Prosím o preventivní kontrolu
Napsal: 04 pro 2021 17:02
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-12-2021
Ran by jakub (administrator) on ROCKET (Micro-Star International Co., Ltd. MS-7B93) (04-12-2021 16:57:30)
Running from E:\10_General\10_Temp\01_Download
Loaded Profiles: jakub
Platform: Microsoft Windows 11 Pro Version 21H2 22000.348 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(A-Volute SAS -> A-Volute) C:\Users\jakub\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Program Files\EA Desktop\EA Desktop\EABackgroundService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe <2>
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\jakub\AppData\Local\Vivaldi\Application\vivaldi.exe <14>
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe [1256824 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2021-11-04] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [409760 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\Installer\setup.exe [2873728 2021-12-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-11-18] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [100352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2155776 2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-08-12]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0C50D97F-5356-4DDE-9E5C-321B162539E7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {127A6811-6510-45F9-ACFF-FF79BAF6D75F} - System32\Tasks\Mozilla\Firefox Nightly Background Update 6F193CCC56814779 => C:\Program Files\Firefox Nightly\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\6F193CCC56814779\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {310CE97D-DAAE-410E-8EDE-44E1B6A75D6A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-19] (Google LLC -> Google LLC)
Task: {3F152E4B-D11D-40C2-BDEA-4A8F948633A9} - System32\Tasks\CCleaner Update => E:\20_Application\00_Portable\ccsetup578\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {4FD7BCC6-AB0E-4864-A645-9E634F782740} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {601583B9-A881-474A-B451-6D87B0E49782} - System32\Tasks\Mozilla\Firefox Nightly Default Browser Agent 6F193CCC56814779 => C:\Program Files\Firefox Nightly\default-browser-agent.exe do-task "6F193CCC56814779"
Task: {6D09B3CA-2525-4377-B719-4C5121F57500} - System32\Tasks\VivaldiUpdateCheck-702a37733f6c0727 => C:\Users\jakub\AppData\Local\Vivaldi\Application\update_notifier.exe [3058064 2021-12-01] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
Task: {7408AFEE-24BF-4099-B767-397EEBA93967} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {776E14C5-459F-49A3-B436-D44FA255F02A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {983D81AC-129C-40F9-A43D-6B823689DA00} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {98D31746-69BA-4E0F-BC7C-9FC040EE4CF6} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1796763630-3206443035-2838120226-500 => C:\Users\jakub\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {A31C8D46-9E7A-43AF-BE36-2FE9B82B9E8C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A88797B6-4A5B-42CE-97AF-D114CB997B2F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {AB90510C-EC55-4FA1-8995-330F13AF37A6} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [110660344 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {E4B9EB1F-F03D-45E8-9528-55A6EDA53C57} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-19] (Google LLC -> Google LLC)
Task: {F0E63CAA-4EA1-4498-BEF5-0F5FEDFE58DE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {F542018B-D04F-4E06-8A16-4D7FD79BAAC2} - System32\Tasks\CCleanerSkipUAC => E:\20_Application\00_Portable\ccsetup578\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FDDB841C-66D1-446E-ACA1-6F899702890D} - System32\Tasks\CCleanerSkipUAC - jakub => E:\20_Application\00_Portable\ccsetup578\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{8a1c7802-49bb-4331-9548-2786bdae4e13}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-24]
Edge DownloadDir: Default -> E:\10_General\10_Temp\01_Download
Edge HomePage: Default -> hxxps://duckduckgo.com/
Edge StartupUrls: Default -> "hxxps://duckduckgo.com/"
Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> duckduckgo.com
Edge DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
Edge Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2021-11-18]
Edge Extension: (New Tab DuckDuckGo Redirect) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eimldjabijllelicbnieiomiaeekbodl [2021-11-18]
Edge Extension: (Privacy Badger) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mkejgcgkdlddbggjhhflekkondicpnop [2021-11-18]
Edge Extension: (uBlock Origin) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-11-18]
FireFox:
========
FF DefaultProfile: tde24y34.default
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\tde24y34.default [2021-03-05]
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly [2021-12-04]
FF Extension: (Honey) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-93CWPmRbVPjRQA@jetpack.xpi [2021-06-26]
FF Extension: (Privacy Badger) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-11-29]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-10-06]
FF Extension: (uBlock Origin) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\uBlock0@raymondhill.net.xpi [2021-12-04]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
StartMenuInternet: Firefox-6F193CCC56814779 - C:\Program Files\Firefox Nightly\firefox.exe
Chrome:
=======
CHR Profile: C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default [2021-12-03]
CHR DownloadDir: E:\10_General\10_Temp\01_Download
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Just Black) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-11-15]
CHR Extension: (Disk Google) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-19]
CHR Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-10-01]
CHR Extension: (YouTube) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-19]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-12-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-19]
CHR Extension: (Privacy Badger) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2021-11-29]
Vivaldi:
=======
VIV Profile: C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default [2021-12-04]
VIV DownloadDir: E:\10_General\10_Temp\01_Download
VIV HomePage: Default -> hxxps://duckduckgo.com/
VIV DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
VIV DefaultSearchKeyword: Default -> duckduckgo.com
VIV DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
VIV DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
VIV Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-11-19]
VIV Extension: (Adblock Plus - free ad blocker) - C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-12-01]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421536 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [80544 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 EABackgroundService; D:\Program Files\EA Desktop\EA Desktop\EABackgroundService.exe [10013848 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3139904 2021-11-04] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3139904 2021-11-04] (ESET, spol. s r.o. -> ESET)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11162688 2021-11-18] (Logitech Inc -> Logitech, Inc.)
