Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu PC strašně se mi plní disk

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
hanz-xc
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 18 srp 2009 16:25

Prosím o kontrolu PC strašně se mi plní disk

#1 Příspěvek od hanz-xc »

Dobrý den,
prosím o pomoc strašně se mi rychle plní disk C asi dočasnými soubory.
Na disku pak nezbývá žádné místo.

Děkuji

Logfile of random's system information tool 1.10 (written by random/random)
Run by janku at 2025-10-18 18:54:18
Microsoft Windows 10 Pro
System drive C: has 6 GB (5%) free of 114 GB
Total RAM: 16335 MB (50% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:54:21, on 18.10.2025
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.19041.5794)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
C:\Users\janku\VIGI VMS\VIGI Web Player\PluginController.exe
C:\Users\janku\VIGI VMS\VIGI Web Player\Discovery\VMS.DiscoveryProcess.exe
C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe
C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
C:\Program Files (x86)\Microsoft Office\Root\Office16\SDXHelper.exe
C:\Program Files\trend micro\janku.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://go.microsoft.com/fwlink/p/?Link ... 00&pc=UE00
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\141.0.3537.71\BHO\ie_to_edge_bho.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
O4 - HKLM\..\Run: [M17A] C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe
O4 - HKLM\..\Run: [ControlCenter4] "C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe" /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [KeePass 2 PreLoad] "C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe" --preload
O4 - HKLM\..\RunOnce: [PreRun] C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe
O4 - HKCU\..\Run: [OneDrive] "C:\Users\janku\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [GoogleDriveFS] C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe --startup_mode
O4 - HKCU\..\Run: [CiscoMeetingDaemon] "C:\Users\janku\AppData\Local\WebEx\ciscowebexstart.exe" /daemon /from=autorun
O4 - HKCU\..\Run: [Adobe Acrobat Synchronizer] "C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
O4 - HKCU\..\Run: [VIGIWebPlayer] C:\Users\janku\VIGI VMS\VIGI Web Player\PluginController.exe
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [GoogleDriveFS] C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe --startup_mode (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1967644643-3473992454-2983207395-1005\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'Host')
O4 - HKUS\S-1-5-21-1967644643-3473992454-2983207395-1005\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'Host')
O4 - HKUS\S-1-5-18\..\Run: [GoogleDriveFS] C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe --startup_mode (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GoogleDriveFS] C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe --startup_mode (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Inc. - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Autodesk Access Service Host - Autodesk, Inc. - C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\Program Files (x86)\Browny02\BrYNSvc.exe
O23 - Service: Služba CCleaner Browser Update (ccleaner) (ccleaner) - Piriform Software - C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
O23 - Service: CCleaner 7 (CCleaner7) - Gen Digital Inc. - C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe
O23 - Service: CCleaner Browser Elevation Service (CCleanerBrowserElevationService) (CCleanerBrowserElevationService) - Gen Digital Inc. - C:\Program Files (x86)\CCleaner Browser\Application\140.0.32350.210\elevation_service.exe
O23 - Service: Služba CCleaner Browser Update (ccleanerm) (ccleanerm) - Piriform Software - C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
O23 - Service: CodeMeter Runtime Server (CodeMeter.exe) - WIBU-SYSTEMS AG - C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_195915d8 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_6dd2caf - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: @oem58.inf,%ServiceName%;DbxSvc (DbxSvc) - Unknown owner - C:\WINDOWS\System32\DbxSvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: DraftSight API Service - Dassault Systemes - C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
O23 - Service: Dropbox Elevation Service (DropboxElevationService) (DropboxElevationService) - Dropbox, Inc. - C:\Program Files (x86)\Dropbox\Client\234.4.5591\DropboxElevationService.exe
O23 - Service: DropboxUpdater InternalService 123.0.6299.129 (DropboxUpdaterInternalService123.0.6299.129) (DropboxUpdaterInternalService123.0.6299.129) - Dropbox, Inc. - C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe
O23 - Service: DropboxUpdater Service 123.0.6299.129 (DropboxUpdaterService123.0.6299.129) (DropboxUpdaterService123.0.6299.129) - Dropbox, Inc. - C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe
O23 - Service: EasyTune Engine (EasyTuneEngineService) - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Forwarder (efwd) - ESET - C:\Program Files\ESET\ESET Smart Security\efwd.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FileOpen Manager Service (FileOpenManager) - FileOpen Systems Inc. - C:\Program Files\FileOpen\Services\FileOpenManager64.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: @%systemroot%\system32\GameInputSvc.exe,-101 (GameInputSvc) - Unknown owner - C:\WINDOWS\System32\GameInputSvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\141.0.7390.66\elevation_service.exe
O23 - Service: Interní aktualizační služba Google (GoogleUpdaterInternalService142.0.7416.0) (GoogleUpdaterInternalService142.0.7416.0) - Google LLC - C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe
O23 - Service: Aktualizační služba Google (GoogleUpdaterService142.0.7416.0) (GoogleUpdaterService142.0.7416.0) - Google LLC - C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Print Scan Doctor Service (HPPrintScanDoctorService) - HP Inc. - C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: GIGABYTE Adjust (MyService1) - Unknown owner - C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVWMI - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\NVWMI\nvWmi64.exe
O23 - Service: OcButtonService - GIGA-BYTE TECHNOLOGY CO., LTD. - C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe
O23 - Service: Logi Options+ (OptionsPlusUpdaterService) - Logitech, Inc. - C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Unknown owner - C:\WINDOWS\System32\RtkAudUService64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15703 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-a83aaf38-9e38-44a8-891b-bc197989342d -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-81460a66-332c-42eb-88a6-a394ea182e6c -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-4828c743-1de7-4149-acb0-c20f9e6ce618 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-256b9f3b-0ddb-4f4e-8ac3-ee8d16726f86 -LifetimeId:d5f7e4dc-032d-4ddd-b27e-892f0ec78b90 -DeviceGroupId:WpdFsGroup -HostArg:0
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule

C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS

C:\WINDOWS\system32\svchost.exe -k LocalService -p -s DispBrokerDesktopSvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -s RmSvc
"C:\Program Files\ESET\ESET Smart Security\efwd.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s IKEEXT
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\System32\DbxSvc.exe
"C:\WINDOWS\System32\RtkAudUService64.exe"
"C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe"
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
"C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe" C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
"C:\Program Files\FileOpen\Services\FileOpenManager64.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe"
C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\NVWMI\nvWmi64.exe
"C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe"
"C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe"
"C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe" --run-as-service
"C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe"
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
dashost.exe {89b08873-2b0b-43a8-9b9dd691e764bf34}
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted -p -s PolicyAgent
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
"C:\Program Files\ESET\ESET Smart Security\eServiceHost.exe" 1131736595 827476805-1230325573 host=audioCaptureNotifier
dashost.exe {9e390ba4-4545-497d-a1b2e26693d9357e}

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s upnphost
AggregatorHost.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s DeviceInstall
C:\WINDOWS\System32\svchost.exe -k netsvcs -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

"C:\Program Files (x86)\Browny02\BrYNSvc.exe"
"C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe"
"C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe"
C:\WINDOWS\system32\svchost.exe -k SDRSVC
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s seclogon
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Program Files\WindowsApps\Microsoft.GamingServices_31.106.13001.0_x64__8wekyb3d8bbwe\GamingServices.exe"
"C:\Program Files\WindowsApps\Microsoft.GamingServices_31.106.13001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe"
C:\WINDOWS\System32\GameInputSvc.exe
"C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe" service run


C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\WINDOWS\System32\GameInputSvc.exe" Global\GameInputSession_6
"C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\NVDisplay.Container.exe" -f %ProgramData%\NVIDIA\DisplaySessionContainer%d.log -d C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\plugins\Session -r -l 3 -p 30000 -cfg NVDisplay.ContainerLocalSystem\Session -c
C:\Windows\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\NVWMI\nvWmi64.exe -spawnprovider
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\ESET\ESET Smart Security\eServiceHost.exe" 1813579710 827476805-1230325573 host=audioCaptureNotifier
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\Piriform\CCleaner 7\CCleaner.exe" /bg
"C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe"
C:\WINDOWS\Explorer.EXE
"C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe"
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
"ctfmon.exe"
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:ShellFeedsUI.AppX88fpyyrd21w8wqe62wzsjh5agex7tf1e.mca
"C:\WINDOWS\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe" -ServerName:App.AppXywbrabmsek0gm3tkwpr5kwzbs55tkqay.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe"
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe" -ServerName:CortanaUI.AppX8z9r6jm96hw4bsbneegw0kyxx296wr9t.mca
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\TextInputHost.exe" -ServerName:InputApp.AppXk0k6mrh4r2q0ct33a9wgbez0x7v9cz5y.mca
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25072.79.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe" -ComServer:Background -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\ESET\ESET Smart Security\eguiproxy.exe" /hide
"C:\Windows\System32\RtkAudUService64.exe" -background
"C:\Program Files\FileOpen\Services\FileOpenBroker64.exe"
"C:\Program Files\Logitech\LogiOptions\LogiOptions.exe" /noui
"C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe"
"C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe"
"C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessService.exe" --autoLaunch
"C:\Users\janku\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
"C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe" --type=collab-renderer --proc=7800
"C:\Users\janku\VIGI VMS\VIGI Web Player\PluginController.exe"
"C:\Users\janku\VIGI VMS\VIGI Web Player\Discovery\VMS.DiscoveryProcess.exe" discovery-process-fixed-uuid -p 8888
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.25072.79.0_x64__8wekyb3d8bbwe\YourPhoneAppProxy.exe" "PreProcess" "Microsoft.YourPhone.PreProcess" "com.microsoft.yourphone.preprocess"
C:\Windows\System32\RuntimeBroker.exe -Embedding


"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:crashpad-handler --no-upload-gzip --no-rate-limit --capture-python --no-identify-client-via-url --database=C:\Users\janku\AppData\Local\Dropbox\Crashpad --metrics-dir=0 --url=https://d.dropbox.com/report_crashpad_minidump --https-pin=0xfb,0xe3,0x1,0x80,0x31,0xf9,0x58,0x6b,0xcb,0xf4,0x17,0x27,0xe4,0x17,0xb7,0xd1,0xc4,0x5c,0x2f,0x47,0xf9,0x3b,0xe3,0x72,0xa1,0x7b,0x96,0xb5,0x7,0x57,0xd5,0xa2 --https-pin=0x7f,0x42,0x96,0xfc,0x5b,0x6a,0x4e,0x3b,0x35,0xd3,0xc3,0x69,0x62,0x3e,0x36,0x4a,0xb1,0xaf,0x38,0x1d,0x8f,0xa7,0x12,0x15,0x33,0xc9,0xd6,0xc6,0x33,0xea,0x24,0x61 --https-pin=0x36,0xab,0xc3,0x26,0x56,0xac,0xfc,0x64,0x5c,0x61,0xb7,0x16,0x13,0xc4,0xbf,0x21,0xc7,0x87,0xf5,0xca,0xbb,0xee,0x48,0x34,0x8d,0x58,0x59,0x78,0x3,0xd7,0xab,0xc9 --https-pin=0xf7,0xec,0xde,0xd5,0xc6,0x60,0x47,0xd2,0x8e,0xd6,0x46,0x6b,0x54,0x3c,0x40,0xe0,0x74,0x3a,0xbe,0x81,0xd1,0x9,0x25,0x4d,0xcf,0x84,0x5d,0x4c,0x2c,0x78,0x53,0xc5 --https-pin=0xbd,0xac,0xcb,0xf2,0xe8,0xb2,0x7c,0xc,0x2,0xa6,0x89,0xee,0x86,0x6c,0x9b,0x86,0xec,0x4,0x44,0x2a,0xfc,0xdd,0xdd,0x5d,0x4e,0xc3,0x6d,0xef,0x21,0xe7,0x61,0xdd --https-pin=0xaf,0xf9,0x88,0x90,0x6d,0xde,0x12,0x95,0x5d,0x9b,0xeb,0xbf,0x92,0x8f,0xdc,0xc3,0x1c,0xce,0x32,0x8d,0x5b,0x93,0x84,0xf2,0x1c,0x89,0x41,0xca,0x26,0xe2,0x3,0x91 --https-pin=0x8b,0xb5,0x93,0xa9,0x3b,0xe1,0xd0,0xe8,0xa8,0x22,0xbb,0x88,0x7c,0x54,0x78,0x90,0xc3,0xe7,0x6,0xaa,0xd2,0xda,0xb7,0x62,0x54,0xf9,0x7f,0xb3,0x6b,0x82,0xfc,0x26 --https-pin=0xb9,0x4c,0x19,0x83,0x0,0xce,0xc5,0xc0,0x57,0xad,0x7,0x27,0xb7,0xb,0xbe,0x91,0x81,0x69,0x92,0x25,0x64,0x39,0xa7,0xb3,0x2f,0x45,0x98,0x11,0x9d,0xda,0x9c,0x97 --https-pin=0x5a,0x88,0x96,0x47,0x22,0xe,0x54,0xd6,0xbd,0x8a,0x16,0x81,0x72,0x24,0x52,0xb,0xb5,0xc7,0x8e,0x58,0x98,0x4b,0xd5,0x70,0x50,0x63,0x88,0xb9,0xde,0xf,0x7,0x5f --https-pin=0xa4,0x95,0xc8,0xd1,0x10,0xe8,0xb9,0xe2,0x0,0xf3,0x70,0xae,0xda,0x3f,0xf9,0x2e,0xe4,0x3f,0x8e,0x3d,0x4e,0xc0,0xdb,0x1c,0xd,0xc5,0x8b,0xd7,0x62,0x88,0xb,0xa5 --https-pin=0xa0,0x2f,0xaf,0xa1,0x92,0xc8,0xcb,0x81,0xcb,0x13,0x41,0x55,0x4f,0x9c,0x5,0xb7,0x1c,0xca,0x2a,0x89,0xb,0xd,0x12,0x98,0xd6,0x83,0x64,0x7c,0x96,0x1e,0xfb,0xdf --https-pin=0x6a,0x97,0xb5,0x1c,0x82,0x19,0xe9,0x3e,0x5d,0xec,0x64,0xba,0xd5,0x80,0x6c,0xde,0xb0,0xf8,0x35,0x5b,0xe4,0x7e,0x75,0x70,0x10,0xb7,0x2,0x45,0x6e,0x1,0xaa,0xfd --https-pin=0x2b,0x7,0x1c,0x59,0xa0,0xa0,0xae,0x76,0xb0,0xea,0xdb,0x2b,0xad,0x23,0xba,0xd4,0x58,0xb,0x69,0xc3,0x60,0x1b,0x63,0xc,0x2e,0xaf,0x6,0x13,0xaf,0xa8,0x3f,0x92 --annotation=host_int_account1_boot=30102616000 --annotation=is_store_managed=false --annotation=machine_id=6ef19cdf-a8fe-4de1-a8f5-5c9e9aca20bc --annotation=platform=win "--annotation=platform_version=10 19045" --initial-client-data=0x2ac,0x2b0,0x2b4,0x288,0x2b8,0x7ffdcce64378,0x7ffdcce64338,0x7ffdcce64348
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" -type:exit-monitor -method:collectupload -session-token:f78c0ddf-8cbe-4ba0-9275-a13fc75aa18d -target-handle:708 -target-shutdown-event:620 -target-restart-event:712 "-target-command-line:\"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe\" /systemstartup" -python-version:3.8.17 -process-type:main -handler-pipe:\\.\pipe\crashpad_24796_KSJVWWLUQWQYZESX






C:\WINDOWS\system32\cmd.exe /d /s /c ""C:\Program Files\ESET\ESET Smart Security\BrowserPrivacyAndSecurity.exe" chrome-extension://oombnmpbbhbakfpfgdflaajkhicgfaam/ --parent-window=0" < \\.\pipe\chrome.nativeMessaging.in.7136a421dc627a55 > \\.\pipe\chrome.nativeMessaging.out.7136a421dc627a55
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\ESET\ESET Smart Security\BrowserPrivacyAndSecurity.exe" chrome-extension://oombnmpbbhbakfpfgdflaajkhicgfaam/ --parent-window=0







"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" --type=gpu-process --crashpad-handler-ipc-pipe-name="\\.\pipe\crashpad_24796_KSJVWWLUQWQYZESX" --crashpad-annotations="product_name:desktop_client,buildid:main,buildno:Dropbox-win-234.4.5591,platform:win,platform_version:10 19045" --user-data-dir="C:\Users\janku\AppData\Roaming\Dropbox" --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4916 --field-trial-handle=4980,i,5207177753646155779,3515528636008105847,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:2
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=cs --service-sandbox-type=none --user-data-dir="C:\Users\janku\AppData\Roaming\Dropbox" --standard-schemes=dbx-local --secure-schemes=dbx-local,sentry-ipc --bypasscsp-schemes=sentry-ipc --cors-schemes=dbx-local,sentry-ipc --fetch-schemes=sentry-ipc --service-worker-schemes --streaming-schemes=dbx-local --mojo-platform-channel-handle=5216 --field-trial-handle=4980,i,5207177753646155779,3515528636008105847,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:8
"C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe" /function=CC4BT /path="C:\Program Files (x86)\Brother\BrUtilities\BrDbgOut.INI"
-BootProc

"C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe" /AUTORUN
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" --type=renderer --user-data-dir="C:\Users\janku\AppData\Roaming\Dropbox" --standard-schemes=dbx-local --secure-schemes=dbx-local,sentry-ipc --bypasscsp-schemes=sentry-ipc --cors-schemes=dbx-local,sentry-ipc --fetch-schemes=sentry-ipc --service-worker-schemes --streaming-schemes=dbx-local --app-path="C:\Program Files (x86)\Dropbox\Client\234.4.5591\resources\app.asar" --enable-sandbox --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --launch-time-ticks=262923007677 --mojo-platform-channel-handle=8868 --field-trial-handle=4980,i,5207177753646155779,3515528636008105847,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:1



-BootProc
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" --type=renderer --user-data-dir="C:\Users\janku\AppData\Roaming\Dropbox" --standard-schemes=dbx-local --secure-schemes=dbx-local,sentry-ipc --bypasscsp-schemes=sentry-ipc --cors-schemes=dbx-local,sentry-ipc --fetch-schemes=sentry-ipc --service-worker-schemes --streaming-schemes=dbx-local --app-path="C:\Program Files (x86)\Dropbox\Client\234.4.5591\resources\app.asar" --enable-sandbox --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --launch-time-ticks=262925792721 --mojo-platform-channel-handle=10224 --field-trial-handle=4980,i,5207177753646155779,3515528636008105847,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:1
"C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" --type=renderer --user-data-dir="C:\Users\janku\AppData\Roaming\Dropbox" --standard-schemes=dbx-local --secure-schemes=dbx-local,sentry-ipc --bypasscsp-schemes=sentry-ipc --cors-schemes=dbx-local,sentry-ipc --fetch-schemes=sentry-ipc --service-worker-schemes --streaming-schemes=dbx-local --app-path="C:\Program Files (x86)\Dropbox\Client\234.4.5591\resources\app.asar" --enable-sandbox --lang=cs --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --launch-time-ticks=262928410474 --mojo-platform-channel-handle=12472 --field-trial-handle=4980,i,5207177753646155779,3515528636008105847,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:1










