Re: Detekován PUAbundler:win32/candyopen
Napsal: 29 srp 2024 12:25
OK.
Takže, tady je nový:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-08.2024
Ran by Sysel (administrator) on DESKTOP-SRFASFD (Gigabyte Technology Co., Ltd. H310M S2 2.0) (29-08-2024 15:00:46)
Running from C:\Users\Sysel\Desktop\FRST64.exe
Loaded Profiles: Sysel
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4780 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Programy\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) D:\Programy\Malwarebytes.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) D:\Programy\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_78cd02ab022cd554\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_11.2406.13.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM-x32\...\Run: [YKB 3000 Gaming Keyboard Driver] => C:\Program Files\YKB 3000\YKB 3000 Gaming Keyboard Driver.exe [2039808 2020-11-25] (TODO: <Company name>) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\Run: [GogGalaxy] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [14916448 2021-03-26] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\Run: [MicrosoftEdgeAutoLaunch_034C0662AD04BF19A02F5311BBF66569] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3741224 2024-08-22] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-11058042-1712766284-1418202981-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Users\Sysel\Desktop\Fliqlo.scr
HKLM\...\Windows x64\Print Processors\Canon TS5300 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDFO.DLL [509952 2019-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS5300 series: C:\WINDOWS\system32\CNMLMFO.DLL [940032 2019-07-14] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\127.0.6533.122\Installer\chrmstp.exe [2024-08-27] (Google LLC -> Google LLC)
Startup: C:\Users\Sysel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Boom3D.lnk [2022-08-23]
ShortcutTarget: Boom3D.lnk -> C:\Program Files\Global Delight\Boom 3D\Boom3D.exe (No File)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {8CE631C0-84D4-4268-94B7-0997DC47E758} - System32\Tasks\Boom 3D App Updater => C:\Program Files\Global Delight\AppUpdater\Updater.exe [6144 2021-11-12] () [File not signed]
Task: {4EC1F552-1A1F-4890-8CA8-F64E1BB4B71F} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1071760 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {5E91275C-A9EF-4879-9BAA-122C513DB5F7} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {9146ADBE-171F-465B-9FB3-D23B03636733} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {AF93ECCC-979A-44EB-AAA9-26CA56E57A66} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5A161DD9-6B8B-4F85-B021-61B2158FA249} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {92B46CD6-86BB-4371-85B3-38DA420599B9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4820E98F-546D-4524-ACF1-DD6817B31658} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0A2B380C-7067-4C03-BF15-48E975114B31} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD94C078-18F4-4B42-A633-6608163CFD58} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A6FDDF5C-2B2F-4B65-9098-2C5E214D013D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3CFEAD62-653A-43F3-96B5-8FB17B844F5A} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{2ef07428-8c3a-4cc7-a4ec-a24488856898}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}: [DhcpDomain] home
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}\55053413630363036353: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}\55053413630363036353: [DhcpDomain] docsis.vodafone.cz
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}\F423D294E6475627E65647D25374D2838333: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}\F423D294E6475627E65647D25374D2838333: [DhcpDomain] home
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}\F423D294E6475627E65647D2735343: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d229fd38-bcf5-4aed-a4e4-fe3774f964d9}\F423D294E6475627E65647D2735343D25374: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge Profile: C:\Users\Sysel\AppData\Local\Microsoft\Edge\User Data\Default [2024-08-27]
Edge Extension: (Dokumenty Google offline) - C:\Users\Sysel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-31]
Edge Extension: (Edge relevant text changes) - C:\Users\Sysel\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-04]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default [2024-08-29]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.cz/"
CHR Extension: (Překladač Google) - C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-07-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-27]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-24]
CHR Extension: (Violentmonkey) - C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jinjaccalgkegednnccohejagnlnfdag [2024-07-09]
CHR Extension: (Morpheon Dark) - C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mafbdhjdkjnoafhfelkjpchpaepjknad [2024-03-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-15]
CHR Profile: C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-08-27]
CHR Profile: C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\System Profile [2024-08-27]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2568840 2024-07-21] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1874272 2021-03-26] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6840672 2021-03-26] (GOG Sp. z o.o. -> GOG.com)
