Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-03-2025
Ran by Rudolf (administrator) on RUDOLF (MSI MS-7758) (31-03-2025 01:36:05)
Running from C:\Users\Rudolf\Desktop\FRST64.exe
Loaded Profiles: Rudolf
Platform: Microsoft Windows 11 Pro Version 24H2 26100.3624 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atieclxx.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Windows\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_ee4ab813cb541e9a\logi_lamparray_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1da2893e2ffb6838\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2503.1001.9.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.5100.40.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\Run: [MicrosoftEdgeAutoLaunch_5F787EB8F6C2739B29BBA49ECA2958CD] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291144 2025-03-26] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22809480 2025-03-29] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45452080 2025-03-07] (Gen Digital Inc. -> Gen Digital Inc.) [File not signed]
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37352464 2025-03-29] (Epic Games Inc. -> Epic Games, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\134.0.6998.178\Installer\chrmstp.exe [2025-03-28] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\DxO PureRAW 4.lnk [2025-03-07]
ShortcutTarget: DxO PureRAW 4.lnk -> C:\Program Files\DxO\DxO PureRAW 4\PureRawv4.exe (DxO Labs S.A.S. -> DxO) [File not signed]
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {E4BDB1F6-AEF3-40AD-A1D2-8D8A860075F0} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {0304128A-C71B-4694-88C0-5EB756570F72} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {4219BA95-1B43-47B6-B423-C2B25F23C4FB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-02-18] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {C1E8DD9B-0F19-44FE-8DB9-11B444FE3769} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-02-18] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "85ec880a-9fe4-41c1-a27b-a622ef0f9ff1" --version "6.33.0.11465" --silent
Task: {B8E51022-F789-4071-BE7B-5FFC0AF8300E} - System32\Tasks\CCleanerSkipUAC - Rudolf => C:\Program Files\CCleaner\CCleaner.exe [39224624 2025-02-18] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {2891BD63-8D83-46DF-B729-227970DB826E} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Rudolf\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15204208 2025-03-07] (ESET, spol. s r.o. -> ESET)
Task: {9CA0FDC6-AE28-4188-AC04-46E3BE349A34} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Rudolf\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15204208 2025-03-07] (ESET, spol. s r.o. -> ESET)
Task: {201E9EAD-4282-4EED-8086-FBB48092AA2F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem136.0.7079.0{C1FBDF08-C9D6-48E8-8FB4-6199DBA309A0} => C:\Program Files (x86)\Google\GoogleUpdater\136.0.7079.0\updater.exe [7017568 2025-03-20] (Google LLC -> Google LLC)
Task: {51781F9B-D6F3-461D-B357-5D05DA374DCF} - System32\Tasks\Microsoft\Windows\AccountHealth\RecoverabilityToastTask => {B7F5B442-EBF8-46CD-9F0B-D8E45ED43492} C:\WINDOWS\system32\AccountHealth.dll [258048 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {8C7D20AB-D0DD-4C58-B9C2-A0365C129AAA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12744317-84B6-4755-AEE9-8DA2D4F9E625} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B9434DB4-4237-4C3C-BA5E-8D90B48A8D2D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6FD37497-E473-4833-914F-9EDC8A3BCAAD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C8C14A90-7814-4EF4-A430-E3270F65AEB5} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {8F45AB6A-12DB-41DB-8C56-85354A2E5F77} - System32\Tasks\OneDrive Startup Task-S-1-5-21-216828955-1019766287-1869927231-1000 => C:\Users\Rudolf\AppData\Local\Microsoft\OneDrive\25.035.0223.0003\OneDriveLauncher.exe [670528 2025-03-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {53F1EE7C-3510-4F09-9C87-95CA8DFAC964} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {A9763D0F-D442-4286-8578-2F63C4D30A23} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{593be026-0f10-4ee9-b7aa-57ca589e097b}: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{593be026-0f10-4ee9-b7aa-57ca589e097b}: [DhcpDomain] home
Edge:
=======
Edge Profile: C:\Users\Rudolf\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-15]
Edge Extension: (Dokumenty Google offline) - C:\Users\Rudolf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-07]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\Rudolf\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-03-07]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default [2025-03-30]
CHR DownloadDir: E:\Download
CHR HomePage: Default -> hxxp://www.centrum.cz/#utm_source=icq&utm_medium=centrum
CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxp://www.google.cz/ ... google.com"
CHR Extension: (Dark Reader) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-03-07]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Dokumenty Google offline) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-03-20]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-03-19]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rudolf\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-03-07]hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-02-18] (Gen Digital Inc. -> Gen Digital Inc.)
S4 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3064848 2025-03-29] (Epic Games Inc. -> Epic Games, Inc.)
S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [368088 2025-01-31] (Epic Games Inc. -> Epic Games, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [16172424 2025-03-29] (Logitech Inc -> Logitech, Inc.)