S3 MagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [348728 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [62464 2006-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [348728 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078544 2021-11-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2599312 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2021-06-05] (Microsoft Corporation) [File not signed]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-11-25] (CPUID S.A.R.L.U. -> CPUID)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-29] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-29] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-29] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-29] (ESET, spol. s r.o. -> ESET)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2021-11-23] (Microsoft Windows -> Microsoft Corporation)
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [44488 2021-11-02] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-09-15] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-09-15] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-09-15] (Logitech Inc -> Logitech)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18448 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85592 2020-06-16] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [49560 2021-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [421112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [73960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S4 e1rexpress; \SystemRoot\System32\drivers\e1r68x64.sys [X]
R3 NAL; \??\C:\Windows\system32\Drivers\iqvsw64e.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-04 16:57 - 2021-12-04 16:57 - 000000000 ____D C:\FRST
2021-12-04 01:27 - 2021-12-04 15:21 - 000000000 ____D C:\Program Files\Firefox Nightly
2021-12-03 16:10 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\LocalLow\Adobe
2021-12-03 16:10 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\Local\SolidDocuments
2021-12-03 16:09 - 2021-12-03 16:11 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-12-03 16:09 - 2021-12-03 16:11 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-12-03 16:09 - 2021-12-03 16:09 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-12-03 16:09 - 2021-12-03 16:09 - 000000000 ____D C:\Program Files\Adobe
2021-12-03 16:08 - 2021-12-03 16:10 - 000000000 ____D C:\ProgramData\Adobe
2021-12-03 16:07 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\Local\Adobe
2021-12-03 16:02 - 2021-12-03 16:17 - 000000000 ____D C:\Users\jakub\Desktop\Hypo
2021-12-02 17:01 - 2021-12-02 17:01 - 000000000 ____D C:\AMD
2021-11-27 18:06 - 2021-11-27 18:06 - 000000874 _____ C:\Users\jakub\Desktop\World of Tanks EU.lnk
2021-11-27 18:04 - 2021-11-27 18:06 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-11-23 18:11 - 2021-11-23 18:11 - 000040960 _____ C:\WINDOWS\system32\prxyqry.dll
2021-11-23 18:11 - 2021-11-23 18:11 - 000015040 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-23 18:11 - 2021-11-23 18:11 - 000013824 _____ C:\WINDOWS\SysWOW64\prxyqry.dll
2021-11-23 18:10 - 2021-11-23 18:10 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2021-11-23 18:08 - 2021-11-23 18:08 - 000000000 ___HD C:\$WinREAgent
2021-11-19 07:10 - 2021-11-19 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-11-19 07:10 - 2021-11-19 07:10 - 000000000 ____D C:\Program Files\LGHUB
2021-11-18 21:32 - 2021-12-04 14:51 - 000000528 _____ C:\Users\jakub\.vivaldi_reporting_data
2021-11-18 21:32 - 2021-12-02 17:14 - 000002389 _____ C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2021-11-18 21:32 - 2021-12-02 17:14 - 000002352 _____ C:\Users\jakub\Desktop\Vivaldi.lnk
2021-11-18 21:32 - 2021-12-02 17:14 - 000000000 ____D C:\Users\jakub\AppData\Local\Vivaldi
2021-11-18 21:32 - 2021-11-18 21:32 - 000003822 _____ C:\WINDOWS\system32\Tasks\VivaldiUpdateCheck-702a37733f6c0727
2021-11-16 21:15 - 2021-11-16 21:15 - 000000000 ____D C:\Users\jakub\AppData\Roaming\NVIDIA
2021-11-16 17:58 - 2021-11-16 17:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-11-16 17:55 - 2021-11-11 03:36 - 001874664 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001874664 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001464960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001450216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001450216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001208248 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001111272 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001111272 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 000965352 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 000965352 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 002116536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001597568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001523328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001174456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000802232 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000709560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-11-16 17:55 - 2021-11-11 03:33 - 000678328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000656512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000635008 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 008725944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 007845816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 005730224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 004940728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 002850432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000981120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000792192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000452224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-11-16 17:55 - 2021-11-11 03:31 - 000850872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-11-16 17:55 - 2021-11-11 03:30 - 007582144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-11-16 17:55 - 2021-11-11 03:30 - 006432960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-11-16 17:55 - 2021-11-09 23:27 - 000085718 _____ C:\WINDOWS\system32\nvinfo.pb
2021-11-15 21:15 - 2021-11-15 21:15 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2021-11-15 21:15 - 2021-11-15 21:15 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2021-11-13 20:08 - 2021-11-13 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2021-11-13 20:08 - 2021-11-13 20:08 - 000000000 ____D C:\Program Files (x86)\Corsair
2021-11-11 21:17 - 2020-10-07 13:33 - 000047232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2021-11-11 21:16 - 2021-11-11 21:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-11-11 01:13 - 2021-11-11 01:13 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe
2021-11-11 01:13 - 2021-11-11 01:13 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-10 19:36 - 2021-11-19 19:56 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll.0
2021-11-10 19:36 - 2021-11-19 19:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-11-10 19:31 - 2021-11-10 19:31 - 000000000 ____D C:\Users\jakub\AppData\Local\INetHistory
2021-11-10 19:31 - 2021-11-10 19:31 - 000000000 ____D C:\Users\jakub\AppData\Local\EAConnect_microsoft
2021-11-07 21:00 - 2021-11-07 21:07 - 000000000 ____D C:\Users\jakub\AppData\Local\Opera Software
2021-11-07 20:59 - 2021-11-07 21:07 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Opera Software
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-04 16:54 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-04 16:53 - 2020-12-20 23:08 - 000000000 ____D C:\Users\jakub\AppData\LocalLow\Mozilla
2021-12-04 16:45 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-04 16:45 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2021-12-04 16:37 - 2020-12-20 20:03 - 000000000 ____D C:\Users\jakub\AppData\Local\D3DSCache
2021-12-04 16:26 - 2020-12-19 23:10 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-04 16:22 - 2020-12-30 18:42 - 000000000 ____D C:\Users\jakub\AppData\Local\LGHUB
2021-12-04 15:41 - 2021-10-05 20:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-04 09:22 - 2021-03-05 14:15 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-04 09:21 - 2021-10-05 20:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-04 09:21 - 2021-03-05 14:15 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk
2021-12-04 09:11 - 2021-10-01 20:06 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Samsung Magician
2021-12-04 09:11 - 2020-12-30 18:42 - 000000000 ____D C:\Users\jakub\AppData\Roaming\LGHUB
2021-12-04 02:30 - 2020-12-20 09:59 - 000000000 ____D C:\ProgramData\NVIDIA
2021-12-03 22:29 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-03 22:23 - 2020-12-28 19:03 - 000000000 ____D C:\Users\jakub\AppData\Roaming\vlc
2021-12-03 19:31 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-03 18:51 - 2021-02-02 19:55 - 000000000 ____D C:\Users\jakub\AppData\Local\CrashDumps
2021-12-03 16:10 - 2020-12-19 20:52 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Adobe
2021-12-03 16:10 - 2020-12-19 20:52 - 000000000 ____D C:\Users\jakub\AppData\Local\Packages
2021-12-02 17:11 - 2021-10-05 20:23 - 001714894 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-02 17:11 - 2021-06-05 18:22 - 000724600 _____ C:\WINDOWS\system32\perfh005.dat
2021-12-02 17:11 - 2021-06-05 18:22 - 000150562 _____ C:\WINDOWS\system32\perfc005.dat
2021-12-02 14:28 - 2020-11-19 00:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-27 18:04 - 2020-12-31 18:05 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Wargaming.net
2021-11-27 17:00 - 2019-10-27 20:12 - 000000802 _____ C:\Users\jakub\Desktop\Stahovani.txt
2021-11-26 22:49 - 2021-10-13 18:02 - 000000000 ____D C:\Program Files\EA Games
2021-11-25 16:31 - 2021-03-05 14:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-11-25 16:25 - 2021-10-05 20:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-25 16:25 - 2021-06-05 13:01 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-11-25 16:25 - 2020-12-20 03:43 - 000012288 ___SH C:\DumpStack.log.tmp
2021-11-23 18:18 - 2021-10-05 20:18 - 000470184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-23 18:17 - 2021-06-05 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-23 18:17 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2021-11-23 18:15 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-23 18:10 - 2021-10-05 20:19 - 003086336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-11-20 21:09 - 2020-12-30 18:41 - 000000000 ____D C:\ProgramData\LGHUB
2021-11-20 10:02 - 2021-02-22 15:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-11-19 22:20 - 2020-12-21 08:31 - 000000000 ____D C:\Program Files (x86)\Steam
2021-11-19 18:46 - 2020-12-20 09:24 - 000000000 ____D C:\Users\jakub\AppData\Local\NVIDIA
2021-11-19 15:39 - 2021-11-03 19:07 - 000000000 ____D C:\Users\jakub\Desktop\Bazar
2021-11-18 21:32 - 2021-10-05 20:10 - 000000000 ____D C:\Users\jakub
2021-11-18 21:08 - 2020-12-20 09:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-11-18 17:44 - 2021-10-10 14:09 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7ba1de7f5b8dc
2021-11-18 17:44 - 2021-10-05 20:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-16 17:58 - 2020-12-19 20:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-11-16 17:14 - 2020-12-19 23:10 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-15 21:22 - 2020-12-24 11:01 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2021-11-15 21:15 - 2020-12-20 09:24 - 000000000 ____D C:\ProgramData\Package Cache
2021-11-12 21:19 - 2020-12-28 16:40 - 000000000 ____D C:\Program Files\Microsoft Office
2021-11-11 19:28 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-11-11 19:28 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-11 15:48 - 2020-12-19 20:54 - 000000000 ____D C:\Users\jakub\AppData\Local\PlaceholderTileLogoFolder
2021-11-10 23:59 - 2020-11-19 00:50 - 000000000 ____D C:\ProgramData\Packages
2021-11-10 19:41 - 2021-10-05 18:36 - 000000000 ____D C:\Users\jakub\AppData\Local\ElevatedDiagnostics
2021-11-10 19:18 - 2020-12-19 20:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-10 19:17 - 2020-12-19 20:57 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-06 23:07 - 2020-12-20 18:54 - 000000000 ____D C:\Users\jakub\AppData\Local\Battle.net
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-12-2021
Ran by jakub (04-12-2021 16:58:31)
Running from E:\10_General\10_Temp\01_Download
Microsoft Windows 11 Pro Version 21H2 22000.348 (X64) (2021-10-05 19:22:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1796763630-3206443035-2838120226-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1796763630-3206443035-2838120226-503 - Limited - Disabled)
Guest (S-1-5-21-1796763630-3206443035-2838120226-501 - Limited - Disabled)
jakub (S-1-5-21-1796763630-3206443035-2838120226-1001 - Administrator - Enabled) => C:\Users\jakub
WDAGUtilityAccount (S-1-5-21-1796763630-3206443035-2838120226-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 20.02 alpha (x64) (HKLM\...\7-Zip) (Version: 20.02 alpha - Igor Pavlov)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{cf77cf6b-71ff-4a71-802d-43adb9b271b7}) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.4 - Nikon Corporation)
CORSAIR iCUE Software (HKLM-x32\...\{3D350B22-542B-4FB4-B3AC-EA760941C319}) (Version: 3.38.61 - Corsair)
DaVinci Resolve (HKLM\...\{F0F6711A-202E-44EA-A192-B859A198AABF}) (Version: 16.0.0060 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{B1782967-E600-4BBD-B2F1-AEF3F2FE0A12}) (Version: 1.2.1.0 - Blackmagic Design)
Diablo II Resurrected (HKLM-x32\...\Diablo II Resurrected) (Version: - Blizzard Entertainment)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.0.169.5058 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{a19a5853-9933-440e-bcbe-408655f0f398}) (Version: 12.0.169.5058 - Electronic Arts)
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 15.0.18.0 - ESET, spol. s r.o.)