R2 MBAMService; D:\Programy\MBAMService.exe [8965728 2024-08-28] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; D:\Programy\MBVpnTunnelService.exe [3073888 2024-08-28] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpDefenderCoreService.exe [1427024 2024-08-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_78cd02ab022cd554\Display.NvContainer\NVDisplay.Container.exe [1275016 2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Rockstar Service; D:\Programy\Launcher\RockstarService.exe [2332976 2021-10-24] (Rockstar Games, Inc. -> Rockstar Games) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522096 2024-08-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\NisSrv.exe [3199648 2024-08-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe [133704 2024-08-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 RTLDHCPService; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [25560 2023-04-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2020-10-09] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 FXVAD; C:\WINDOWS\system32\drivers\fxvad.sys [326656 2022-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [231504 2024-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-08-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [201280 2024-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [78928 2024-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2024-08-29] (Malwarebytes Inc. -> Malwarebytes)
S3 MDA_NTDRV; C:\WINDOWS\system32\MDA_NTDRV.sys [43664 2023-11-13] (Chongqing NIUBI Technology Co., Ltd. -> )
S3 MpKsl1b1ac172; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F3FA780F-C1F8-48B7-8F94-66A4BDB3FE9C}\MpKslDrv.sys [271640 2024-08-29] (Microsoft Windows -> Microsoft Corporation)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 RTCore64; D:\Programy\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-08-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602504 2024-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-08-10] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X] <==== ATTENTION
S3 TRIXX; \??\C:\Users\Sysel\AppData\Local\Temp\TRIXX.sys [X] <==== ATTENTION
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-29 14:47 - 2024-08-29 14:47 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-08-29 14:47 - 2024-08-29 14:47 - 000000000 ____D C:\Users\Sysel\AppData\LocalLow\IGDump
2024-08-29 10:01 - 2024-08-29 10:02 - 000047232 _____ C:\Users\Sysel\Desktop\Addition.txt
2024-08-29 10:00 - 2024-08-29 15:01 - 000017857 _____ C:\Users\Sysel\Desktop\FRST.txt
2024-08-28 15:09 - 2024-08-29 14:35 - 000000000 ____D C:\Users\Sysel\AppData\Local\Malwarebytes
2024-08-28 15:09 - 2024-08-28 15:09 - 000000664 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-08-28 15:09 - 2024-08-28 15:09 - 000000664 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-08-28 15:08 - 2024-08-28 15:08 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-08-28 15:07 - 2024-08-28 15:07 - 279713832 _____ (Malwarebytes) C:\Users\Sysel\Desktop\MBSetup-076981.076981-5.1.9.124.exe
2024-08-27 20:23 - 2024-08-27 20:50 - 000000000 ____D C:\KVRT2020_Data
2024-08-27 20:20 - 2024-08-27 20:23 - 111409520 _____ (AO Kaspersky Lab) C:\Users\Sysel\Desktop\KVRT.exe
2024-08-27 17:58 - 2024-08-27 17:58 - 008790880 _____ (Malwarebytes) C:\Users\Sysel\Desktop\AdwCleaner.exe
2024-08-27 17:43 - 2024-08-29 14:47 - 088866816 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-08-27 17:42 - 2024-08-27 17:43 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2024-08-27 17:23 - 2024-08-29 15:01 - 000000000 ____D C:\FRST
2024-08-27 17:23 - 2024-08-27 17:23 - 002397184 _____ (Farbar) C:\Users\Sysel\Desktop\FRST64.exe
2024-08-27 16:27 - 2024-08-27 16:27 - 000000889 _____ C:\Users\Sysel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\adwcleaner(3).lnk
2024-08-24 20:32 - 2024-08-24 20:32 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-08-24 20:32 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-08-24 20:32 - 2024-06-11 22:19 - 002900520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2024-08-24 20:32 - 2024-06-11 22:19 - 002231336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2024-08-24 20:32 - 2024-06-11 22:18 - 001296936 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2024-08-24 20:32 - 2024-03-26 21:11 - 000180760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2024-08-24 20:32 - 2024-03-26 21:11 - 000159768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2024-08-24 20:25 - 2024-08-24 20:25 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2024-08-24 20:22 - 2024-08-14 12:00 - 000121872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2024-08-24 20:21 - 2024-08-15 03:31 - 025312928 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2024-08-24 20:21 - 2024-08-15 03:31 - 002040584 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-08-24 20:21 - 2024-08-15 03:31 - 002040584 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-08-24 20:21 - 2024-08-15 03:31 - 001583888 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-08-24 20:21 - 2024-08-15 03:31 - 001583888 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-08-24 20:21 - 2024-08-15 03:31 - 001446800 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-08-24 20:21 - 2024-08-15 03:31 - 001446800 _____ C:\WINDOWS\system32\vulkan-1.dll