R2 logi_lamparray_service; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_ee4ab813cb541e9a\logi_lamparray_service.exe [11280984 2025-03-30] (Logitech Inc -> Logitech, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559328 2025-03-27] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1da2893e2ffb6838\amdfendrmgr.sys [36136 2025-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\amdkmdag.sys [106596128 2024-09-04] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63008 2025-03-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-03-07] (Microsoft Windows -> Microsoft Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2025-03-07] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2025-03-07] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2025-03-07] (Logitech Inc -> Logitech)
R3 logi_lamparray; C:\WINDOWS\System32\DriverStore\FileRepository\logi_lamparray_usb.inf_amd64_ee4ab813cb541e9a\logi_lamparray.sys [89688 2025-03-30] (Logitech Inc -> Logitech, Inc.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-03-27] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-07] (Microsoft Windows -> Microsoft Corporation)
S3 wini3ctarget; C:\WINDOWS\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_bdb09ebda2834009\wini3ctarget.sys [75168 2025-03-27] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-03-31 01:36 - 2025-03-31 01:36 - 000017694 _____ C:\Users\Rudolf\Desktop\FRST.txt
2025-03-31 01:35 - 2025-03-31 01:36 - 000000000 ____D C:\FRST
2025-03-31 01:35 - 2025-03-31 01:35 - 000000000 ____D C:\Users\Rudolf\Desktop\FRST-OlderVersion
2025-03-30 18:23 - 2025-03-30 18:23 - 000677108 _____ C:\WINDOWS\system32\perfh005.dat
2025-03-30 18:23 - 2025-03-30 18:23 - 000144960 _____ C:\WINDOWS\system32\perfc005.dat
2025-03-30 18:20 - 2025-03-30 18:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2025-03-30 18:20 - 2025-03-30 18:20 - 000000000 ____D C:\Program Files\LGHUB
2025-03-29 06:40 - 2025-03-29 06:47 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\vlc
2025-03-29 05:38 - 2025-03-29 05:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2025-03-29 05:37 - 2025-03-29 05:37 - 000000000 ____D C:\Program Files\VideoLAN
2025-03-28 01:12 - 2025-03-28 01:12 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets
2025-03-27 22:58 - 2025-03-30 20:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-03-27 22:54 - 2025-03-27 22:54 - 000029042 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-03-27 22:54 - 2025-03-27 22:54 - 000029042 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-03-26 00:40 - 2025-03-26 00:40 - 000000000 ____D C:\Users\Rudolf\AppData\Local\ATI
2025-03-25 21:19 - 2022-09-30 06:24 - 000174112 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2025-03-20 19:38 - 2025-03-20 19:45 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Vortex
2025-03-20 19:38 - 2025-03-20 19:38 - 000000000 ____D C:\Users\Rudolf\AppData\Local\vortex-updater
2025-03-20 19:38 - 2025-03-20 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Tree Gaming Ltd
2025-03-20 19:37 - 2025-03-20 19:37 - 000000000 ____D C:\Program Files\Black Tree Gaming Ltd
2025-03-20 19:36 - 2025-03-20 19:37 - 000000000 ____D C:\Program Files\dotnet
2025-03-19 17:06 - 2025-03-19 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerShell
2025-03-19 17:06 - 2025-03-19 17:06 - 000000000 ____D C:\Program Files\PowerShell
2025-03-18 09:23 - 2025-03-26 21:11 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\ipm-tool
2025-03-18 01:27 - 2025-03-27 16:31 - 000000000 ____D C:\Program Files\Kingdome Come Deliverance II
2025-03-16 06:04 - 2025-03-16 06:04 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Rockstar Games
2025-03-16 06:02 - 2025-03-16 06:02 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\.1911
2025-03-15 07:18 - 2022-09-30 06:23 - 000167440 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
2025-03-15 03:11 - 2025-03-30 06:57 - 000000000 ___RD C:\Users\Rudolf\Desktop\卐
2025-03-15 02:31 - 2025-03-15 02:32 - 000000000 ____D C:\AdwCleaner
2025-03-15 02:27 - 2025-03-31 01:35 - 002404864 _____ (Farbar) C:\Users\Rudolf\Desktop\FRST64.exe
2025-03-14 22:31 - 2025-03-14 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingdom Come - Deliverance [GOG.com]
2025-03-14 22:30 - 2025-03-14 22:30 - 000000000 ____D C:\ProgramData\GOG.com
2025-03-14 21:49 - 2025-03-15 03:01 - 000000000 ____D C:\Program Files\Kingdom Come Deliverance
2025-03-14 21:12 - 2025-03-14 21:12 - 000000000 ____D C:\Users\Rudolf\AppData\LocalLow\KMPlayer
2025-03-14 20:54 - 2025-03-14 20:54 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2025-03-10 17:39 - 2025-03-26 23:44 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Wargaming.net
2025-03-10 17:38 - 2025-03-16 06:05 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2025-03-10 17:37 - 2025-03-10 17:37 - 000000000 ____D C:\ProgramData\Wargaming.net
2025-03-10 17:07 - 2025-03-10 17:07 - 000000000 ____D C:\Users\Public\Documents\Steam
2025-03-10 17:02 - 2025-03-17 16:46 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Webshare
2025-03-10 17:01 - 2025-03-10 17:01 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webshare klient
2025-03-10 17:01 - 2025-03-10 17:01 - 000000000 ____D C:\Program Files\Webshare klient
2025-03-10 16:45 - 2025-03-10 16:45 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\RapidCRC
2025-03-10 00:07 - 2025-03-10 00:07 - 000672104 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2025-03-10 00:06 - 2025-03-10 00:06 - 000063008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdxe.sys
2025-03-10 00:04 - 2025-03-10 00:04 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Easeware
2025-03-10 00:04 - 2025-03-10 00:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2025-03-10 00:04 - 2025-03-10 00:04 - 000000000 ____D C:\Program Files\Easeware
2025-03-10 00:02 - 2025-03-10 00:02 - 000000800 _____ C:\Users\Rudolf\Documents\cc_20250309_230250.reg
2025-03-08 08:34 - 2025-03-29 05:34 - 000000000 ____D C:\Program Files\KMPlayer
2025-03-08 08:26 - 2025-03-08 08:26 - 000001162 _____ C:\WINDOWS\system32\config\VSMIDK
2025-03-08 08:24 - 2025-03-08 08:32 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Luminar Neo
2025-03-08 08:24 - 2025-03-08 08:24 - 000001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Luminar Neo.lnk
2025-03-08 08:20 - 2025-03-08 08:20 - 000000000 ____D C:\ProgramData\CyberMania
2025-03-08 08:20 - 2025-03-08 08:20 - 000000000 ____D C:\Program Files\Skylum
2025-03-08 08:04 - 2025-03-20 03:11 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\AIMP
2025-03-08 08:04 - 2025-03-14 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP
2025-03-08 08:04 - 2025-03-14 23:56 - 000000000 ____D C:\Program Files\AIMP
2025-03-08 08:00 - 2025-03-30 17:50 - 000003844 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2025-03-08 08:00 - 2025-03-30 17:50 - 000003402 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2025-03-08 01:46 - 2025-03-14 23:02 - 000000000 ____D C:\Users\Rudolf\AppData\Local\NVIDIA Corporation
2025-03-08 01:44 - 2025-03-08 01:44 - 000000000 ____D C:\Users\Rudolf\AppData\Local\UnrealEngineLauncher
2025-03-08 01:44 - 2025-03-08 01:44 - 000000000 ____D C:\Users\Rudolf\AppData\Local\UnrealEngine