Far Cry 6 (HKLM-x32\...\Uplay Install 5266) (Version: - Ubisoft)
FIFA 21 (HKLM-x32\...\{A918ACE7-A83B-41F4-8746-AEF8DC821879}) (Version: 1.0.72.32477 - Electronic Arts)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC)
IrfanView 4.56 (64-bit) (HKLM\...\IrfanView64) (Version: 4.56 - Irfan Skiljan)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.12.4779 - Logitech)
Microsoft .NET Framework 4.6.2 SDK (HKLM-x32\...\{5F01B3C4-9BEC-465D-9C68-BB97D381FFAD}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (ENU) (HKLM-x32\...\{C80951BD-6904-474F-BBC5-03A6C777F37C}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (HKLM-x32\...\{A18D4C2A-07A8-40E4-9797-DD324E6EA4FC}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.41 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.43 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.14527.20276 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2FA9DAAC-895B-4E99-99D9-DC2965FBE79C}) (Version: 2.87.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 88.0a1 - Mozilla)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
Nightly (x64 cs) (HKLM\...\Nightly 96.0a1 (x64 cs)) (Version: 96.0a1 - Mozilla)
NVIDIA Ovladače grafiky 496.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.76 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PDF-XChange Editor (HKLM\...\{29487948-D54A-4EE4-800D-E205919659C8}) (Version: 8.0.343.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{911b790c-3fcf-4ecc-b0d4-8a573a6004b0}) (Version: 8.0.343.0 - Tracker Software Products (Canada) Ltd.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9071.1 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 7.0.0.510 - Samsung Electronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 126.0.10593 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Vivaldi (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Vivaldi) (Version: 5.0.2497.24 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
Wargaming.net Game Center (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Wargaming.net Game Center) (Version: 21.8.1.7292 - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-17] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.414.967.0_x64__8wekyb3d8bbwe [2021-12-03] (Microsoft Studios)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa [2021-10-29] (Apple Inc.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-11-16] (NVIDIA Corp.)
Příslušenství pro Xbox -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.2110.13001.0_x64__8wekyb3d8bbwe [2021-10-20] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{65DC3795-BC1B-4E70-A3C6-FDFFDE61D148} -> [Fotky na iCloudu] => C:\Users\jakub\Pictures\iCloud Photos\Photos
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\jakub\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{B66F012A-D18A-4CF8-9147-BE7ED9357F4C} -> [iCloud Drive] => C:\Users\jakub\iCloudDrive
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\jakub\AppData\Local\Vivaldi\Application\5.0.2497.24\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\nvshext.dll [2021-11-11] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk -> C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) =============
2021-11-19 07:10 - 2021-11-18 19:29 - 000635904 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2021-03-05 18:44 - 2021-03-05 18:44 - 000209408 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll
2021-03-05 18:44 - 2021-03-05 18:44 - 000101376 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 002661888 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\ffmpeg.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 000367104 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\libegl.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 006631936 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\libglesv2.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 000458752 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magutils-napi.node
2021-10-01 19:32 - 2021-09-16 09:46 - 000445440 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magvibrancy-napi.node
2021-10-01 19:32 - 2021-09-16 09:46 - 001411072 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\uimpewrapper-napi.node
2020-12-28 14:15 - 2020-08-08 20:00 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2021-11-06 08:56 - 2021-11-06 08:56 - 000137184 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll
2020-12-16 09:26 - 2020-12-16 09:26 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 002815488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000678400 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000046592 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 006270976 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Core.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 001389568 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Network.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000157184 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5WebSockets.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000210432 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2020-12-31 18:01 - 2020-12-31 18:06 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jakub\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\1ee12ad49bfa9e7ed84a47a1d97593bd.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{C74CEE48-2325-4F0E-962B-7BD4BDFC0067}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5293BED0-9034-4005-BCA4-603344F90369}] => (Allow) D:\Program Files\Steam\steamapps\common\NieRAutomata\NieRAutomata.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{AB143E53-A770-4F29-907F-CC606E41C960}] => (Allow) D:\Program Files\Steam\steamapps\common\NieRAutomata\NieRAutomata.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [UDP Query User{48FCEEC4-6B97-4A4F-B806-04646945175C}D:\program files (x86)\fifa 21\fifa21.exe] => (Allow) D:\program files (x86)\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{72C2189E-18BC-45B8-954C-4FEEF51378E3}D:\program files (x86)\fifa 21\fifa21.exe] => (Allow) D:\program files (x86)\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{92FB49C1-1E6B-4352-8D36-9514B352C48C}] => (Allow) D:\Program Files\Steam\steamapps\common\ACE COMBAT 7\Ace7Game.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{FC5BBCBD-E380-4FA0-A127-5A06C544E371}] => (Allow) D:\Program Files\Steam\steamapps\common\ACE COMBAT 7\Ace7Game.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{186A0ED7-E8D9-45AB-AF0B-F64C67158E18}] => (Allow) E:\20_Application\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{971D8274-83DC-4C42-B7C0-38F4CD676766}] => (Allow) E:\20_Application\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{B6D06D0B-891F-4068-A303-09EB3539E967}] => (Allow) LPort=32682
FirewallRules: [{7612A27A-DC2F-4FA5-AC2A-8E1FF0A93A96}] => (Allow) E:\20_Application\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{45FCD11C-C34B-4354-ABAA-7E0DF4730C3D}] => (Allow) E:\20_Application\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{E6760DE9-0533-4141-8301-095FC863613C}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C1A6C5D5-6741-4B23-B4FD-E2EC426DA4A8}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{21630480-153D-4C6D-984D-5A20380D7C49}E:\20_application\davinci resolve\fuscript.exe] => (Block) E:\20_application\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [TCP Query User{7DFE4F40-EBA0-4B03-B59D-9DB31BF4A49A}E:\20_application\davinci resolve\fuscript.exe] => (Block) E:\20_application\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{5DB7B640-49F0-4AA4-8B95-E65A0CD9B6B1}E:\20_application\davinci resolve\resolve.exe] => (Block) E:\20_application\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{6DC042AE-269B-4F63-8CFD-A9F4CC593E0F}E:\20_application\davinci resolve\resolve.exe] => (Block) E:\20_application\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{F7B7F58C-85E8-4863-AD55-8C4AC4817993}E:\20_application\davinci resolve\dpdecoder.exe] => (Block) E:\20_application\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{2A29956B-AA35-455A-8F65-FCCCE9706E93}E:\20_application\davinci