2024-08-24 20:21 - 2024-08-15 03:31 - 001296656 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-08-24 20:21 - 2024-08-15 03:31 - 001296656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2024-08-24 20:21 - 2024-08-15 03:31 - 000477824 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2024-08-24 20:21 - 2024-08-15 03:31 - 000374936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2024-08-24 20:21 - 2024-08-15 03:28 - 001078944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2024-08-24 20:21 - 2024-08-15 03:28 - 000669824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2024-08-24 20:21 - 2024-08-15 03:28 - 000505904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2024-08-24 20:21 - 2024-08-15 03:27 - 002178712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2024-08-24 20:21 - 2024-08-15 03:27 - 001629312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2024-08-24 20:21 - 2024-08-15 03:27 - 001547440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2024-08-24 20:21 - 2024-08-15 03:27 - 001202712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2024-08-24 20:21 - 2024-08-15 03:27 - 001034400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2024-08-24 20:21 - 2024-08-15 03:27 - 000856600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2024-08-24 20:21 - 2024-08-15 03:27 - 000796808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2024-08-24 20:21 - 2024-08-15 03:26 - 014270088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2024-08-24 20:21 - 2024-08-15 03:26 - 000461976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2024-08-24 20:21 - 2024-08-15 03:25 - 016200344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2024-08-24 20:21 - 2024-08-15 03:25 - 006914184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2024-08-24 20:21 - 2024-08-15 03:25 - 005910152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2024-08-24 20:21 - 2024-08-15 03:25 - 005349000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2024-08-24 20:21 - 2024-08-15 03:25 - 003788416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2024-08-24 20:21 - 2024-08-15 03:25 - 000853128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2024-08-24 20:21 - 2024-08-15 03:24 - 007133024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2024-08-24 20:21 - 2024-08-15 03:24 - 006212736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2024-08-24 20:21 - 2024-08-14 12:00 - 000127247 _____ C:\WINDOWS\system32\nvinfo.pb
2024-08-24 20:16 - 2024-08-24 20:20 - 701110360 _____ (NVIDIA Corporation) C:\Users\Sysel\Desktop\560.94-desktop-win10-win11-64bit-international-dch-whql.exe
2024-08-24 19:37 - 2024-03-26 21:11 - 000059928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2024-08-24 19:37 - 2024-03-26 19:21 - 000060240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2024-08-24 19:36 - 2024-08-24 19:36 - 000000000 ____D C:\Users\Sysel\Documents\Ghost of Tsushima DIRECTOR'S CUT
2024-08-24 19:36 - 2024-08-24 19:36 - 000000000 ____D C:\Users\Sysel\AppData\Roaming\Sucker Punch Productions
2024-08-24 18:59 - 2024-08-27 22:09 - 000000000 ____D C:\Users\Sysel\AppData\Roaming\kebug
2024-08-24 14:57 - 2024-08-24 14:57 - 000106496 _____ (PCGameBenchmark) C:\Users\Sysel\Desktop\PCGameBenchmark_Detector.exe
2024-08-19 21:38 - 2024-08-19 21:38 - 000000000 ___HD C:\$WinREAgent
2024-08-12 18:53 - 2024-08-12 18:53 - 000000000 ____D C:\Users\Sysel\AppData\Roaming\Wise
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-08-29 14:54 - 2021-04-15 19:37 - 000716874 _____ C:\WINDOWS\system32\perfh005.dat
2024-08-29 14:54 - 2021-04-15 19:37 - 000145052 _____ C:\WINDOWS\system32\perfc005.dat
2024-08-29 14:54 - 2021-04-15 19:35 - 000000000 ____D C:\WINDOWS\INF
2024-08-29 14:54 - 2021-04-15 18:53 - 001693568 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-08-29 14:49 - 2023-10-07 16:01 - 000000445 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2024-08-29 14:49 - 2021-04-15 19:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-08-29 14:48 - 2023-07-15 21:09 - 000000000 ____D C:\ProgramData\NVIDIA
2024-08-29 14:47 - 2023-07-15 20:50 - 000001134 _____ C:\WINDOWS\system32\config\VSMIDK
2024-08-29 14:47 - 2021-04-15 19:32 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-08-29 14:47 - 2021-04-15 18:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-08-29 14:47 - 2020-09-27 07:55 - 000008192 ___SH C:\DumpStack.log.tmp
2024-08-29 14:41 - 2022-02-27 19:48 - 000000000 ____D C:\Users\Sysel\AppData\Roaming\qBittorrent
2024-08-29 14:39 - 2021-04-15 18:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-08-29 11:15 - 2021-04-15 19:36 - 000000000 ___HD C:\Program Files\WindowsApps
2024-08-29 11:15 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-08-29 10:47 - 2023-11-11 09:55 - 000000757 _____ C:\Users\Sysel\Desktop\TS4_x64 (always offline).lnk
2024-08-28 15:09 - 2021-04-15 19:36 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-08-27 22:09 - 2022-08-23 11:56 - 000000000 ____D C:\Users\Sysel\AppData\Local\Boom 3D
2024-08-27 19:08 - 2023-03-23 19:40 - 000000000 ____D C:\Users\Sysel\AppData\LocalLow\Temp
2024-08-27 18:47 - 2021-04-15 18:52 - 000000000 ____D C:\Users\Sysel\AppData\Local\D3DSCache
2024-08-27 17:04 - 2021-04-15 20:09 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2024-08-27 16:35 - 2021-12-18 18:35 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-08-27 16:09 - 2020-11-18 18:00 - 000002253 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-08-25 16:03 - 2022-06-13 18:19 - 000000000 ____D C:\Users\Sysel\AppData\Local\CrashDumps