"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2539.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe" -ServerName:App.AppXkf4yh0averk473g9chjmra34tgccdh3d.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe -Embedding

"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.25081.10131.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding


"C:\Program Files (x86)\Microsoft Office\Root\Office16\SDXHelper.exe" -Embedding

C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc


"C:\WINDOWS\system32\DllHost.exe" /Processid:{67233DFC-D70F-4D8E-A068-6877D86826BC}
"C:\Users\janku\Desktop\RSITx64.exe"

=========Mozilla firefox=========

ProfilePath - C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.465 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.161.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.161.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.ccleanerbrowser.com/CCleaner Browser;version=3]
"Description"=CCleaner Browser
"Path"=C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@update.ccleanerbrowser.com/CCleaner Browser;version=9]
"Description"=CCleaner Browser
"Path"=C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.465 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll


C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958\searchplugins\
yahoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\141.0.3537.71\BHO\ie_to_edge_bho_64.dll [2025-10-09 590376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2025-09-11 217880]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files (x86)\Microsoft\Edge\Application\141.0.3537.71\BHO\ie_to_edge_bho.dll [2025-10-09 468536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-02-08 474688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-08 188992]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2024-05-14 86016]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2018-05-04 9274312]
"egui"=C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [2025-09-11 285616]
"RtkAudUService"=C:\WINDOWS\System32\RtkAudUService64.exe [2019-10-30 856288]
"FileOpenBroker"=C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [2021-11-30 2042616]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2021-08-30 3831808]
"LogiOptions"=C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2023-06-23 1792256]
"Autodesk Access Service"=C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessService.exe [2025-06-07 18170648]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\janku\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2025-10-13 4728168]
"GoogleDriveFS"=C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe [2025-10-10 66785432]
"CiscoMeetingDaemon"=C:\Users\janku\AppData\Local\WebEx\ciscowebexstart.exe [2022-06-30 5730592]
"Adobe Acrobat Synchronizer"=C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [2025-09-30 41579480]
"VIGIWebPlayer"=C:\Users\janku\VIGI VMS\VIGI Web Player\PluginController.exe [2025-10-17 1103048]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Dropbox"=C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [2025-10-07 9213376]
"M17A"=C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [2017-10-19 77312]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2017-04-05 139264]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2017-03-30 2892800]
"KeePass 2 PreLoad"=C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2020-01-20 3331264]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\RunOnce]
"PreRun"=C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [2016-02-26 14632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HidSpiCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"PromptOnSecureDesktop"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"aux1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
"aux3"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave7"=wdmaud.drv
"MSVideo"=vfwwdm32.dll
"MSVideo8"=VfWWDM32.dll
"aux5"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"wave9"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave3"=wdmaud.drv
"aux4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave4"=wdmaud.drv

======File associations======

.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2025-10-16 12:26:00 ----D---- C:\Program Files\Windows Kits
2025-10-16 12:26:00 ----D---- C:\Program Files\Microsoft GameInput
2025-10-15 21:01:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
2025-10-14 20:17:45 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2025-10-14 20:17:45 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2025-10-14 20:17:45 ----A---- C:\WINDOWS\system32\fveapibase.dll
2025-10-14 20:17:45 ----A---- C:\WINDOWS\system32\fveapi.dll
2025-10-14 20:17:45 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2025-10-14 20:17:45 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2025-10-14 20:17:44 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2025-10-14 20:17:44 ----A---- C:\WINDOWS\system32\bootux.dll
2025-10-14 20:17:44 ----A---- C:\WINDOWS\system32\bootim.exe
2025-10-14 20:17:43 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2025-10-14 20:17:43 ----A---- C:\WINDOWS\SYSWOW64\WMVCORE.DLL
2025-10-14 20:17:43 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2025-10-14 20:17:43 ----A---- C:\WINDOWS\SYSWOW64\DolbyDecMFT.dll
2025-10-14 20:17:43 ----A---- C:\WINDOWS\SYSWOW64\cewmdm.dll
2025-10-14 20:17:43 ----A---- C:\WINDOWS\system32\cdp.dll
2025-10-14 20:17:41 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2025-10-14 20:17:41 ----A---- C:\WINDOWS\SYSWOW64\mfaudiocnv.dll
2025-10-14 20:17:41 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2025-10-14 20:17:41 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2025-10-14 20:17:41 ----A---- C:\WINDOWS\system32\cewmdm.dll
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\msmpeg2adec.dll
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\mfcore.dll
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\mfaudiocnv.dll
2025-10-14 20:17:40 ----A---- C:\WINDOWS\system32\CustomShellHost.exe
2025-10-14 20:17:39 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2025-10-14 20:17:39 ----A---- C:\WINDOWS\SYSWOW64\rdvvmtransport.dll
2025-10-14 20:17:39 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2025-10-14 20:17:39 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2025-10-14 20:17:39 ----A---- C:\WINDOWS\system32\fclip.exe
2025-10-14 20:17:38 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2025-10-14 20:17:38 ----A---- C:\WINDOWS\SYSWOW64\sqlsrv32.dll
2025-10-14 20:17:38 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2025-10-14 20:17:38 ----A---- C:\WINDOWS\SYSWOW64\mmc.exe
2025-10-14 20:17:37 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2025-10-14 20:17:36 ----A---- C:\WINDOWS\SYSWOW64\smphost.dll
2025-10-14 20:17:36 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2025-10-14 20:17:36 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\vmictimeprovider.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\VmApplicationHealthMonitorProxy.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\SessEnv.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\rdvvmtransport.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\rdsdwmdr.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\RDSAppXHelper.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\provsvc.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\icsvc.dll
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\drivers\hvsocket.sys
2025-10-14 20:17:35 ----A---- C:\WINDOWS\system32\CPFilters.dll
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\tsgqec.dll
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\termsrv.dll
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\tapi3.dll
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\systemreset.exe
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\ResetEngine.exe
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\reseteng.dll
2025-10-14 20:17:34 ----A---- C:\WINDOWS\system32\mstscax.dll
2025-10-14 20:17:33 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2025-10-14 20:17:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2025-10-14 20:17:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2025-10-14 20:17:30 ----A---- C:\WINDOWS\system32\smphost.dll
2025-10-14 20:17:30 ----A---- C:\WINDOWS\system32\mispace.dll
2025-10-14 20:17:30 ----A---- C:\WINDOWS\system32\edgehtml.dll
2025-10-14 20:17:30 ----A---- C:\WINDOWS\system32\ClipUp.exe
2025-10-14 20:17:28 ----A---- C:\WINDOWS\SYSWOW64\SCardDlg.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\vertdll.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\tcbloader.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\skci.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\securekernel.exe
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\NgcIsoCtnr.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\kdhvcom.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\iumdll.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\iumbase.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\hvloader.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\hvix64.exe
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\hvax64.exe
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\drivers\tdx.sys
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\CodeIntegrityAggregator.dll
2025-10-14 20:17:28 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.Workflow.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\shlwapi.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\rtm.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\rasmontr.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\PrintWorkflowService.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\Print.Workflow.Source.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\Print.PrintSupport.Source.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\nlaapi.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\mprdim.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\mprapi.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\iprtrmgr.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\iprtprio.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2025-10-14 20:17:27 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\wuceffects.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\fsquirt.exe
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\DMAlertListener.ProxyStub.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2025-10-14 20:17:26 ----A---- C:\WINDOWS\SYSWOW64\bthudtask.exe
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryUpgrade.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryCore.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryClient.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\StateRepository.Core.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2025-10-14 20:17:25 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2025-10-14 20:17:24 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2025-10-14 20:17:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryPS.dll
2025-10-14 20:17:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepositoryBroker.dll
2025-10-14 20:17:24 ----A---- C:\WINDOWS\SYSWOW64\Windows.StateRepository.dll
2025-10-14 20:17:24 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\TileDataRepository.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\mssitlb.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\msscntrs.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\dsclient.dll
2025-10-14 20:17:23 ----A---- C:\WINDOWS\SYSWOW64\CloudExperienceHostCommon.dll
2025-10-14 20:17:22 ----A---- C:\WINDOWS\SYSWOW64\ShareHost.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\winsta.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\windowsudk.shellcommon.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\sppcomapi.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\LaunchWinApp.exe
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeHelper.dll
2025-10-14 20:17:21 ----A---- C:\WINDOWS\SYSWOW64\DeviceReactivation.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\SYSWOW64\TpmCertResources.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\SYSWOW64\SystemSettings.DataModel.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2025-10-14 20:17:20 ----A---- C:\WINDOWS\system32\ngctasks.dll
2025-10-14 20:17:20 ----A---- C:\WINDOWS\system32\LsaIso.exe
2025-10-14 20:17:20 ----A---- C:\WINDOWS\system32\iumcrypt.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\winsta.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\twinui.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\rtm.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\rastapi.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\rasmontr.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\rasmans.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\rasman.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\Print.PrintSupport.Source.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\mprdim.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\mprapi.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\lsm.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2025-10-14 20:17:17 ----A---- C:\WINDOWS\system32\iprtprio.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\ReInfo.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\ReAgent.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\PrintWorkflowService.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\Print.Workflow.Source.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\nlasvc.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\nlaapi.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\ncsi.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2025-10-14 20:17:16 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2025-10-14 20:17:15 ----A---- C:\WINDOWS\system32\urlmon.dll
2025-10-14 20:17:15 ----A---- C:\WINDOWS\system32\msIso.dll
2025-10-14 20:17:15 ----A---- C:\WINDOWS\system32\iertutil.dll
2025-10-14 20:17:15 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2025-10-14 20:17:15 ----A---- C:\WINDOWS\system32\edgeIso.dll
2025-10-14 20:17:15 ----A---- C:\WINDOWS\system32\dui70.dll
2025-10-14 20:17:15 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2025-10-14 20:17:15 ----A---- C:\WINDOWS\fonts\StaticCache.dat
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\sppwinob.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\sppsvc.exe
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\sppobjs.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\slui.exe
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\SCardBi.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\EditionUpgradeHelper.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\DeviceReactivation.dll
2025-10-14 20:17:14 ----A---- C:\WINDOWS\system32\certprop.dll
2025-10-14 20:17:13 ----A---- C:\WINDOWS\system32\shlwapi.dll
2025-10-14 20:17:13 ----A---- C:\WINDOWS\system32\shell32.dll
2025-10-14 20:17:12 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2025-10-14 20:17:12 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2025-10-14 20:17:12 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2025-10-14 20:17:12 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2025-10-14 20:17:12 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2025-10-14 20:17:12 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2025-10-14 20:17:12 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2025-10-14 20:17:12 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2025-10-14 20:17:11 ----A---- C:\WINDOWS\system32\offlinelsa.dll
2025-10-14 20:17:11 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2025-10-14 20:17:11 ----A---- C:\WINDOWS\system32\ntdll.dll
2025-10-14 20:17:11 ----A---- C:\WINDOWS\system32\hal.dll
2025-10-14 20:17:11 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2025-10-14 20:17:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2025-10-14 20:17:11 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\wuceffects.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\WinTypes.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\wincorlib.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\uDWM.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\lsasrv.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\dwmcore.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\drivers\http.sys
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\combase.dll
2025-10-14 20:17:10 ----A---- C:\WINDOWS\system32\ci.dll
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\winresume.exe
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\winload.exe
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\invagent.dll
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\fsquirt.exe
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\drivers\cldflt.sys
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\bthudtask.exe
2025-10-14 20:17:09 ----A---- C:\WINDOWS\system32\aeinv.dll
2025-10-14 20:17:08 ----A---- C:\WINDOWS\system32\ShellAppRuntime.exe
2025-10-14 20:17:07 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2025-10-14 20:17:07 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2025-10-14 20:17:06 ----A---- C:\WINDOWS\system32\win32kfull.sys
2025-10-14 20:17:06 ----A---- C:\WINDOWS\system32\win32k.sys
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\wpncore.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\wintrust.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\win32u.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\user32.dll
2025-10-14 20:17:05 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2025-10-14 20:17:04 ----A---- C:\WINDOWS\system32\windows.storage.dll
2025-10-14 20:17:04 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2025-10-14 20:17:04 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2025-10-14 20:17:04 ----A---- C:\WINDOWS\system32\ISM.dll
2025-10-14 20:17:04 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2025-10-14 20:17:04 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2025-10-14 20:17:03 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2025-10-14 20:17:03 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2025-10-14 20:17:03 ----A---- C:\WINDOWS\system32\tquery.dll
2025-10-14 20:17:03 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2025-10-14 20:17:03 ----A---- C:\WINDOWS\system32\InputService.dll
2025-10-14 20:17:03 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\win32kbase.sys
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\mssvp.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\mssrch.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\mssprxy.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\mssph.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\mssitlb.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\msscntrs.dll
2025-10-14 20:17:02 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\cryptngc.dll
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2025-10-14 20:16:57 ----A---- C:\WINDOWS\system32\cdd.dll
2025-10-14 20:16:56 ----A---- C:\WINDOWS\system32\smartscreen.exe
2025-10-14 20:16:56 ----A---- C:\WINDOWS\system32\GameInputInbox.dll
2025-10-14 20:16:56 ----A---- C:\WINDOWS\system32\GameInput.dll
2025-10-14 20:16:56 ----A---- C:\WINDOWS\system32\dsclient.dll
2025-10-14 20:16:56 ----A---- C:\WINDOWS\system32\cloudAP.dll
2025-10-14 20:16:56 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2025-10-14 20:16:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2025-10-14 20:16:55 ----A---- C:\WINDOWS\system32\ShareHost.dll
2025-10-14 20:16:55 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2025-10-14 20:16:55 ----A---- C:\WINDOWS\system32\cdprt.dll
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\wlansec.dll
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.Shell.dll
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\wfdprov.dll
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\StartTileData.dll
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\readCloudDataSettings.exe
2025-10-14 20:16:54 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\wlansvcpal.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\wlansvc.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\wlanapi.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\WiFiConfigSP.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\SystemSettingsBroker.exe
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\SystemSettings.DataModel.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2025-10-14 20:16:52 ----A---- C:\WINDOWS\explorer.exe
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\XblGameSaveTask.exe
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\XblGameSave.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\wosc.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\Windows.Management.ModernDeployment.ConfigProviders.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\SpeechPal.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\BthAvctpSvc.dll
2025-10-14 20:16:51 ----A---- C:\WINDOWS\system32\autopilot.dll
2025-10-14 20:16:50 ----A---- C:\WINDOWS\system32\tssrvlic.dll