resolve\dpdecoder.exe] => (Block) E:\20_application\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{B1390EB7-FBA0-4911-B33E-0B3492E3B687}E:\10_general\10_temp\01_download\torrent\utorrent.exe] => (Allow) E:\10_general\10_temp\01_download\torrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{FFF79345-D26A-4BEA-BC13-FAD0AF60F43E}E:\10_general\10_temp\01_download\torrent\utorrent.exe] => (Allow) E:\10_general\10_temp\01_download\torrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{920D3903-48BA-477C-BF99-7AED4CBF93A0}] => (Allow) E:\20_Application\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{3330FFDD-6072-4E89-99CC-D529DD250CA2}] => (Allow) E:\20_Application\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{C8E89CEB-56CD-4478-AE3E-52A50ADB3053}] => (Allow) E:\20_Application\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{7EFEEF76-4362-45CA-A5F6-4692E0139EEC}] => (Allow) E:\20_Application\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{12A1C3CC-A829-45E6-80DE-4F900236D57E}] => (Allow) E:\20_Application\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{BD001661-F817-4C4B-8C0F-787C020BB07C}] => (Allow) E:\20_Application\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{135948A8-63E7-42EA-AEB0-9704564EA163}] => (Allow) E:\20_Application\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{F473C5AC-4FD2-41E4-BA8B-94348D34A3C9}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{28F67CF6-601E-4703-91DE-575F2AD17A5A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{0D980D6C-7623-413B-9F1F-FF29BC67092D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{47E32E13-3D1B-4BA0-B44C-79BA4EA56F90}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37644AAF-A621-49BD-A630-F66C3ADE0D39}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F1B3087B-55DE-4CE4-A55B-B91349AE2DD3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{72FD2D19-A7AC-4F84-8788-C5207D883543}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AFAB7E57-3592-48F4-8F90-30EFB4C26BD3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BEC06667-459F-4B89-9AC8-BAE4DCFA96CA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DB42990F-5C0F-4E98-8FBF-153C7F48B87E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ABFF7D18-AE5A-4B92-BDFF-9A37150E800D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4948E92A-DC6C-4A95-9C41-B7A09FAA895A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE1FD820-CECD-4140-97DE-4BE152DDDDAB}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{6E727A70-9119-4C91-8747-2E7A519984EC}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{558683B5-84E6-4010-9155-D0A668F8DB30}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{547274AA-736F-4641-9ECB-8CB2226F8AC7}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{02B776D3-0A05-4289-A99F-2E700EDF6874}] => (Allow) D:\Program Files (x86)\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{08411D47-0E47-4F2C-8E7B-C69E45343CBB}] => (Allow) D:\Program Files (x86)\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D5A44B19-8A06-4C6A-B7FD-2121D44A1E04}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{33EF8B68-046E-46D8-B25B-8FDB1A23A1FF}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{030718BD-4671-4D92-BEFB-E1E81802CB79}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [{E0FCA254-1613-4636-AB56-BDDF3B7F0E73}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [TCP Query User{806EB279-E245-423F-80C5-84BD9E328796}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{0A450762-5386-4483-9866-DD429212E612}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{36592921-EA02-4E66-B5AD-D1C52A6EED0D}] => (Allow) D:\Program Files\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{081D4D13-1EE9-4585-8B8F-AD5A7EEDA187}] => (Allow) D:\Program Files\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{C5355470-6975-4961-8EFB-C79FC53041A2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6C6F2533-8ECB-4635-B167-574D9235FB54}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0CFC42E2-F9BC-448E-A9F8-F3BB944D9211}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13FB758B-5084-483B-AB5E-54E6822AEC73}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60C021CE-7A61-4745-B8BF-A023F464230B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{88E60F9B-8F66-457D-A614-8A3A43D5725F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0784DAA1-AD5F-4816-BDB5-C700A2063FA5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2DC673AB-05A7-46EF-ADD6-00FF628AE8B8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{075962EB-6BD8-4F5F-A350-0D3F8D3AF347}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E26EE392-30DA-4318-9F51-34E78D1D123A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{438906EF-0F26-450D-9C6A-FB238002A91A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2BB5B5FE-3C2C-4FFA-8392-CFB5338FAF4C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{928C3456-BDA0-4E4B-86C5-3081A9B6D66D}F:1\forzahorizon5.exe] => (Allow) F:1\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{C6F624D5-EA8D-4B9E-94B8-4859CCF5B03F}F:1\forzahorizon5.exe] => (Allow) F:1\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{7EA74219-C3C7-4957-B14E-138EA0067EBF}F:0\forzahorizon5.exe] => (Allow) F:0\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{0CAF4F9F-1741-4EE3-AD6A-CDB656A758CC}F:0\forzahorizon5.exe] => (Allow) F:0\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{3A7638AE-296E-46BA-8E4F-F4E47A9F9865}F:4\forzahorizon5.exe] => (Allow) F:4\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{E91FBBA2-E4AE-427E-B088-73DA8AAE1750}F:4\forzahorizon5.exe] => (Allow) F:4\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{245049FF-7059-4BA8-B3E7-D39C293B98F3}F:5\forzahorizon5.exe] => (Allow) F:5\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{0D8192DA-657F-427E-BECE-0AC7F96E96FD}F:5\forzahorizon5.exe] => (Allow) F:5\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{49D3E684-6AAB-4537-B6F9-59E0C3692B04}F:6\forzahorizon5.exe] => (Allow) F:6\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{5C31AAC7-AAE7-4657-9F03-8D7CC186CA83}F:6\forzahorizon5.exe] => (Allow) F:6\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{06E35EEF-00DB-4648-AEFE-30CADA9965D0}F:8\forzahorizon5.exe] => (Allow) F:8\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{39F24610-1407-42AF-905B-99D5A148D722}F:8\forzahorizon5.exe] => (Allow) F:8\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{C823FB01-7ECB-4275-862C-C9F661A84CA8}F:9\forzahorizon5.exe] => (Allow) F:9\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{E9C697E7-6A4B-4073-BB5E-CBAB6E9E5B88}F:9\forzahorizon5.exe] => (Allow) F:9\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{A8BE5D2D-9686-4B3B-832D-52EEA44EE03F}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{8B6D5244-B7E1-4D86-BFC9-0FFD747FF38D}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => No File
FirewallRules: [{CEE99125-F19A-42B2-9F19-CF732A394C94}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{370B5D9E-4753-4124-BD0D-4D3510EE9487}F:3\forzahorizon5.exe] => (Allow) F:3\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{3C770CDB-85FF-44C7-948D-BAAE15A449AB}F:3\forzahorizon5.exe] => (Allow) F:3\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{5F0EA64D-360A-41D9-A96F-547271D57FF8}F:2\forzahorizon5.exe] => (Allow) F:2\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{303D7214-4172-4D2C-BA25-D51E078400B2}F:2\forzahorizon5.exe] => (Allow) F:2\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{F6FE90ED-67DC-4C86-96AD-827860A3FDF8}F:7\forzahorizon5.exe] => (Allow) F:7\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{665EBD6B-10E6-46D6-A0DC-9EA08C5ADEF2}F:7\forzahorizon5.exe] => (Allow) F:7\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{EB77B3F2-AA7F-470E-B654-58034E9B761A}D:\program files (x86)\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{78BFCEDF-47B5-4427-9EC0-5A26E3E5C281}D:\program files (x86)\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{339203A9-8809-480B-9182-E989192D3727}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{DAC671BB-770C-4E86-868C-28434944B739}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{14CA5732-9F2F-4A97-8A79-7BBFE0B2D070}C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{9DCCAB27-8A14-459A-A5D4-6AF596AB1D26}C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{325E821F-D211-4AA7-B8CA-C02407748A90}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6B61647F-207C-41A5-9B8B-F86DF71D8D2A}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{1D0AD97B-31A1-4627-8E03-F001FFA9EB5D}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{2ECC5316-ECBB-46E6-ADAE-68B8799A8C3E}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{384899AA-06C9-42CD-9348-1D36114FD92D}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => No File
==================== Restore Points =========================
23-11-2021 18:03:36 Instalační služba modulů systému Windows
30-11-2021 20:26:05 Naplánovaný kontrolní bod
02-12-2021 17:04:10 Installed AMD_Chipset_Drivers.