2024-08-25 14:26 - 2021-09-01 13:04 - 000000000 ____D C:\Users\Sysel\AppData\Local\NVIDIA Corporation
2024-08-24 20:38 - 2023-07-15 21:09 - 000000000 ____D C:\Users\Sysel\AppData\Local\NVIDIA
2024-08-24 20:38 - 2023-07-15 21:09 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-08-24 20:32 - 2023-07-15 21:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2024-08-24 20:32 - 2021-04-16 18:26 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2024-08-24 20:32 - 2021-04-16 18:26 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2024-08-24 20:32 - 2021-04-15 19:23 - 000000000 ____D C:\ProgramData\Package Cache
2024-08-24 20:25 - 2023-07-15 21:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2024-08-24 14:57 - 2020-09-27 09:58 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-08-22 21:20 - 2021-04-15 18:42 - 000404104 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-08-22 21:19 - 2023-10-07 15:55 - 000000000 ____D C:\Program Files\Hyper-V
2024-08-22 21:19 - 2023-07-15 21:09 - 000000000 ___SD C:\WINDOWS\system32\lxss
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\SystemResources
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\system32\setup
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\Provisioning
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-08-22 21:19 - 2021-04-15 19:36 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-08-19 21:49 - 2021-04-15 19:33 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-08-19 21:45 - 2021-04-15 18:44 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-08-17 21:05 - 2021-04-17 15:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-08-17 21:03 - 2021-04-17 15:31 - 197093640 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-08-10 22:27 - 2021-04-15 18:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Files in the root of some directories ========
2022-07-25 21:38 - 2022-07-27 12:02 - 000000813 _____ () C:\Users\Sysel\AppData\Roaming\DESKTOP-SRFASFD.MTBF.txt
2021-05-01 19:41 - 2021-05-01 19:46 - 000012288 _____ () C:\Users\Sysel\AppData\Roaming\emp.bin
2023-11-10 11:28 - 2023-11-10 11:35 - 000000016 _____ () C:\Users\Sysel\AppData\Roaming\msregsvv.dll
2023-07-15 22:27 - 2023-07-15 22:27 - 000000291 _____ () C:\Users\Sysel\AppData\Local\ledConfiguration.config
2023-07-15 22:27 - 2023-07-15 22:42 - 000000747 _____ () C:\Users\Sysel\AppData\Local\NvidiaLEDVisualizer.config
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-08.2024
Ran by Sysel (29-08-2024 15:01:56)
Running from C:\Users\Sysel\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.4780 (X64) (2021-04-15 16:52:26)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-11058042-1712766284-1418202981-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-11058042-1712766284-1418202981-503 - Limited - Disabled)
Guest (S-1-5-21-11058042-1712766284-1418202981-501 - Limited - Disabled)
Sysel (S-1-5-21-11058042-1712766284-1418202981-1001 - Administrator - Enabled) => C:\Users\Sysel
WDAGUtilityAccount (S-1-5-21-11058042-1712766284-1418202981-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
A Sharper Scaling version 1.2 (HKLM-x32\...\{7CFADE53-9599-48C5-9FE3-689E56C1D96B}_is1) (Version: 1.2 - )
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Assassins Creed Origins The Curse of the Pharaohs (HKLM-x32\...\Assassins Creed Origins The Curse of the Pharaohs_is1) (Version: - )
Audacity 3.4.2 (HKLM\...\Audacity_is1) (Version: 3.4.2 - Audacity Team)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.74.1085 - AB Team, d.o.o.)
Creative Pack Volume 1 (HKLM\...\{997BE27F-A97F-4EF4-B841-D20ABF1CD6DC}) (Version: 4.0.0 - Corel Corporation)
CustomsForge Song Manager - Latest Build 1.6.0.1 (HKLM-x32\...\58F35625-541C-493A-A289-4B2D362DAFE0_is1) (Version: 1.6.0.1 - CustomsForge)
Days Gone (HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\FLT_Days Gone) (Version: - )
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Dynamic Application Loader Host Interface Service (HKLM\...\{F8197FEC-9FA0-4488-AC9D-38E67D58FDAC}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE RGB HAL (HKLM\...\{B380DBDE-BA95-481B-92E9-52F2E5E84F24}) (Version: 1.00.15 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{adbc3d98-57f2-4d68-b155-138f8fb0f73d}) (Version: 1.00.15 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{1CD178C9-BB49-4E59-9DA6-3C152E2A9844}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fe81cfd3-9db4-409d-b0f9-26707d1423c6}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
Geeks3D FurMark 1.25.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: 1.25.1.0 - Geeks3D)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 127.0.6533.122 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2372.2 - Rockstar Games)
Grim Dawn (HKLM-x32\...\Grim Dawn_is1) (Version: - )
Guitar Rig 6 (HKLM\...\Guitar Rig 6 Pro_is1) (Version: 6.0.3 - Native Instruments & Team V.R)
Heavy Rain (HKLM-x32\...\Heavy Rain_is1) (Version: - )
Hogwarts Legacy (HKLM-x32\...\Hogwarts Legacy_is1) (Version: 0.0.0 - DODI-Repacks)
INDIKA - CZ (HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\INDIKA - CZ) (Version: - )
Intel(R) Chipset Device Software (HKLM\...\{44C34709-F068-4CBC-8A71-515EDBC3B2A6}) (Version: 10.1.18383.8213 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{afad3740-3061-4b48-a9ab-6f1435cb3dd6}) (Version: 10.1.18383.8213 - Intel(R) Corporation)