2025-03-08 01:44 - 2025-03-08 01:44 - 000000000 ____D C:\Users\Rudolf\AppData\Local\EpicGamesLauncher
2025-03-08 01:43 - 2025-03-08 01:45 - 000000000 ____D C:\ProgramData\Epic
2025-03-08 01:43 - 2025-03-08 01:44 - 000000000 ____D C:\Program Files (x86)\Epic Games
2025-03-08 01:43 - 2025-03-08 01:43 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2025-03-08 01:43 - 2025-03-08 01:43 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Epic Games
2025-03-08 01:36 - 2025-03-08 01:41 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Steam
2025-03-08 01:36 - 2025-03-08 01:36 - 000000000 ____D C:\Users\Rudolf\AppData\Local\CEF
2025-03-08 01:35 - 2025-03-08 01:48 - 000000000 ____D C:\Program Files (x86)\Steam
2025-03-08 01:35 - 2025-03-08 01:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2025-03-08 01:03 - 2025-03-08 01:03 - 000000000 ____D C:\Users\Rudolf\AppData\Local\PureRawv4
2025-03-08 00:56 - 2025-03-08 00:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Topaz Photo AI
2025-03-08 00:49 - 2025-03-08 00:49 - 000002055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DxO PureRAW 4.lnk
2025-03-08 00:49 - 2025-03-08 00:49 - 000000000 ____D C:\Users\Rudolf\AppData\Local\DxO
2025-03-08 00:49 - 2025-03-08 00:49 - 000000000 ____D C:\ProgramData\DxO Labs
2025-03-08 00:49 - 2025-03-08 00:49 - 000000000 ____D C:\Program Files\DxO
2025-03-07 11:17 - 2025-03-07 11:17 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\FLT
2025-03-07 11:12 - 2025-03-07 11:12 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\WinRAR
2025-03-07 11:08 - 2025-03-07 11:08 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Topaz Labs LLC
2025-03-07 11:08 - 2025-03-07 11:08 - 000000000 ____D C:\Users\Rudolf\AppData\Local\cache
2025-03-07 11:07 - 2025-03-07 11:07 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Backup
2025-03-07 11:05 - 2025-03-07 11:05 - 000045468 _____ C:\Users\Rudolf\Documents\cc_20250307_100526.reg
2025-03-07 10:45 - 2025-03-25 22:38 - 000003150 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-216828955-1019766287-1869927231-1000
2025-03-07 10:40 - 2025-03-07 10:40 - 000001093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\WinRAR.lnk
2025-03-07 10:40 - 2025-03-07 10:40 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-03-07 10:40 - 2025-03-07 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-03-07 10:40 - 2025-03-07 10:40 - 000000000 ____D C:\Program Files\WinRAR
2025-03-07 10:26 - 2025-03-07 10:26 - 000000000 ____D C:\ProgramData\Piriform
2025-03-07 09:51 - 2025-03-07 09:51 - 000000000 ____D C:\Users\Rudolf\AppData\Local\DxO_Labs
2025-03-07 09:47 - 2025-03-30 22:25 - 000003326 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2025-03-07 09:47 - 2025-03-30 22:25 - 000000670 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2025-03-07 09:47 - 2025-03-29 08:05 - 000000000 ____D C:\Program Files\CCleaner
2025-03-07 09:47 - 2025-03-29 08:02 - 000002254 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Rudolf
2025-03-07 09:47 - 2025-03-07 10:25 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2025-03-07 09:47 - 2025-03-07 09:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2025-03-07 09:44 - 2025-03-07 09:44 - 000000000 ____D C:\ProgramData\Topaz Labs LLC
2025-03-07 09:44 - 2025-03-07 09:44 - 000000000 ____D C:\Program Files\Topaz Labs LLC
2025-03-07 09:42 - 2025-03-30 17:50 - 000001382 _____ C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-03-07 09:42 - 2025-03-07 09:42 - 000000000 ____D C:\Users\Rudolf\AppData\Local\ESET
2025-03-07 09:36 - 2025-03-30 22:15 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Zoner
2025-03-07 09:36 - 2025-03-07 09:36 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Zoner
2025-03-07 09:27 - 2025-03-07 09:27 - 000001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoner Photo Studio X.lnk
2025-03-07 09:26 - 2025-03-07 09:26 - 000000000 ____D C:\Program Files\Zoner Photo Studio X
2025-03-07 09:19 - 2025-03-30 18:39 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\G HUB
2025-03-07 09:19 - 2025-03-30 18:20 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\lghub
2025-03-07 09:19 - 2025-03-30 18:20 - 000000000 ____D C:\Users\Rudolf\AppData\Local\LGHUB
2025-03-07 09:19 - 2025-03-07 09:19 - 000073040 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2025-03-07 09:19 - 2025-03-07 09:19 - 000044880 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2025-03-07 09:19 - 2025-03-07 09:19 - 000032080 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2025-03-07 09:19 - 2025-03-07 09:19 - 000000000 ____D C:\ProgramData\Logishrd
2025-03-07 09:19 - 2025-03-07 09:19 - 000000000 ____D C:\Program Files\Logitech
2025-03-07 09:19 - 2025-03-07 09:19 - 000000000 ____D C:\Program Files\Logi
2025-03-07 09:18 - 2025-03-08 08:31 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Sentry
2025-03-07 09:18 - 2025-03-07 09:19 - 000000000 ____D C:\ProgramData\LGHUB
2025-03-07 09:01 - 2025-03-07 09:01 - 000000000 ____D C:\Users\Rudolf\AppData\Local\PeerDistRepub
2025-03-07 09:00 - 2025-03-07 09:00 - 000000000 ____D C:\ProgramData\AMD
2025-03-07 08:59 - 2025-03-30 18:19 - 000003102 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-03-07 08:58 - 2025-03-07 08:58 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2025-03-07 08:57 - 2025-03-30 18:19 - 000003094 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2025-03-07 08:57 - 2025-03-07 08:57 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2025-03-07 08:57 - 2025-03-07 08:57 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2025-03-07 08:57 - 2025-03-07 08:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2025-03-07 08:57 - 2025-03-07 08:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2025-03-07 08:56 - 2025-03-20 19:36 - 000000000 ____D C:\ProgramData\Package Cache
2025-03-07 08:56 - 2024-09-04 09:44 - 002100128 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 001617824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 001617824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000978336 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000856864 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000856864 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000737696 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000737696 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000682400 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000668008 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000610720 _____ C:\WINDOWS\system32\GameManager64.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000537504 _____ C:\WINDOWS\system32\atieah64.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000504088 _____ C:\WINDOWS\system32\EEURestart.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000473480 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000464288 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000406408 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2025-03-07 08:56 - 2024-09-04 09:44 - 000267168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000229280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000211128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000207776 _____ C:\WINDOWS\system32\mantle64.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000196512 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000186656 _____ C:\WINDOWS\system32\mantleaxl64.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000184608 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000174944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000165792 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000149280 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000148896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000142624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2025-03-07 08:56 - 2024-09-04 09:44 - 000075176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 105410432 _____ C:\WINDOWS\system32\amd_comgr.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 088606496 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 000801672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 000678816 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 000545568 _____ C:\WINDOWS\system32\dgtrayicon.exe