04-12-2021 16:41:45 Removed Intel(R) Wireless Bluetooth(R)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/03/2021 06:51:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServicesUI.exe, verze: 3.59.2111.11001, časové razítko: 0x618d4205
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007c648
ID chybujícího procesu: 0x113c
Čas spuštění chybující aplikace: 0x01d7e86e41062131
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServicesUI\GamingServicesUI.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 8f7b65b0-c0f3-4318-9fe9-0450178cfd0f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/01/2021 04:43:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: GamingServices.DLL, verze: 10.0.22000.2339, časové razítko: 0xe4231246
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000224567
ID chybujícího procesu: 0x3238
Čas spuštění chybující aplikace: 0x01d7e6067d101776
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.DLL
ID zprávy: 9c15ba56-671c-42b2-b0ba-98d7e096cc9d
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices
Error: (11/30/2021 05:20:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x1854
Čas spuštění chybující aplikace: 0x01d7e210aefe0b79
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 5460dcc1-ac59-4b16-9ed7-557b52d5dc87
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices
Error: (11/25/2021 04:25:38 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\ROCKET$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 25 Nov 2021 15:25:39 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 22ae2dc5-c29a-48fc-805a-141e84719541
Metoda: GET(187ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/25/2021 04:25:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 25 Nov 2021 15:25:38 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: dcc905e0-4ced-47ae-814e-a694cf86633d
Metoda: GET(328ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/24/2021 05:09:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x14dc
Čas spuštění chybující aplikace: 0x01d7e08e2239f022
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: d45251a0-e902-416a-9fdd-628d55d6d55d
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices
Error: (11/23/2021 06:18:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\ROCKET$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 23 Nov 2021 17:18:34 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: a1e7cccf-9726-4411-8c4d-f922cbf8e410
Metoda: GET(187ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/23/2021 06:18:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 23 Nov 2021 17:18:34 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 2435f45b-b6e6-4bdf-81d9-90302b471492
Metoda: GET(250ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
System errors:
=============
Error: (12/04/2021 09:11:23 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (12/03/2021 01:52:14 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 08:24:24 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (12/02/2021 02:28:13 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
CodeIntegrity:
===============
Date: 2021-12-04 16:42:33
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.80 08/07/2020
Motherboard: Micro-Star International Co., Ltd. MPG X570 GAMING PRO CARBON WIFI (MS-7B93)
Processor: AMD Ryzen 7 2700 Eight-Core Processor
Percentage of memory in use: 35%
Total physical RAM: 16309.99 MB
Available physical RAM: 10546.41 MB
Total Virtual: 19893.99 MB
Available Virtual: 11672.4 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:445.89 GB) (Free:289.14 GB) NTFS
Drive d: (App) (Fixed) (Total:931.5 GB) (Free:525.55 GB) NTFS
Drive e: (Data) (Fixed) (Total:3726.01 GB) (Free:2515.56 GB) NTFS
Drive f: (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.04 GB) NTFS
\\?\Volume{6d35cf61-32e0-4514-8f81-f959818e374b}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS
\\?\Volume{acf96615-25f4-11ec-9579-ac12039b51a3}\ () (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{f5b2cb1e-107e-a4ea-1b52-3ed1d603aec9}\ () (Fixed) (Total:101.92 GB) (Free:0 GB) NTFS
\\?\Volume{acf96614-25f4-11ec-9579-ac12039b51a3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 447.1 GB) (Disk ID: 918013BA)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.
==================== End of Addition.txt =======================
Ran by jakub (administrator) on ROCKET (Micro-Star International Co., Ltd. MS-7B93) (04-12-2021 16:57:30)
Running from E:\10_General\10_Temp\01_Download
Loaded Profiles: jakub
Platform: Microsoft Windows 11 Pro Version 21H2 22000.348 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(A-Volute SAS -> A-Volute) C:\Users\jakub\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe
(A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Electronic Arts, Inc. -> Electronic Arts) D:\Program Files\EA Desktop\EA Desktop\EABackgroundService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\msedgewebview2.exe <6>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe <2>
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe <4>
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\jakub\AppData\Local\Vivaldi\Application\vivaldi.exe <14>
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_01042bb7f11c17c4\RtkAudUService64.exe [1256824 2021-04-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [167496 2021-11-04] (ESET, spol. s r.o. -> ESET)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [409760 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\Installer\setup.exe [2873728 2021-12-03] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [136443968 2021-11-18] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [100352 2007-05-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\Windows\system32\pxcpmL.dll [2155776 2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-08-12]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0C50D97F-5356-4DDE-9E5C-321B162539E7} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {127A6811-6510-45F9-ACFF-FF79BAF6D75F} - System32\Tasks\Mozilla\Firefox Nightly Background Update 6F193CCC56814779 => C:\Program Files\Firefox Nightly\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla\updates\6F193CCC56814779\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {310CE97D-DAAE-410E-8EDE-44E1B6A75D6A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-19] (Google LLC -> Google LLC)
Task: {3F152E4B-D11D-40C2-BDEA-4A8F948633A9} - System32\Tasks\CCleaner Update => E:\20_Application\00_Portable\ccsetup578\CCUpdate.exe [684976 2021-09-10] (Piriform Software Ltd -> Piriform)
Task: {4FD7BCC6-AB0E-4864-A645-9E634F782740} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {601583B9-A881-474A-B451-6D87B0E49782} - System32\Tasks\Mozilla\Firefox Nightly Default Browser Agent 6F193CCC56814779 => C:\Program Files\Firefox Nightly\default-browser-agent.exe do-task "6F193CCC56814779"
Task: {6D09B3CA-2525-4377-B719-4C5121F57500} - System32\Tasks\VivaldiUpdateCheck-702a37733f6c0727 => C:\Users\jakub\AppData\Local\Vivaldi\Application\update_notifier.exe [3058064 2021-12-01] (Vivaldi Technologies AS -> Vivaldi Technologies AS)
Task: {7408AFEE-24BF-4099-B767-397EEBA93967} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {776E14C5-459F-49A3-B436-D44FA255F02A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {983D81AC-129C-40F9-A43D-6B823689DA00} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {98D31746-69BA-4E0F-BC7C-9FC040EE4CF6} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1796763630-3206443035-2838120226-500 => C:\Users\jakub\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {A31C8D46-9E7A-43AF-BE36-2FE9B82B9E8C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8314824 2021-11-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {A88797B6-4A5B-42CE-97AF-D114CB997B2F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {AB90510C-EC55-4FA1-8995-330F13AF37A6} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [110660344 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {E4B9EB1F-F03D-45E8-9528-55A6EDA53C57} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-12-19] (Google LLC -> Google LLC)
Task: {F0E63CAA-4EA1-4498-BEF5-0F5FEDFE58DE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
Task: {F542018B-D04F-4E06-8A16-4D7FD79BAAC2} - System32\Tasks\CCleanerSkipUAC => E:\20_Application\00_Portable\ccsetup578\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FDDB841C-66D1-446E-ACA1-6F899702890D} - System32\Tasks\CCleanerSkipUAC - jakub => E:\20_Application\00_Portable\ccsetup578\CCleaner.exe [29155968 2021-09-10] (Piriform Software Ltd -> Piriform Software Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{8a1c7802-49bb-4331-9548-2786bdae4e13}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-24]
Edge DownloadDir: Default -> E:\10_General\10_Temp\01_Download
Edge HomePage: Default -> hxxps://duckduckgo.com/
Edge StartupUrls: Default -> "hxxps://duckduckgo.com/"
Edge DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
Edge DefaultSearchKeyword: Default -> duckduckgo.com
Edge DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
Edge DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
Edge Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\caoacbimdbbljakfhgikoodekdnlcgpk [2021-11-18]