2025-10-14 20:16:50 ----A---- C:\WINDOWS\system32\SubAuthLoader.dll
2025-10-14 20:16:50 ----A---- C:\WINDOWS\system32\SenseSubAuth.dll
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\mssecwfpu.dll
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\mssecuser.dll
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\drivers\mssecwfp.sys
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\drivers\mssecflt.sys
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\drivers\msseccore.sys
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\consumeresumgr.dll
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\ClipESUConsumer.exe
2025-10-14 20:16:44 ----A---- C:\WINDOWS\system32\clipesu.exe
2025-10-14 20:16:43 ----A---- C:\WINDOWS\system32\drivers\usbuhci.sys
2025-10-14 20:16:43 ----A---- C:\WINDOWS\system32\drivers\usbhub.sys
2025-10-14 20:16:43 ----A---- C:\WINDOWS\system32\drivers\usbehci.sys
2025-10-14 20:16:43 ----A---- C:\WINDOWS\system32\drivers\usbd.sys
2025-10-14 20:16:42 ----A---- C:\WINDOWS\system32\drivers\usbport.sys
2025-10-14 20:16:42 ----A---- C:\WINDOWS\system32\drivers\usbohci.sys
2025-10-14 20:16:42 ----A---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2025-10-14 20:16:42 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2025-10-14 20:16:42 ----A---- C:\WINDOWS\system32\drivers\pci.sys
2025-10-14 20:16:42 ----A---- C:\WINDOWS\system32\drivers\acpi.sys
2025-10-14 20:06:03 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2025-10-14 20:06:02 ----A---- C:\WINDOWS\system32\poqexec.exe
2025-10-11 15:05:37 ----D---- C:\Users\janku\AppData\Roaming\CCleaner
2025-10-11 15:04:50 ----D---- C:\Program Files\Piriform
2025-10-11 15:04:50 ----D---- C:\Program Files\Common Files\Piriform
2025-10-11 15:04:50 ----A---- C:\WINDOWS\system32\icarus_rvrt.exe
2025-10-11 12:42:09 ----D---- C:\WINDOWS\Panther
2025-10-11 12:41:54 ----ASH---- C:\pagefile.sys
2025-09-29 19:02:16 ----A---- C:\WINDOWS\system32\drivers\ssudbus2.sys
2025-09-24 15:22:40 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2025-09-23 16:53:46 ----A---- C:\WINDOWS\system32\drivers\ssudmdm.sys
2025-09-20 19:16:12 ----A---- C:\WINDOWS\system32\gamingservicesproxy_b.dll
2025-09-11 19:37:36 ----A---- C:\WINDOWS\SYSWOW64\fvecerts.dll
2025-09-11 19:37:36 ----A---- C:\WINDOWS\system32\fveui.dll
2025-09-11 19:37:36 ----A---- C:\WINDOWS\system32\fvecerts.dll
2025-09-11 19:37:36 ----A---- C:\WINDOWS\system32\bdeui.dll
2025-09-11 19:37:32 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2025-09-11 19:37:32 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2025-09-11 19:37:32 ----A---- C:\WINDOWS\system32\wpdbusenum.dll
2025-09-11 19:37:32 ----A---- C:\WINDOWS\system32\wpd_ci.dll
2025-09-11 19:37:31 ----A---- C:\WINDOWS\system32\mfplat.dll
2025-09-11 19:37:31 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2025-09-11 19:37:28 ----A---- C:\WINDOWS\SYSWOW64\odbccp32.dll
2025-09-11 19:37:28 ----A---- C:\WINDOWS\SYSWOW64\odbc32.dll
2025-09-11 19:37:28 ----A---- C:\WINDOWS\SYSWOW64\msimsg.dll
2025-09-11 19:37:28 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2025-09-11 19:37:27 ----A---- C:\WINDOWS\SYSWOW64\msoert2.dll
2025-09-11 19:37:27 ----A---- C:\WINDOWS\SYSWOW64\INETRES.dll
2025-09-11 19:37:27 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2025-09-11 19:37:26 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2025-09-11 19:37:26 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2025-09-11 19:37:25 ----A---- C:\WINDOWS\system32\msimsg.dll
2025-09-11 19:37:25 ----A---- C:\WINDOWS\system32\msi.dll
2025-09-11 19:37:25 ----A---- C:\WINDOWS\system32\mmc.exe
2025-09-11 19:37:24 ----A---- C:\WINDOWS\system32\odbccp32.dll
2025-09-11 19:37:24 ----A---- C:\WINDOWS\system32\odbc32.dll
2025-09-11 19:37:24 ----A---- C:\WINDOWS\system32\msoert2.dll
2025-09-11 19:37:24 ----A---- C:\WINDOWS\system32\INETRES.dll
2025-09-11 19:37:24 ----A---- C:\WINDOWS\system32\inetcomm.dll
2025-09-11 19:37:21 ----A---- C:\WINDOWS\system32\easwrt.dll
2025-09-11 19:37:21 ----A---- C:\WINDOWS\system32\easinvoker.exe
2025-09-11 19:37:21 ----A---- C:\WINDOWS\system32\aclui.dll
2025-09-11 19:37:20 ----A---- C:\WINDOWS\system32\UnifiedConsent.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\scesrv.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\rasphone.exe
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\rasdial.exe
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\LockScreenData.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2025-09-11 19:37:19 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\wdigest.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\UserMgrProxy.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\usermgrcli.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\sscore.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\PCShellCommonProxyStub.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\omadmapi.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\NtlmShared.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\negoexts.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\FwRemoteSvr.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\feclient.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\enrollmentapi.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\dmcmnutils.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\BitLockerCsp.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2025-09-11 19:37:18 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\wfapigp.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\InstallServiceTasks.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\InstallService.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\fwpolicyiomgr.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\fwbase.dll
2025-09-11 19:37:17 ----A---- C:\WINDOWS\SYSWOW64\FirewallAPI.dll
2025-09-11 19:37:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Phone.dll
2025-09-11 19:37:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Maps.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\SyncSettings.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\sspicli.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\sechost.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\secproc.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2025-09-11 19:37:15 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2025-09-11 19:37:14 ----A---- C:\WINDOWS\system32\winlogonext.dll
2025-09-11 19:37:14 ----A---- C:\WINDOWS\system32\usercpl.dll
2025-09-11 19:37:14 ----A---- C:\WINDOWS\system32\pku2u.dll
2025-09-11 19:37:14 ----A---- C:\WINDOWS\system32\netplwiz.dll
2025-09-11 19:37:14 ----A---- C:\WINDOWS\system32\AzureCheck-events.dll
2025-09-11 19:37:14 ----A---- C:\WINDOWS\system32\authui.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\scesrv.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasplap.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasphone.exe
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasdlg.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasdial.exe
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasautou.exe
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasauto.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasapi32.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2025-09-11 19:37:13 ----A---- C:\WINDOWS\system32\AboutSettingsHandlers.dll
2025-09-11 19:37:12 ----A---- C:\WINDOWS\system32\MissionControlAggregator.dll
2025-09-11 19:37:12 ----A---- C:\WINDOWS\system32\LockScreenData.dll
2025-09-11 19:37:12 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys
2025-09-11 19:37:12 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2025-09-11 19:37:12 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\shutdownux.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\omadmclient.exe
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\omadmapi.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\FwRemoteSvr.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\feclient.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\efssvc.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\efslsaext.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\efscore.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\dmcmnutils.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\dcsvc.dll
2025-09-11 19:37:11 ----A---- C:\WINDOWS\system32\BitLockerCsp.dll
2025-09-11 19:37:09 ----A---- C:\WINDOWS\system32\Windows.CloudStore.Schema.DesktopShell.dll
2025-09-11 19:37:09 ----A---- C:\WINDOWS\system32\UserMgrProxy.dll
2025-09-11 19:37:09 ----A---- C:\WINDOWS\system32\usermgrcli.dll
2025-09-11 19:37:09 ----A---- C:\WINDOWS\system32\usermgr.dll
2025-09-11 19:37:09 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2025-09-11 19:37:09 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2025-09-11 19:37:09 ----A---- C:\WINDOWS\system32\comctl32.dll
2025-09-11 19:37:07 ----A---- C:\WINDOWS\system32\winlogon.exe
2025-09-11 19:37:07 ----A---- C:\WINDOWS\system32\sscore.dll
2025-09-11 19:37:07 ----A---- C:\WINDOWS\system32\srvsvc.dll
2025-09-11 19:37:07 ----A---- C:\WINDOWS\system32\drivers\mup.sys
2025-09-11 19:37:07 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\sspisrv.dll
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\sspicli.dll
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\sechost.dll
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\netlogon.dll
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\lsass.exe
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\KernelBase.dll
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2025-09-11 19:37:06 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2025-09-11 19:37:05 ----A---- C:\WINDOWS\system32\wininit.exe
2025-09-11 19:37:05 ----A---- C:\WINDOWS\system32\wer.dll
2025-09-11 19:37:05 ----A---- C:\WINDOWS\system32\schannel.dll
2025-09-11 19:37:05 ----A---- C:\WINDOWS\system32\NtlmShared.dll
2025-09-11 19:37:05 ----A---- C:\WINDOWS\system32\msv1_0.dll
2025-09-11 19:37:05 ----A---- C:\WINDOWS\system32\logoncli.dll
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\wdigest.dll
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\profsvc.dll
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\generaltel.dll
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\dcntel.dll
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\authz.dll
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\aepic.dll
2025-09-11 19:37:04 ----A---- C:\WINDOWS\system32\acmigration.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\SystemSettings.SettingsExtensibility.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\SRH.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\devinv.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\appraiser.dll
2025-09-11 19:37:03 ----A---- C:\WINDOWS\system32\aemarebackup.dll
2025-09-11 19:37:02 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2025-09-11 19:37:02 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2025-09-11 19:37:02 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2025-09-11 19:37:02 ----A---- C:\WINDOWS\system32\SettingsHandlers_User.dll
2025-09-11 19:37:02 ----A---- C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\wevtapi.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\SettingsHandlers_Devices.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\policymanagerprecheck.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\DesktopShellExt.dll
2025-09-11 19:37:01 ----A---- C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\wfapigp.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\kerberos.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\icfupgd.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\fwpolicyiomgr.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\fwmdmcsp.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\fwbase.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\FirewallAPI.dll
2025-09-11 19:37:00 ----A---- C:\WINDOWS\system32\BFE.DLL
2025-09-11 19:36:59 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2025-09-11 19:36:59 ----A---- C:\WINDOWS\system32\storewuauth.dll
2025-09-11 19:36:59 ----A---- C:\WINDOWS\system32\PushToInstall.dll
2025-09-11 19:36:59 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2025-09-11 19:36:59 ----A---- C:\WINDOWS\system32\InstallService.dll
2025-09-11 19:36:58 ----A---- C:\WINDOWS\system32\oemlicense.dll
2025-09-11 19:36:58 ----A---- C:\WINDOWS\system32\negoexts.dll
2025-09-11 19:36:58 ----A---- C:\WINDOWS\system32\licensingdiag.exe
2025-09-11 19:36:58 ----A---- C:\WINDOWS\system32\Clipc.dll
2025-09-11 19:36:57 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2025-09-11 19:36:57 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2025-09-11 19:36:56 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2025-09-11 19:36:56 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2025-09-11 19:36:56 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2025-09-11 19:36:56 ----A---- C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\SyncSettings.dll
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\PinEnrollmentHelper.dll
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\deviceregistration.dll
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\CloudRestoreLauncher.dll
2025-09-11 19:36:54 ----A---- C:\WINDOWS\system32\advapi32.dll
2025-09-11 19:36:53 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2025-08-23 09:00:53 ----D---- C:\Program Files\LogiOptionsPlus
2025-08-14 21:17:24 ----A---- C:\WINDOWS\SYSWOW64\tapisrv.dll
2025-08-14 21:17:24 ----A---- C:\WINDOWS\SYSWOW64\tapi32.dll
2025-08-14 21:17:24 ----A---- C:\WINDOWS\SYSWOW64\sdiageng.dll
2025-08-14 21:17:23 ----A---- C:\WINDOWS\SYSWOW64\IndexedDbLegacy.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\xolehlp.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\upnphost.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\upnpcont.exe
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\upnp.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\udhisapi.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\ssdpapi.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\msdtcuiu.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\msdtcspoffln.dll
2025-08-14 21:17:22 ----A---- C:\WINDOWS\SYSWOW64\msdtcprx.dll
2025-08-14 21:17:21 ----A---- C:\WINDOWS\system32\RDXTaskFactory.dll
2025-08-14 21:17:19 ----A---- C:\WINDOWS\system32\tapisrv.dll
2025-08-14 21:17:19 ----A---- C:\WINDOWS\system32\tapi32.dll
2025-08-14 21:17:19 ----A---- C:\WINDOWS\system32\sdiageng.dll
2025-08-14 21:17:19 ----A---- C:\WINDOWS\system32\pcwutl.dll
2025-08-14 21:17:18 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2025-08-14 21:17:15 ----A---- C:\WINDOWS\system32\xolehlp.dll
2025-08-14 21:17:15 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2025-08-14 21:17:15 ----A---- C:\WINDOWS\system32\msdtctm.dll
2025-08-14 21:17:15 ----A---- C:\WINDOWS\system32\msdtcspoffln.dll
2025-08-14 21:17:15 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2025-08-14 21:17:13 ----A---- C:\WINDOWS\system32\upnphost.dll
2025-08-14 21:17:13 ----A---- C:\WINDOWS\system32\upnpcont.exe
2025-08-14 21:17:13 ----A---- C:\WINDOWS\system32\upnp.dll
2025-08-14 21:17:13 ----A---- C:\WINDOWS\system32\udhisapi.dll
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\rastlsext.dll
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\newdev.exe
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\ndadmin.exe
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\MTF.dll
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\drivers\afunix.sys
2025-08-14 21:17:12 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\Wldap32.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\rpcnsh.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\rdpserverbase.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\pcaui.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\pcacli.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\LaunchTM.exe
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2025-08-14 21:17:11 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2025-08-14 21:17:10 ----A---- C:\WINDOWS\SYSWOW64\wpnapps.dll
2025-08-14 21:17:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Bluetooth.dll
2025-08-14 21:17:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2025-08-14 21:17:10 ----A---- C:\WINDOWS\SYSWOW64\RpcRtRemote.dll
2025-08-14 21:17:10 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2025-08-14 21:17:09 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.dll
2025-08-14 21:17:09 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2025-08-14 21:17:09 ----A---- C:\WINDOWS\SYSWOW64\aadauthhelper.dll
2025-08-14 21:17:08 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2025-08-14 21:17:08 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2025-08-14 21:17:08 ----A---- C:\WINDOWS\system32\unattend.dll
2025-08-14 21:17:07 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2025-08-14 21:17:07 ----A---- C:\WINDOWS\system32\rastlsext.dll
2025-08-14 21:17:07 ----A---- C:\WINDOWS\system32\rastls.dll
2025-08-14 21:17:07 ----A---- C:\WINDOWS\system32\newdev.exe
2025-08-14 21:17:07 ----A---- C:\WINDOWS\system32\newdev.dll
2025-08-14 21:17:07 ----A---- C:\WINDOWS\system32\ndadmin.exe
2025-08-14 21:17:07 ----A---- C:\WINDOWS\system32\drivers\afunix.sys
2025-08-14 21:17:06 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2025-08-14 21:17:06 ----A---- C:\WINDOWS\system32\MTFServer.dll
2025-08-14 21:17:06 ----A---- C:\WINDOWS\system32\MTF.dll
2025-08-14 21:17:06 ----A---- C:\WINDOWS\system32\gdi32full.dll
2025-08-14 21:17:06 ----A---- C:\WINDOWS\system32\drivers\ksthunk.sys
2025-08-14 21:17:06 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys
2025-08-14 21:17:06 ----A---- C:\WINDOWS\system32\actxprxy.dll
2025-08-14 21:17:05 ----A---- C:\WINDOWS\system32\omadmprc.exe
2025-08-14 21:17:05 ----A---- C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2025-08-14 21:17:05 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2025-08-14 21:17:03 ----A---- C:\WINDOWS\system32\imm32.dll
2025-08-14 21:17:03 ----A---- C:\WINDOWS\system32\drivers\tm.sys
2025-08-14 21:17:03 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2025-08-14 21:17:02 ----A---- C:\WINDOWS\system32\RpcEpMap.dll
2025-08-14 21:17:01 ----A---- C:\WINDOWS\system32\Wldap32.dll
2025-08-14 21:17:01 ----A---- C:\WINDOWS\system32\rpcss.dll
2025-08-14 21:17:01 ----A---- C:\WINDOWS\system32\dcomp.dll
2025-08-14 21:17:01 ----A---- C:\WINDOWS\system32\crypt32.dll
2025-08-14 21:17:00 ----A---- C:\WINDOWS\system32\rpcnsh.dll
2025-08-14 21:17:00 ----A---- C:\WINDOWS\system32\dwmredir.dll
2025-08-14 21:17:00 ----A---- C:\WINDOWS\system32\dwmghost.dll
2025-08-14 21:17:00 ----A---- C:\WINDOWS\system32\dwmapi.dll
2025-08-14 21:16:58 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2025-08-14 21:16:58 ----A---- C:\WINDOWS\system32\apphelp.dll
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\pcaui.exe
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\pcaui.dll
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\pcasvc.dll
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\pcalua.exe
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\pcaevts.dll
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\pcadm.dll
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\pcacli.dll
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\LaunchTM.exe
2025-08-14 21:16:57 ----A---- C:\WINDOWS\system32\aitstatic.exe
2025-08-14 21:16:55 ----A---- C:\WINDOWS\system32\WSDApi.dll
2025-08-14 21:16:55 ----A---- C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2025-08-14 21:16:55 ----A---- C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2025-08-14 21:16:55 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2025-08-14 21:16:55 ----A---- C:\WINDOWS\system32\daxexec.dll
2025-08-14 21:16:55 ----A---- C:\WINDOWS\system32\convertvhd.exe
2025-08-14 21:16:54 ----A---- C:\WINDOWS\system32\wpnprv.dll
2025-08-14 21:16:54 ----A---- C:\WINDOWS\system32\wpnapps.dll
2025-08-14 21:16:54 ----A---- C:\WINDOWS\system32\RpcRtRemote.dll
2025-08-14 21:16:54 ----A---- C:\WINDOWS\system32\rdpbase.dll
2025-08-14 21:16:53 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2025-08-14 21:16:52 ----A---- C:\WINDOWS\system32\gdi32.dll
2025-08-14 21:16:47 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2025-08-14 21:16:47 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.dll
2025-08-14 21:16:47 ----A---- C:\WINDOWS\system32\aadauthhelper.dll
2025-08-14 21:16:46 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2025-08-14 21:16:45 ----A---- C:\WINDOWS\system32\wow64win.dll
2025-08-14 21:16:45 ----A---- C:\WINDOWS\system32\usbmon.dll
2025-08-14 21:16:45 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2025-08-14 21:16:45 ----A---- C:\WINDOWS\system32\Microsoft-Windows-Internal-Shell-NearShareExperience.dll
2025-08-14 21:16:45 ----A---- C:\WINDOWS\system32\localui.dll
2025-08-14 21:16:44 ----A---- C:\WINDOWS\system32\Windows.Internal.System.UserProfile.dll
2025-08-14 21:16:44 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2025-08-14 21:16:42 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2025-08-14 21:16:40 ----A---- C:\WINDOWS\system32\drivers\hdaudbus.sys