2025-03-07 08:56 - 2024-09-04 09:43 - 000471456 _____ C:\WINDOWS\system32\amdlogum.exe
2025-03-07 08:56 - 2024-09-04 09:43 - 000139168 _____ C:\WINDOWS\system32\amdxc64.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 000118560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 000115104 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 000103304 _____ C:\WINDOWS\system32\clinfo.exe
2025-03-07 08:56 - 2024-09-04 09:43 - 000051616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2025-03-07 08:56 - 2024-09-04 09:43 - 000048520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 019434400 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 001736464 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 001412064 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 000177056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 000167552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 000157536 _____ C:\WINDOWS\system32\atidxx64.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 000145800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 000138616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2025-03-07 08:56 - 2024-09-04 09:42 - 000131136 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2025-03-07 08:56 - 2024-09-04 08:56 - 109624080 _____ C:\WINDOWS\system32\amdxc64.so
2025-03-07 08:56 - 2024-08-20 00:13 - 002976160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2025-03-07 08:55 - 2024-09-04 09:43 - 004374408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 004179848 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 002245408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 001355520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 001074664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 000944008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 000771488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 000570248 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 000434056 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 000232672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2025-03-07 08:55 - 2024-09-04 09:43 - 000187968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2025-03-07 08:55 - 2024-09-04 09:42 - 000572312 _____ C:\WINDOWS\system32\amdmiracast.dll
2025-03-07 08:55 - 2024-09-04 09:42 - 000177984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2025-03-07 08:55 - 2024-09-04 09:42 - 000167528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2025-03-07 08:55 - 2024-09-04 09:42 - 000152504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2025-03-07 08:55 - 2024-09-04 09:42 - 000138624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2025-03-07 08:54 - 2025-03-29 21:45 - 000000000 ____D C:\Users\Rudolf\AppData\Local\AMD_Common
2025-03-07 08:54 - 2025-03-07 08:54 - 000000000 ____D C:\AMD
2025-03-07 08:53 - 2025-03-07 08:53 - 043532720 _____ (Advanced Micro Devices, Inc.) C:\Users\Rudolf\Downloads\amd-software-adrenalin-edition-25.3.1-minimalsetup-250305_web.exe
2025-03-07 08:51 - 2024-09-04 09:43 - 000116944 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\amdkmpfd.sys
2025-03-07 08:42 - 2025-03-07 08:42 - 000000998 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2025-03-07 08:41 - 2025-03-07 08:41 - 000070484 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-03-07 08:41 - 2025-03-07 08:41 - 000070484 _____ C:\WINDOWS\system32\ctac.json
2025-03-07 08:37 - 2025-03-07 08:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-03-07 08:34 - 2025-03-29 05:35 - 000000000 ____D C:\Users\Rudolf\AppData\Local\PlaceholderTileLogoFolder
2025-03-07 08:31 - 2025-03-07 08:31 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\MMC
2025-03-07 08:28 - 2025-03-07 08:28 - 000000000 ___HD C:\OneDriveTemp
2025-03-07 08:28 - 2025-03-07 08:28 - 000000000 ____D C:\Users\Rudolf\AppData\Local\OneDrive
2025-03-07 08:28 - 2025-03-07 08:28 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Comms
2025-03-07 08:17 - 2025-03-30 18:23 - 001603790 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-07 08:16 - 2025-03-30 18:18 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2025-03-07 08:16 - 2025-03-28 22:43 - 000002250 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-03-07 08:16 - 2025-03-07 11:17 - 000000000 ____D C:\Users\Rudolf\AppData\Local\AMD
2025-03-07 08:16 - 2025-03-07 08:57 - 000000000 ____D C:\Program Files\AMD
2025-03-07 08:16 - 2025-03-07 08:16 - 000000000 ____D C:\Users\Rudolf\AppData\LocalLow\AMD
2025-03-07 08:16 - 2025-03-07 08:16 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Google
2025-03-07 08:16 - 2025-03-07 08:16 - 000000000 ____D C:\Program Files\Google
2025-03-07 08:15 - 2025-03-07 08:16 - 000000000 ____D C:\WINDOWS\system32\AMD
2025-03-07 08:15 - 2025-03-07 08:15 - 010697088 _____ (Google LLC) C:\Users\Rudolf\Downloads\ChromeSetup.exe
2025-03-07 08:15 - 2025-03-07 08:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2025-03-07 08:15 - 2025-03-07 08:15 - 000000000 ____D C:\Program Files (x86)\Google
2025-03-07 08:12 - 2025-03-26 07:38 - 000000000 ___RD C:\Users\Rudolf\OneDrive
2025-03-07 08:12 - 2025-03-25 21:21 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-216828955-1019766287-1869927231-1000
2025-03-07 08:12 - 2025-03-25 21:21 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-216828955-1019766287-1869927231-1000
2025-03-07 08:12 - 2025-03-25 21:21 - 000002383 _____ C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-03-07 08:12 - 2025-03-07 08:12 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Publishers
2025-03-07 08:12 - 2025-03-07 08:12 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2025-03-07 08:11 - 2025-03-30 09:23 - 000000000 ____D C:\Users\Rudolf\AppData\Local\D3DSCache
2025-03-07 08:11 - 2025-03-29 05:38 - 000000000 ____D C:\Users\Rudolf\AppData\Local\Packages
2025-03-07 08:11 - 2025-03-28 02:27 - 000000000 ____D C:\Users\Rudolf
2025-03-07 08:11 - 2025-03-19 18:40 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows
2025-03-07 08:11 - 2025-03-07 09:19 - 000000000 ___SD C:\Users\Rudolf\AppData\Roaming\Microsoft\Credentials
2025-03-07 08:11 - 2025-03-07 08:51 - 000000000 ____D C:\Users\Rudolf\AppData\Local\ConnectedDevicesPlatform
