Booster_is1) (Version: 7.1.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
ESET Security (HKLM\...\{6D46484B-0BE2-4060-9CD3-FA87ED960ED9}) (Version: 18.0.12.0 - ESET, spol. s r.o.)
Glorious Model O Software (HKLM-x32\...\{0969D386-B5B4-41BD-98E3-4A1A7D32CB97}_is1) (Version: 1.0.9 - Glorious PC Gaming Race LLC.)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.86 - Google LLC)
Grand Theft Auto V v.1.0.877.1 (HKLM-x32\...\Grand Theft Auto V_is1) (Version: - )
HWiNFO64 Version 6.10 (HKLM\...\HWiNFO64_is1) (Version: 6.10 - Martin Malik - REALiX)
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version: - Cheat Engine)
Cheat Engine 7.3 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
KbCustom Driver (HKLM-x32\...\{68754F42-DE8A-4A2C-9112-385D6CA38907}) (Version: 2017.07.20 - )
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LauncherSetup Install (HKLM\...\{E24F82D1-8DCD-477C-AC97-8FCEC506F776}) (Version: 2.5.1601 - Nahimic) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2024.2.534136 - Logitech)
Logitech Gaming Software 9.04 (HKLM\...\Logitech Gaming Software) (Version: 9.04.49 - Logitech Inc.)
Logitech SetPoint 6.90 (HKLM\...\sp6) (Version: 6.90.66 - Logitech)
Microsoft .NET Host - 8.0.11 (x64) (HKLM\...\{362B4D0D-8438-44DA-86B2-FEC44E000FCA}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.11 (x64) (HKLM\...\{F59C11F0-D73F-452B-8D1D-8C33B82D8507}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.11 (x64) (HKLM\...\{9C80213E-9079-4561-8D57-1FDD0D62251F}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.70 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.18129.20158 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.18129.20158 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\OneDriveSetup.exe) (Version: 24.221.1103.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.8.3074.1022 - Microsoft Corporation)
Microsoft Visual Studio Setup WMI Provider (HKLM-x32\...\{E281F6E2-136B-4AF0-895B-253279711697}) (Version: 3.7.2182.35401 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.11 (x64) (HKLM\...\{C0790AA0-0F40-4836-85B2-677B87625E63}) (Version: 64.44.23253 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.11 (x64) (HKLM-x32\...\{bd40e761-3e88-4202-9b53-26c6bed3d467}) (Version: 8.0.11.34221 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.19 - MSI)
MY.GAMES GameCenter (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\GameCenter) (Version: 4.1539 - MY.COM B.V.)
MY.GAMES Launcher (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\mglauncherlaunchpad_) (Version: 4.1733 - MY.GAMES B.V.)
Nahimic 2+ Audio Driver (HKLM\...\{E9E3E595-8161-435A-AB32-7DFE3DDE4F11}) (Version: 2.5.1601 - Nahimic) Hidden
Nahimic 2+ Audio Driver (HKLM-x32\...\{97024b50-cc9a-4c2b-9272-aea1246e6bba}) (Version: 2.5.16 - Nahimic)
NGS GMX-125 (HKLM-x32\...\{1C6CD6D7-69FC-4AD5-90D2-7B0B19F1C9E9}) (Version: 1.00.0000 - DELUX )
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.2.3 - OBS Project)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Název společnosti:)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.18129.20100 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.18129.20100 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.18129.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 114.0.5282.235 (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Opera 114.0.5282.235) (Version: 114.0.5282.235 - Opera Software)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation)
ProductDaemonSetup Install (HKLM\...\{FF05ED48-74E4-4E17-9D8C-24D23F9A587B}) (Version: 2.5.1601 - Nahimic) Hidden
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.2.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.18.526.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Roblox Player for FranniCz (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for FranniCz (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\roblox-studio) (Version: - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.96.2164 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.7.1 - Rockstar Games)
RyzenMasterSDK (HKLM\...\{4B4B44C4-19FF-4791-AAD4-1AE011803AE8}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Slovenčina (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Slovenčina) (Version: - )
SnowRunner verze 17.0 (HKLM-x32\...\{A91C10E0-C4FF-46CD-9884-1ABB8C377572}_is1) (Version: 17.0 - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Taxi Life: A City Driving Simulator (HKLM-x32\...\Taxi Life: A City Driving Simulator_is1) (Version: - )
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.9297 - TLauncher Inc.)
Total Uninstall 6.27.0 (HKLM\...\Total Uninstall 6_is1) (Version: 6.27.0 - Gavrila Martau)
UIInstallUpgrade (HKLM\...\{58EE743C-4BC4-42A5-9AEC-D311103CEE43}) (Version: 2.5.1601 - Nahimic) Hidden
Uninstall Lunar Client (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 3.3.1-ow - Moonsworth LLC)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
uTorrent Web (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\utweb) (Version: 1.4.0 - BitTorrent Limited)
Voxengo Marvel GEQ (HKLM\...\Voxengo Marvel GEQ_is1) (Version: 1.15 - Voxengo)
Wargaming.net Game Center (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Wargaming.net Game Center) (Version: 24.7.0.7569 - Wargaming.net)
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.987 - McAfee, LLC)
WinRAR 5.80 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.4 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\2314027414) (Version: - Wargaming.net)
Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-01-28] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-01-28] (Microsoft Corporation) [MS Ad]
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.4401.0_x64__8wekyb3d8bbwe [2024-11-02] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.1.3.0_x64__8wekyb3d8bbwe [2024-11-01] (Microsoft Studios)
Minecraft Windows Preview -> C:\Program Files\WindowsApps\Microsoft.MinecraftWindowsBeta_1.21.6021.0_x64__8wekyb3d8bbwe [2024-11-30] (Microsoft Studios)
Roblox -> C:\Program Files\WindowsApps\ROBLOXCORPORATION.ROBLOX_2.652.762.0_x64__55nm5eh3cm0pr [2024-11-30] (Roblox Corporation)
Spotify – hudba a podcasty -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0 [2024-11-30] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.exe" -ToastActivated => No File
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-11-06] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-11-20] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-11-20] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-11-06] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2024-11-06] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [SD360] -> {086F171D-5ED1-4ED2-B736-CFF3AD6A128E} => C:\Program Files (x86)\360\Total Security\MenuEx64.dll [2023-03-15] (Beijing Qihu Technology Co., Ltd. -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-11-20] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-11-20] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\FranniCz\Desktop\franni - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\FranniCz\Desktop\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\FranniCz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Twitter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jgeocpdicgmkeemopbanhokmhcgcflmi
ShortcutWithArgument: C:\Users\FranniCz\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2024-11-29 18:13 - 2024-11-29 12:33 - 000275456 _____ () [File not signed] \\?\C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\resources\app.asar.unpacked\node_modules\@lunarclient\bsdiff-node\build\Release\bsdiff.node