======List of files/folders modified in the last 3 months======

2025-10-18 18:54:20 ----D---- C:\Program Files\trend micro
2025-10-18 18:48:37 ----D---- C:\WINDOWS\Temp
2025-10-18 18:41:02 ----D---- C:\WINDOWS\SystemTemp
2025-10-18 18:41:02 ----D---- C:\WINDOWS\system32\LogFiles
2025-10-18 18:32:32 ----D---- C:\WINDOWS\system32\sru
2025-10-18 18:31:42 ----D---- C:\Users\janku\AppData\Roaming\Dropbox
2025-10-18 18:31:16 ----D---- C:\WINDOWS\Prefetch
2025-10-18 18:31:12 ----HD---- C:\Program Files\WindowsApps
2025-10-18 18:30:39 ----D---- C:\WINDOWS\AppReadiness
2025-10-17 23:58:47 ----D---- C:\ProgramData\NVIDIA
2025-10-17 23:58:35 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2025-10-17 22:37:28 ----SHD---- C:\System Volume Information
2025-10-17 22:25:02 ----D---- C:\Users\janku\AppData\Roaming\TP-Link
2025-10-17 22:24:57 ----D---- C:\WINDOWS\system32\Tasks
2025-10-17 22:24:50 ----RSD---- C:\WINDOWS\Fonts
2025-10-17 21:10:29 ----D---- C:\WINDOWS\system32\SleepStudy
2025-10-17 20:25:32 ----D---- C:\WINDOWS\system32\catroot2
2025-10-17 19:53:00 ----D---- C:\WINDOWS\Logs
2025-10-17 19:52:34 ----RD---- C:\WINDOWS\Microsoft.NET
2025-10-17 18:45:12 ----D---- C:\WINDOWS\System32
2025-10-17 18:34:05 ----D---- C:\Program Files (x86)\CCleaner Browser
2025-10-16 12:26:03 ----SHDC---- C:\WINDOWS\Installer
2025-10-16 12:26:01 ----D---- C:\WINDOWS\SysWOW64
2025-10-16 12:26:00 ----RD---- C:\Program Files
2025-10-16 12:25:52 ----RD---- C:\Program Files (x86)
2025-10-16 12:25:41 ----A---- C:\WINDOWS\system32\xgameruntime.dll
2025-10-16 12:25:41 ----A---- C:\WINDOWS\system32\xgamehelper.exe
2025-10-16 12:25:41 ----A---- C:\WINDOWS\system32\xgamecontrol.exe
2025-10-16 12:25:39 ----A---- C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-10-16 12:25:32 ----A---- C:\WINDOWS\system32\gameplatformservices.dll
2025-10-16 12:25:32 ----A---- C:\WINDOWS\system32\gamelaunchhelper.dll
2025-10-16 12:25:32 ----A---- C:\WINDOWS\system32\gameconfighelper.dll
2025-10-16 12:07:34 ----D---- C:\Windows
2025-10-16 12:07:34 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2025-10-16 08:14:47 ----AD---- C:\Program Files (x86)\Microsoft Office
2025-10-15 21:07:09 ----D---- C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-10-15 17:36:11 ----D---- C:\WINDOWS\INF
2025-10-15 17:36:11 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2025-10-15 17:32:40 ----D---- C:\WINDOWS\system32\config
2025-10-15 17:30:04 ----HD---- C:\ProgramData
2025-10-15 17:29:58 ----ASH---- C:\DumpStack.log.tmp
2025-10-14 23:21:00 ----D---- C:\WINDOWS\WinSxS
2025-10-14 23:20:51 ----SHD---- C:\Boot
2025-10-14 23:20:46 ----D---- C:\WINDOWS\system32\DriverStore
2025-10-14 23:20:20 ----D---- C:\WINDOWS\system32\drivers
2025-10-14 23:18:37 ----D---- C:\WINDOWS\system32\CatRoot
2025-10-14 23:18:22 ----D---- C:\WINDOWS\SYSWOW64\setup
2025-10-14 23:18:22 ----D---- C:\WINDOWS\SYSWOW64\migration
2025-10-14 23:18:22 ----D---- C:\WINDOWS\SYSWOW64\Dism
2025-10-14 23:18:22 ----D---- C:\WINDOWS\SystemResources
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\setup
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\oobe
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\migration
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\en-US
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\Dism
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\cs-CZ
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\compatrel
2025-10-14 23:18:21 ----D---- C:\WINDOWS\system32\Boot
2025-10-14 23:18:20 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2025-10-14 23:18:20 ----D---- C:\WINDOWS\Provisioning
2025-10-14 23:18:20 ----D---- C:\WINDOWS\bcastdvr
2025-10-14 23:18:20 ----D---- C:\WINDOWS\apppatch
2025-10-14 23:18:19 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2025-10-14 23:18:18 ----D---- C:\WINDOWS\system32\CodeIntegrity
2025-10-14 21:58:11 ----RD---- C:\WINDOWS\assembly
2025-10-14 21:55:53 ----D---- C:\WINDOWS\system32\MRT
2025-10-14 21:55:52 ----D---- C:\WINDOWS\debug
2025-10-14 21:55:48 ----AC---- C:\WINDOWS\system32\MRT.exe
2025-10-14 20:19:22 ----D---- C:\WINDOWS\CbsTemp
2025-10-14 20:16:43 ----A---- C:\WINDOWS\SYSWOW64\PrintConfig.dll
2025-10-12 09:57:53 ----D---- C:\Program Files\Logi
2025-10-12 09:56:44 ----D---- C:\WINDOWS\Minidump
2025-10-11 15:05:12 ----D---- C:\ProgramData\Piriform
2025-10-11 15:05:12 ----AD---- C:\Program Files\CCleaner
2025-10-11 15:05:11 ----D---- C:\WINDOWS\Tasks
2025-10-11 15:04:50 ----D---- C:\Program Files\Common Files
2025-10-10 08:31:52 ----D---- C:\Program Files (x86)\Dropbox
2025-10-07 11:23:30 ----A---- C:\WINDOWS\SYSWOW64\GameInputRedist.dll
2025-10-07 11:23:18 ----A---- C:\WINDOWS\system32\GameInputRedist.dll
2025-09-26 21:37:54 ----A---- C:\WINDOWS\system32\gameplatformservices.dll.0
2025-09-11 22:11:47 ----D---- C:\WINDOWS\system32\wbem
2025-09-11 22:11:46 ----D---- C:\WINDOWS\ShellExperiences
2025-09-11 22:11:46 ----D---- C:\WINDOWS\PolicyDefinitions
2025-09-11 19:35:50 ----D---- C:\Program Files (x86)\Common Files
2025-09-11 19:29:47 ----D---- C:\Program Files\RUXIM
2025-08-30 13:22:57 ----D---- C:\Program Files\HPPrintScanDoctor
2025-08-15 21:06:40 ----D---- C:\Users\janku\AppData\Roaming\Mozilla
2025-08-14 22:33:50 ----D---- C:\WINDOWS\SYSWOW64\en-US
2025-08-14 22:33:50 ----D---- C:\WINDOWS\SYSWOW64\drivers
2025-08-14 22:33:49 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2025-08-14 22:33:49 ----D---- C:\WINDOWS\system32\migwiz
2025-08-14 22:33:49 ----D---- C:\WINDOWS\system32\appraiser
2025-08-14 22:33:48 ----D---- C:\WINDOWS\cs-CZ
2025-08-02 21:57:25 ----D---- C:\ProgramData\Packages
2025-07-27 19:43:30 ----AD---- C:\KMPlayer

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdpsp;@oem26.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\System32\drivers\amdpsp.sys [2019-06-27 138064]
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2025-08-14 139944]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2023-11-15 58328]
R0 MsSecCore;@%SystemRoot%\System32\Drivers\msseccore.sys,-1001; C:\WINDOWS\system32\drivers\msseccore.sys [2025-10-14 27520]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2025-08-14 48128]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 78136]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2024-06-12 95232]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2025-08-14 232456]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2025-08-14 270136]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2025-08-14 86792]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2025-08-14 126024]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 59392]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8704]
R2 AMDRyzenMasterDriver;AMDRyzenMasterDriver; \??\C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\AMD\Ryzen\AMDRyzenMasterDriver.sys [2017-11-16 70304]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2025-04-09 146872]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2025-10-14 505856]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2025-08-14 57352]
R2 googledrivefs31931;googledrivefs31931; \??\C:\Program Files\Google\Drive File Stream\Drivers\31931\googledrivefs31931.sys [2025-05-14 386256]
R2 inpoutx64;inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [2019-09-05 15008]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2023-11-15 53248]
R2 NPF;Netgroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2023-10-01 36600]
R3 amdgpio2;@oem42.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio2.sys [2019-10-30 46040]
R3 amdgpio3;@oem39.inf,%GPIO.SvcDesc%;AMD GPIO Client Driver; C:\WINDOWS\System32\drivers\amdgpio3.sys [2019-04-18 24528]
R3 AMDPCIDev;@oem46.inf,%AMDPCIDev.SVCDESC%;AMD PCI; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [2019-09-17 32520]
R3 dbx;dbx; C:\WINDOWS\system32\DRIVERS\dbx.sys [2025-04-29 58064]
R3 gameflt;@oem57.inf,%ServiceName%;gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.sys [2025-05-30 167608]
R3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys [2018-10-07 26792]
R3 gdrv2;gdrv2; \??\C:\WINDOWS\gdrv2.sys [2019-09-05 32600]
R3 gdrv3;gdrv3; \??\C:\WINDOWS\System32\drivers\gdrv3.sys [2025-01-01 52528]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2019-10-30 6849832]
R3 lvrs64;@oem21.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem3.inf,%PID_0805_DD%(UVC);Logitech Webcam 300(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2023-11-15 323440]
R3 NVHDA;@oem50.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2021-12-07 136472]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\nvlddmkm.sys [2021-12-08 37545896]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2019-12-07 43832]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2022-08-23 16336]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2019-12-07 319800]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 884752]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 172344]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 124216]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 135992]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 81720]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 105480]
S0 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2019-12-07 168464]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 58680]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 68408]
S0 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2024-05-14 142304]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 23040]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2025-05-13 699392]
S3 amdi2c;@amdi2c.inf,%amdi2c.SVCDESC%;AMD I2C Controller Service; C:\WINDOWS\System32\drivers\amdi2c.sys [2019-12-07 45568]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2024-11-14 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2023-11-15 140144]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2023-11-15 175472]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2023-11-15 156016]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 279040]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2025-05-13 115712]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2023-11-15 106496]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2025-05-13 45568]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2025-05-13 1573376]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2025-05-13 110592]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 44032]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 66576]
S3 dg_ssudbus;@oem60.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [2024-10-17 175824]
S3 dtlitescsibus;@oem18.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-05-03 30264]
S3 dtliteusbbus;@oem13.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-05-03 47672]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_53931f0ae21d6d2c\genericusbfn.sys [2019-12-07 23040]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 55824]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2023-11-15 104448]
S3 HidSpiCx;HidSpi KMDF Class Extension; C:\WINDOWS\system32\drivers\HidSpiCx.sys [2023-11-15 92160]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2025-10-14 96128]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 30208]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2019-12-07 1853752]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2019-12-07 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2019-12-07 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2019-12-07 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2019-12-07 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2019-12-07 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2019-12-07 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2019-12-07 177152]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2019-12-07 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2019-12-07 558904]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2023-11-15 47104]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 30720]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 59704]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 537608]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 64016]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2025-05-13 393728]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2025-05-13 66048]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2019-12-07 1131320]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2025-10-14 378264]
S3 MsSecWfp;@%SystemRoot%\System32\Drivers\mssecwfp.sys,-1001; C:\WINDOWS\system32\drivers\mssecwfp.sys [2025-10-14 44416]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2019-12-07 146232]
S3 NDKPing;NDKPing Driver; C:\WINDOWS\system32\drivers\NDKPing.sys [2019-12-07 72720]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2024-05-14 210944]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2023-11-15 131560]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 17408]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 27136]
S4 edevmonm;@oem24.inf,%ServiceName%;edevmonm; C:\WINDOWS\system32\DRIVERS\edevmonm.sys [2025-08-14 127072]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2023-11-15 36208]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2025-08-24 174584]
R2 Autodesk Access Service Host;Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [2025-06-07 19981080]
R2 CCleaner7;CCleaner 7; C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe [2025-10-17 28276344]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R2 CDPUserSvc_195915d8;Uživatelská služba platformy připojených zařízení_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2025-10-14 13288288]
R2 CodeMeter.exe;CodeMeter Runtime Server; C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2015-01-21 3523448]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R2 DbxSvc;@oem58.inf,%ServiceName%;DbxSvc; C:\WINDOWS\System32\DbxSvc.exe [2025-04-29 58984]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
R2 DraftSight API Service;DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [2017-08-08 121344]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
R2 EasyTuneEngineService;EasyTune Engine; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [2019-05-22 142768]
R2 efwd;ESET Forwarder; C:\Program Files\ESET\ESET Smart Security\efwd.exe [2025-09-11 5538224]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2025-09-11 4662320]
R2 FileOpenManager;FileOpen Manager Service; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [2021-11-30 845176]
R2 GamingServices;Gaming Services; C:\Program Files\WindowsApps\Microsoft.GamingServices_31.106.13001.0_x64__8wekyb3d8bbwe\GamingServices.exe [2025-10-16 88440]
R2 GamingServicesNet;Gaming Services; C:\Program Files\WindowsApps\Microsoft.GamingServices_31.106.13001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [2025-10-16 88440]
R2 Gservice;Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [2016-12-02 19888]
R2 HPPrintScanDoctorService;HP Print Scan Doctor Service; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [2025-08-29 243720]
R2 MyService1;GIGABYTE Adjust; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [2021-04-08 18944]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\NVDisplay.Container.exe [2021-12-08 913832]
R2 NVWMI;NVWMI; C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\NVWMI\nvWmi64.exe [2021-12-08 4452784]
R2 OneSyncSvc_195915d8;Hostitel synchronizace_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R2 OptionsPlusUpdaterService;Logi Options+; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [2025-08-22 21271888]
R3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2017-03-22 298496]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R3 cbdhsvc_195915d8;Uživatelská služba schránky_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2025-09-11 4662320]
R3 GameInputSvc;@%systemroot%\system32\GameInputSvc.exe,-101; C:\WINDOWS\System32\GameInputSvc.exe [2025-07-12 55168]
R3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
R3 PimIndexMaintenanceSvc_195915d8;Data kontaktů_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S2 ccleaner;Služba CCleaner Browser Update (ccleaner); C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [2022-12-14 208176]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S2 CDPUserSvc_6dd2caf;Uživatelská služba platformy připojených zařízení_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S2 DropboxUpdaterInternalService123.0.6299.129;DropboxUpdater InternalService 123.0.6299.129 (DropboxUpdaterInternalService123.0.6299.129); C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [2025-05-26 5898104]
S2 DropboxUpdaterService123.0.6299.129;DropboxUpdater Service 123.0.6299.129 (DropboxUpdaterService123.0.6299.129); C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [2025-05-26 5898104]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S2 GoogleUpdaterInternalService142.0.7416.0;Interní aktualizační služba Google (GoogleUpdaterInternalService142.0.7416.0); C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe [2025-09-15 6863512]
S2 GoogleUpdaterService142.0.7416.0;Aktualizační služba Google (GoogleUpdaterService142.0.7416.0); C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe [2025-09-15 6863512]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2025-09-15 6863512]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S2 OcButtonService;OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [2019-05-09 125872]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S2 OneSyncSvc_6dd2caf;Hostitel synchronizace_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AarSvc_102463ab;Agent Activation Runtime_102463ab; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AarSvc_195915d8;Agent Activation Runtime_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AarSvc_687545b;Agent Activation Runtime_687545b; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AarSvc_6dd2caf;Agent Activation Runtime_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AarSvc_8596949;Agent Activation Runtime_8596949; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AarSvc_9a0a2;AarSvc_9a0a2; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2020-12-08 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BcastDVRUserService_102463ab;Uživatelská služba pro GameDVR a vysílání her_102463ab; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BcastDVRUserService_195915d8;Uživatelská služba pro GameDVR a vysílání her_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BcastDVRUserService_687545b;Uživatelská služba pro GameDVR a vysílání her_687545b; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BcastDVRUserService_6dd2caf;Uživatelská služba pro GameDVR a vysílání her_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BcastDVRUserService_8596949;Uživatelská služba pro GameDVR a vysílání her_8596949; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BcastDVRUserService_9a0a2;BcastDVRUserService_9a0a2; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BluetoothUserService_195915d8;Služba pro podporu uživatelů Bluetooth_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BluetoothUserService_6dd2caf;Služba pro podporu uživatelů Bluetooth_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 CaptureService_195915d8;CaptureService_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 CaptureService_6dd2caf;CaptureService_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 cbdhsvc_6dd2caf;Uživatelská služba schránky_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 CCleanerBrowserElevationService;CCleaner Browser Elevation Service (CCleanerBrowserElevationService); C:\Program Files (x86)\CCleaner Browser\Application\140.0.32350.210\elevation_service.exe [2025-10-15 2611896]
S3 ccleanerm;Služba CCleaner Browser Update (ccleanerm); C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [2022-12-14 208176]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S3 cloudidsvc;@%SystemRoot%\system32\cloudidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 ConsentUxUserSvc_195915d8;ConsentUX_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 ConsentUxUserSvc_6dd2caf;ConsentUX_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2025-05-13 388000]
S3 CredentialEnrollmentManagerUserSvc_195915d8;CredentialEnrollmentManagerUserSvc_195915d8; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2025-05-13 388000]
S3 CredentialEnrollmentManagerUserSvc_6dd2caf;CredentialEnrollmentManagerUserSvc_6dd2caf; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2025-05-13 388000]
S3 dcsvc;@%systemroot%\system32\dcsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DeviceAssociationBrokerSvc_195915d8;DeviceAssociationBroker_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DeviceAssociationBrokerSvc_6dd2caf;DeviceAssociationBroker_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DevicePickerUserSvc_195915d8;DevicePicker_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DevicePickerUserSvc_6dd2caf;DevicePicker_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DevicesFlowUserSvc_195915d8;Tok zařízení_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DevicesFlowUserSvc_6dd2caf;Tok zařízení_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2024-05-14 94208]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 DropboxElevationService;Dropbox Elevation Service (DropboxElevationService); C:\Program Files (x86)\Dropbox\Client\234.4.5591\DropboxElevationService.exe [2025-10-07 1659336]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-10 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2017-09-28 1595400]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-11-08 46184]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S3 GameInputRedistService;GameInput Redist Service; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [2025-10-07 141688]
S3 GoogleChromeElevationService;Google Chrome Elevation Service (GoogleChromeElevationService); C:\Program Files (x86)\Google\Chrome\Application\141.0.7390.66\elevation_service.exe [2025-10-07 2381976]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2025-09-15 6863512]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 McpManagementService;@%SystemRoot%\system32\McpManagementService.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 MessagingService_195915d8;Služba zasílání zpráv_195915d8; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 MessagingService_6dd2caf;Služba zasílání zpráv_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service (MicrosoftEdgeElevationService); C:\Program Files (x86)\Microsoft\Edge\Application\141.0.3537.71\elevation_service.exe [2025-10-09 2402856]
S3 MixedRealityOpenXRSvc;@%SystemRoot%\system32\MixedRealityRuntime.dll,-101; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2025-10-15 283776]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2025-05-13 57480]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2024-05-14 106496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S3 PimIndexMaintenanceSvc_6dd2caf;Data kontaktů_6dd2caf; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2025-05-13 777152]
S4 DialogBlockingService;@%SystemRoot%\system32\DialogBlockingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2025-05-13 57480]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119580
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu PC strašně se mi plní disk

#2 Příspěvek od Rudy »

Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 . RSIT už je dávno za svým ztenitem a není zcela kompatibilní s 64b systémy. Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hanz-xc
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 18 srp 2009 16:25