2025-03-07 08:11 - 2025-03-07 08:27 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-03-07 08:11 - 2025-03-07 08:23 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Spelling
2025-03-07 08:11 - 2025-03-07 08:13 - 000000000 ___SD C:\Users\Rudolf\AppData\Roaming\Microsoft\Protect
2025-03-07 08:11 - 2025-03-07 08:11 - 000000020 ___SH C:\Users\Rudolf\ntuser.ini
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Šablony
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Soubory cookie
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Poslední
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Okolní tiskárny
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Okolní síť
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Nabídka Start
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Dokumenty
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Documents\Obrázky
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Documents\Hudba
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Documents\Filmy
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\Data aplikací
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 _SHDL C:\Users\Rudolf\AppData\Local\Data aplikací
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 ___SD C:\Users\Rudolf\AppData\Roaming\Microsoft\SystemCertificates
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 ___SD C:\Users\Rudolf\AppData\Roaming\Microsoft\Crypto
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Vault
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Microsoft\Network
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 ____D C:\Users\Rudolf\AppData\Roaming\Adobe
2025-03-07 08:11 - 2025-03-07 08:11 - 000000000 ____D C:\Users\Rudolf\AppData\Local\VirtualStore
2025-03-07 08:09 - 2025-03-29 05:38 - 000000000 ____D C:\ProgramData\Packages
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Šablony
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Poslední
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Okolní síť
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Dokumenty
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\Data aplikací
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\ProgramData\Šablony
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\ProgramData\Plocha
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\ProgramData\Dokumenty
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\ProgramData\Data aplikací
2025-03-07 08:09 - 2025-03-07 08:09 - 000000000 _SHDL C:\Documents and Settings
2025-03-07 08:08 - 2025-03-07 08:08 - 000000000 ____D C:\WINDOWS\CSC
2025-03-07 08:07 - 2025-03-30 18:19 - 000007154 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-03-07 08:06 - 2025-03-31 01:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-07 08:06 - 2025-03-30 18:19 - 000012288 ___SH C:\DumpStack.log.tmp
2025-03-07 08:06 - 2025-03-30 18:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-07 08:06 - 2025-03-28 01:13 - 000305816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-03-07 08:06 - 2025-03-27 04:21 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-07 08:06 - 2025-03-07 09:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-03-07 08:06 - 2025-03-07 08:14 - 000003716 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{C7C4E362-BC3A-4F12-9850-1719206D2D5D}
2025-03-07 08:06 - 2025-03-07 08:14 - 000003592 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{53F89132-4D4D-49F5-80BA-FB99944680E8}
2025-03-07 08:06 - 2025-03-07 08:06 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2025-03-07 08:06 - 2025-03-07 08:06 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2025-03-07 08:06 - 2025-03-07 08:06 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2025-03-07 08:01 - 2025-03-07 10:44 - 000000000 ___DC C:\WINDOWS\Panther
2025-03-07 08:01 - 2025-03-07 08:01 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-03-30 22:57 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-30 18:29 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-30 18:23 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-03-30 18:19 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-30 18:18 - 2024-04-01 09:21 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2025-03-29 05:38 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-28 01:30 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-03-28 01:12 - 2024-04-01 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2025-03-28 01:12 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-03-28 01:12 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-03-28 01:12 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-03-28 01:12 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-03-28 01:12 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing
2025-03-18 09:28 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-03-12 03:07 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-03-07 10:56 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\appcompat
2025-03-07 09:27 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-03-07 09:00 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2025-03-07 08:52 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\spool
2025-03-07 08:48 - 2024-04-01 18:31 - 000000000 ___SD C:\WINDOWS\system32\AppV
2025-03-07 08:48 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\IME
2025-03-07 08:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-03-07 08:47 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-03-07 08:46 - 2024-04-01 09:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2025-03-07 08:46 - 2024-04-01 09:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2025-03-07 08:39 - 2024-04-01 09:21 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2025-03-07 08:12 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-03-07 08:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-03-07 08:09 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-03-07 08:09 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Windows NT
2025-03-07 08:02 - 2024-04-01 09:26 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-03-2025
Ran by Rudolf (31-03-2025 01:38:51)
Running from C:\Users\Rudolf\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.3624 (X64) (2025-03-07 06:09:11)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-216828955-1019766287-1869927231-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-216828955-1019766287-1869927231-503 - Limited - Disabled)
Guest (S-1-5-21-216828955-1019766287-1869927231-501 - Limited - Disabled)
Rudolf (S-1-5-21-216828955-1019766287-1869927231-1000 - Administrator - Enabled) => C:\Users\Rudolf
WDAGUtilityAccount (S-1-5-21-216828955-1019766287-1869927231-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.9.1 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.33 - Piriform)
Driver Easy 6.1.2 (HKLM\...\DriverEasy_is1) (Version: 6.1.2 - Easeware)
DxO PureRAW 4 (HKLM\...\{3D9A4713-A483-44D5-BFB4-C05676EE2DA9}) (Version: 4.8.1 - DxO)
Epic Games Launcher (HKLM-x32\...\{0E28D23D-A3C1-4381-AA5B-12E7C0E368CA}) (Version: 1.3.131.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{C7D679C2-04A8-434A-8799-4C2F001388BE}) (Version: 2.9.0 - Epic Games, Inc.)