2024-11-29 18:13 - 2024-11-29 12:33 - 000108544 _____ () [File not signed] \\?\C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\resources\app.asar.unpacked\node_modules\native-is-elevated\build\Release\iselevated.node
2024-12-04 11:16 - 2024-12-04 11:16 - 002338304 _____ () [File not signed] \\?\C:\Users\FranniCz\AppData\Local\Temp\ece00242-edfa-481b-9e07-31627ad6c07b.tmp.node
2022-05-12 09:15 - 2022-05-12 09:15 - 000144896 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2022-05-12 09:15 - 2022-05-12 09:15 - 000077824 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2024-09-09 12:18 - 2024-05-08 09:18 - 002862080 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\bluestacks-services\ffmpeg.dll
2024-09-09 12:18 - 2024-05-08 09:18 - 000479232 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\bluestacks-services\libegl.dll
2024-09-09 12:18 - 2024-05-08 09:18 - 007513600 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\bluestacks-services\libglesv2.dll
2024-09-09 12:18 - 2024-05-08 09:18 - 005209088 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\bluestacks-services\vk_swiftshader.dll
2024-10-18 12:14 - 2024-11-29 12:33 - 002682880 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\ffmpeg.dll
2024-10-18 12:14 - 2024-11-29 12:33 - 000481280 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\libegl.dll
2024-10-18 12:14 - 2024-11-29 12:33 - 008058368 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\libglesv2.dll
2024-10-18 12:14 - 2024-11-29 12:33 - 005475328 _____ () [File not signed] C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\vk_swiftshader.dll
2020-12-01 18:08 - 2020-12-01 18:08 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2020-12-01 18:08 - 2020-12-01 18:08 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2022-05-12 09:15 - 2022-05-12 09:15 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBCURL.dll
2022-05-12 09:15 - 2022-05-12 09:15 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBEAY32.dll
2022-05-12 09:15 - 2022-05-12 09:15 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\SSLEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [7426]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2023-01-11] (Logitech Inc -> Logitech, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2023-01-11] (Logitech Inc -> Logitech, Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-01] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 14:46 - 2024-07-06 13:13 - 000001904 _____ C:\WINDOWS\system32\drivers\etc\hosts
109.94.209.70 fitgirlrepacks.in # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.in # Fake FitGirl site
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repacks.to # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 fitgirlrepack.games # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.to # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 www.fitgirlrepack.games # Fake FitGirl site
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Users\FranniCz\AppData\Local\Microsoft\WindowsApps;C:\adb;C:\Program Files\dotnet\
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
FreedomeVPNConnection: Freedome Wintun Userspace Tunnel -> fsfreedomewintun.sys
Ethernet: Realtek PCIe GBE Family Controller -> rt640x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "Nahimic2UILauncher"
HKLM\...\StartupApproved\Run32: => "Super Charger"
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_81FF4C52AADF8339601E6EE5336C5C85"
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\StartupApproved\Run: => "utweb"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{BF610EE8-F735-4F25-B998-C6D6C9C3D886}] => (Allow) C:\Users\FranniCz\Desktop\Microsoft Toolkit.exe () [File not signed]
FirewallRules: [{EB942004-207F-470A-8C72-AEF2087DB9F2}] => (Allow) C:\Users\FranniCz\Desktop\Microsoft Toolkit.exe () [File not signed]
FirewallRules: [UDP Query User{3CC1812D-AE1B-43A3-A4C3-C96FD4AE0F26}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{705C18D7-242B-441A-9022-85771940F5E4}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [UDP Query User{0A504F8B-95B6-4B3A-90F2-AC9291DF25CB}C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [TCP Query User{7A0D4240-ABDE-4C36-AE18-FF0EE19EEFAA}C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [TCP Query User{732EF158-6A89-46B8-918E-6871550936A4}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{F2F1FD8C-0026-424F-8A5A-2ED9233AA571}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [TCP Query User{16E145D7-856D-408B-96FD-23D6DA31E5B1}C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [UDP Query User{9338E152-5218-48B4-A4A0-4FF31A0D0569}C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\frannicz\appdata\local\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [TCP Query User{1A9DCAA6-ED01-4526-BB5B-F3F15156BE5A}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{7BD3B57D-D672-4AA8-AB2C-891867F7F0BA}C:\games\world_of_tanks_eu\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\worldoftanks.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{F6D28CE6-E155-4CE7-8A0C-1A4CF080F556}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{328A60E7-EE91-40F3-A72D-6EFCBC7FAA1C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{79948B9E-B802-46CF-BA68-0AF5327ECD8F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{9550B7FE-3913-45DD-8291-C994C471EFA1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 17\x64\FarmingSimulator2017Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{0A7FA95E-94BC-4F19-9A8B-D0A56DFCA147}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 17\x86\FarmingSimulator2017Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{468A3149-60A8-48AD-B47B-C64E9803AACB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Farming Simulator 17\x86\FarmingSimulator2017Game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{A263A4EF-1191-45DF-B575-903ABABCDC6D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A813EF19-092C-487C-AFE3-91185FB8C4D8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C8242B8C-0301-4522-91CF-13E30F5C5927}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1114680E-3038-4F47-9765-F6E0156ED9D6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4EE12D3D-89BE-4824-816E-B2E4BED74AC5}] => (Allow) C:\Users\FranniCz\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{C557C3B0-8165-47F2-951A-B97218D903E6}] => (Allow) C:\Users\FranniCz\AppData\Roaming\uTorrent Web\utweb.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{E828EF60-7E43-454C-9B54-433BD8F19FB2}] => (Allow) F:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2F0E5BDD-353F-4950-A64F-DFBD20B659F4}] => (Allow) F:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{DE985AC3-F09A-4E94-8D52-167B56368F4F}] => (Allow) F:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{261E7BA9-3DC2-42CD-922D-0EF53A98184F}] => (Allow) F:\SteamLibrary\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe => No File
FirewallRules: [{25D9E0ED-6B38-4512-8016-99387D4C90F3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{805B41A9-7086-4A5E-9F0D-92C8121B5802}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{600FE96C-5672-46EB-9E63-16D25339B5FF}] => (Allow) F:\SteamLibrary\steamapps\common\theHunterCotW\theHunterCotW_F.exe () [File not signed]
FirewallRules: [{90C0D033-C653-40C4-B554-91CBE11E9C82}] => (Allow) F:\SteamLibrary\steamapps\common\theHunterCotW\theHunterCotW_F.exe () [File not signed]
FirewallRules: [{E5184F36-FEC7-4F7B-B146-54166DFA3569}] => (Allow) F:\SteamLibrary\steamapps\common\Goose Goose Duck\GGDLauncher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{22697984-87DC-4073-B060-6FE5B017462B}] => (Allow) F:\SteamLibrary\steamapps\common\Goose Goose Duck\GGDLauncher.exe (EasyAntiCheat Oy -> Epic Games, Inc.)