Intel(R) Icls (HKLM\...\{456B5CCF-722F-4AC9-9490-3C9FCADEEEF2}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) LMS (HKLM\...\{AD1C4C82-ED20-4DD6-A5BA-DA8748D1AF98}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2020.14.0.1600 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{B8179F2A-010B-4F9C-AFA1-FB38E4D387A8}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{BAA8CB3F-7E98-4064-8ED5-3C116C15EF13}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{E22D7631-A5A7-4483-9E20-7C91E447B94C}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Kingdom Come: Deliverance - A Woman's Lot (HKLM-x32\...\1460218995_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance – Band of Bastards (HKLM-x32\...\1957357825_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance – From the Ashes (HKLM-x32\...\1201995925_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance – The Amorous Adventures of Bold Sir Hans Capon (HKLM-x32\...\1336069439_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance (HKLM-x32\...\1719198803_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kingdom Come: Deliverance Treasures of the Past DLC (HKLM-x32\...\1300320746_is1) (Version: 1.9.6-404-504czj3 - GOG.com)
Kontrola stavu osobního počítače s Windows (HKLM\...\{95548B78-8547-4E91-B0DA-1CBB82150917}) (Version: 3.7.2204.15001 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Life is Strange 2 (HKLM-x32\...\Life is Strange 2_is1) (Version: 0.0.0 - DODI-Repacks)
Malwarebytes version 5.1.9.124 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.9.124 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 128.0.2739.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 128.0.2739.42 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33135 (HKLM-x32\...\{c649ede4-f16a-4486-a117-dcc2f2a35165}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33135 (HKLM-x32\...\{46c3b171-c15c-4137-8e1d-67eeb2985b44}) (Version: 14.38.33135.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33135 (HKLM\...\{19AFE054-CA83-45D5-A9DB-4108EF4BD391}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33135 (HKLM\...\{AA0C8AB5-7297-4D46-A0D9-08096FE59E46}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33135 (HKLM-x32\...\{9C19C103-7DB1-44D1-A039-2C076A633A38}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33135 (HKLM-x32\...\{286DC39B-5FB7-4AFF-9DD4-22DB47664CD7}) (Version: 14.38.33135 - Microsoft Corporation) Hidden
Minimal ADB and Fastboot version 1.4.3 (HKLM-x32\...\{B561660D-8B3C-491D-9E3E-293F14FCAADA}_is1) (Version: 1.4.3 - Samuel Rodberg)
Modern Warfare Remastered v.1.15.1251288.0 (HKLM-x32\...\{6033673D-2930-7711-3AD2-EB059FC263F9}_is1) (Version: - RePack by Canek77)
MSI Afterburner 4.6.4 Beta 3 (HKLM-x32\...\Afterburner) (Version: 4.6.4 Beta 3 - MSI Co., LTD)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.70 - MSI)
NewBlue Effects (HKLM\...\{C68BAB1A-C7DF-4D81-83FC-981B31921924}) (Version: 2.1.0 - Corel Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA LED Visualizer 1.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.LEDVisualizer) (Version: 1.3 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{FAAC26AD-73BA-40CE-86AA-C9213F9E064A}) (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Paint Shop Pro 7 ESD (HKLM-x32\...\{D6DE02C7-1F47-11D4-9515-00105AE4B89A}) (Version: 7.0.0.0000 - Jasc Software Inc)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 4.6.0 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.46.1231.2020 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Red Dead Redemption 2 (HKLM-x32\...\Red Dead Redemption 2_is1) (Version: - )
RivaTuner Statistics Server 7.3.2 Beta 2 (HKLM-x32\...\RTSS) (Version: 7.3.2 Beta 2 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.37.349 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.9.3 - Rockstar Games)
Sapphire TRIXX 8.6.0 (HKLM-x32\...\{49272457-BEDE-4A3A-808F-7BBD4840E85B}_is1) (Version: 8.6.0 - Sapphire)
ScoreFitter Volumes 1-2 (HKLM\...\{5CA29919-6361-4A17-91C5-6819E43794B1}) (Version: 3.0 - Corel Corporation)
Sims 4 Mod Manager version b1.0.9 (HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\{0A555FCD-A8E3-47F6-B776-033D8017BFDC}_is1) (Version: b1.0.9 - GameTimeDev)
The Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.99.305.1020 - Electronic Arts Inc.)
The Witcher 3: Wild Hunt - Game of the Year Edition (HKLM-x32\...\1495134320_is1) (Version: 4.02_Hotfix - GOG.com)
Title Extreme (HKLM\...\{3B519225-B4B2-40B7-A431-3C6AAE2831B4}) (Version: 3.0 - Corel Corporation)
TP-Link Archer T2U Plus Driver (HKLM-x32\...\{D646A985-33A6-4D98-973F-44CC267BD834}) (Version: 2.1.0 - TP-Link)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
Wondershare Filmora 11(Build 11.0.10.2) (HKLM\...\Wondershare Filmora 11_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
YKB 3000 Gaming Keyboard Driver (HKLM-x32\...\YKB 3000 Gaming Keyboard Driver) (Version: V1.01n - YENKEE)
Chrome apps:
============
YouTube Music (HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\7d0759e527abc1afd161532a334cc2fe) (Version: 1.0 - Google\Chrome)
Packages:
=========
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.1293.0_x64__8wekyb3d8bbwe [2024-06-09] (Microsoft Corporation)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2023-11-16] (Canon Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-25] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-04-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-04-16] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-08-24] (NVIDIA Corp.)