Re: Prosím o kontrolu PC strašně se mi plní disk

#3 Příspěvek od hanz-xc »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-10-2025
Ran by janku (18-10-2025 21:23:55)
Running from C:\Users\janku\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.6456 (X64) (2020-08-20 19:30:10)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1967644643-3473992454-2983207395-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1967644643-3473992454-2983207395-503 - Limited - Disabled)
Guest (S-1-5-21-1967644643-3473992454-2983207395-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1967644643-3473992454-2983207395-1003 - Limited - Enabled)
Host (S-1-5-21-1967644643-3473992454-2983207395-1005 - Administrator - Enabled) => C:\Users\Host.HONZASTOLNIPC
janku (S-1-5-21-1967644643-3473992454-2983207395-1001 - Administrator - Enabled) => C:\Users\janku
WDAGUtilityAccount (S-1-5-21-1967644643-3473992454-2983207395-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM-x32\...\{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0226.1 - GIGABYTE) Hidden
@BIOS (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 4.19.0226.1 - GIGABYTE)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 25.001.20756 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601120}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AIMP (HKLM-x32\...\AIMP) (Version: v4.01.1705, 18.03.2016 - AIMP DevTeam)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 17.7 - Advanced Micro Devices, Inc.)
Any DGN to DWG Converter 2017 (HKLM-x32\...\Any DGN to DWG Converter_is1) (Version: - AnyDWG Software, Inc.)
APP Center (HKLM-x32\...\{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.24.1105.1 - Gigabyte) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 3.24.1105.1 - Gigabyte)
ArchiCAD 19 CZE (HKLM\...\001FFF2FFF19FF00FF1101F01F02F000-R1) (Version: 19.0 - GRAPHISOFT)
ArchiCAD SE 2016 CZE (HKLM\...\036FFF2FFF19FF00FF1115F01F02F000-R1) (Version: 19.0 - GRAPHISOFT)
Autodesk DWG TrueView 2024 - English (HKLM\...\{7526CB7C-C160-303E-89B2-36A159E8832C}) (Version: 24.3.171.0 - Autodesk, Inc.)
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Název společnosti:) Hidden
BIMTech Tools for ArchiCAD verze 1.3 (HKLM-x32\...\{1D261017-1A97-44BF-852E-049E5D08BF13}_is1) (Version: 1.3 - BIMTech s.r.o.)
BrLauncher (HKLM-x32\...\{42D26B47-887C-45FC-BCAE-0BE485C5C0BB}) (Version: 2.0.11.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{566A27C1-043E-4A17-AC78-338559A4953B}) (Version: 10.0.0.120 - Brother Industries, Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{7ef8cf92-cb09-4d1f-a0ed-8c84f4e7a478}) (Version: 10.0.0.120 - Brother Industries, Ltd.)
Brother Port Driver (HKLM-x32\...\{EEA8DF77-9D7E-421A-A9A8-A6E9894A18A3}) (Version: 1.0.3.3 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{272543B6-B337-4C8F-B9F1-19E884C2C7AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{1162495D-7CE7-4EF9-A0F8-151196F3A660}) (Version: 1.0.17.1 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{32F47565-84B1-42CC-B09A-4CDDD9A32F94}) (Version: 1.0.20.0 - Brother Industries Ltd.) Hidden
CCleaner 7 (HKLM\...\CCleaner 7) (Version: 7.0.1010.1196 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 140.0.32350.210 - Autoři prohlížeče CCleaner Browser)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
Cisco Webex Meetings (HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\ActiveTouchMeetingClient) (Version: 41.10.8 - Cisco Webex LLC)
CodeMeter Runtime Kit v5.21 (HKLM\...\{05CA69B3-6699-425F-8223-39E4E00B6581}) (Version: 5.21.1478.500 - WIBU-SYSTEMS AG)
ControlCenter4 (HKLM-x32\...\{9091B952-8719-49C3-9CC7-6E20EC61081F}) (Version: 4.6.6.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 - Brother Industries, Ltd.) Hidden
CrystalDiskMark 6.0.0 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.0 - Crystal Dew World)
DraftSight 2017 SP3 x64 (HKLM\...\{714684EF-151B-4DD9-90BC-581BF3D5BC71}) (Version: 17.3.0080 - Dassault Systemes)
Dropbox (HKLM-x32\...\Dropbox) (Version: 234.4.5591 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.983.1 - Dropbox, Inc.) Hidden
EasyTuneEngineService (HKLM-x32\...\{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.0522.1 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.19.0522.1 - GIGABYTE)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{BEFBE0CD-6723-4D98-8263-9A2C376BC6CD}) (Version: 18.2.18.0 - ESET, spol. s r.o.)
Farming Simulator 19 Platinum Expansion (HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Farming Simulator 19 Platinum Expansion) (Version: - HOODLUM)
FileOpen Client (x64) B997 (HKLM\...\{AFE272C4-4FFA-42E3-8472-530CE2AF981F}) (Version: 3.0.173.997 - FileOpen Systems Inc.)
FileOpen Client B997 (HKLM\...\FileOpenClient_is1) (Version: B997 - FileOpen Systems Inc.)
Geeks3D FurMark 1.20.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 115.0.1.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 141.0.7390.66 - Google LLC)
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1202.1 - GIGABYTE)
GuideSIGN 7 Demo (HKLM-x32\...\GuideSIGN 7 Demo) (Version: 7.0 - Transoft Solutions)
HeavyLoad V3.3 (64 bit) (HKLM\...\HeavyLoad_is1) (Version: 3.3 - JAM Software)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HttpToUsbBridge (HKLM-x32\...\{3F9BB162-F826-4EBC-AA60-42020CA134CD}) (Version: 2.0.10.1 - Brother Industries Ltd.)
IrfanView 4.62 (64-bit) (HKLM\...\IrfanView64) (Version: 4.62 - Irfan Skiljan)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
KeePass Password Safe 2.44 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.44 - Dominik Reichl)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.5 - PandoraTV)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.96.781095 - Logitech)
Logi Plugin Service (HKLM\...\{58A1F0B9-0A55-47E5-85D9-C8B0802B28CE}) (Version: 6.2.2.879 - Logitech)
Logi RightSightForWebcams 1.1.205 (HKLM\...\{F48643E2-AE04-47A9-9E12-2785E32F7D9A}) (Version: 1.1.205.0 - Logitech) Hidden
Logitech Options (HKLM\...\LogiOptions) (Version: 10.10.58 - Logitech)
Microsoft .NET Host - 6.0.8 (x64) (HKLM\...\{6950FA03-8B88-4675-B685-FB21CA1762CC}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.8 (x64) (HKLM\...\{3C3CA326-3F1D-43B7-B0AD-CBC06B2DED5A}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.8 (x64) (HKLM\...\{7CEA3ABF-FE24-42AF-ADE6-B4A3EE346743}) (Version: 48.35.45462 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 6.0.8 - Shared Framework (x64) (HKLM-x32\...\{1182f806-658a-4241-9202-d43e13bf2719}) (Version: 6.0.8.22363 - Microsoft Corporation)
Microsoft ASP.NET Core 6.0.8 Shared Framework (x64) (HKLM\...\{FA97D589-B37E-3B49-A8D2-4764029773FE}) (Version: 6.0.8.22363 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 141.0.3537.71 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 141.0.3537.71 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM\...\{0812546C-471E-E343-DE9C-AECF3D0137E6}) (Version: 10.1.26100.6154 - Microsoft Corporation)
Microsoft Office 2019 pro studenty a domácnosti - cs-cz (HKLM\...\HomeStudent2019Retail - cs-cz) (Version: 16.0.19127.20302 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\OneDriveSetup.exe) (Version: 25.179.0914.0003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\...\OneDriveSetup.exe) (Version: 19.152.0801.0008 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33130 (HKLM-x32\...\{1de5e707-82da-4db6-b810-5d140cc4cbb3}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33130 (HKLM-x32\...\{2cfeba4a-21f8-4ea7-9927-c5a5c6f13cc9}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33130 (HKLM\...\{C31777DB-51C1-4B19-9F80-38EF5C1D7C89}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33130 (HKLM\...\{1CA7421F-A225-4A9C-B320-A36981A2B789}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33130 (HKLM-x32\...\{5CA9AE7B-2EFC-4F02-81CD-32ABE173C755}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33130 (HKLM-x32\...\{DF1B52DF-C88E-4DDF-956B-6E7A03327F46}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{C931A1C6-A7BF-3737-874A-818881A37E1B}) (Version: 10.0.60915 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60910 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM\...\{EB3983F9-3D60-456D-A11A-C1366C79AD3E}) (Version: 48.35.45540 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 143.0.4 (x64 cs)) (Version: 143.0.4 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 143.0.4.287 - Mozilla)
Mozilla Thunderbird ESR (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 140.3.1 ESR (x86 cs)) (Version: 140.3.1 - Mozilla)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
NetworkRepairTool (HKLM-x32\...\{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Version: 1.2.16.0 - Brother Industries, Ltd.) Hidden
NVIDIA Ovladač HD audia 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 472.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 472.84 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA RTX Desktop Manager 202.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 202.21 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{7F5DCD33-1039-C3B2-9538-B645B65BBA63}) (Version: 1.00.0000 - Název společnosti:)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.19127.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.19127.20154 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.19127.20302 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
PDFCreator (HKLM\...\{00010FEF-82A2-497E-983A-7105A0166FA7}) (Version: 4.0.2 - pdfforge GmbH)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.26.328.2018 - Realtek)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
SoftwareUpdateNotification (HKLM-x32\...\{F58E9F54-C092-42C5-B4C3-C4B7C337750B}) (Version: 1.0.7.0 - Brother Insutries Ltd.) Hidden
SpeechRedist (HKLM-x32\...\{8795CBED-55E2-4693-9F14-84EC446935BE}) (Version: 1.0.0 - Epic Games Inc.)
StatusMonitor (HKLM-x32\...\{40578A7A-6E36-457F-A4F0-45BC37EB61FD}) (Version: 1.20.1.0 - Brother Insutries Ltd.) Hidden
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Transoft Solutions AutoCAD .Net Framework 2.0 (HKLM-x32\...\Transoft Solutions AutoCAD .Net Framework2.0) (Version: 2.0 - Transoft Solutions)
Transoft Solutions Civil 3D Framework 2.0 (HKLM-x32\...\Transoft Solutions Civil 3D Framework2.0) (Version: 2.0 - Transoft Solutions)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
VIGI Security Manager (HKLM-x32\...\VIGI Security Manager) (Version: 1.7.2.0 - TP-Link)
VIGI Web Player (HKLM-x32\...\{47D25199-A040-4E8E-B39B-4F6C72390EFE}) (Version: 2.1.20.0 - TP-Link Systems Inc)
WhatsApp (Outdated) (HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\WhatsApp) (Version: 2.2318.10 - WhatsApp)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)
ZWCAD Viewer (HKLM\...\{26A7C767-A011-0000-A001-F87888BABDCA}) (Version: 17.0.2015.1000 - ZWSOFT) Hidden
ZWCAD Viewer English (HKLM\...\{26A7C767-A011-0000-A200-F87888BABDCA}) (Version: 17.0.2015.1000 - ZWSOFT)
ZWCAD Viewer Language Pack - English (HKLM\...\{26A7C767-A011-1033-A101-F87888BABDCA}) (Version: 17.0.2015.1000 - ZWSOFT) Hidden

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2025-10-11] ()
Age of Empires II: Definitive Edition -> C:\Program Files\WindowsApps\Microsoft.MSPhoenix_101.103.26969.0_x64__8wekyb3d8bbwe [2025-10-14] (Microsoft Studios)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_10.7.2.0_x64__kgqvnymyfvs32 [2025-10-14] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.303.100.0_x64__kgqvnymyfvs32 [2025-10-02] (king.com)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2022-05-04] (Canon Inc.)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_10.9.201.0_x86__h6adky7gbf63m [2025-10-14] (Gameloft SE)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.27.4950.0_x64__rz1tebttyb220 [2025-09-17] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-03-20] (Microsoft Corporation)
Dropbox -> C:\Program Files (x86)\Dropbox\Client\PackageAssets [2025-10-10] (Dropbox Inc.)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2023.531.1.0_x64__8xx8rvfyw5nnt [2023-06-01] (Meta)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_161.1.1087.0_x64__v10z8vjag6ke6 [2025-08-30] (HP Inc.)
Local Artificial Intelligence Manager -> C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\AI [2025-10-16] ()
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_9.1.2.0_x86__h6adky7gbf63m [2025-09-24] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-08-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft.Office.ActionsServer -> C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\ActionsServer [2025-10-16] ()
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.11401.0_x64__8wekyb3d8bbwe [2025-10-17] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.2.2.0_x64__8wekyb3d8bbwe [2025-05-30] (Microsoft Studios)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.968.0_x64__56jybvy8sckqj [2025-06-13] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16 [2025-10-16] ()
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj [2019-11-26] (Realtek Semiconductor Corp)
Spotify – hudba a podcasty -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0 [2025-10-09] (Spotify AB) [Startup Task]
Trello -> C:\Program Files\WindowsApps\45273LiamForsyth.PawsforTrello_2.15.13.0_x64__7pb5ddty8z1pa [2025-08-15] (Trello, Inc.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-12] (Twitter Inc.)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2539.2.0_x64__cv1g1gvanyjgm [2025-10-02] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\janku\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\janku\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\janku\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\janku\Dropbox [2017-11-10 12:42]
CustomCLSID: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001_Classes\CLSID\{E6809EC9-0585-4BF4-858C-BF4849AEDA87} -> [Dropbox] => C:\Users\janku\Dropbox [2017-11-10 12:42]
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2024-03-24] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-09-29] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2016-05-03] (Artem Izmaylov -> AIMP DevTeam) [File not signed]
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2019-11-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2016-05-03] (Artem Izmaylov -> AIMP DevTeam) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\115.0.1.0\drivefsext.dll [2025-10-10] (Google LLC -> Google LLC.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.87.0.dll [2025-09-25] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\nvshext.dll [2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [NvQuadroView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\janku\Desktop\Jan - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"

==================== Loaded Modules (Whitelisted) =============

2017-06-03 13:26 - 2016-01-27 20:00 - 001124864 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GDL.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 001744384 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\Geometry.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 001099776 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\Graphix.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000037376 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GSProfiler.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 001456128 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GSRoot.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 001188864 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GSShellX64.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000349184 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GSUtils.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 002579968 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GSXML.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000251392 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GSXMLUtils.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000070656 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GSZLib.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000057344 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GX.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000054272 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\GXImageBase.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 001021952 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\InputOutput.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000633856 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\JACK.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000147456 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\Network.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 003077120 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\ObjectDatabase.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000116224 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\ProjectFile.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000415744 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\ProjectInfo.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000654336 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\ProjectIO.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000371200 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\TextEngine.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000228864 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\TWRoot.dll
2017-06-03 13:26 - 2016-01-27 20:00 - 000463872 _____ (Graphisoft SE) [File not signed] C:\Program Files\GRAPHISOFT\ArchiCAD 19\VBUtils.dll
2021-03-13 13:44 - 2021-03-13 13:44 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2021-03-13 13:44 - 2021-03-13 13:44 - 000000000 ___JL (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2020-02-13 10:47 - 2020-02-13 10:47 - 000116736 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\janku\Desktop\Faktura nářadí.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\janku\Desktop\Faktura nářadí.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\janku\Desktop\op.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {45278A95-B9F1-4620-983D-ADFE3586C86D} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {85463386-E8E5-48BC-8B25-CD57DCB28757} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {8AC7E8D0-0021-4F10-AE14-08F395B948F6} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {A7DD850E-2251-4828-A8CF-81D90E2AC3E3} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {A93B7612-41B9-4D69-834B-E11D508F30F8} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {C6B06CBC-BDB0-49C6-9691-BBA177535552} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {EF848C18-BF2C-4C03-94E8-E3E9C473E034} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {FAFD9A37-2D3B-4261-92C4-E72205C1D764} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001 -> {FE926444-B0C1-49A8-8243-53DEB25CFF32} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {0458DDA2-0D78-4A96-99D4-323DE64B2744} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {0F95DD06-A09B-4CBF-9E95-3482AF6586EA} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {37514CE5-3E2A-4222-A7D7-0E04A8A77804} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {38FA0DA5-13A8-4588-A12E-554413D2612F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {48E7076F-9451-42AE-91DA-EED7C034106E} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {651912EF-60B9-4F65-A058-6E3A81625A41} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {7463CD62-CE04-4F00-B7CE-5F89D80534FE} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {8F038FD0-11F8-443A-B0FE-30EC4997D514} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
SearchScopes: HKU\S-1-5-21-1967644643-3473992454-2983207395-1005 -> {B560ED64-D9CA-4B5D-98B5-CF60A6E8A924} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2025-09-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\ssv.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\jp2ssv.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-09-11] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2016-06-01 08:47 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.0.1
Windows Firewall is enabled.

Network Binding:
=============
Ethernet 2: Realtek Gaming GbE Family Controller -> rt640x64.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)