FirewallRules: [{B0175020-3F16-4917-B68C-A38BAFD42234}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe (Now.gg, INC -> Bluestack Systems, Inc.)
FirewallRules: [{694B8613-65C8-4955-BFDE-397D12D554D3}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{BA49657F-F681-4D68-A7D7-2A4B65A3D958}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems)
FirewallRules: [{D364D2E0-E835-4A28-B326-0D69682A1AA4}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.)
FirewallRules: [{1287E8CB-86FB-47C4-936D-380B54093680}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{276C2B01-D22E-4EF5-BDBC-CACC5D3EA0F0}] => (Allow) E:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{755646C1-26BE-4665-A76A-C1560E8F45E0}] => (Allow) F:\SteamLibrary\steamapps\common\Cars\Cars.exe () [File not signed]
FirewallRules: [{7FE0450F-A5C6-46CF-8525-32951606F18B}] => (Allow) F:\SteamLibrary\steamapps\common\Cars\Cars.exe () [File not signed]
FirewallRules: [{4CEECD1A-1857-4D09-9CE3-FB88BA377026}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{BBA9E76D-1FD2-41EE-AD7F-1FE65F0334D8}] => (Allow) C:\Program Files (x86)\360\Total Security\softmgr\360InstantSetup.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{222E1A8A-0A3B-4AAE-83B0-D86D05BE7087}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{8FF9E6AB-7CA3-4EBC-88D3-7517EAF8A375}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{973B8048-879F-4BAC-A850-B7DF2BADCD05}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{18648C2C-783F-4017-8AE9-145E52F18CCE}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{7E5DE9AA-7431-4F64-BE11-0DBA2636D71E}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{294C769E-3700-45FE-A767-EB1795AC4BEB}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{0722EC50-5ACA-460E-9134-76D51977D5B6}] => (Allow) C:\Program Files (x86)\360\Total Security\360TsLiveUpd.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{24A88935-DB30-46B3-B8AC-917DE6C1A87C}] => (Allow) F:\SteamLibrary\steamapps\common\Farming Simulator 25\FarmingSimulator2025.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{30802EB9-CC76-4815-9ED3-9CBA950F7766}] => (Allow) F:\SteamLibrary\steamapps\common\Farming Simulator 25\FarmingSimulator2025.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{B14FE9E4-BE3D-4FD2-8E3D-CF0477D81853}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2F3F2C81-8541-41AA-BE8F-A57B241792F3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A1159E5F-C4A7-41A9-B338-61152F615CCD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{934F4FF3-0500-4555-BEE5-4674E611AF50}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6BC1D7D3-332D-4689-8378-F197269391C6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{92F3D88A-1DCC-4834-8A00-C71A9BC49D05}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CB5F4B40-0389-40F3-BC88-8D32D4929B56}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A1596002-DA6A-40AD-9345-C3530C773FA0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D2A6C07D-1262-4175-A276-125B5454DD44}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BEB1CC8A-6317-4C91-A1FE-9671FD654EAE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{261D3B1B-04A4-4972-BBA3-A47BF3BE3F74}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9FF04E18-0EB6-46D9-960C-0CFF1A24D511}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{53D99702-E305-487B-97F0-4AED124E1B4A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6877829-24A4-4A2C-B3D0-89C526F09094}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9FC597C6-A3F8-49D5-B9F0-2D6EA8D18CF4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{94FC12C6-455E-4E23-987C-F98DDD3DACA4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F7E17092-D8B8-448D-8BB9-685003E1C900}] => (Allow) C:\Users\FranniCz\AppData\Local\Programs\Opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{36E952A0-5979-401C-8770-1A455A1D9B42}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
FirewallRules: [{0C25AD3C-5AAE-4484-8D1E-CC059272D7AC}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/04/2024 11:38:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x7678
Čas spuštění chybující aplikace: 0x01db4638af14ee90
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: c8cb3ca5-5ef2-47c3-bc16-d15c5ddc51a2
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/04/2024 11:38:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x3818
Čas spuštění chybující aplikace: 0x01db4638a902bed4
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: ffb0737d-899b-47d4-9588-9135b29e5d75
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/04/2024 11:38:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x4d34
Čas spuštění chybující aplikace: 0x01db4638a2eeaab4
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 57936a42-b83e-4d6c-9ec6-9dd967f4a154
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/04/2024 11:38:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x79a4
Čas spuštění chybující aplikace: 0x01db4638964d1656
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 8cf20c68-03d4-4a31-b817-2f31943e9658
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/04/2024 11:37:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x2180
Čas spuštění chybující aplikace: 0x01db4638903a95b4
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 93539235-bea8-42bb-b947-30e9767f7738
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/04/2024 11:37:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0xc48
Čas spuštění chybující aplikace: 0x01db46388a281ac7
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 8a5a2a60-6755-49ad-b710-e09ac790da36
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/04/2024 11:37:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x6c58
Čas spuštění chybující aplikace: 0x01db463884159ffb
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: f3e82350-c196-48b3-9964-8424a365ac53
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/04/2024 11:37:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: lghub_agent.exe, verze: 2024.3.3733.0, časové razítko: 0x661edd49
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.19041.3636, časové razítko: 0x81cf5d89
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007286e
ID chybujícího procesu: 0x7788
Čas spuštění chybující aplikace: 0x01db46387772e594
Cesta k chybující aplikaci: C:\Program Files\LGHUB\lghub_agent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 1be87b99-f395-4ada-a61b-ce806197e075
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (12/04/2024 09:12:39 AM) (Source: DCOM) (EventID: 10010) (User: FRANNICZ)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/04/2024 09:12:29 AM) (Source: DCOM) (EventID: 10010) (User: FRANNICZ)
Description: Server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/04/2024 09:12:29 AM) (Source: DCOM) (EventID: 10010) (User: FRANNICZ)
Description: Server {2DE3095A-B49E-418F-B5C1-69D2CCF62A8F} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/04/2024 09:12:28 AM) (Source: DCOM) (EventID: 10010) (User: FRANNICZ)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2024 07:05:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/03/2024 07:05:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (12/03/2024 07:03:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba GameInput Service byla neočekávaně ukončena. Tento stav nastal již 6krát.