Google Chrome (HKLM\...\{2C16CDFA-5FCE-3AB5-9BE5-8A816A4FBD7F}) (Version: 134.0.6998.178 - Google LLC)
Kingdom Come: Deliverance - A Woman's Lot (HKLM-x32\...\1460218995_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance – Band of Bastards (HKLM-x32\...\1957357825_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance – From the Ashes (HKLM-x32\...\1201995925_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance - HD Sound Pack (HKLM-x32\...\1929089326_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance - HD Texture Pack (HKLM-x32\...\1597510471_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance – The Amorous Adventures of Bold Sir Hans Capon (HKLM-x32\...\1336069439_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance (HKLM-x32\...\1719198803_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance Treasures of the Past DLC (HKLM-x32\...\1300320746_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2025.3.696161 - Logitech)
Microsoft .NET Host - 6.0.36 (x64) (HKLM\...\{D6932D97-36F1-40B8-9CDC-CA8365B21000}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.36 (x64) (HKLM\...\{A9E32B25-994B-4856-A12B-0EBED3050410}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.36 (x64) (HKLM\...\{C912E33F-956A-4921-9F55-CC11AE8F09AF}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\{9DD52253-EDC7-3161-B3DA-31127669C901}) (Version: 134.0.3124.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 134.0.3124.93 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\OneDriveSetup.exe) (Version: 25.035.0223.0003 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM\...\{61D4736B-3325-4D4A-BD41-8BD206C6A86E}) (Version: 48.144.23186 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM-x32\...\{0532b8f2-12d7-43de-95fc-7b87006758a8}) (Version: 6.0.36.34217 - Microsoft Corporation)
PowerShell 7-x64 (HKLM\...\{D012DCD1-67EA-4627-938F-19FD677FC03A}) (Version: 7.5.0.0 - Microsoft Corporation)
Skylum Luminar Neo (HKLM\...\{32BF618C-C29A-485C-956B-A3C5691C9CB2}_is1) (Version: 1.23.0.14514 - CyberMania)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Topaz Photo AI (HKLM\...\{54B3064A-0C43-4631-A06D-53093EE4BA88}) (Version: 3.5.2 - Topaz Labs LLC)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.13.7 - Black Tree Gaming Ltd.)
Wargaming.net Game Center (HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\Wargaming.net Game Center) (Version: 25.0.0.8530 - Wargaming.net)
Webshare klient (HKLM-x32\...\Webshare klient) (Version: - )
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\2387829014) (Version: - Wargaming.net)
Zoner Photo Studio X version 19 (HKLM-x32\...\{14CB8114-0103-4E85-888A-D67E9B305A92}_is1) (Version: 19 - )
Packages:
=========
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2025-03-07] (Advanced Micro Devices Inc.)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-03-27] (Microsoft Windows)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.296.0_x64__8wekyb3d8bbwe [2025-03-25] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2025-03-07] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-216828955-1019766287-1869927231-1000_Classes\CLSID\{fa5312d1-0b58-428a-bd93-3b87ef89945d}\localserver32 -> C:\Program Files\Skylum\Luminar Neo\Luminar Neo.exe (Skylum Software USA, Inc. -> Skylum)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files\AIMP\System\aimp_menu64.dll [2025-03-08] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files\AIMP\System\aimp_menu64.dll [2025-03-08] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
SearchScopes: HKU\S-1-5-21-216828955-1019766287-1869927231-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2024-04-01 09:26 - 2025-03-07 09:50 - 000001438 __RSH C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
127.0.0.1 license-api.ccleaner.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\Control Panel\Desktop\\Wallpaper -> E:\Fotky\lebka pc.jpg
DNS Servers: 10.0.1.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Killer E2200 Gigabit Ethernet Controller -> e2xw10x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "DxO PureRAW 4.lnk"
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_5F787EB8F6C2739B29BBA49ECA2958CD"
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\StartupApproved\Run: => "AMDNoiseSuppression"
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-216828955-1019766287-1869927231-1000\...\StartupApproved\Run: => "EpicGamesLauncher"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{58E07EE6-7B3F-4929-A4CB-64DE3C25C552}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25031.805.3440.5290_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AFB3F159-ACD7-4478-879C-4710AB4C1ECA}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25031.805.3440.5290_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{287166B6-F44A-4195-8FF4-E68104AC580B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{5D06DC3D-20C5-49D9-8393-5E5B4A21161E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ED78D4A1-D021-4E58-A3CD-86DD65CEDADF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ADAD1CA8-1651-4062-B2DB-1A7E6E77D365}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{57842792-4C03-4823-8D29-773028F49577}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware) [File not signed]
FirewallRules: [TCP Query User{F2DA40D8-59AE-4707-A576-49FC4D2CA34F}C:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) C:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{C7F046C6-D697-4006-9BF9-0793EE430EDE}C:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) C:\program files\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{64C89148-7AF3-45E1-90D1-5C35B73C1A55}] => (Block) D:\Games\Red Dead Redemption 2\RDR2.exe (Rockstar Games, Inc. -> Rockstar Games) [File not signed]
FirewallRules: [{0D0F0668-BC4C-4B68-B866-88D13CF4E6AE}] => (Block) D:\Games\Red Dead Redemption 2\Launcher.exe () [File not signed]
FirewallRules: [TCP Query User{BE52CE8E-0F44-4915-AAD8-9430759EC40C}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{F3D48223-3B24-467C-9081-ADC1019EE316}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [TCP Query User{515282C0-55F3-4C2C-8DDF-D585177DCA19}C:\program files\kingdome come deliverance ii\bin\win64mastermastersteampgo\kingdomcome.exe] => (Block) C:\program files\kingdome come deliverance ii\bin\win64mastermastersteampgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{239FCFA9-3734-4696-9655-8161D36FE9D1}C:\program files\kingdome come deliverance ii\bin\win64mastermastersteampgo\kingdomcome.exe] => (Block) C:\program files\kingdome come deliverance ii\bin\win64mastermastersteampgo\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [TCP Query User{3A84E127-9AC8-4AEF-A02A-2ADEDD3FF2A9}D:\games\world of tanks\win64\worldoftanks.exe] => (Allow) D:\games\world of tanks\win64\worldoftanks.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{537F070B-8284-4A7A-87BE-7B437AF08B75}D:\games\world of tanks\win64\worldoftanks.exe] => (Allow) D:\games\world of tanks\win64\worldoftanks.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{96A9F4BB-BDC0-4F2D-92EF-4774C024D5CD}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\134.0.3124.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{89F0ACE1-E545-4389-A2C2-48FCF1838AE1}] => (Block) C:\Program Files\DxO\DxO PureRAW 4\PureRawv4.exe (DxO Labs S.A.S. -> DxO) [File not signed]
FirewallRules: [{EFA462E6-37AE-4E7B-9D78-FFF649C917B7}] => (Block) C:\Program Files\DxO\DxO PureRAW 4\PureRawv4_saver.exe (DxO Labs S.A.S. -> DxO)
FirewallRules: [{04A300D3-3E89-41A9-A161-4B5E37B9FE4A}] => (Block) C:\Program Files\DxO\DxO PureRAW 4\QtWebEngineProcess.exe (The Qt Company Oy -> The Qt Company Ltd.)