Pantone Color of the Year 2022 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.PantoneColoroftheYear2022_1.0.0.0_neutral__8wekyb3d8bbwe [2023-11-07] (Microsoft Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.20.235.0_x64__dt26b99r8h8gj [2023-06-10] (Realtek Semiconductor Corp)
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-07-23] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-11058042-1712766284-1418202981-1001_Classes\CLSID\{e1a7f602-67b7-44f7-ad19-439e41f06cd8}\localserver32 -> "C:\Program Files\Global Delight\Boom 3D\Boom3D.exe" -ToastActivated => No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programy\mbshlext.dll [2024-08-28] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_78cd02ab022cd554\nvshext.dll [2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programy\mbshlext.dll [2024-08-28] (Malwarebytes Inc. -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2023-08-06] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2023-08-06] (Electronic Arts -> On2.com)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Sysel\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_cinhimbnkkaeohfgghhklpknlkffjgod\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\Sysel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\Sysel\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\YouTube Music.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
==================== Loaded Modules (Whitelisted) =============
2023-07-15 22:55 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2020-01-13 13:51 - 2020-01-13 13:51 - 000210432 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2019-10-22 02:16 - 2019-10-22 02:16 - 000264704 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2019-06-28 10:51 - 2019-06-28 10:51 - 000184832 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll
2023-07-15 22:55 - 2018-11-14 23:08 - 002200784 _____ (Dexin Corp -> MICRO-STAR INTERNATIONAL) [File not signed] C:\Program Files (x86)\MSI\MysticLight\IcMSIDll.dll
2021-04-16 18:07 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2023-07-15 22:55 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2021-04-15 19:36 - 2024-08-27 19:05 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2023-10-07 16:01 - 2024-08-29 14:49 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
172.22.176.1 DESKTOP-SRFASFD.mshome.net # 2029 8 2 28 12 49 36 592
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-11058042-1712766284-1418202981-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sysel\Pictures\wallpaper-mania.com_High_resolution_wallpaper_background_ID_77700001659.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi 3: TP-Link Wireless USB Adapter -> rtwlanu.sys
Ethernet: Realtek Gaming GbE Family Controller -> rt640x64.sys
vEthernet (Default Switch): Hyper-V Virtual Ethernet Adapter -> VmsProxyHNic.sys
vms_vsf: Hyper-V Virtual Switch Extension Filter
ms_vfpext: Microsoft Azure VFP Switch Extension
vms_vsp: Hyper-V Virtual Switch Extension Protocol
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "YKB 3000 Gaming Keyboard Driver"
HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\StartupApproved\StartupFolder: => "Boom3D.lnk"
HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\StartupApproved\Run: => "GogGalaxy"
HKU\S-1-5-21-11058042-1712766284-1418202981-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_034C0662AD04BF19A02F5311BBF66569"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{C4C5FBC2-D058-4C3E-B956-5616A11F3565}] => (Allow) D:\Programy\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3A28D871-FD36-4243-9651-597AA33A826C}] => (Allow) D:\Programy\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F7B0B944-B267-4D80-8CE6-B94DF75B746D}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7BF9B97D-51F3-43BF-977E-6E9CFFE0B487}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{762B8DC1-B6F3-4217-B868-6BBFB2501B58}] => (Allow) D:\Programy\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{FC341532-D3FA-489F-A0CC-C86EF585F0A6}] => (Allow) D:\Programy\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [TCP Query User{689E6190-A0CF-4D0A-A189-761E02E1D4CE}D:\hry\grand theft auto v\gta5.exe] => (Block) D:\hry\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) [File not signed]
FirewallRules: [UDP Query User{559DB2A7-0A44-49A4-9716-FCCA6F92DEB6}D:\hry\grand theft auto v\gta5.exe] => (Block) D:\hry\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games) [File not signed]
FirewallRules: [{C694B2A3-AA51-49DC-9847-00A31CC018F9}] => (Allow) LPort=1542
FirewallRules: [{EFA625FA-4A5C-46C3-B8B4-A200C5470FBF}] => (Allow) LPort=1542
FirewallRules: [{37153D3B-B556-4E1C-A738-820CC63E772D}] => (Allow) LPort=53
FirewallRules: [{CBF19A06-A456-4C54-A371-FA3CF28E4C53}] => (Allow) LPort=53