Error: (12/03/2024 07:03:36 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba GameInput Service byla ukončena s následující chybou:
Složený soubor GameInput Service byl vytvořen s novější verzi úložného prostoru.
CodeIntegrity:
===============
Date: 2024-12-04 11:38:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\360\Total Security\safemon\chromesafe64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.G0 01/22/2019
Motherboard: MSI B350 KRAIT GAMING (MS-7B08)
Processor: AMD Ryzen 5 1600 Six-Core Processor
Percentage of memory in use: 44%
Total physical RAM: 16329.02 MB
Available physical RAM: 9127.79 MB
Total Virtual: 20681.02 MB
Available Virtual: 11377.67 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:231.54 GB) (Free:8.88 GB) (Model: Samsung SSD 960 EVO 250GB) NTFS
Drive d: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.04 GB) (Model: Hitachi HTS545050B9A300) NTFS ==>[system with boot components (obtained from drive)]
Drive e: () (Fixed) (Total:465.66 GB) (Free:109.8 GB) (Model: Hitachi HTS545050B9A300) NTFS
Drive f: (Nový svazek) (Fixed) (Total:465.76 GB) (Free:72.06 GB) (Model: Samsung SSD 980 500GB) NTFS
\\?\Volume{9ab77ceb-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{9ab77ceb-0000-0000-0000-c0043a000000}\ () (Fixed) (Total:0.81 GB) (Free:0.21 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 1EB3CC06)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 9AB77CEB)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=829 MB) - (Type=27)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FF4FAD4E)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-11-2024
Ran by FranniCz (administrator) on FRANNICZ (MSI MS-7B08) (04-12-2024 11:36:44)
Running from C:\Users\FranniCz\Downloads\FRST64.exe
Loaded Profiles: FranniCz
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5131 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
(C:\Program Files (x86)\KbCustom Driver\KbCustom.exe ->) (Shenzhen Evision Semiconductor Technology Co.,Ltd. -> ) C:\Program Files (x86)\KbCustom Driver\KbDaemon.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(C:\Program Files\Logitech\SetPointP\SetPoint.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(C:\Program Files\McAfee\WebAdvisor\servicehost.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <5>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(cmd.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\BrowserPrivacyAndSecurity.exe
(DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atieclxx.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(explorer.exe ->) (Moonsworth, LLC -> Moonsworth LLC) C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\Lunar Client.exe <5>
(explorer.exe ->) (Now.gg, INC -> now.gg, Inc.) C:\Users\FranniCz\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe <4>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <5>
(explorer.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe
(services.exe ->) (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\fsvpnservice.exe
(services.exe ->) (ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrsr.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(Shenzhen Evision Semiconductor Technology Co.,Ltd. -> 0) [File not signed] C:\Program Files (x86)\KbCustom Driver\KbCustom.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2411.1001.6.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Nahimic2UILauncher] => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734904 2017-06-29] (A-Volute -> Nahimic)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [196520 2024-11-06] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9269352 2019-12-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18725336 2022-05-12] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3138560 2023-01-11] (Logitech Inc -> Logitech, Inc.)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1022928 2017-07-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Launch 0 KbCustom] => C:\Program Files (x86)\KbCustom Driver\KbCustom.exe [2917040 2017-03-07] (Shenzhen Evision Semiconductor Technology Co.,Ltd. -> 0) [File not signed]
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\360Tray.exe [413000 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2130704 2024-11-28] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45227312 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [MicrosoftEdgeAutoLaunch_81FF4C52AADF8339601E6EE5336C5C85] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911232 2024-11-25] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [46056704 2024-03-08] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [utweb] => C:\Users\FranniCz\AppData\Roaming\uTorrent Web\utweb.exe [6425608 2024-07-07] (BitTorrent Inc -> BitTorrent Limited)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [EpicGamesLauncher] => E:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36919256 2024-11-26] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [Opera Browser Assistant] => C:\Users\FranniCz\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [VoicemodV3] => "F:\Voicemod V3\Voicemod.exe" (No File)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [electron.app.BlueStacks Services] => C:\Users\FranniCz\AppData\Local\Programs\bluestacks-services\BlueStacksServices.exe [162219656 2024-05-08] (Now.gg, INC -> now.gg, Inc.)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [Lunar Client] => C:\Users\FranniCz\AppData\Local\Programs\Lunar Client\Lunar Client.exe [182282800 2024-11-29] (Moonsworth, LLC -> Moonsworth LLC)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [AMDNoiseSuppression] => "C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\131.0.6778.86\Installer\chrmstp.exe [2024-11-22] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {B68D9ABF-3228-446D-A0FA-BE1F15099659} - System32\Tasks\AMD ThankingURL => C:\Program Files\AMD\CIM\Bin64\Setup.exe [1110232 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {2118E9B9-F9E3-45A3-A593-166D7619A63C} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {7C6FD399-3599-459D-8B72-6B3642427D1B} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {AAFFA99E-BC2C-4A5C-BFB0-AE06F2FF12E9} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [184024 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {3E07A96E-7B0E-4CA1-9344-60C1FBD41C23} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [5733888 2019-10-16] () [File not signed]
Task: {E281A888-762C-4EFF-9123-43AEA534C83B} - System32\Tasks\BlueStacksHelper_nxt => C:\Program Files\BlueStacks_nxt\BlueStacksHelper.exe [302968 2024-09-03] (Now.gg, INC -> BlueStack Systems, Inc.)