FirewallRules: [{2718B39A-4BB2-463B-A179-6CA9D8459513}] => (Block) C:\Program Files\DxO\DxO PureRAW 4\crashpad_handler.exe (DxO Labs S.A.S. -> )
FirewallRules: [{A2469ABC-1359-4476-B5BF-065DDA7FB192}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
19-03-2025 17:06:00 Installed PowerShell 7-x64
23-03-2025 19:12:02 Windows Update
27-03-2025 10:34:19 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (03/29/2025 01:23:16 AM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: CCleanerPerformanceOptimizerService.exe, verze: 6.33.0.11465, časové razítko: 0x67b46b00
Název chybujícího modulu: CCleanerPerformanceOptimizerService.exe, verze: 6.33.0.11465, časové razítko: 0x67b46b00
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001b561
ID chybujícího procesu: 0xdfc
Čas spuštění chybující aplikace: 0x1dba03861a1aaa1
Cesta k chybující aplikaci: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
Cesta k chybujícímu modulu: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
ID sestavy: ab712241-5fa2-4b42-b7f2-8e088ef248c7
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (03/28/2025 10:42:34 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: CCleanerPerformanceOptimizerService.exe, verze: 6.33.0.11465, časové razítko: 0x67b46b00
Název chybujícího modulu: CCleanerPerformanceOptimizerService.exe, verze: 6.33.0.11465, časové razítko: 0x67b46b00
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001b561
ID chybujícího procesu: 0x104c
Čas spuštění chybující aplikace: 0x1dba021eeacf726
Cesta k chybující aplikaci: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
Cesta k chybujícímu modulu: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
ID sestavy: 03bbd845-3cde-4117-8325-c318ed573e4f
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (03/26/2025 07:36:47 AM) (Source: Application Error) (EventID: 1000) (User: RUDOLF)
Description: Název chybující aplikace: KingdomCome.exe, verze: 1.0.0.0, časové razítko: 0x67da6d96
Název chybujícího modulu: ntdll.dll, verze: 10.0.26100.3323, časové razítko: 0xfacafff0
Kód výjimky: 0xc0000374
Posun chyby: 0x000000000008b035
ID chybujícího procesu: 0xd84
Čas spuštění chybující aplikace: 0x1db9df3ca21ab08
Cesta k chybující aplikaci: C:\Program Files\Kingdome Come Deliverance II\Bin\Win64MasterMasterSteamPGO\KingdomCome.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID sestavy: fb986403-a21a-4d45-9c28-77a82a01c088
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (03/25/2025 10:39:38 PM) (Source: Application Error) (EventID: 1000) (User: RUDOLF)
Description: Název chybující aplikace: Topaz Photo AI.exe, verze: 3.5.2.0, časové razítko: 0x67b75dc1
Název chybujícího modulu: amdxc64.dll, verze: 31.0.21921.1000, časové razítko: 0x66bfb4ed
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000014e9175
ID chybujícího procesu: 0x69c
Čas spuštění chybující aplikace: 0x1db9dc5bcd9e45e
Cesta k chybující aplikaci: C:\Program Files\Topaz Labs LLC\Topaz Photo AI\Topaz Photo AI.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\amdxc64.dll
ID sestavy: 9c99abf6-afb3-40c0-9dea-aae7aab15d85
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (03/17/2025 11:37:47 AM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: CCleanerPerformanceOptimizerService.exe, verze: 6.33.0.11465, časové razítko: 0x67b46b00
Název chybujícího modulu: CCleanerPerformanceOptimizerService.exe, verze: 6.33.0.11465, časové razítko: 0x67b46b00
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001b561
ID chybujícího procesu: 0x1004
Čas spuštění chybující aplikace: 0x1db97203d8638f5
Cesta k chybující aplikaci: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
Cesta k chybujícímu modulu: C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
ID sestavy: 997b2c64-ff53-4c8c-b944-093fe7b16f32
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (03/17/2025 11:18:28 AM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 1.0.0.0 programu KingdomCome.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (03/15/2025 07:30:30 AM) (Source: Application Error) (EventID: 1000) (User: RUDOLF)
Description: Název chybující aplikace: pcaui.exe, verze: 10.0.26100.3323, časové razítko: 0x16a414f4
Název chybujícího modulu: pcaui.dll, verze: 10.0.26100.3323, časové razítko: 0x09386847
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000001fe87
ID chybujícího procesu: 0x2340
Čas spuštění chybující aplikace: 0x1db956b5d54e056
Cesta k chybující aplikaci: C:\WINDOWS\system32\pcaui.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\pcaui.dll
ID sestavy: 48b35511-5da2-4ef4-b438-dd6ba764828c
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (03/15/2025 12:01:03 AM) (Source: Application Error) (EventID: 1000) (User: RUDOLF)
Description: Název chybující aplikace: Topaz Photo AI.exe, verze: 3.5.2.0, časové razítko: 0x67b75dc1
Název chybujícího modulu: Topaz Photo AI.exe, verze: 3.5.2.0, časové razítko: 0x67b75dc1
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000003f499
ID chybujícího procesu: 0x240
Čas spuštění chybující aplikace: 0x1db952bab9b2634
Cesta k chybující aplikaci: C:\Program Files\Topaz Labs LLC\Topaz Photo AI\Topaz Photo AI.exe
Cesta k chybujícímu modulu: C:\Program Files\Topaz Labs LLC\Topaz Photo AI\Topaz Photo AI.exe
ID sestavy: 2f82b1a0-848d-4534-8c13-d9044cfde9c9
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
System errors:
=============
Error: (03/30/2025 06:24:07 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (03/30/2025 06:18:34 PM) (Source: Microsoft-Windows-DeviceAssociationService) (EventID: 3503) (User: NT AUTHORITY)
Description: Služba přidružení zařízení zjistila chybu zjišťování koncového bodu.