Edge Extension: (New Tab DuckDuckGo Redirect) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eimldjabijllelicbnieiomiaeekbodl [2021-11-18]
Edge Extension: (Privacy Badger) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mkejgcgkdlddbggjhhflekkondicpnop [2021-11-18]
Edge Extension: (uBlock Origin) - C:\Users\jakub\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2021-11-18]
FireFox:
========
FF DefaultProfile: tde24y34.default
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\tde24y34.default [2021-03-05]
FF ProfilePath: C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly [2021-12-04]
FF Extension: (Honey) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-93CWPmRbVPjRQA@jetpack.xpi [2021-06-26]
FF Extension: (Privacy Badger) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2021-11-29]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2021-10-06]
FF Extension: (uBlock Origin) - C:\Users\jakub\AppData\Roaming\Mozilla\Firefox\Profiles\ac9wssnx.default-nightly\Extensions\uBlock0@raymondhill.net.xpi [2021-12-04]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-11-18] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
StartMenuInternet: Firefox-6F193CCC56814779 - C:\Program Files\Firefox Nightly\firefox.exe
Chrome:
=======
CHR Profile: C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default [2021-12-03]
CHR DownloadDir: E:\10_General\10_Temp\01_Download
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
CHR DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
CHR Extension: (Just Black) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2021-11-15]
CHR Extension: (Disk Google) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-12-19]
CHR Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-10-01]
CHR Extension: (YouTube) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-12-19]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-12-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-12-19]
CHR Extension: (Privacy Badger) - C:\Users\jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2021-11-29]
Vivaldi:
=======
VIV Profile: C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default [2021-12-04]
VIV DownloadDir: E:\10_General\10_Temp\01_Download
VIV HomePage: Default -> hxxps://duckduckgo.com/
VIV DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
VIV DefaultSearchKeyword: Default -> duckduckgo.com
VIV DefaultNewTabURL: Default -> hxxps://duckduckgo.com/chrome_newtab
VIV DefaultSuggestURL: Default -> hxxps://duckduckgo.com/ac/?q={searchTerms}&type=list
VIV Extension: (DuckDuckGo) - C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2021-11-19]
VIV Extension: (Adblock Plus - free ad blocker) - C:\Users\jakub\AppData\Local\Vivaldi\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-12-01]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [616344 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421536 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [80544 2021-03-05] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 EABackgroundService; D:\Program Files\EA Desktop\EA Desktop\EABackgroundService.exe [10013848 2021-12-02] (Electronic Arts, Inc. -> Electronic Arts)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3139904 2021-11-04] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3139904 2021-11-04] (ESET, spol. s r.o. -> ESET)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11162688 2021-11-18] (Logitech Inc -> Logitech, Inc.)
S3 MagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [348728 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 NahimicService; C:\WINDOWS\system32\NahimicService.exe [1675392 2021-05-27] (A-Volute SAS -> Nahimic)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [62464 2006-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [348728 2021-09-16] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6078544 2021-11-23] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2599312 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2021-06-05] (Microsoft Corporation) [File not signed]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [60312 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-11-25] (CPUID S.A.R.L.U. -> CPUID)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183408 2021-10-29] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [124496 2021-10-29] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [201984 2021-10-29] (ESET, spol. s r.o. -> ESET)
R1 EneTechIo; C:\Windows\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [107456 2021-10-29] (ESET, spol. s r.o. -> ESET)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [110904 2021-11-23] (Microsoft Windows -> Microsoft Corporation)
R3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [44488 2021-11-02] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-09-15] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-09-15] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-09-15] (Logitech Inc -> Logitech)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18448 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85592 2020-06-16] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [49560 2021-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [421112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [73960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S4 e1rexpress; \SystemRoot\System32\drivers\e1r68x64.sys [X]
R3 NAL; \??\C:\Windows\system32\Drivers\iqvsw64e.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-04 16:57 - 2021-12-04 16:57 - 000000000 ____D C:\FRST
2021-12-04 01:27 - 2021-12-04 15:21 - 000000000 ____D C:\Program Files\Firefox Nightly
2021-12-03 16:10 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\LocalLow\Adobe
2021-12-03 16:10 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\Local\SolidDocuments
2021-12-03 16:09 - 2021-12-03 16:11 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-12-03 16:09 - 2021-12-03 16:11 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-12-03 16:09 - 2021-12-03 16:09 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-12-03 16:09 - 2021-12-03 16:09 - 000000000 ____D C:\Program Files\Adobe
2021-12-03 16:08 - 2021-12-03 16:10 - 000000000 ____D C:\ProgramData\Adobe
2021-12-03 16:07 - 2021-12-03 16:10 - 000000000 ____D C:\Users\jakub\AppData\Local\Adobe
2021-12-03 16:02 - 2021-12-03 16:17 - 000000000 ____D C:\Users\jakub\Desktop\Hypo
2021-12-02 17:01 - 2021-12-02 17:01 - 000000000 ____D C:\AMD
2021-11-27 18:06 - 2021-11-27 18:06 - 000000874 _____ C:\Users\jakub\Desktop\World of Tanks EU.lnk
2021-11-27 18:04 - 2021-11-27 18:06 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2021-11-23 18:11 - 2021-11-23 18:11 - 000040960 _____ C:\WINDOWS\system32\prxyqry.dll
2021-11-23 18:11 - 2021-11-23 18:11 - 000015040 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-11-23 18:11 - 2021-11-23 18:11 - 000013824 _____ C:\WINDOWS\SysWOW64\prxyqry.dll
2021-11-23 18:10 - 2021-11-23 18:10 - 000215552 _____ C:\WINDOWS\system32\CloudIdWxhExtension.dll
2021-11-23 18:08 - 2021-11-23 18:08 - 000000000 ___HD C:\$WinREAgent
2021-11-19 07:10 - 2021-11-19 07:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-11-19 07:10 - 2021-11-19 07:10 - 000000000 ____D C:\Program Files\LGHUB
2021-11-18 21:32 - 2021-12-04 14:51 - 000000528 _____ C:\Users\jakub\.vivaldi_reporting_data
2021-11-18 21:32 - 2021-12-02 17:14 - 000002389 _____ C:\Users\jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk
2021-11-18 21:32 - 2021-12-02 17:14 - 000002352 _____ C:\Users\jakub\Desktop\Vivaldi.lnk
2021-11-18 21:32 - 2021-12-02 17:14 - 000000000 ____D C:\Users\jakub\AppData\Local\Vivaldi
2021-11-18 21:32 - 2021-11-18 21:32 - 000003822 _____ C:\WINDOWS\system32\Tasks\VivaldiUpdateCheck-702a37733f6c0727
2021-11-16 21:15 - 2021-11-16 21:15 - 000000000 ____D C:\Users\jakub\AppData\Roaming\NVIDIA
2021-11-16 17:58 - 2021-11-16 17:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-11-16 17:55 - 2021-11-11 03:36 - 001874664 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001874664 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001464960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001450216 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001450216 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-11-16 17:55 - 2021-11-11 03:36 - 001208248 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001111272 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 001111272 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 000965352 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-11-16 17:55 - 2021-11-11 03:36 - 000965352 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 002116536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001597568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001523328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 001174456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000802232 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000709560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2021-11-16 17:55 - 2021-11-11 03:33 - 000678328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000656512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000635008 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-11-16 17:55 - 2021-11-11 03:33 - 000564352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 008725944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 007845816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 005730224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 004940728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 002850432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000981120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000792192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-11-16 17:55 - 2021-11-11 03:32 - 000452224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2021-11-16 17:55 - 2021-11-11 03:31 - 000850872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2021-11-16 17:55 - 2021-11-11 03:30 - 007582144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-11-16 17:55 - 2021-11-11 03:30 - 006432960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-11-16 17:55 - 2021-11-09 23:27 - 000085718 _____ C:\WINDOWS\system32\nvinfo.pb