Task: {AFDCC3FF-96E1-41B2-9EA7-B67FC31CE129} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {FA9955C4-3DEE-46E9-B35A-EA53470DA7E4} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "ed6ecc7b-1504-4049-9ff3-b6fc2afe7008" --version "6.29.11342" --silent
Task: {EFA8E577-4BE7-4B5C-B3E9-D126ADCDFE84} - System32\Tasks\CCleanerSkipUAC - FranniCz => C:\Program Files\CCleaner\CCleaner.exe [39090480 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {03292F90-85A2-43F0-BEF5-5670569BF8A6} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\Scheduler.exe [149776 2019-11-14] (IObit Information Technology -> IObit)
Task: {AD375BF2-1382-4F0E-8834-02C8F25034AE} - System32\Tasks\Driver Booster SkipUAC (FranniCz) => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\DriverBooster.exe /skipuac (No File)
Task: {D63FD706-B85B-49D4-AE28-2E96D777BE8B} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{BC354C76-EB15-40D3-B319-37F8F9C4011E} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {891D5C01-3B4E-4854-B539-8B8A8F5B1E27} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [6977272 2015-08-10] (Ratiborus MSFree Inc. -> MSFree Inc.) [File not signed] -> C:\ProgramData\KMSAutoS\\/win=act /off=act
Task: {07079584-E90B-48D8-9EF4-11BBE6B9DC30} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28644032 2024-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {92FFF4AC-1EE7-40C1-8742-390E74AFDAAD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28644032 2024-11-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {841AD30B-17F7-4C52-AA12-34BA0F256D55} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [223344 2024-11-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {217D2230-51A8-42D7-8E8C-007E83CDB9FF} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [223344 2024-11-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {258D5E0E-8B13-4C49-98BB-7983F564FE88} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {6E76787E-B2A7-486B-819E-6B7BC2AA5D01} - System32\Tasks\Nahimic2svc32Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2svc32.exe [4412088 2017-06-29] (A-Volute -> )
Task: {8883549D-F8C8-4653-BC75-76C28895C76D} - System32\Tasks\Nahimic2svc64Run => C:\Program Files\Nahimic\Nahimic2\UserInterface\x64\Nahimic2svc64.exe [520376 2017-06-29] (A-Volute -> )
Task: {249E1DEE-DCCF-4048-81B1-84C496838D5A} - System32\Tasks\Nahimic2UILauncherRun => C:\Program Files\Nahimic\Nahimic2\UserInterface\Nahimic2UILauncher.exe [734904 2017-06-29] (A-Volute -> Nahimic)
Task: {01D6E12D-DA27-4FE1-84E1-C3D2733360F9} - System32\Tasks\Opera scheduled assistant Autoupdate 1634051058 => C:\Users\FranniCz\AppData\Local\Programs\Opera\launcher.exe [1573784 2024-12-02] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\FranniCz\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {6B6D1D81-4D72-4D2E-8ABD-2B55F5EC8B8F} - System32\Tasks\Opera scheduled Autoupdate 1634051057 => C:\Users\FranniCz\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5812120 2024-11-28] (Opera Norway AS -> Opera Software)
Task: {1C973D43-6C99-446D-A45D-52B0F75CC25C} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {26345EC0-D78E-4150-AB05-7C0EFAFBE98B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-65861828-2125363344-1227843266-1001] => http=127.0.0.1:16618;https=127.0.0.1:16618;socks=127.0.0.1:16617
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{dbe6640e-7086-4302-adc3-b5f8099f6e1b}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{dbe6640e-7086-4302-adc3-b5f8099f6e1b}: [DhcpDomain] Home
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\FranniCz\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-02]
Edge Extension: (Dokumenty Google offline) - C:\Users\FranniCz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-18]
Edge Extension: (Edge relevant text changes) - C:\Users\FranniCz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-07]
Edge Extension: (ESET Browser Privacy & Security) - C:\Users\FranniCz\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkapkmklnmidbbgjaipbgpcnbomnaakc [2024-10-31]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2023-12-09] [not signed]
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-09-03] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default [2024-12-04]
CHR DownloadDir: E:\Users
CHR Notifications: Default -> hxxps://eobuv.cz; hxxps://twitter.com; hxxps://wearedevs.net
CHR HomePage: Default -> hxxps://www.youtube.com/
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.co ... oogle.com/"
CHR Extension: (Překladač Google) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-09-06]
CHR Extension: (Torrent Scanner) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-01-09]
CHR Extension: (Proxy SwitchySharp) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm [2020-03-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-01]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-11-26]
CHR Extension: (360 Internet Protection) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2024-10-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-30]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2024-10-25]
CHR Profile: C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-07-23]
CHR Profile: C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-07-23]
CHR Extension: (Torrent Scanner) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aegnopegbbhjeeiganiajffnalhlkkjb [2024-06-18]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-07-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-06-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-18]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2024-06-18]
CHR Profile: C:\Users\FranniCz\AppData\Local\Google\Chrome\User Data\System Profile [2024-12-01]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]
Opera:
=======
OPR DefaultProfile: Default
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [15747368 2024-04-20] (BattlEye Innovations e.K. -> )
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2019-10-15] (Microsoft Windows -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13652176 2024-11-09] (Microsoft Corporation -> Microsoft Corporation)
S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [3413424 2021-10-12] (Lavasoft Software Canada Inc. -> ) <==== ATTENTION
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1137904 2024-08-12] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [965872 2024-10-30] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5563760 2024-11-06] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4240120 2024-11-06] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4240120 2024-11-06] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [367064 2024-11-06] (Epic Games Inc. -> Epic Games, Inc.)