Error: (03/30/2025 05:10:06 PM) (Source: DCOM) (EventID: 10029) (User: RUDOLF)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_5c367.
Error: (03/30/2025 04:15:19 PM) (Source: DCOM) (EventID: 10029) (User: RUDOLF)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_5c367.
Error: (03/30/2025 02:37:14 PM) (Source: DCOM) (EventID: 10029) (User: RUDOLF)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_5c367.
Error: (03/30/2025 02:33:12 PM) (Source: DCOM) (EventID: 10029) (User: RUDOLF)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_5c367.
Error: (03/30/2025 01:58:51 PM) (Source: DCOM) (EventID: 10029) (User: RUDOLF)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_5c367.
Error: (03/30/2025 01:54:50 PM) (Source: DCOM) (EventID: 10029) (User: RUDOLF)
Description: U aktivace identifikátoru CLSID Windows.Media.Capture.Internal.AppCaptureShell vypršel časový limit během čekání na zastavení služby BcastDVRUserService_5c367.
Windows Defender:
================
Date: 2025-03-30 11:12:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-03-29 02:05:11
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: HackTool:Win32/Keygen!rfn
Severity: High
Category: Tool
Path: file:_E:\Download\Programs\Topaz Photo AI v3.5.2 (x64) Full [SoftOwa]\Patch\patch.rar
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Users\Rudolf\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe
Security intelligence Version: AV: 1.425.321.0, AS: 1.425.321.0, NIS: 1.425.321.0
Engine Version: AM: 1.1.25020.1007, NIS: 1.1.25020.1007
Date: 2025-03-29 02:00:35
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Vigorf.A
Severity: Severe
Category: Trojan
Path: file:_E:\Download\Programs\Aida64\keygen-CRD.rar
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Users\Rudolf\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe
Security intelligence Version: AV: 1.425.321.0, AS: 1.425.321.0, NIS: 1.425.321.0
Engine Version: AM: 1.1.25020.1007, NIS: 1.1.25020.1007
Date: 2025-03-29 01:59:42
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: HackTool:Win32/Keygen
Severity: High
Category: Tool
Path: file:_E:\Download\Programs\Aida64\KeyGen-CHiLi\v1.7\chili-keygen.exe; file:_E:\Download\Programs\Aida64\KeyGen-CHiLi\v1.x\CHiLi-Keygen.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\Rudolf\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe
Security intelligence Version: AV: 1.425.321.0, AS: 1.425.321.0, NIS: 1.425.321.0
Engine Version: AM: 1.1.25020.1007, NIS: 1.1.25020.1007
Date: 2025-03-29 01:59:42
Description:
Microsoft Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: HackTool:Win32/Keygen
Severity: High
Category: Tool
Path: file:_E:\Download\Programs\Aida64\KeyGen-CHiLi\v1.7\chili-keygen.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Users\Rudolf\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe
Security intelligence Version: AV: 1.425.321.0, AS: 1.425.321.0, NIS: 1.425.321.0
Engine Version: AM: 1.1.25020.1007, NIS: 1.1.25020.1007
Event[0]
Date: 2025-03-29 00:17:05
Description:
Microsoft Defender Antivirus has encountered a critical error when taking action on malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: Trojan:Win32/Suschil!rfn
Severity: Severe
Category: Trojan
Path: file:_C:\Users\Rudolf\Desktop\DxO PureRAW 3.9.0 Build 33 Multilingual.Crack\DxO_PureRaw_v3.exe
Detection Origin: Local machine
Detection Type: Concrete
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Action: Unknown
Action Status: No additional actions required
Error Code: 0x80508032
Error description: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Security intelligence Version: AV: 1.425.318.0, AS: 1.425.318.0, NIS: 1.425.318.0
Engine Version: AM: 1.1.25020.1007, NIS: 1.1.25020.1007
==================== Memory info ===========================
BIOS: American Megatrends Inc. V2.13 03/07/2014
Motherboard: MSI Z77A-G43 (MS-7758)
Processor: Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz
Percentage of memory in use: 17%
Total physical RAM: 24523.45 MB
Available physical RAM: 20183.89 MB
Total Virtual: 96523.45 MB
Available Virtual: 90572.27 MB
==================== Drives ================================
Drive c: (WIN) (Fixed) (Total:446.39 GB) (Free:116.62 GB) (Model: Patriot Burst) NTFS
Drive d: (SSD) (Fixed) (Total:447.11 GB) (Free:218.09 GB) (Model: Patriot Burst) NTFS
Drive e: (HDD) (Fixed) (Total:763.82 GB) (Free:179.17 GB) (Model: Hitachi HTS543232L9A300) NTFS
\\?\Volume{787ac8e9-015b-488f-bb01-8d9404a9f4f9}\ () (Fixed) (Total:0.63 GB) (Free:0.08 GB) NTFS
\\?\Volume{2a78a1e9-e179-42de-83a3-cd22a833399c}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 3 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 4 (Protective MBR) (Size: 298.1 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Ahoj,
ako vidim si priaznivec crackov - raz sa Ti to moze vypomstit …
Prescanuj PC s MBAM a AVPTool/KVRT - najdene smejdy ZMAZ
ako vidim si priaznivec crackov - raz sa Ti to moze vypomstit …
Prescanuj PC s MBAM a AVPTool/KVRT - najdene smejdy ZMAZ
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu
Ani MBAM, ani AVPTool/KVRT nic nehlásí.
Re: Prosím o kontrolu
Tak zrejme Esetonline vsetko zmazal
Spust prikazovy riadok ako spravca a tam zadaj
sfc /scannow
Spust prikazovy riadok ako spravca a tam zadaj
sfc /scannow
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu
Windows Resource Protection did not find any integrity violations. 
Re: Prosím o kontrolu
Tak je to OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?