2021-11-15 21:15 - 2021-11-15 21:15 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2021-11-15 21:15 - 2021-11-15 21:15 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2021-11-13 20:08 - 2021-11-13 20:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2021-11-13 20:08 - 2021-11-13 20:08 - 000000000 ____D C:\Program Files (x86)\Corsair
2021-11-11 21:17 - 2020-10-07 13:33 - 000047232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2021-11-11 21:16 - 2021-11-11 21:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-11-11 01:13 - 2021-11-11 01:13 - 000286720 _____ C:\WINDOWS\system32\AggregatorHost.exe
2021-11-11 01:13 - 2021-11-11 01:13 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-11-10 19:36 - 2021-11-19 19:56 - 000217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll.0
2021-11-10 19:36 - 2021-11-19 19:56 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2021-11-10 19:31 - 2021-11-10 19:31 - 000000000 ____D C:\Users\jakub\AppData\Local\INetHistory
2021-11-10 19:31 - 2021-11-10 19:31 - 000000000 ____D C:\Users\jakub\AppData\Local\EAConnect_microsoft
2021-11-07 21:00 - 2021-11-07 21:07 - 000000000 ____D C:\Users\jakub\AppData\Local\Opera Software
2021-11-07 20:59 - 2021-11-07 21:07 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Opera Software
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-12-04 16:54 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-12-04 16:53 - 2020-12-20 23:08 - 000000000 ____D C:\Users\jakub\AppData\LocalLow\Mozilla
2021-12-04 16:45 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-12-04 16:45 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2021-12-04 16:37 - 2020-12-20 20:03 - 000000000 ____D C:\Users\jakub\AppData\Local\D3DSCache
2021-12-04 16:26 - 2020-12-19 23:10 - 000000000 ____D C:\Program Files (x86)\Google
2021-12-04 16:22 - 2020-12-30 18:42 - 000000000 ____D C:\Users\jakub\AppData\Local\LGHUB
2021-12-04 15:41 - 2021-10-05 20:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-12-04 09:22 - 2021-03-05 14:15 - 000000000 ____D C:\ProgramData\Mozilla
2021-12-04 09:21 - 2021-10-05 20:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-12-04 09:21 - 2021-03-05 14:15 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk
2021-12-04 09:11 - 2021-10-01 20:06 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Samsung Magician
2021-12-04 09:11 - 2020-12-30 18:42 - 000000000 ____D C:\Users\jakub\AppData\Roaming\LGHUB
2021-12-04 02:30 - 2020-12-20 09:59 - 000000000 ____D C:\ProgramData\NVIDIA
2021-12-03 22:29 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-12-03 22:23 - 2020-12-28 19:03 - 000000000 ____D C:\Users\jakub\AppData\Roaming\vlc
2021-12-03 19:31 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-12-03 18:51 - 2021-02-02 19:55 - 000000000 ____D C:\Users\jakub\AppData\Local\CrashDumps
2021-12-03 16:10 - 2020-12-19 20:52 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Adobe
2021-12-03 16:10 - 2020-12-19 20:52 - 000000000 ____D C:\Users\jakub\AppData\Local\Packages
2021-12-02 17:11 - 2021-10-05 20:23 - 001714894 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-12-02 17:11 - 2021-06-05 18:22 - 000724600 _____ C:\WINDOWS\system32\perfh005.dat
2021-12-02 17:11 - 2021-06-05 18:22 - 000150562 _____ C:\WINDOWS\system32\perfc005.dat
2021-12-02 14:28 - 2020-11-19 00:48 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-11-27 18:04 - 2020-12-31 18:05 - 000000000 ____D C:\Users\jakub\AppData\Roaming\Wargaming.net
2021-11-27 17:00 - 2019-10-27 20:12 - 000000802 _____ C:\Users\jakub\Desktop\Stahovani.txt
2021-11-26 22:49 - 2021-10-13 18:02 - 000000000 ____D C:\Program Files\EA Games
2021-11-25 16:31 - 2021-03-05 14:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-11-25 16:25 - 2021-10-05 20:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-11-25 16:25 - 2021-06-05 13:01 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2021-11-25 16:25 - 2020-12-20 03:43 - 000012288 ___SH C:\DumpStack.log.tmp
2021-11-23 18:18 - 2021-10-05 20:18 - 000470184 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-11-23 18:17 - 2021-06-05 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-11-23 18:17 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-11-23 18:17 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2021-11-23 18:15 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-11-23 18:10 - 2021-10-05 20:19 - 003086336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-11-20 21:09 - 2020-12-30 18:41 - 000000000 ____D C:\ProgramData\LGHUB
2021-11-20 10:02 - 2021-02-22 15:33 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-11-19 22:20 - 2020-12-21 08:31 - 000000000 ____D C:\Program Files (x86)\Steam
2021-11-19 18:46 - 2020-12-20 09:24 - 000000000 ____D C:\Users\jakub\AppData\Local\NVIDIA
2021-11-19 15:39 - 2021-11-03 19:07 - 000000000 ____D C:\Users\jakub\Desktop\Bazar
2021-11-18 21:32 - 2021-10-05 20:10 - 000000000 ____D C:\Users\jakub
2021-11-18 21:08 - 2020-12-20 09:36 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-11-18 17:44 - 2021-10-10 14:09 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7ba1de7f5b8dc
2021-11-18 17:44 - 2021-10-05 20:22 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-11-16 17:58 - 2020-12-19 20:52 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-11-16 17:14 - 2020-12-19 23:10 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-11-15 21:22 - 2020-12-24 11:01 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2021-11-15 21:15 - 2020-12-20 09:24 - 000000000 ____D C:\ProgramData\Package Cache
2021-11-12 21:19 - 2020-12-28 16:40 - 000000000 ____D C:\Program Files\Microsoft Office
2021-11-11 19:28 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-11-11 19:28 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-11-11 15:48 - 2020-12-19 20:54 - 000000000 ____D C:\Users\jakub\AppData\Local\PlaceholderTileLogoFolder
2021-11-10 23:59 - 2020-11-19 00:50 - 000000000 ____D C:\ProgramData\Packages
2021-11-10 19:41 - 2021-10-05 18:36 - 000000000 ____D C:\Users\jakub\AppData\Local\ElevatedDiagnostics
2021-11-10 19:18 - 2020-12-19 20:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-11-10 19:17 - 2020-12-19 20:57 - 141529560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-11-06 23:07 - 2020-12-20 18:54 - 000000000 ____D C:\Users\jakub\AppData\Local\Battle.net
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-12-2021
Ran by jakub (04-12-2021 16:58:31)
Running from E:\10_General\10_Temp\01_Download
Microsoft Windows 11 Pro Version 21H2 22000.348 (X64) (2021-10-05 19:22:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1796763630-3206443035-2838120226-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1796763630-3206443035-2838120226-503 - Limited - Disabled)
Guest (S-1-5-21-1796763630-3206443035-2838120226-501 - Limited - Disabled)
jakub (S-1-5-21-1796763630-3206443035-2838120226-1001 - Administrator - Enabled) => C:\Users\jakub
WDAGUtilityAccount (S-1-5-21-1796763630-3206443035-2838120226-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 20.02 alpha (x64) (HKLM\...\7-Zip) (Version: 20.02 alpha - Igor Pavlov)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{cf77cf6b-71ff-4a71-802d-43adb9b271b7}) (Version: 3.10.22.706 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Burning Crusade Classic (HKLM-x32\...\Burning Crusade Classic) (Version: - Blizzard Entertainment)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.4 - Nikon Corporation)
CORSAIR iCUE Software (HKLM-x32\...\{3D350B22-542B-4FB4-B3AC-EA760941C319}) (Version: 3.38.61 - Corsair)
DaVinci Resolve (HKLM\...\{F0F6711A-202E-44EA-A192-B859A198AABF}) (Version: 16.0.0060 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{B1782967-E600-4BBD-B2F1-AEF3F2FE0A12}) (Version: 1.2.1.0 - Blackmagic Design)
Diablo II Resurrected (HKLM-x32\...\Diablo II Resurrected) (Version: - Blizzard Entertainment)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.0.169.5058 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{a19a5853-9933-440e-bcbe-408655f0f398}) (Version: 12.0.169.5058 - Electronic Arts)
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ESET Security (HKLM\...\{3B47BDC5-99BF-4F5C-A303-1F0F9DBC74F6}) (Version: 15.0.18.0 - ESET, spol. s r.o.)