FirewallRules: [{7BA01785-BBEC-4FDD-B5CD-77582B42636E}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{C6CFAB22-6647-421B-A7A2-5AF6B3236466}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{4EB754EA-5E5F-4955-A908-A1D2FC9C2D57}] => (Allow) D:\Programy\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{BFE63AB1-9C3B-4360-B4D4-4C0E3877C37A}] => (Allow) D:\Programy\Steam\steamapps\common\Rocksmith2014\Rocksmith2014.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{206093AF-1F37-4FBA-85A3-FCEAE906ADC7}] => (Allow) D:\Hry\Red Dead Redemption 2\RDR2.exe (Rockstar Games) [File not signed]
FirewallRules: [{6D4EF899-4E64-45BD-BFE6-C0527007AD17}] => (Allow) D:\Hry\Red Dead Redemption 2\RDR2.exe (Rockstar Games) [File not signed]
FirewallRules: [TCP Query User{B8B7503B-D1BF-4419-BD3A-6E1899DD18D7}D:\hry\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe] => (Block) D:\hry\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [UDP Query User{2FF3FAE1-F2A3-44A5-A6CA-D49B8CE54C74}D:\hry\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe] => (Block) D:\hry\hogwarts legacy\phoenix\binaries\win64\hogwartslegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{9E8A40A0-10E9-41F0-92F6-FE2AD5C5DF89}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [{E7323F3B-BF56-47EC-A91C-2487934CC1C3}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe (The qBittorrent Project) [File not signed]
FirewallRules: [TCP Query User{12F28879-48CB-412A-B96F-C8C1A8F9076C}F:\dying light\dyinglightgame.exe] => (Block) F:\dying light\dyinglightgame.exe => No File
FirewallRules: [UDP Query User{E47410DA-76AA-4E7D-85E3-EFF470FA38D3}F:\dying light\dyinglightgame.exe] => (Block) F:\dying light\dyinglightgame.exe => No File
FirewallRules: [TCP Query User{113875F6-83C9-4690-A0F7-ED6E88B666F7}D:\hry\polylithic.early.access\polylithic.early.access\polylithic.exe] => (Block) D:\hry\polylithic.early.access\polylithic.early.access\polylithic.exe () [File not signed]
FirewallRules: [UDP Query User{8DFE5DD2-F82F-4F80-9802-979E63EFBB3D}D:\hry\polylithic.early.access\polylithic.early.access\polylithic.exe] => (Block) D:\hry\polylithic.early.access\polylithic.early.access\polylithic.exe () [File not signed]
FirewallRules: [TCP Query User{316CBD2F-67BA-4B56-B721-2E05AE7D3660}F:\heavy rain\heavyrain.exe] => (Block) F:\heavy rain\heavyrain.exe () [File not signed]
FirewallRules: [UDP Query User{250F37B0-B3EB-4D05-80F9-96A2A1DB09C2}F:\heavy rain\heavyrain.exe] => (Block) F:\heavy rain\heavyrain.exe () [File not signed]
FirewallRules: [TCP Query User{D979709A-D374-4383-B30A-648D667F76C3}F:\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) F:\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [UDP Query User{E1D70A88-B79B-48DF-8D79-8F10FE670566}F:\kingdom come deliverance\bin\win64\kingdomcome.exe] => (Block) F:\kingdom come deliverance\bin\win64\kingdomcome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{B58F636A-1489-456A-8592-AAD6A07A6C5B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.126.3208.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0DD4EA35-FF70-46CB-B016-D70DEF6D661F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.126.3208.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B882604-C966-443A-B933-F849896B555A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.126.3208.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8E63711-74F3-47DF-BC22-7367A48C3BA4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.126.3208.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{90652C57-1F8B-4C87-86C0-B8F4BCD90EC0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CF71C379-E184-4835-83F0-85AEE64969F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2A34FFC1-F432-49C6-960F-F50448070C07}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8C3E0872-B569-4339-B8FB-4872AE5C6C04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8B6D8B8F-E03B-4E87-AC8C-C51226372913}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CC245BE1-B8C2-49D5-A901-62DBB3ACFBFF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03E8255C-0D76-41A4-BFE0-7C4E67AA15FD}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{0BA4CE96-6F34-4A93-9AE1-4527EA0D1902}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3D234F44-3794-49D6-B557-C711FEB66DA6}] => (Allow) LPort=26820
FirewallRules: [{0569B2BD-211A-45D8-B4F0-C2A5BB8E5A45}] => (Allow) LPort=26822
==================== Restore Points =========================
25-08-2024 20:30:44 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (08/27/2024 10:10:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program bsplayer.exe verze 2.7.4.1085 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 13f4
Čas spuštění: 01daf8b71dcd33aa
Čas ukončení: 4294967295
Cesta k aplikaci: D:\Programy\BSplayerPro\bsplayer.exe
ID hlášení: ccf0778c-cd9c-4c0c-807d-35e5976df270
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (08/27/2024 05:58:43 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Centru zabezpečení se nepodařilo ověřit volajícího s chybou %1.