R2 Freedome Service; C:\Program Files (x86)\F-Secure\Freedome\Freedome\1\fsvpnservice.exe [1976200 2024-03-27] (F-Secure Corporation -> F-Secure Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10994432 2024-03-08] (Logitech Inc -> Logitech, Inc.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206808 2022-05-12] (Logitech Inc -> Logitech Inc.)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [925152 2024-11-15] (McAfee, LLC -> McAfee, LLC)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [174032 2017-07-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [1102080 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 QHProtected; C:\Program Files (x86)\360\Total Security\safemon\WscReg.exe [3082096 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> Qihoo 360 Technology Co. Ltd.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [4314608 2024-10-12] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\NisSrv.exe [3004048 2019-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1909.6-0\MsMpEng.exe [103384 2019-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 360AntiHacker; C:\WINDOWS\System32\Drivers\360AntiHacker64.sys [199896 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S3 360AvFlt; C:\WINDOWS\System32\DRIVERS\360AvFlt.sys [100592 2023-12-21] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
R1 360Box64; C:\WINDOWS\System32\DRIVERS\360Box64.sys [351208 2024-04-28] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
R1 360Camera; C:\WINDOWS\System32\Drivers\360Camera64.sys [58200 2023-03-15] (Beijing Qihu Technology Co., Ltd. -> 360.cn)
S0 360elam64; C:\WINDOWS\System32\DRIVERS\360elam64.sys [17000 2023-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> 360.cn)
R1 360FsFlt; C:\WINDOWS\System32\DRIVERS\360FsFlt.sys [553712 2023-12-21] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
S4 360Hvm; C:\WINDOWS\System32\Drivers\360Hvm64.sys [339792 2023-12-21] (Microsoft Windows Hardware Compatibility Publisher -> 360安全中心)
R1 360netmon; C:\WINDOWS\System32\DRIVERS\360netmon.sys [96424 2023-03-15] (Qihoo 360 Software (Beijing) Company Limited -> 360.cn)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrmgr.sys [25672 2024-04-23] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33504 2024-07-11] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R2 AMDRyzenMasterDriverV20; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2024-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_960126269e89c62e\amdsafd.sys [113880 2024-05-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\amdkmdag.sys [106596128 2024-09-04] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 asmtxhci; C:\WINDOWS\system32\DRIVERS\asmtxhci.sys [466264 2019-12-25] (Microsoft Windows Hardware Compatibility Publisher -> ASMedia Technology Inc)
R1 BAPIDRV; C:\WINDOWS\System32\DRIVERS\BAPIDRV64.sys [227680 2023-12-21] (Microsoft Windows Hardware Compatibility Publisher -> 360.cn)
R2 BdDci; C:\WINDOWS\system32\DRIVERS\bddci.sys [367096 2021-10-12] (Bitdefender SRL -> Bitdefender)
R2 BlueStacksDrv_nxt; C:\Program Files\BlueStacks_nxt\BstkDrv_nxt.sys [394176 2024-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Bluestack System Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [220520 2024-10-30] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [121864 2024-10-30] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [268568 2024-10-30] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57872 2024-10-30] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [87784 2024-10-30] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [128552 2024-10-30] (ESET, spol. s r.o. -> ESET)
R3 fsfreedomewintun; C:\WINDOWS\System32\drivers\fsfreedomewintun.sys [31248 2024-03-27] (Microsoft Windows Hardware Compatibility Publisher -> F-Secure Corporation)
R3 HHTHid; C:\WINDOWS\System32\drivers\HHTHid.sys [8192 2011-11-29] (Microsoft Windows Hardware Compatibility Publisher -> HHT-Tech)
R3 HHTHid_ArtvhMouFiltr; C:\WINDOWS\System32\drivers\HHTHidMouFiltr.sys [7168 2011-11-29] (Microsoft Windows Hardware Compatibility Publisher -> HHT-Tech)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [66640 2019-10-08] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-12-25] (Martin Malik - REALiX -> REALiX(tm))
R3 KbCustom_Evision; C:\WINDOWS\System32\drivers\KbCustom.sys [21664 2016-05-31] (Shenzhen Evision Semiconductor Technology Co.,Ltd. -> 0)
R3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum64.sys [46264 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidFilter; C:\WINDOWS\System32\drivers\LGJoyHidFilter64.sys [67768 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\System32\drivers\LGJoyHidLo64.sys [54456 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore64.sys [76480 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid64.sys [34496 2022-05-12] (Logitech Inc -> Logitech Inc.)
R3 logi_generic_hid_filter; C:\WINDOWS\system32\drivers\logi_generic_hid_filter.sys [62288 2023-11-25] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2023-11-25] (Logitech Inc -> Logitech)
R3 logi_joy_hid_filter; C:\WINDOWS\system32\drivers\logi_joy_hid_filter.sys [63824 2023-11-25] (Logitech Inc -> Logitech)
R3 logi_joy_hid_lo; C:\WINDOWS\system32\drivers\logi_joy_hid_lo.sys [51536 2023-11-25] (Logitech Inc -> Logitech)
S3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2023-11-25] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2023-11-25] (Logitech Inc -> Logitech)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [49744 2021-06-13] (nordvpn s.a. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-04-06] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 VOICEMOD_Driver; C:\WINDOWS\system32\drivers\mvvad.sys [48144 2024-03-22] (Voicemod Sociedad Limitada -> Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46688 2019-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [350136 2019-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 wintun; C:\WINDOWS\System32\drivers\wintun.sys [29592 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-03-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S2 AMDRyzenMasterDriver; \??\C:\Program Files\AMD\Performance Profile Client\RyzenMaster\AMDRyzenMasterDriver.sys [X]
U3 aswbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-12-04 11:33 - 2024-12-04 11:35 - 000061409 _____ C:\Users\FranniCz\Downloads\Addition.txt
2024-12-04 11:32 - 2024-12-04 11:37 - 000034131 _____ C:\Users\FranniCz\Downloads\FRST.txt
2024-12-04 11:32 - 2024-12-04 11:37 - 000000000 ____D C:\FRST
2024-12-04 11:23 - 2024-12-04 11:23 - 002402816 _____ (Farbar) C:\Users\FranniCz\Downloads\FRST64.exe