==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B908AC7A-A896-4CCC-BADB-995BA43229D2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{05D6B346-400F-44A5-8BCD-7F7F38B63D01}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{ED3BFFF4-7DE7-4696-81EB-0BC094C972BA}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{072F18F3-0918-47F8-9E83-EE708016806B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{E969E2F4-842E-421F-BCE4-F074D3D580CD}] => (Allow) C:\Program Files\ZWCAD Viewer\ZWCAD.EXE () [File not signed]
FirewallRules: [{A11976DD-6E9D-4423-BF12-E572ACA3E539}] => (Allow) C:\Program Files\ZWCAD Viewer\ZWCAD.EXE () [File not signed]
FirewallRules: [{E6D31A38-D671-4583-A174-E448389A158C}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{09D17B69-7E24-4A61-BE26-D2BEFEB8E2CF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{4AC01E88-46FF-425D-A11C-5CEF74D3A657}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [{D897B6BE-2FDF-4DE6-AC03-F69F106DDF53}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8B5A8F4-2F5D-41D1-862C-006BBA9CE92D}] => (Allow) C:\Program Files\GRAPHISOFT\ArchiCAD SE 2016\BIMxUploader.exe (Graphisoft SE) [File not signed]
FirewallRules: [{5A65FD3A-E4D3-47CF-ABC1-DC4A71CCB854}] => (Block) C:\Program Files\GRAPHISOFT\ArchiCAD SE 2016\ArchiCAD.exe (Graphisoft SE) [File not signed]
FirewallRules: [{ED4701AA-CB54-4BBE-837F-08E867902CF4}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [{011613A2-5575-4BE1-A8B8-D92672891824}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [{665B3F08-4174-4521-BD02-EDD8661824DF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{14E7DE53-317B-4D8D-8772-0F8196A4E436}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5B388099-4BF2-466A-A8B0-1DF33F5FBA03}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [{A91D45A6-28B5-449C-BAF3-93041EFED08A}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
FirewallRules: [{9DD2CB13-C436-4253-8FAA-F1EBC3219418}] => (Block) C:\Program Files\GRAPHISOFT\ArchiCAD 19\ArchiCAD.exe (Graphisoft SE) [File not signed]
FirewallRules: [{1CD44A08-7214-4C4A-B718-97CBB00974B1}] => (Block) C:\Program Files\GRAPHISOFT\ArchiCAD 19\CineRender\CineRender 64bit.exe (MAXON Computer GmbH -> MAXON Computer GmbH)
FirewallRules: [{16FD95AE-9908-4C15-8AE1-69416B022829}] => (Allow) C:\Program Files\GRAPHISOFT\ArchiCAD 19\BIMxUploader.exe (Graphisoft SE) [File not signed]
FirewallRules: [{3EE76A83-9329-46B7-B106-80FE1E208245}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{3913779A-54C4-45EB-A8CE-0E4BB34110DF}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F6CD1EDF-9DFD-4695-9BE9-C2D3F22531B7}] => (Allow) C:\Users\janku\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{02EC842A-4960-4967-B063-57C22609EC7B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{61587DA2-FD28-47CE-B82C-6495A1AB6342}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{14407593-5CA6-4AC2-9217-DFAA8EE92D25}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{F0375ADA-9012-4E28-A66E-A7EACD5FCD01}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{EF89E58A-856A-4200-B4AC-2DDD1BA64CB7}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{6147C671-C089-4103-8269-53AF674BF555}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{1D044545-E039-4996-A2D3-7A0A88BC6482}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{D1C2CC64-BD27-433D-97A2-0F301C08A5B2}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
FirewallRules: [{3DF784F7-3B86-40D8-88EF-7B88540C86ED}] => (Allow) LPort=9009
FirewallRules: [{FF6F1DC0-F6EF-475C-AAB0-8B9CEC17B1DD}] => (Allow) LPort=9009
FirewallRules: [{BA921F12-50DF-480D-BB3C-2A505D7A56F5}] => (Allow) LPort=9009
FirewallRules: [{C64DDE1B-5101-433D-899D-68E26573C282}] => (Allow) LPort=9009
FirewallRules: [{8F87F935-12E2-4B41-99F5-952FD3303C04}] => (Allow) LPort=9009
FirewallRules: [{80C5F06B-0D91-4C48-B6C8-C8874FEF0444}] => (Allow) LPort=9009
FirewallRules: [{40F0C4A6-5D11-435C-B24F-084C9CD3B2B9}] => (Allow) LPort=9009
FirewallRules: [{DBD9BD22-6E08-4BB5-BA04-E86BB6EE0B7D}] => (Allow) LPort=9009
FirewallRules: [{0C6CF685-0D7B-4795-B29B-C0824A77ACD5}] => (Allow) LPort=9009
FirewallRules: [{8532A8FC-917A-4630-9974-11A0181553D2}] => (Allow) LPort=9009
FirewallRules: [{4FCA3529-65B9-434C-93BA-3DEBE94AF002}] => (Allow) LPort=9009
FirewallRules: [{FF8C4FBA-D856-404E-BF46-2BF644D309C9}] => (Allow) LPort=54950
FirewallRules: [{EE91ACFB-3151-469B-9274-F87761F58383}] => (Allow) LPort=54955
FirewallRules: [{86BCBF6D-C8A2-4D86-AF3D-2CE508758182}] => (Allow) LPort=9009
FirewallRules: [{C73E4208-33F9-44EB-9B98-EBD18DFFE1A0}] => (Allow) LPort=9009
FirewallRules: [{EDC9CC78-DC42-4759-AC64-11C9104633FF}] => (Allow) LPort=9009
FirewallRules: [{B5C8BEC0-106F-4C06-A262-C0CF06E1A1D1}] => (Allow) LPort=9009
FirewallRules: [{4244D4B0-A8B4-4E4D-BA35-C0CA699704A6}] => (Allow) LPort=9009
FirewallRules: [{50694DB9-0A17-4619-B8FA-48201C287187}] => (Allow) LPort=9009
FirewallRules: [{49C6EDAE-38BB-40BE-9A60-FB3AF9E92849}] => (Allow) LPort=9009
FirewallRules: [{FBBD5A0C-4078-4B8B-880B-D0C5C0172D33}] => (Allow) LPort=9009
FirewallRules: [{801CCA55-F702-4953-8908-A2EE519610D9}] => (Allow) LPort=9009
FirewallRules: [{9DD4B18D-C955-40C7-A363-130CFE21ECFA}] => (Allow) LPort=9009
FirewallRules: [{74C1F9AF-1148-4463-860A-AFB622A31D3D}] => (Allow) LPort=9009
FirewallRules: [{96FCF27A-4DE0-47B8-8F84-1269FD13125E}] => (Allow) LPort=9009
FirewallRules: [{4AA9BFBD-3B07-4B46-9CF0-ADA9D6382285}] => (Allow) LPort=9009
FirewallRules: [{F99E8B48-ED37-4615-A147-B089F436D238}] => (Allow) LPort=9009
FirewallRules: [{B2169696-56CD-44B1-937B-88612154B864}] => (Allow) LPort=9009
FirewallRules: [{F937E18A-721C-471E-BF2D-A54C916EFB6F}] => (Allow) LPort=9009
FirewallRules: [{4F2A2F21-B4D9-415F-B974-C145044E0919}] => (Allow) LPort=9009
FirewallRules: [{AB905F1A-6098-452B-8038-3AB06658C11B}] => (Allow) LPort=9009
FirewallRules: [{E4D5C7A4-C7CF-447F-B517-4083909F385F}] => (Allow) LPort=9009
FirewallRules: [{7B21C00B-3230-4B35-BD1B-CBA8D3C8ABAD}] => (Allow) LPort=9009
FirewallRules: [{1A66A81C-D3B9-4FEF-B2F9-F8F0213E922B}] => (Allow) LPort=9009
FirewallRules: [{1D4FB59D-DF20-4F6E-8BA5-3510A881F76A}] => (Allow) LPort=9009
FirewallRules: [{3C8406C1-5B00-42CE-8543-BA3F5D3727D5}] => (Allow) LPort=9009
FirewallRules: [{E19F18A1-E5E0-4968-A8FB-5E71DDE25E9D}] => (Allow) LPort=9009
FirewallRules: [{F91C9648-963A-4D0D-B9DD-847757A2E74A}] => (Allow) LPort=9009
FirewallRules: [{5BF6B92D-80EA-422D-A2D3-45AD82C17BF1}] => (Allow) LPort=9009
FirewallRules: [{89869214-E545-481D-AB59-316235B7422B}] => (Allow) LPort=9009
FirewallRules: [{F0E45B7A-2608-4018-914B-7886C25810AC}] => (Allow) LPort=9009
FirewallRules: [{86852AC5-2274-44DC-9EFF-7B99602FB56E}] => (Allow) LPort=9009
FirewallRules: [{247482EF-AE0E-4D6B-AD62-31BB619882B1}] => (Allow) LPort=9009
FirewallRules: [{E65CFBC6-4882-4AB3-884E-050798C1AF1C}] => (Allow) LPort=9009
FirewallRules: [{E41E5903-C465-4E91-BF82-D943F0EC7999}] => (Allow) LPort=9009
FirewallRules: [{E7FFC7ED-56E3-4902-AA9A-32AB8A689FDC}] => (Allow) LPort=9009
FirewallRules: [{1E5AD3EE-E9E0-4ACA-8664-DA770BB72495}] => (Allow) LPort=9009
FirewallRules: [{E69C7E18-AB4E-4062-A3BB-4C0B0FE3DF7D}] => (Allow) LPort=9009
FirewallRules: [{D61A162F-E409-4927-A7A0-6BCA848B66F0}] => (Allow) LPort=9009
FirewallRules: [{7A64704E-B250-421C-96C8-6FED54F252EC}] => (Allow) LPort=9009
FirewallRules: [{A7F89932-38E2-4BBE-9B8C-8B9AEAF0DCAF}] => (Allow) LPort=9009
FirewallRules: [{BBFA1391-8946-44A5-A1AE-D8E8ED9AC1F3}] => (Allow) LPort=9009
FirewallRules: [{62AD1E1F-4BFB-450F-81BB-8D67498F539C}] => (Allow) LPort=9009
FirewallRules: [{E7CCA167-0871-4DAE-916F-3C81E6DE3BE4}] => (Allow) LPort=9009
FirewallRules: [{28258BE4-D510-4D8D-A01C-D15A657D87B2}] => (Allow) LPort=9009
FirewallRules: [{3527A4A6-497C-4885-A9A9-FB4D875F6114}] => (Allow) LPort=9009
FirewallRules: [{EF64F20A-93E4-4395-9E58-1C26801B7DAB}] => (Allow) LPort=9009
FirewallRules: [{1D11710C-89A3-4BD3-AA2E-D36FCB5D6859}] => (Allow) LPort=9009
FirewallRules: [{2D343948-B35C-48CB-B8E4-76CC7BCFA251}] => (Allow) LPort=9009
FirewallRules: [{54350C85-5DE8-400C-8DB4-012B1AF0B103}] => (Allow) LPort=9009
FirewallRules: [{B4747C62-A3E4-41A5-8F3A-1AA56F7CE81C}] => (Allow) LPort=9009
FirewallRules: [{3EF31ADA-7B1B-4720-AF43-E6BB5F2F28A4}] => (Allow) LPort=9009
FirewallRules: [{7219BA7F-C231-46C1-8F98-88FD58273F74}] => (Allow) LPort=9009
FirewallRules: [{63296157-A111-4B7E-ADF9-9200F50A3C37}] => (Allow) LPort=9009
FirewallRules: [{C18BB919-4DCD-43A5-95D7-2EFDB06ACA58}] => (Allow) LPort=9009
FirewallRules: [{9F5D24F5-7F00-4348-9097-C659A0C13DE8}] => (Allow) LPort=9009
FirewallRules: [{D971AA49-160B-402C-AD67-9EAE51DAC01F}] => (Allow) LPort=9009
FirewallRules: [{B88A3A47-B8CE-4165-BBAB-A0C744FB2A25}] => (Allow) LPort=9009
FirewallRules: [{8B5C7ECA-0CDA-4864-BA64-763F87E4AA5E}] => (Allow) LPort=9009
FirewallRules: [{0D77628D-562D-4761-86FE-3483F0391657}] => (Allow) LPort=9009
FirewallRules: [{623CB6E4-EB3D-44FA-A97E-7D59172CAD52}] => (Allow) LPort=9009
FirewallRules: [{17884024-F9FF-4CB4-BB03-66549D1E4A0A}] => (Allow) LPort=9009
FirewallRules: [{C251CA78-93C4-4C60-95AC-B94AE365ADA4}] => (Allow) LPort=9009
FirewallRules: [{76893EAD-CF16-4EC1-BFA1-6D030837503E}] => (Allow) LPort=9009
FirewallRules: [{EEF201D2-4EC9-4AF1-B744-26D09035E53F}] => (Allow) LPort=9009
FirewallRules: [{BE3C6554-9FB3-408F-BBE2-69F2ED9FAA6A}] => (Allow) LPort=9009
FirewallRules: [{8D380E8D-EED4-4763-8FC8-5ECC2B96C83E}] => (Allow) LPort=9009
FirewallRules: [{D67C3B3E-8E8C-488A-81D3-DA847C1AFAEA}] => (Allow) LPort=9009
FirewallRules: [{4251B886-4400-4FE8-B86F-B047556A3F5C}] => (Allow) LPort=9009
FirewallRules: [{FB7F4BB9-E537-410C-9CC6-C0C6E2F586D6}] => (Allow) LPort=9009
FirewallRules: [{EA4E26CD-D277-419A-9D5C-6F887C4292DD}] => (Allow) LPort=9009
FirewallRules: [{5BDAA52E-BE08-444D-9163-72AA88D0C9AB}] => (Allow) LPort=9009
FirewallRules: [{012F6030-A494-488B-815D-D7C791D238CF}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{E8112301-7FB7-4961-B64A-F7E046B9A8D5}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{2A07BCEB-EB31-45E2-96AB-C05F4903B75E}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{2057097A-8D6A-4BE6-8CF0-B23FE44C5D0C}] => (Allow) LPort=9009
FirewallRules: [{A769427E-9579-4E6E-B79F-386AF5ECBFC4}] => (Allow) LPort=9009
FirewallRules: [{7BAC154E-1048-403C-AE1F-842F8CE18907}] => (Allow) LPort=9009
FirewallRules: [{AE2FF6C2-3069-40C9-961F-92E6897A98D9}] => (Allow) LPort=9009
FirewallRules: [{66653B60-8257-4310-82CB-D1DBACDAF195}] => (Allow) LPort=9009
FirewallRules: [{74D6EBF1-A2AF-48AE-A0ED-39D77C7B02CA}] => (Allow) LPort=9009
FirewallRules: [{1B6A656D-795E-4DCE-98D0-896EC86D2EF3}] => (Allow) LPort=9009
FirewallRules: [{EC60F637-F33F-40F8-934D-D5102EA4182A}] => (Allow) LPort=9009
FirewallRules: [{135A8961-F6E8-4E00-8010-2852BA3D3F4D}] => (Allow) LPort=9009
FirewallRules: [{6B063A1E-A2E4-4863-B7AC-61D0DCBEA4BB}] => (Allow) LPort=9009
FirewallRules: [{12503BCE-6EC5-41A3-931D-3FCAD2813864}] => (Allow) LPort=9009
FirewallRules: [{F3A86CD3-15AD-4F02-B138-F5892FA808AA}] => (Allow) LPort=9009
FirewallRules: [{3E0A5806-B91B-4868-B116-57903C9B574B}] => (Allow) LPort=9009
FirewallRules: [{0441F6D9-6F0B-4F9D-A5D8-BCB07E8EFE4E}] => (Allow) LPort=9009
FirewallRules: [{764491B2-989D-4A0C-9E28-3F1677C1DD77}] => (Allow) LPort=9009
FirewallRules: [{CFBEACC6-A1CE-4212-8B6F-3712F825A553}] => (Allow) LPort=9009
FirewallRules: [{BC94E18C-0410-4C6A-8786-6677F63561A2}] => (Allow) LPort=9009
FirewallRules: [{F03AB113-BF4C-46A9-9E15-F4642B913A7C}] => (Allow) LPort=9009
FirewallRules: [{38B86013-DB10-43AF-AD86-C2F008324BEA}] => (Allow) LPort=9009
FirewallRules: [{41D55762-FA1D-4839-A9EA-53C489FAAE62}] => (Allow) LPort=9009
FirewallRules: [{E48FA3F2-F647-48B8-8CEA-A5A7F6C74AEE}] => (Allow) LPort=9009
FirewallRules: [{973ADF5E-4C61-4D06-AB0D-E795F317A97C}] => (Allow) LPort=9009
FirewallRules: [{1AC38776-9617-43CC-B032-DCF4238FB1F6}] => (Allow) LPort=9009
FirewallRules: [{0F541197-4D0B-470C-8B9A-9930E0C75C69}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C1CD4A9C-1FFB-48FA-8641-D5B5235C9506}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{A1556CB3-1505-466E-80DF-D9223F4B0534}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{082CE6D4-C08A-4113-8F9F-8D9FFEC00E38}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{85F4E63B-488C-43F2-B411-B7A4151EB8E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{F5EC7F08-0387-46C4-B30C-795D3AF1B6FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{89CA2AE8-5EA8-4020-8712-FB4D94E78670}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{B5BB2DC7-AA38-4FB7-923F-95F064D74775}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C7B8086D-6E5C-4FFB-88E9-83F433E242A3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C9809C3C-29BA-4852-A663-B18EF4EA4668}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{46B011A1-E99F-4B51-8393-FCD5C815F1B5}] => (Allow) LPort=9009
FirewallRules: [{7FD42931-7107-4AE0-B263-4EDE06A3D6B7}] => (Allow) LPort=9009
FirewallRules: [{CAFD7F83-46CE-4298-BF5F-DF5D97A10A3A}] => (Allow) LPort=9009
FirewallRules: [{36B411A4-9313-4271-87D3-7B05E7F33BDC}] => (Allow) LPort=9009
FirewallRules: [{F206478D-1132-4113-8720-4DEA49CF0A0D}] => (Allow) LPort=9009
FirewallRules: [{592D3BBA-5667-44C4-BD8E-179A18ECC8A0}] => (Allow) LPort=9009
FirewallRules: [{5E7CD146-A9A8-481A-933A-5AC51A5ABFB3}] => (Allow) LPort=9009
FirewallRules: [{7B43D4C2-C0EB-4318-B069-BAA2BDEF8393}] => (Allow) LPort=9009
FirewallRules: [{8D0547F6-7E4E-4474-850D-4F173AF45A67}] => (Allow) LPort=9009
FirewallRules: [{66B95F91-DF1E-4966-9043-C71F74EE16CE}] => (Allow) LPort=9009
FirewallRules: [{069CBDAE-9E33-4F14-953E-C26EDA2D55E4}] => (Allow) LPort=9009
FirewallRules: [{B7F4ECFF-ED4C-4F26-B6C4-14910DA57197}] => (Allow) LPort=9009
FirewallRules: [{94278F36-41A7-40B7-844E-88967C410F4D}] => (Allow) LPort=9009
FirewallRules: [{C4C61DA2-E7BB-4C8B-8B28-455F849B1154}] => (Allow) LPort=9009
FirewallRules: [{ED7044C8-23CA-43DC-9BFE-08929DFF601B}] => (Allow) LPort=9009
FirewallRules: [{B366F410-33B6-4779-AEB9-EB5CF3831FD5}] => (Allow) LPort=9009
FirewallRules: [{15F0BE96-759B-46DB-933D-5D6FFC7718A8}] => (Allow) LPort=9009
FirewallRules: [{1F2C117E-817A-4F2F-BD7F-D5C55ACA576E}] => (Allow) LPort=9009
FirewallRules: [{3F242B42-E961-4DE8-A598-1700296D61B4}] => (Allow) LPort=9009
FirewallRules: [{DD51FA73-6A0A-4FE6-B446-4B4275A64E05}] => (Allow) LPort=9009
FirewallRules: [{B660DD4F-B106-4C8D-8D31-E2AD975C72E0}] => (Allow) LPort=9009
FirewallRules: [{38A82548-0F93-4E79-96A9-ACD5E35D08C1}] => (Allow) LPort=9009
FirewallRules: [{14EF5E2A-9FB0-4A41-BB16-0885722093F1}] => (Allow) LPort=9009
FirewallRules: [{1527D236-929B-49BB-A712-A05304556B69}] => (Allow) LPort=9009
FirewallRules: [{EBF90B6C-8F8D-4EB7-907E-C5035EE43B45}] => (Allow) LPort=9009
FirewallRules: [{B50B16CD-DCDC-4477-9FA8-F621E227D5D8}] => (Allow) LPort=9009
FirewallRules: [{E3EC4390-4404-400C-B1A4-9820FE1A3F3B}] => (Allow) LPort=9009
FirewallRules: [{08A82228-D9C0-4D42-89AC-50A8CC47C4E8}] => (Allow) LPort=9009
FirewallRules: [{7C554EAE-FB3C-43B9-804B-B665D35C73EE}] => (Allow) LPort=9009
FirewallRules: [{B632816D-F092-4B82-8CA8-D111100FF0BA}] => (Allow) LPort=9009
FirewallRules: [{12CAB6B1-4594-42F1-B518-78066E5F0D15}] => (Allow) LPort=9009
FirewallRules: [{7A0E8050-5174-4D28-9DEB-BE8DB8A4302A}] => (Allow) LPort=9009
FirewallRules: [{3F8210C3-5DBF-4B31-A523-BB45566B073C}] => (Allow) LPort=9009
FirewallRules: [{2932F40B-BE1B-427E-8AAB-554FE690E2B7}] => (Allow) LPort=9009
FirewallRules: [{57B3597B-8F62-48F8-92C5-88C73C9BD1A4}] => (Allow) LPort=9009
FirewallRules: [{3E105575-F0A1-4344-8277-6A3269EE36C1}] => (Allow) LPort=9009
FirewallRules: [{8AF36D12-BC7A-4ACB-A02F-2ACDB6A94B12}] => (Allow) LPort=9009
FirewallRules: [{B31E838D-6959-4664-9E91-CC114976322C}] => (Allow) LPort=9009
FirewallRules: [{FE792652-B991-43A9-B1EF-59CC40FD43CC}] => (Allow) LPort=9009
FirewallRules: [{B11566DE-0D29-4E12-9540-2C4BB10C23DA}] => (Allow) LPort=9009
FirewallRules: [{AC1289D3-59D0-4617-8754-86799A174289}] => (Allow) LPort=9009
FirewallRules: [{AAD67670-7EF0-4980-8166-FB9E70A343DA}] => (Allow) LPort=9009
FirewallRules: [{0DEAAB79-0720-4DF0-9A1A-4546DA6451E2}] => (Allow) LPort=9009
FirewallRules: [{1C0504BD-9830-447E-B008-9A367EA8BBF6}] => (Allow) LPort=9009
FirewallRules: [{A6E5D55A-5B99-4EB7-9035-02AF065728D1}] => (Allow) LPort=9009
FirewallRules: [{CA5046F3-F28D-4834-AC83-C1F20D1A7F96}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{23E625BA-5A60-4A1F-A9C4-FEE0702C7895}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{44E67A96-12CA-4FE4-80E8-61AE7DED93AE}] => (Allow) LPort=9009
FirewallRules: [{FCDA0286-3147-4EDC-95D7-269EE094D431}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{2CFA1BE7-2A6E-45FB-9D0E-C48DEF8B5B1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{570B6298-615E-4190-8767-632AC86C88D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{11A8D4FD-0EB6-4689-8D58-CF09B5AD24B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E66B913D-A578-4E03-84A3-560673E9B253}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FFA1AA7B-0E87-445D-BBBA-EDF39E7DA2AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{227C3E0A-6257-43B0-B319-50D3215F8737}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD525764-3C5D-463B-8217-9395BBBDEED9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C580804B-2068-4EF1-957F-7340BFDA821B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B71E3D5A-3E36-41F7-A995-4412DDDB1C72}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{51911843-BA72-452F-AD13-CDD417ADE980}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BA9D9E52-CE77-4523-B61D-F63524FDF979}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{42CC8F3A-AB51-49DD-B146-43B5FD68E5AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.273.474.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{98F60345-95B0-4927-B78C-9D0CDD968693}] => (Allow) LPort=9009
FirewallRules: [{558163BF-B0AB-4F41-A15D-515C8B35DD95}] => (Allow) LPort=9009
FirewallRules: [{BF7E157D-AD44-4A71-82BF-2B6A6680931E}] => (Allow) LPort=9009
FirewallRules: [{69906506-1F7D-47A2-AB38-E8701F19788C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5AAF5475-0885-4B86-923F-B8ED962E8D45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A261988E-3468-4140-A54B-35DD2FD0CBAB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{890F258A-89B8-44D8-8897-86B683E4B766}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D60A1510-DC03-4FE2-80EA-DA9A8385A353}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E0ECF8D6-6A2F-46AF-A313-2BFAD072F6C2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3D068294-BFE4-45F8-BDCA-CAED2307CB07}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B9FDEC1D-CB34-47CB-9F14-64B9355BD528}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{69085530-AFD0-412E-B683-B4DC17EE4949}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FA53D936-D06B-43C3-B157-F0428BEC1763}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B9EC18D4-3E9D-403B-ADBC-BBD38A7008D0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A0FF5057-78A5-4385-B64C-EFC5873134EB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4D219568-DA43-4B64-ABF7-458B099342FA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.274.477.0_x64__zpdnekdrzrea0\SpotifyLauncher.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{63EE7A2D-519D-4138-A4D8-1B490D282B49}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{011F94F5-9A09-4708-835A-C4AF1435BF8F}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{417E932D-B122-4B97-B9F1-256A7B105AC2}] => (Allow) LPort=9009
FirewallRules: [{4C735AB5-5CFE-484E-9168-8BD5B05F0AAC}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{F36E782A-9B16-4B5F-831D-4CBBF1FE6287}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{D1CA423D-515D-488C-AF59-A854E533462A}] => (Allow) C:\Program Files\Logi\LogiPluginService\LogiPluginService.exe (Logitech Inc -> Logitech)
FirewallRules: [{A30BB659-819D-4362-85B5-A775C37D872D}] => (Allow) LPort=9009
FirewallRules: [{0A8D4CBF-9C94-4BD7-8AE2-268BB5DC4F16}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B2741331-FA6F-465C-B414-9DA3B29202B6}] => (Allow) LPort=9009
FirewallRules: [{A8EE12F2-9E4B-4D34-9A14-ABD57384AC58}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Gen Digital Inc. -> Gen Digital Inc.)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (10/18/2025 06:59:37 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Externí Disk (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (10/18/2025 06:59:30 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (10/18/2025 06:31:37 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Neplatný popisovač.