Error: (08/25/2024 04:03:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GhostOfTsushima.exe, verze: 1053.0.515.2048, časové razítko: 0x664503dd
Název chybujícího modulu: GhostOfTsushima.exe, verze: 1053.0.515.2048, časové razítko: 0x664503dd
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000034a3d68
ID chybujícího procesu: 0xe30
Čas spuštění chybující aplikace: 0x01daf6f654f397f8
Cesta k chybující aplikaci: F:\Ghost of Tsushima DC\GhostOfTsushima.exe
Cesta k chybujícímu modulu: F:\Ghost of Tsushima DC\GhostOfTsushima.exe
ID zprávy: 6d6201fa-6a5b-46df-b9cb-99d765bde498
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/24/2024 09:52:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GhostOfTsushima.exe, verze: 1053.0.515.2048, časové razítko: 0x664503dd
Název chybujícího modulu: GhostOfTsushima.exe, verze: 1053.0.515.2048, časové razítko: 0x664503dd
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000034a3d68
ID chybujícího procesu: 0x15cc
Čas spuštění chybující aplikace: 0x01daf65e606fd554
Cesta k chybující aplikaci: F:\Ghost of Tsushima DC\GhostOfTsushima.exe
Cesta k chybujícímu modulu: F:\Ghost of Tsushima DC\GhostOfTsushima.exe
ID zprávy: c7a12db1-6ee6-446a-927a-e4dd6df3d9d7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (08/24/2024 08:32:57 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač..
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (08/24/2024 05:17:53 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Instalace (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (08/24/2024 04:35:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (08/24/2024 03:16:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (08/29/2024 02:49:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/29/2024 02:49:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (08/29/2024 02:47:38 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.
Error: (08/29/2024 10:48:37 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-SRFASFD)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (08/29/2024 09:39:51 AM) (Source: TPM) (EventID: 15) (User: )
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.
Error: (08/28/2024 03:05:16 PM) (Source: TPM) (EventID: 15) (User: )
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.
Error: (08/27/2024 07:12:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (08/27/2024 07:12:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================
Date: 2024-08-27 20:59:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {BF6A1B4E-C388-4FD9-BE19-85B467EC3F05}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Vlastní prohledávání
Uživatel: DESKTOP-SRFASFD\Sysel
Date: 2024-08-27 18:46:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D34BE5CC-CCFE-44F2-A20D-BE062F63BBC1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-08-27 18:20:51
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Keygen
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: containerfile:_C:\Users\Sysel\Desktop\Nepotvrzeno 743115.crdownload; file:_C:\Users\Sysel\Desktop\Nepotvrzeno 743115.crdownload->MalwareBytes_Anti-Malware_Keygen_v1.7_URET.exe; file:_C:\Users\Sysel\Desktop\Nepotvrzeno 743115.crdownload->MalwareBytes_Anti-Malware_Keygen_v1.7_URET\MalwareBytes_Anti-Malware_Keygen_v1.7_URET.exe; file:_C:\Users\Sysel\Desktop\Nepotvrzeno 743115.crdownload->MalwareBytes_Anti-Malware_Keygen_v1.7_URET\MalwareBytes_Anti-Malware_Keygen_v1.7_URET.rar->MalwareBytes_Anti-Malware_Keygen_v1.7_URET.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel: DESKTOP-SRFASFD\Sysel
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.417.346.0, AS: 1.417.346.0, NIS: 1.417.346.0
Verze modulu: AM: 1.1.24070.3, NIS: 1.1.24070.3
Date: 2024-08-27 16:54:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {190F1FC4-F5D4-4700-AE00-B95A2E4A5BA8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-08-27 16:41:50
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B507C04E-C47A-4317-B5DF-FDE41A871E65}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: DESKTOP-SRFASFD\Sysel
Event[0]:
Date: 2024-08-27 17:04:43
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2024-04-14 12:09:26
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Zálohování
Kód chyby: 0x80004004
Popis chyby: Operace přerušena
Verze bezpečnostních informací: 1.409.198.0;1.409.198.0
Verze modulu: 1.1.24030.4
Date: 2024-04-14 12:09:26
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80004004
Popis chyby: Operace přerušena
Verze bezpečnostních informací: 1.409.248.0;1.409.248.0
Verze modulu: 1.1.24030.4
Date: 2023-10-07 15:55:44
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.399.194.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23090.2007
Kód chyby: 0x8024001e
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-04-20 20:24:33
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.387.1554.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20200.4
Kód chyby: 0x8024402c
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2024-08-29 14:50:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Programy\mbamsi64.dll that did not meet the Microsoft signing level requirements.
Date: 2024-08-29 14:49:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Programy\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. F12 08/13/2019
Motherboard: Gigabyte Technology Co., Ltd. H310M S2 2.0
Processor: Intel(R) Core(TM) i3-9100F CPU @ 3.60GHz
Percentage of memory in use: 22%
Total physical RAM: 16328.12 MB
Available physical RAM: 12733.34 MB
Total Virtual: 18760.12 MB
Available Virtual: 14626.52 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:118.7 GB) (Free:14.36 GB) (Model: Apacer AS350 128GB) NTFS
Drive d: (Instalace) (Fixed) (Total:931.5 GB) (Free:312.07 GB) (Model: TOSHIBA HDWD110) NTFS
Drive e: (Data) (Fixed) (Total:465.76 GB) (Free:287.62 GB) (Model: WDC WD5000AAKX-60U6AA0) NTFS
Drive f: (Gaming) (Fixed) (Total:953.87 GB) (Free:778.57 GB) (Model: Verbatim Vi550 S3) NTFS
\\?\Volume{6cbf6b1f-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.02 GB) NTFS
\\?\Volume{6cbf6b1f-0000-0000-0000-40b01d000000}\ () (Fixed) (Total:0.49 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================