2024-12-01 12:07 - 2024-12-01 12:07 - 002582132 _____ C:\WINDOWS\Minidump\120124-171656-01.dmp
2024-11-28 18:19 - 2024-11-29 18:13 - 000000087 _____ C:\Users\FranniCz\Desktop\Nový textový dokument.txt
2024-11-18 11:48 - 2024-11-18 11:50 - 000000000 ___HD C:\$WinREAgent
2024-11-12 19:27 - 2024-11-12 19:27 - 000000000 ____D C:\Users\FranniCz\AppData\Local\GIANTS Crash Reporter
2024-11-12 17:32 - 2024-11-12 17:32 - 000000223 _____ C:\Users\FranniCz\Desktop\Farming Simulator 25.url
2024-11-04 12:34 - 2024-12-04 11:16 - 000003102 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-12-04 11:37 - 2022-03-02 18:14 - 000000000 ____D C:\Users\FranniCz\AppData\Local\CrashDumps
2024-12-04 11:27 - 2024-10-17 19:03 - 000000000 ____D C:\Users\FranniCz\AppData\LocalLow\360WD
2024-12-04 11:16 - 2024-10-19 17:29 - 000003110 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-12-04 11:16 - 2024-10-18 12:14 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\lunarclient
2024-12-04 11:16 - 2024-09-09 12:18 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\bluestacks-services
2024-12-04 09:10 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-04 08:02 - 2020-11-08 21:43 - 000004200 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{6EBBCE9A-321A-4DD0-94ED-4E556C8AF37F}
2024-12-03 21:16 - 2024-07-05 11:17 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\discord
2024-12-03 20:38 - 2024-07-05 11:17 - 000000000 ____D C:\Users\FranniCz\AppData\Local\Discord
2024-12-03 18:37 - 2024-07-05 11:17 - 000002258 _____ C:\Users\FranniCz\Desktop\Discord.lnk
2024-12-03 15:15 - 2020-11-08 21:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-03 15:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-03 15:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-03 13:15 - 2022-03-28 06:40 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-65861828-2125363344-1227843266-1001
2024-12-03 13:15 - 2020-11-08 21:43 - 000003368 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-65861828-2125363344-1227843266-1001
2024-12-03 13:15 - 2020-11-08 21:38 - 000002386 _____ C:\Users\FranniCz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-03 08:23 - 2024-08-22 14:19 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\obs-studio
2024-12-03 07:10 - 2022-05-11 11:46 - 000678788 _____ C:\WINDOWS\system32\perfh005.dat
2024-12-03 07:10 - 2022-05-11 11:46 - 000136144 _____ C:\WINDOWS\system32\perfc005.dat
2024-12-03 07:10 - 2020-11-08 21:42 - 001596402 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-03 07:10 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-12-03 07:03 - 2020-11-08 21:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-02 22:24 - 2020-11-08 21:36 - 000008192 ___SH C:\DumpStack.log.tmp
2024-12-02 14:58 - 2020-11-08 21:38 - 000000000 ____D C:\Users\FranniCz
2024-12-02 14:58 - 2019-12-02 16:46 - 000000000 ____D C:\Program Files (x86)\Steam
2024-12-02 12:42 - 2021-10-12 16:29 - 000000000 ____D C:\Users\FranniCz\Documents\Euro Truck Simulator 2
2024-12-02 12:04 - 2021-10-12 16:04 - 000004252 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1634051057
2024-12-02 12:04 - 2021-10-12 16:04 - 000001395 _____ C:\Users\FranniCz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-12-01 19:13 - 2020-12-19 21:28 - 000000000 ____D C:\Users\FranniCz\AppData\Local\AMD_Common
2024-12-01 18:08 - 2019-11-06 21:36 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\EasyAntiCheat
2024-12-01 13:11 - 2023-12-08 19:24 - 000000000 ____D C:\Users\FranniCz\AppData\Local\UnrealEngine
2024-12-01 12:35 - 2020-11-13 13:19 - 000000000 ____D C:\WINDOWS\Minidump
2024-12-01 12:05 - 2022-02-25 17:43 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-11-29 14:07 - 2023-01-17 08:19 - 000000000 ____D C:\Users\FranniCz\AppData\Local\Roblox
2024-11-29 14:02 - 2023-01-17 08:20 - 000001394 _____ C:\Users\FranniCz\Desktop\Roblox Studio.lnk
2024-11-29 14:02 - 2023-01-17 08:20 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2024-11-28 18:07 - 2019-10-08 16:57 - 000000000 ____D C:\Users\FranniCz\AppData\Local\D3DSCache
2024-11-26 13:56 - 2020-06-13 06:51 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-11-26 13:56 - 2020-06-13 06:51 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-11-24 08:58 - 2024-01-19 00:32 - 000000000 ____D C:\Users\FranniCz\AppData\Local\BeamNG.drive
2024-11-24 07:28 - 2020-11-08 21:43 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-24 07:28 - 2020-11-08 21:43 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-22 13:00 - 2020-11-16 20:00 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-11-22 12:44 - 2019-10-05 19:59 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-11-18 12:04 - 2024-10-17 19:03 - 000000000 _RSHD C:\360SANDBOX
2024-11-18 11:50 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-11-18 11:36 - 2020-01-19 15:55 - 000000000 ____D C:\Users\FranniCz\AppData\Local\ElevatedDiagnostics
2024-11-18 11:36 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-11-18 11:36 - 2019-10-07 19:56 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2024-11-18 11:35 - 2019-10-05 19:57 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2024-11-17 08:32 - 2023-11-25 17:01 - 000000000 ____D C:\Users\FranniCz\AppData\Local\LGHUB
2024-11-17 07:30 - 2022-05-14 08:00 - 000459392 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-11-17 07:29 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-11-17 07:29 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-11-16 18:21 - 2020-12-01 18:08 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2024-11-15 13:16 - 2020-11-08 21:39 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-11-15 12:45 - 2024-10-04 17:26 - 000000000 ____D C:\Program Files\dotnet
2024-11-15 12:45 - 2019-10-05 19:53 - 000000000 ____D C:\ProgramData\Package Cache
2024-11-14 13:26 - 2019-10-06 08:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-11-14 13:22 - 2019-10-06 08:26 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-11-12 19:27 - 2024-07-02 04:43 - 000000000 ____D C:\Users\FranniCz\Documents\My Games
2024-11-12 17:32 - 2019-12-02 17:02 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-11-07 14:37 - 2024-10-20 06:06 - 000000000 ____D C:\Users\FranniCz\AppData\Roaming\360safe
==================== Files in the root of some directories ========
2024-08-22 14:21 - 2024-10-31 17:21 - 000000015 _____ () C:\Users\FranniCz\AppData\Roaming\obs-virtualcam.txt
2021-12-16 00:52 - 2021-12-16 00:52 - 000007617 _____ () C:\Users\FranniCz\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Zdravím!
Nic se neděje, RSIT stejně nepoužíváme v 64b systémech. Není s nimi kompatibilní.