Error: (10/17/2025 06:32:54 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Neplatný popisovač.

Error: (10/16/2025 06:39:48 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Neplatný popisovač.

Error: (10/16/2025 12:07:42 PM) (Source: DbxSvc) (EventID: 322) (User: )
Description: Failed to get driver message: (-2147024890) Neplatný popisovač.

Error: (10/16/2025 12:07:37 PM) (Source: Firefox Default Browser Agent) (EventID: 1140) (User: )
Description: Event-ID 1140

Error: (10/16/2025 12:07:37 PM) (Source: Firefox Default Browser Agent) (EventID: 1140) (User: )
Description: Event-ID 1140


System errors:
=============
Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba GameInput Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Gservice byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba EasyTune Engine byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BrYNSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Autodesk Access Service Host byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (10/18/2025 07:21:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Logi Options+ byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.


Windows Defender:
================
Date: 2020-11-08 13:37:05
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {06F4DDB3-CD92-476B-A1D7-84F1B08884A7}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-11-07 13:46:40
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3CED66F8-1CB5-4BCA-9BCF-6D6E7C89DD81}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-11-06 14:05:59
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4B463391-6E5A-4B6E-A326-478908190621}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-11-05 13:26:26
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4015A0D1-3C4B-4594-B8E8-C4CD205DF44E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-11-04 13:08:52
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {148277EE-67FE-4340-A5D0-802057DE88AB}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2025-10-18 18:33:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\ESET\ESET Smart Security\ekrn.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Smart Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F42a 07/31/2019
Motherboard: Gigabyte Technology Co., Ltd. B450 AORUS ELITE
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 51%
Total physical RAM: 16335.37 MB
Available physical RAM: 8000.23 MB
Total Virtual: 19326.81 MB
Available Virtual: 8787.01 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:110.94 GB) (Free:4.91 GB) (Model: KINGSTON SH103S3120G) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Externí Disk) (Fixed) (Total:931.48 GB) (Free:65.2 GB) (Model: WD Elements 25A2 USB Device) NTFS
Drive f: (Data) (Fixed) (Total:465.76 GB) (Free:424.28 GB) (Model: SAMSUNG HD501LJ) NTFS
Drive l: (Nový) (Fixed) (Total:931.51 GB) (Free:603.33 GB) (Model: WDC WDS100T2B0A-00SM50) NTFS

\\?\Volume{e26d7126-0000-0000-0000-00d21b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: E26D7126)
Partition 1: (Active) - (Size=110.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=519 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C0E2C0E2)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1B3436C9)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 3 (Size: 931.5 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119580
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu PC strašně se mi plní disk

#4 Příspěvek od Rudy »

Je v tom trochu bordel. Addition vidím. A kde je samotný FRST. Najdete ho na ploše v souboru frst.txt. Děkuji.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hanz-xc
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 18 srp 2009 16:25

Re: Prosím o kontrolu PC strašně se mi plní disk

#5 Příspěvek od hanz-xc »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2025
Ran by janku (administrator) on HONZASTOLNIPC (Gigabyte Technology Co., Ltd. B450 AORUS ELITE) (18-10-2025 21:22:41)
Running from C:\Users\janku\Desktop\FRST64.exe
Loaded Profiles: janku & Host
Platform: Microsoft Windows 10 Pro Version 22H2 19045.6456 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files\ESET\ESET Smart Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Smart Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eOppFrame.exe
(C:\Program Files\ESET\ESET Smart Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\eServiceHost.exe <2>
(cmd.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\BrowserPrivacyAndSecurity.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <41>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\janku\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDrive.Sync.Service.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\GameInputSvc.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2539.2.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9274312 2018-05-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmdS.exe [285616 2025-09-11] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [2042616 2021-11-30] (FileOpen Systems Inc. -> FileOpen Systems Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1792256 2023-06-23] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Autodesk Access Service] => C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessService.exe [18170648 2025-06-07] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [9213376 2025-10-07] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [M17A] => C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [77312 2017-10-19] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2017-04-05] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2892800 2017-03-30] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3331264 2020-01-20] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [14632 2016-02-26] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe [66785432 2025-10-10] (Google LLC -> Google LLC.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe [66785432 2025-10-10] (Google LLC -> Google LLC.)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe [66785432 2025-10-10] (Google LLC -> Google LLC.)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\janku\AppData\Local\WebEx\ciscowebexstart.exe [5730592 2022-06-30] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [41579480 2025-09-29] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\...\Run: [VIGIWebPlayer] => C:\Users\janku\VIGI VMS\VIGI Web Player\PluginController.exe [1103048 2025-10-17] (TP-Link Systems Inc. -> )
HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe [66785432 2025-10-10] (Google LLC -> Google LLC.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\115.0.1.0\GoogleDriveFS.exe [66785432 2025-10-10] (Google LLC -> Google LLC.)
HKLM\...\Print\Monitors\HP 6e12 Status Monitor: C:\WINDOWS\system32\hpinksts6e12LM.dll [331664 2012-08-12] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2020-02-13] (pdfforge GmbH) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\140.0.32350.210\Installer\chrmstp.exe [2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files (x86)\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2025-10-06] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\141.0.7390.66\Installer\chrmstp.exe [2025-10-12] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3FED2FA1-C305-4BC1-803C-5FDF9C8FABB2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1581568 2025-08-24] (Adobe Inc. -> Adobe Inc.)
Task: {55778932-DEDA-49EE-BB5E-C6E9F2BF0BB3} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-08] (Adobe Inc. -> Adobe)
Task: {56DAF7E1-F47E-4CD4-8A4A-1E7B9C1F506C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
Task: {DA37481F-6430-4BA7-891D-E8EDEBCF2F8B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2977504 2025-10-13] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {D5B75389-212C-4A62-BAE4-3A6685F08060} - System32\Tasks\CCleaner 7 - Skip UAC - S-1-5-21-1967644643-3473992454-2983207395-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {B7705071-7D8B-459A-A1D9-B30211A35FDC} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3778728 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {9D5C37B5-C4EA-4B7E-88F4-8C7F72085B3A} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [3778728 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {730AEAB0-6355-40A7-9202-C95067A107E6} - System32\Tasks\CCleanerBrowserProtectS-1-5-21-1967644643-3473992454-2983207395-1001 => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowserProtect.exe [1774816 2025-09-11] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {38BFD6B1-415A-42AB-AED3-CF40A60AF131} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {7851F4F9-444D-4633-B91E-EE6B4D63B0E8} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
Task: {530B9235-54F5-4678-8E27-CEA1F9279A0E} - System32\Tasks\DropboxSystem\DropboxUpdater\DropboxUpdaterTaskSystem123.0.6299.129{0A7679CE-4A8E-4934-99A1-40EA6938FD42} => C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
Task: {DF42BA6E-C716-47E9-88F7-2BB9C90777BE} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem142.0.7416.0{41F283D7-44F3-4B76-A027-93C9888C39C9} => C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe [6863512 2025-09-15] (Google LLC -> Google LLC)
Task: {C22A6FFE-59D3-472B-A0ED-4659FB89001D} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [232880 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {D4D297F2-32A1-4EF6-9744-123DA4B602BF} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [91144 2025-08-29] (HP Inc. -> HP Inc.)
Task: {A725F893-2D79-47D6-9EF4-99C166DD6DC0} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [91144 2025-08-29] (HP Inc. -> HP Inc.)
Task: {0D61EA48-03C4-4DDA-8B9B-A4C68AA2A4DF} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [251824 2019-05-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
Task: {9AE990AB-065D-4AC7-B3F0-A4566D182E66} - System32\Tasks\Microsoft\Office\Office Actions Server => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\ActionsServer\ActionsServer.exe [11419480 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {88394134-9E36-4E60-9207-C2B0E421DA52} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29025120 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {82D7FBA8-EA36-481B-AE03-1B3B89A0C0FE} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE16\opushutil.exe [61280 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {F05766A8-0AB3-415D-B1C8-C5AF85FEC4CC} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29025120 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {4AD1B4E9-253E-4283-BBBA-3000D4BDEE77} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [224520 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {6ED34DD5-5F85-45F8-9321-D0217E8ED98E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [224520 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {E4AB1862-7A55-4482-876E-78244FB9F93C} - System32\Tasks\Mozilla\Firefox Background Update E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [693376 2025-10-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {F6C93AE8-45F2-439D-A012-2B8BB0A1F949} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1967644643-3473992454-2983207395-1001 E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\firefox.exe [693376 2025-10-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\E7CF176E110C211B\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {6A1E6A89-0EF9-4D53-8147-565AA5F33F5C} - System32\Tasks\Mozilla\Firefox Default Browser Agent E7CF176E110C211B => C:\Program Files (x86)\Mozilla Firefox\default-browser-agent.exe [34944 2025-10-15] (Mozilla Corporation -> Mozilla Foundation)
Task: {31A39DA6-6F56-4046-86BB-8F6A5291565D} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1544872 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\nview\/installquiet
Task: {87BBC339-1E14-4668-8760-15C28420AE76} - System32\Tasks\OneDrive Startup Task-S-1-5-21-1967644643-3473992454-2983207395-1001 => C:\Users\janku\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDriveLauncher.exe [725864 2025-10-13] (Microsoft Corporation -> Microsoft Corporation)
Task: {539E4DB8-7783-4971-9C81-17197D317E70} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-1967644643-3473992454-2983207395-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F6D2AE23-F5B3-40B1-9E41-D52CBB6EFD33} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-1967644643-3473992454-2983207395-1005 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F03B58EB-1531-45CA-997A-0D4A9C78F0FF} - System32\Tasks\Piriform\CCleaner 7 BugReport => C:\Program Files\Piriform\CCleaner 7\CCleanerBugReport.exe [6243960 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --product 234 --programpath "C:\Program Files\Piriform\CCleaner 7" --configpath "C:\Program Files\Piriform\CCleaner 7\data" --path "C:\Program Files\Piriform\CCleaner 7\log" --path "C:\Program Files\Piriform\CCleaner 7\data\dumps" --logpath "C:\Program Files\Piriform\CCleaner 7 (the data entry has 58 more characters).
Task: {F7EA0FFF-BD0F-4C1E-9232-051DE896BE69} - System32\Tasks\Piriform\CCleaner 7 Update => C:\Program Files\Common Files\Piriform\Icarus\piriform-ccl\icarus.exe [8971064 2025-10-14] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {05A9C075-BCE5-44E1-A021-D350CA2021D4} - System32\Tasks\VIGI Web Player Update Task => C:\Users\janku\AppData\Roaming\TP-Link\VIGI Web Player\Controller\VIGIWebPlayer.exe -silent (No File)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{45bf29a5-4a66-4120-8b56-a2abd9cf7279}: [DhcpNameServer] 192.168.0.1 192.168.0.1
Tcpip\..\Interfaces\{45bf29a5-4a66-4120-8b56-a2abd9cf7279}: [DhcpDomain] lan
Tcpip\..\Interfaces\{600e0e16-08d5-4b1c-a8ab-fc4cc8692d0a}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{81d1d0f0-d28b-4694-afdd-782681bd819a}: [DhcpNameServer] 192.168.42.129

Edge:
=======
Edge Profile: C:\Users\janku\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-07]
Edge Extension: (Dokumenty Google offline) - C:\Users\janku\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-08]
Edge Extension: (Edge relevant text changes) - C:\Users\janku\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (ESET Browser Privacy & Security) - C:\Users\janku\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nkapkmklnmidbbgjaipbgpcnbomnaakc [2025-04-08]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]

FireFox:
========
FF DefaultProfile: 4lxn1sj5.default-1544816275958
FF ProfilePath: C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 [2025-10-16]
FF Homepage: Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958 -> google.com
FF Extension: (No Name) - C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2025-10-15]
FF Extension: (Data Leak Blocker) - C:\Users\janku\AppData\Roaming\Mozilla\Firefox\Profiles\4lxn1sj5.default-1544816275958\features\{7213fd2b-ab73-41bd-8c61-abda9ac23379}\data-leak-blocker@mozilla.com.xpi [2025-09-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-09-29] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\dtplugin\npDeployJava1.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.161.2 -> C:\Program Files (x86)\Java\jre1.8.0_161\bin\plugin2\npjp2.dll [2018-02-08] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-09-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1583.3\npCCleanerBrowserUpdate3.dll [2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2025-10-18]

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default [2025-10-18]
CHR Session Restore: Default -> is enabled.
CHR Extension: (Překladač Google) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-09-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-16]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-10-11]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2025-06-20]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Guest Profile [2025-10-07]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1 [2025-10-07]
CHR Extension: (Seznam doplněk - Email) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2022-05-05]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-05-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-05-05]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-07-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\janku\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-07-04]
CHR Profile: C:\Users\janku\AppData\Local\Google\Chrome\User Data\System Profile [2025-10-07]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\janku\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1967644643-3473992454-2983207395-1005\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]

Opera:
=======
OPR Profile: C:\Users\janku\AppData\Roaming\Opera Software\Opera Stable [2025-10-07]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.cz/complete/search?client=op ... utEncoding}