Otevřte poznámkový blok a zkopírujte do něj:
Nic se neděje, RSIT stejně nepoužíváme v 64b systémech. Není s nimi kompatibilní.
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\FranniCz\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.exe" -ToastActivated => No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [UDP Query User{3CC1812D-AE1B-43A3-A4C3-C96FD4AE0F26}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{705C18D7-242B-441A-9022-85771940F5E4}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [{694B8613-65C8-4955-BFDE-397D12D554D3}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [VoicemodV3] => "F:\Voicemod V3\Voicemod.exe" (No File)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [AMDNoiseSuppression] => "C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
Task: {3E07A96E-7B0E-4CA1-9344-60C1FBD41C23} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [5733888 2019-10-16] () [File not signed]
C:\Windows\AutoKMS
Task: {AD375BF2-1382-4F0E-8834-02C8F25034AE} - System32\Tasks\Driver Booster SkipUAC (FranniCz) => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\DriverBooster.exe /skipuac (No File)
U3 aswbdisk; no ImagePath
C:\DumpStack.log.tmp
EmptyTemp:
Hosts:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Ran by FranniCz (04-12-2024 16:20:58) Run:1
Running from C:\Users\FranniCz\Downloads
Loaded Profiles: FranniCz
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.exe" -ToastActivated => No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [UDP Query User{3CC1812D-AE1B-43A3-A4C3-C96FD4AE0F26}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{705C18D7-242B-441A-9022-85771940F5E4}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [{694B8613-65C8-4955-BFDE-397D12D554D3}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [VoicemodV3] => "F:\Voicemod V3\Voicemod.exe" (No File)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [AMDNoiseSuppression] => "C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
Task: {3E07A96E-7B0E-4CA1-9344-60C1FBD41C23} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [5733888 2019-10-16] () [File not signed]
C:\Windows\AutoKMS
Task: {AD375BF2-1382-4F0E-8834-02C8F25034AE} - System32\Tasks\Driver Booster SkipUAC (FranniCz) => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\DriverBooster.exe /skipuac (No File)
U3 aswbdisk; no ImagePath
C:\DumpStack.log.tmp
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => could not remove, key could be protected
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => could not remove, key could be protected
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3CC1812D-AE1B-43A3-A4C3-C96FD4AE0F26}C:\games\world_of_tanks_eu\win32\worldoftanks.exe => Error = 5
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{705C18D7-242B-441A-9022-85771940F5E4}C:\games\world_of_tanks_eu\win32\worldoftanks.exe => Error = 5
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{694B8613-65C8-4955-BFDE-397D12D554D3} => Error = 5
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => removed successfully
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\Software\Microsoft\Windows\CurrentVersion\Run\\VoicemodV3 => Error = 5
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AMDNoiseSuppression => Error = 5
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{3E07A96E-7B0E-4CA1-9344-60C1FBD41C23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E07A96E-7B0E-4CA1-9344-60C1FBD41C23}" => removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => removed successfully
"C:\Windows\AutoKMS" Folder move:
C:\Windows\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD375BF2-1382-4F0E-8834-02C8F25034AE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD375BF2-1382-4F0E-8834-02C8F25034AE}" => removed successfully
C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (FranniCz) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (FranniCz)" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
C:\DumpStack.log.tmp => moved successfully
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 5767168 B
Ran by FranniCz (04-12-2024 16:20:58) Run:1
Running from C:\Users\FranniCz\Downloads
Loaded Profiles: FranniCz
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CustomCLSID: HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.10\ProtonVPN.exe" -ToastActivated => No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
FirewallRules: [UDP Query User{3CC1812D-AE1B-43A3-A4C3-C96FD4AE0F26}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [TCP Query User{705C18D7-242B-441A-9022-85771940F5E4}C:\games\world_of_tanks_eu\win32\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win32\worldoftanks.exe => No File
FirewallRules: [{694B8613-65C8-4955-BFDE-397D12D554D3}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [VoicemodV3] => "F:\Voicemod V3\Voicemod.exe" (No File)
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\...\Run: [AMDNoiseSuppression] => "C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe" (No File)
Task: {3E07A96E-7B0E-4CA1-9344-60C1FBD41C23} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [5733888 2019-10-16] () [File not signed]
C:\Windows\AutoKMS
Task: {AD375BF2-1382-4F0E-8834-02C8F25034AE} - System32\Tasks\Driver Booster SkipUAC (FranniCz) => C:\Program Files (x86)\IObit\Driver Booster\7.1.0\DriverBooster.exe /skipuac (No File)
U3 aswbdisk; no ImagePath
C:\DumpStack.log.tmp
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-65861828-2125363344-1227843266-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => could not remove, key could be protected
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => could not remove, key could be protected
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3CC1812D-AE1B-43A3-A4C3-C96FD4AE0F26}C:\games\world_of_tanks_eu\win32\worldoftanks.exe => Error = 5
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{705C18D7-242B-441A-9022-85771940F5E4}C:\games\world_of_tanks_eu\win32\worldoftanks.exe => Error = 5
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{694B8613-65C8-4955-BFDE-397D12D554D3} => Error = 5
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate => removed successfully
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\Software\Microsoft\Windows\CurrentVersion\Run\\VoicemodV3 => Error = 5
HKU\S-1-5-21-65861828-2125363344-1227843266-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AMDNoiseSuppression => Error = 5
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{3E07A96E-7B0E-4CA1-9344-60C1FBD41C23}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E07A96E-7B0E-4CA1-9344-60C1FBD41C23}" => removed successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => removed successfully
"C:\Windows\AutoKMS" Folder move:
C:\Windows\AutoKMS => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AD375BF2-1382-4F0E-8834-02C8F25034AE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AD375BF2-1382-4F0E-8834-02C8F25034AE}" => removed successfully
C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (FranniCz) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster SkipUAC (FranniCz)" => removed successfully
HKLM\System\CurrentControlSet\Services\aswbdisk => removed successfully
aswbdisk => service removed successfully
C:\DumpStack.log.tmp => moved successfully
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 5767168 B
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
Smazáno. Log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu
Děkuji mockrát,,on je na tom furt mladej a přišlo mi že se furt vrtí hodiny na kurzoru....
Hezký večer,, pošlu všimné na účet
Hezký večer,, pošlu všimné na účet
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu
OK. Hezký večer i vám a za podporu děkujeme! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?