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174584 2025-08-24] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [19981080 2025-06-07] (Autodesk, Inc. -> Autodesk, Inc.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [298496 2017-03-22] (Brother Industries, Ltd.) [File not signed]
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
R2 CCleaner7; C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe [28276344 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\140.0.32350.210\elevation_service.exe [2611896 2025-10-14] (Gen Digital Inc. -> Gen Digital Inc.)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [208176 2022-12-14] (PIRIFORM SOFTWARE LIMITED -> Piriform Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13288288 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
R2 DbxSvc; C:\WINDOWS\System32\DbxSvc.exe [58984 2025-04-29] (Dropbox, Inc -> Dropbox, Inc.)
S2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [121344 2017-08-08] (Dassault Systèmes) [File not signed]
S3 DropboxElevationService; C:\Program Files (x86)\Dropbox\Client\234.4.5591\DropboxElevationService.exe [1659336 2025-10-07] (Dropbox, Inc -> Dropbox, Inc.)
S2 DropboxUpdaterInternalService123.0.6299.129; C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
S2 DropboxUpdaterService123.0.6299.129; C:\Program Files\Dropbox\DropboxUpdater\123.0.6299.129\updater.exe [5898104 2025-05-26] (Dropbox, Inc -> Dropbox, Inc.)
S2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [142768 2019-05-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 efwd; C:\Program Files\ESET\ESET Smart Security\efwd.exe [5538224 2025-09-11] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [4662320 2025-09-11] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [4662320 2025-09-11] (ESET, spol. s r.o. -> ESET)
S2 FileOpenManager; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [845176 2021-11-30] (FileOpen Systems Inc. -> FileOpen Systems Inc.)
S3 GameInputRedistService; C:\Program Files\Microsoft GameInput\x64\GameInputRedistService.exe [141688 2025-10-07] (Microsoft Corporation -> Microsoft Corporation)
S2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243720 2025-08-29] (HP Inc. -> HP Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed]
S2 MyService1; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [18944 2021-04-08] () [File not signed]
S2 NVWMI; C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\NVWMI\nvWmi64.exe [4452784 2021-12-08] (Nvidia Corporation -> NVIDIA Corporation)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [125872 2019-05-09] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [21271888 2025-08-22] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803064 2025-10-14] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2021-11-19] (Microsoft) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\NisSrv.exe [2467088 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2010.7-0\MsMpEng.exe [128376 2020-11-06] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [20480 2021-11-19] (Microsoft) [File not signed]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvwuwi.inf_amd64_f3af4914efae8f14\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [175824 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-05-03] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-05-03] (Disc Soft Ltd -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [232456 2025-08-14] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [139944 2025-08-14] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S4 edevmonm; C:\WINDOWS\System32\DRIVERS\edevmonm.sys [127072 2025-08-14] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [270136 2025-08-14] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57352 2025-08-14] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [86792 2025-08-14] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [126024 2025-08-14] (ESET, spol. s r.o. -> ESET)
R3 gdrv; C:\WINDOWS\gdrv.sys [26792 2018-10-07] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv2; C:\WINDOWS\gdrv2.sys [32600 2019-09-05] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R3 gdrv3; C:\WINDOWS\System32\drivers\gdrv3.sys [52528 2025-01-01] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 googledrivefs31931; C:\Program Files\Google\Drive File Stream\Drivers\31931\googledrivefs31931.sys [386256 2025-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2019-09-05] (Red Fox UK Limited -> Highresolution Enterprises [www.highrez.co.uk])
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2023-10-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2020-03-12] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174264 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [50720 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-11-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429288 2020-11-06] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [71912 2020-11-06] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-10-18 21:22 - 2025-10-18 21:23 - 000034638 _____ C:\Users\janku\Desktop\FRST.txt
2025-10-18 21:22 - 2025-10-18 21:22 - 002442752 _____ (Farbar) C:\Users\janku\Desktop\FRST64.exe
2025-10-18 19:02 - 2025-10-18 19:02 - 009616736 _____ (Malwarebytes) C:\Users\janku\Desktop\adwcleaner.exe
2025-10-17 22:24 - 2025-10-17 22:24 - 000003464 _____ C:\WINDOWS\system32\Tasks\VIGI Web Player Update Task
2025-10-17 22:24 - 2025-10-17 22:24 - 000000000 ____D C:\Users\janku\VIGI VMS
2025-10-17 22:23 - 2025-10-17 22:24 - 042520264 _____ (TP-Link Systems Inc.) C:\Users\janku\Desktop\plugin_VIGIWebPlayer_64.exe
2025-10-16 12:26 - 2025-10-16 12:26 - 000000000 ____D C:\Program Files\Windows Kits
2025-10-16 12:26 - 2025-10-16 12:26 - 000000000 ____D C:\Program Files\Microsoft GameInput
2025-10-15 21:01 - 2025-10-16 12:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2025-10-12 09:56 - 2025-10-12 09:56 - 001372156 _____ C:\WINDOWS\Minidump\101225-14734-01.dmp
2025-10-11 15:05 - 2025-10-11 15:05 - 000003272 _____ C:\WINDOWS\system32\Tasks\CCleaner 7 - Skip UAC - S-1-5-21-1967644643-3473992454-2983207395-1001
2025-10-11 15:05 - 2025-10-11 15:05 - 000002162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 7.lnk
2025-10-11 15:05 - 2025-10-11 15:05 - 000002150 _____ C:\Users\Public\Desktop\CCleaner 7.lnk
2025-10-11 15:05 - 2025-10-11 15:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Piriform
2025-10-11 15:05 - 2025-10-11 15:05 - 000000000 ____D C:\Users\janku\AppData\Roaming\CCleaner
2025-10-11 15:04 - 2025-10-11 15:04 - 000000000 ____D C:\Program Files\Piriform
2025-10-11 15:04 - 2025-10-11 15:04 - 000000000 ____D C:\Program Files\Common Files\Piriform
2025-10-11 15:04 - 2025-10-11 12:57 - 000055064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\icarus_rvrt.exe
2025-10-11 12:42 - 2025-10-11 12:42 - 000000000 ____D C:\WINDOWS\Panther
2025-10-10 08:31 - 2025-10-10 08:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2025-10-06 08:02 - 2025-10-06 08:02 - 000053128 _____ C:\Users\janku\Downloads\Vypis_z_uctu-2001925557_20250901-20250930_cislo-8.pdf
2025-10-06 08:02 - 2025-10-06 08:02 - 000051997 _____ C:\Users\janku\Downloads\Vypis_z_uctu-2001925557_20250701-20250831_cislo-7.pdf
2025-10-06 08:01 - 2025-10-06 08:01 - 000055129 _____ C:\Users\janku\Downloads\Vypis_z_uctu-2001925557_20250601-20250630_cislo-6-1.pdf
2025-09-29 19:02 - 2024-10-17 03:53 - 000175824 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
2025-09-28 15:50 - 2025-09-28 15:50 - 000013957 _____ C:\Users\janku\Desktop\Kuchyň světla.pdf
2025-09-28 15:47 - 2025-09-28 15:47 - 000013867 _____ C:\Users\janku\Desktop\Kuchyň.pdf
2025-09-24 15:22 - 2025-10-11 12:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2025-09-23 16:53 - 2024-10-17 03:54 - 000174264 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2025-09-20 19:16 - 2025-09-26 21:38 - 000432528 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy_b.dll.0

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-10-18 21:23 - 2023-12-16 16:17 - 000000000 ____D C:\Users\janku\AppData\Local\LogiOptionsPlus
2025-10-18 21:22 - 2021-10-24 21:47 - 000000000 ____D C:\FRST
2025-10-18 21:14 - 2022-02-12 09:55 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-10-18 20:57 - 2020-08-20 21:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-10-18 20:43 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-10-18 19:30 - 2020-08-20 21:30 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{522E3D32-2483-4D21-9340-BE3C4D9F01B1}
2025-10-18 19:21 - 2017-06-15 07:11 - 000000000 ____D C:\ProgramData\NVIDIA
2025-10-18 19:08 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-10-18 19:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-10-18 18:54 - 2017-04-06 09:05 - 000000000 ____D C:\Program Files\trend micro
2025-10-18 18:50 - 2018-10-23 07:41 - 000000000 ____D C:\Users\janku\AppData\Local\D3DSCache
2025-10-18 18:41 - 2021-12-18 01:27 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-10-18 18:31 - 2017-11-13 13:18 - 000000000 ____D C:\Users\janku\AppData\Local\Dropbox
2025-10-18 18:31 - 2017-11-10 11:46 - 000000000 ____D C:\Users\janku\AppData\Roaming\Dropbox
2025-10-18 18:31 - 2016-05-03 09:20 - 000000000 ___RD C:\Users\janku\OneDrive
2025-10-18 18:30 - 2017-06-15 07:11 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2025-10-17 22:25 - 2023-10-01 12:17 - 000000000 ____D C:\Users\janku\Documents\TP-Link
2025-10-17 22:25 - 2023-10-01 12:17 - 000000000 ____D C:\Users\janku\AppData\Roaming\TP-Link
2025-10-17 22:24 - 2020-08-20 21:21 - 000000000 ____D C:\Users\janku
2025-10-17 20:16 - 2017-10-31 07:34 - 000000000 ____D C:\Users\janku\AppData\Local\Packages
2025-10-17 18:35 - 2020-08-20 21:21 - 000000000 ____D C:\Users\Host.HONZASTOLNIPC
2025-10-17 18:34 - 2021-03-06 12:58 - 000002393 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2025-10-17 18:34 - 2021-03-06 12:57 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2025-10-16 12:25 - 2025-05-30 18:40 - 004213112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2025-10-16 12:25 - 2025-05-30 18:40 - 000878968 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2025-10-16 12:25 - 2025-05-30 18:40 - 000285048 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2025-10-16 12:25 - 2025-05-30 18:40 - 000244088 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2025-10-16 12:25 - 2025-05-30 18:40 - 000166264 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2025-10-16 12:25 - 2025-05-30 18:40 - 000153976 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2025-10-16 12:25 - 2025-05-30 18:40 - 000076144 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2025-10-16 12:07 - 2016-05-03 09:25 - 000001056 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-10-16 12:07 - 2016-05-03 09:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-10-16 08:14 - 2016-05-03 11:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2025-10-15 17:36 - 2022-05-11 12:12 - 000713246 _____ C:\WINDOWS\system32\perfh005.dat
2025-10-15 17:36 - 2022-05-11 12:12 - 000143964 _____ C:\WINDOWS\system32\perfc005.dat
2025-10-15 17:36 - 2020-08-20 21:28 - 001683940 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-10-15 17:36 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2025-10-15 17:30 - 2020-08-20 21:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-10-15 17:29 - 2020-08-20 21:18 - 000008192 ___SH C:\DumpStack.log.tmp
2025-10-14 23:21 - 2019-12-07 11:03 - 001310720 _____ C:\WINDOWS\system32\config\BBI
2025-10-14 23:20 - 2022-05-11 23:46 - 000571544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-10-14 23:18 - 2024-07-11 23:33 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-10-14 23:18 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2025-10-14 23:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-10-14 22:10 - 2016-05-26 10:34 - 000000000 ____D C:\Users\janku\Graphisoft
2025-10-14 21:58 - 2016-05-03 11:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-14 21:55 - 2016-05-03 11:51 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-14 21:01 - 2017-08-13 22:21 - 000000000 ____D C:\Users\janku\Documents\BIMx
2025-10-14 20:19 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-14 20:17 - 2015-10-30 10:13 - 000420238 __RSH C:\bootmgr
2025-10-14 20:16 - 2020-08-20 21:19 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-10-13 18:42 - 2025-02-06 19:43 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-1967644643-3473992454-2983207395-1001
2025-10-13 18:42 - 2021-12-11 20:48 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1967644643-3473992454-2983207395-1001
2025-10-13 18:42 - 2020-08-20 21:30 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1967644643-3473992454-2983207395-1001
2025-10-13 18:42 - 2020-08-20 21:21 - 000002434 _____ C:\Users\janku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-13 18:39 - 2020-08-20 21:30 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-10-13 18:39 - 2020-08-20 21:30 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-12 20:15 - 2016-05-03 13:56 - 000000000 ____D C:\Users\janku\AppData\Roaming\Microsoft\Excel
2025-10-12 14:56 - 2017-06-06 18:27 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-10-12 14:56 - 2017-06-06 18:27 - 000002266 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-10-12 09:57 - 2025-03-05 17:38 - 000000000 ____D C:\Program Files\Logi
2025-10-12 09:56 - 2025-08-23 09:00 - 000000859 _____ C:\Users\Public\Desktop\Logi Options+.lnk
2025-10-12 09:56 - 2025-08-23 09:00 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2025-10-12 09:56 - 2021-04-17 21:05 - 000000000 ____D C:\WINDOWS\Minidump
2025-10-11 16:59 - 2020-06-10 16:33 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-10-11 15:05 - 2024-03-13 19:20 - 000000000 ____D C:\ProgramData\Piriform
2025-10-11 15:05 - 2016-09-30 11:49 - 000000000 ____D C:\Program Files\CCleaner
2025-10-11 12:55 - 2022-10-13 16:37 - 000002079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-10-11 12:55 - 2022-10-13 16:37 - 000002067 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2025-10-10 09:38 - 2017-06-14 23:02 - 000000000 ____D C:\Users\janku\AppData\LocalLow\Temp
2025-10-10 09:38 - 2016-05-03 11:59 - 000000000 ____D C:\Users\janku\AppData\Roaming\Microsoft\Word
2025-10-10 09:38 - 2016-05-03 11:02 - 000000000 ____D C:\Users\janku\AppData\LocalLow\Adobe
2025-10-10 08:32 - 2021-02-03 17:48 - 000002179 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2025-10-10 08:31 - 2017-11-10 11:46 - 000000000 ____D C:\Program Files (x86)\Dropbox
2025-10-09 21:36 - 2017-06-03 12:36 - 000001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2025-10-07 21:39 - 2017-04-05 10:10 - 000000000 ____D C:\Users\janku\AppData\Local\CrashDumps
2025-10-07 11:23 - 2022-09-15 20:36 - 000981368 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInputRedist.dll
2025-10-07 11:23 - 2022-09-15 20:36 - 000022904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInputRedist.dll
2025-09-26 21:37 - 2025-05-30 18:40 - 000878992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll.0

==================== Files in the root of some directories ========

2016-11-26 13:00 - 2020-02-14 12:51 - 000005632 _____ () C:\Users\janku\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-08-10 20:37 - 2020-08-10 20:37 - 000000017 _____ () C:\Users\janku\AppData\Local\resmon.resmoncfg
2024-11-23 13:30 - 2024-11-23 13:30 - 000000372 _____ () C:\Users\janku\AppData\Local\{D44739B2-E14C-4344-ADA5-BEFCC00912D8}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119580
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu PC strašně se mi plní disk

#6 Příspěvek od Rudy »

OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {05A9C075-BCE5-44E1-A021-D350CA2021D4} - System32\Tasks\VIGI Web Player Update Task => C:\Users\janku\AppData\Roaming\TP-Link\VIGI Web Player\Controller\VIGIWebPlayer.exe -silent (No File)
C:\DumpStack.log.tmp
C:\Users\janku\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\janku\AppData\Local\{D44739B2-E14C-4344-ADA5-BEFCC00912D8}
AlternateDataStreams: C:\Users\janku\Desktop\Faktura nářadí.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\janku\Desktop\Faktura nářadí.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\janku\Desktop\op.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\Control Panel\Desktop\\Wallpaper ->
FirewallRules: [{2A07BCEB-EB31-45E2-96AB-C05F4903B75E}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{0F541197-4D0B-470C-8B9A-9930E0C75C69}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C1CD4A9C-1FFB-48FA-8641-D5B5235C9506}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{A1556CB3-1505-466E-80DF-D9223F4B0534}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{082CE6D4-C08A-4113-8F9F-8D9FFEC00E38}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{85F4E63B-488C-43F2-B411-B7A4151EB8E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{F5EC7F08-0387-46C4-B30C-795D3AF1B6FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{89CA2AE8-5EA8-4020-8712-FB4D94E78670}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{B5BB2DC7-AA38-4FB7-923F-95F064D74775}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C7B8086D-6E5C-4FFB-88E9-83F433E242A3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C9809C3C-29BA-4852-A663-B18EF4EA4668}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{23E625BA-5A60-4A1F-A9C4-FEE0702C7895}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{F36E782A-9B16-4B5F-831D-4CBBF1FE6287}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hanz-xc
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 18 srp 2009 16:25

Re: Prosím o kontrolu PC strašně se mi plní disk

#7 Příspěvek od hanz-xc »

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-10-2025
Ran by janku (19-10-2025 22:15:53) Run:2
Running from C:\Users\janku\Desktop
Loaded Profiles: janku & Host
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {05A9C075-BCE5-44E1-A021-D350CA2021D4} - System32\Tasks\VIGI Web Player Update Task => C:\Users\janku\AppData\Roaming\TP-Link\VIGI Web Player\Controller\VIGIWebPlayer.exe -silent (No File)
C:\DumpStack.log.tmp
C:\Users\janku\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\janku\AppData\Local\{D44739B2-E14C-4344-ADA5-BEFCC00912D8}
AlternateDataStreams: C:\Users\janku\Desktop\Faktura nářadí.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\janku\Desktop\Faktura nářadí.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\janku\Desktop\op.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\Control Panel\Desktop\\Wallpaper ->
FirewallRules: [{2A07BCEB-EB31-45E2-96AB-C05F4903B75E}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{0F541197-4D0B-470C-8B9A-9930E0C75C69}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C1CD4A9C-1FFB-48FA-8641-D5B5235C9506}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{A1556CB3-1505-466E-80DF-D9223F4B0534}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{082CE6D4-C08A-4113-8F9F-8D9FFEC00E38}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{85F4E63B-488C-43F2-B411-B7A4151EB8E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{F5EC7F08-0387-46C4-B30C-795D3AF1B6FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{89CA2AE8-5EA8-4020-8712-FB4D94E78670}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{B5BB2DC7-AA38-4FB7-923F-95F064D74775}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C7B8086D-6E5C-4FFB-88E9-83F433E242A3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{C9809C3C-29BA-4852-A663-B18EF4EA4668}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.242.290.0_x64__zpdnekdrzrea0\Spotify.exe => No File
FirewallRules: [{23E625BA-5A60-4A1F-A9C4-FEE0702C7895}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{F36E782A-9B16-4B5F-831D-4CBBF1FE6287}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{05A9C075-BCE5-44E1-A021-D350CA2021D4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{05A9C075-BCE5-44E1-A021-D350CA2021D4}" => removed successfully
C:\WINDOWS\System32\Tasks\VIGI Web Player Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\VIGI Web Player Update Task" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Users\janku\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\Users\janku\AppData\Local\{D44739B2-E14C-4344-ADA5-BEFCC00912D8} => moved successfully
C:\Users\janku\Desktop\Faktura nářadí.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\janku\Desktop\Faktura nářadí.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\janku\Desktop\op.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
HKU\S-1-5-21-1967644643-3473992454-2983207395-1001\Control Panel\Desktop\\Wallpaper -> => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2A07BCEB-EB31-45E2-96AB-C05F4903B75E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0F541197-4D0B-470C-8B9A-9930E0C75C69}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C1CD4A9C-1FFB-48FA-8641-D5B5235C9506}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A1556CB3-1505-466E-80DF-D9223F4B0534}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{082CE6D4-C08A-4113-8F9F-8D9FFEC00E38}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{85F4E63B-488C-43F2-B411-B7A4151EB8E3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F5EC7F08-0387-46C4-B30C-795D3AF1B6FF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{89CA2AE8-5EA8-4020-8712-FB4D94E78670}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B5BB2DC7-AA38-4FB7-923F-95F064D74775}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C7B8086D-6E5C-4FFB-88E9-83F433E242A3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C9809C3C-29BA-4852-A663-B18EF4EA4668}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{23E625BA-5A60-4A1F-A9C4-FEE0702C7895}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F36E782A-9B16-4B5F-831D-4CBBF1FE6287}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 2883584 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 43645654 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 123061657 B
Windows/system/drivers => 18178205 B
Edge => 0 B
Chrome => 503808 B
Firefox => 23728345 B
Opera => 152790 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 143 B
systemprofile32 => 143 B
LocalService => 20819 B
NetworkService => 20819 B
janku => 285369377 B
Host.HONZASTOLNIPC => 285463914 B

RecycleBin => 283894664 B
EmptyTemp: => 1017.5 MB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 19-10-2025 22:20:08)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 22:20:08 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119580
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu PC strašně se mi plní disk

#8 Příspěvek od Rudy »

Smazáno. Problém pominul?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
hanz-xc
Návštěvník
Návštěvník
Příspěvky: 24
Registrován: 18 srp 2009 16:25

Re: Prosím o kontrolu PC strašně se mi plní disk

#9 Příspěvek od hanz-xc »

No moc ne. Většinou složka AppData zabírá podstatnou část disku
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119580
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu PC strašně se mi plní disk

#10 Příspěvek od Rudy »

Udělejte tento sken: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, spusťte, nechte pracovat a po skončení akce smažte vše, co najde. Pokud by v té složce byla pouze stará data, které souvisí s odinstalovanými aplikacem, vyčistěte PC CCleanerem: https://www.ccleaner.com/cs-cz/ccleaner ... gJGkPD_BwE .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“