Far Cry 6 (HKLM-x32\...\Uplay Install 5266) (Version: - Ubisoft)
FIFA 21 (HKLM-x32\...\{A918ACE7-A83B-41F4-8746-AEF8DC821879}) (Version: 1.0.72.32477 - Electronic Arts)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC)
IrfanView 4.56 (64-bit) (HKLM\...\IrfanView64) (Version: 4.56 - Irfan Skiljan)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2021.12.4779 - Logitech)
Microsoft .NET Framework 4.6.2 SDK (HKLM-x32\...\{5F01B3C4-9BEC-465D-9C68-BB97D381FFAD}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (ENU) (HKLM-x32\...\{C80951BD-6904-474F-BBC5-03A6C777F37C}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 Targeting Pack (HKLM-x32\...\{A18D4C2A-07A8-40E4-9797-DD324E6EA4FC}) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.41 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.43 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.14527.20276 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2FA9DAAC-895B-4E99-99D9-DC2965FBE79C}) (Version: 2.87.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 88.0a1 - Mozilla)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
Nightly (x64 cs) (HKLM\...\Nightly 96.0a1 (x64 cs)) (Version: 96.0a1 - Mozilla)
NVIDIA Ovladače grafiky 496.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 496.76 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PDF-XChange Editor (HKLM\...\{29487948-D54A-4EE4-800D-E205919659C8}) (Version: 8.0.343.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{911b790c-3fcf-4ecc-b0d4-8a573a6004b0}) (Version: 8.0.343.0 - Tracker Software Products (Canada) Ltd.)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9071.1 - Realtek Semiconductor Corp.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 7.0.0.510 - Samsung Electronics)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 126.0.10593 - Ubisoft)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Vivaldi (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Vivaldi) (Version: 5.0.2497.24 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Warcraft III (HKLM-x32\...\Warcraft III) (Version: - Blizzard Entertainment)
Wargaming.net Game Center (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\Wargaming.net Game Center) (Version: 21.8.1.7292 - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
World of Warcraft Classic (HKLM-x32\...\World of Warcraft Classic) (Version: - Blizzard Entertainment)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-17] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Forza Horizon 5 -> C:\Program Files\WindowsApps\Microsoft.624F8B84B80_3.414.967.0_x64__8wekyb3d8bbwe [2021-12-03] (Microsoft Studios)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa [2021-10-29] (Apple Inc.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-11-16] (NVIDIA Corp.)
Příslušenství pro Xbox -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.2110.13001.0_x64__8wekyb3d8bbwe [2021-10-20] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{65DC3795-BC1B-4E70-A3C6-FDFFDE61D148} -> [Fotky na iCloudu] => C:\Users\jakub\Pictures\iCloud Photos\Photos
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\jakub\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{B66F012A-D18A-4CF8-9147-BE7ED9357F4C} -> [iCloud Drive] => C:\Users\jakub\iCloudDrive
CustomCLSID: HKU\S-1-5-21-1796763630-3206443035-2838120226-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\jakub\AppData\Local\Vivaldi\Application\5.0.2497.24\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b7184c0e1c94c102\nvshext.dll [2021-11-11] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2020-08-08] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2021-11-04] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk -> C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) =============
2021-11-19 07:10 - 2021-11-18 19:29 - 000635904 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2021-03-05 18:44 - 2021-03-05 18:44 - 000209408 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\quazip.dll
2021-03-05 18:44 - 2021-03-05 18:44 - 000101376 _____ () [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\zlib.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 002661888 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\ffmpeg.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 000367104 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\libegl.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 006631936 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\libglesv2.dll
2021-10-01 19:32 - 2021-09-16 09:46 - 000458752 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magutils-napi.node
2021-10-01 19:32 - 2021-09-16 09:46 - 000445440 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magvibrancy-napi.node
2021-10-01 19:32 - 2021-09-16 09:46 - 001411072 _____ () [File not signed] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\uimpewrapper-napi.node
2020-12-28 14:15 - 2020-08-08 20:00 - 000076800 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2021-11-06 08:56 - 2021-11-06 08:56 - 000137184 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20045.455.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll
2020-12-16 09:26 - 2020-12-16 09:26 - 000090112 _____ (Silicon Laboratories, Inc.) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\SiUSBXp.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 002815488 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\EA Desktop\EA Desktop\libcrypto-1_1-x64.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000678400 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] D:\Program Files\EA Desktop\EA Desktop\libssl-1_1-x64.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 002516992 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libcrypto-1_1.dll
2021-03-05 18:43 - 2021-03-05 18:43 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\libssl-1_1.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000046592 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\bearer\qgenericbearer.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 006270976 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Core.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 001389568 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Network.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000157184 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5WebSockets.dll
2021-12-02 19:13 - 2021-12-02 19:13 - 000210432 _____ (The Qt Company Ltd.) [File not signed] D:\Program Files\EA Desktop\EA Desktop\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2020-12-31 18:01 - 2020-12-31 18:06 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jakub\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\1ee12ad49bfa9e7ed84a47a1d97593bd.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-1796763630-3206443035-2838120226-1001\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{C74CEE48-2325-4F0E-962B-7BD4BDFC0067}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5293BED0-9034-4005-BCA4-603344F90369}] => (Allow) D:\Program Files\Steam\steamapps\common\NieRAutomata\NieRAutomata.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [{AB143E53-A770-4F29-907F-CC606E41C960}] => (Allow) D:\Program Files\Steam\steamapps\common\NieRAutomata\NieRAutomata.exe (SQUARE ENIX CO., LTD. -> SQUARE ENIX CO., LTD.)
FirewallRules: [UDP Query User{48FCEEC4-6B97-4A4F-B806-04646945175C}D:\program files (x86)\fifa 21\fifa21.exe] => (Allow) D:\program files (x86)\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{72C2189E-18BC-45B8-954C-4FEEF51378E3}D:\program files (x86)\fifa 21\fifa21.exe] => (Allow) D:\program files (x86)\fifa 21\fifa21.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{92FB49C1-1E6B-4352-8D36-9514B352C48C}] => (Allow) D:\Program Files\Steam\steamapps\common\ACE COMBAT 7\Ace7Game.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{FC5BBCBD-E380-4FA0-A127-5A06C544E371}] => (Allow) D:\Program Files\Steam\steamapps\common\ACE COMBAT 7\Ace7Game.exe (BANDAI NAMCO Entertainment Inc.) [File not signed]
FirewallRules: [{186A0ED7-E8D9-45AB-AF0B-F64C67158E18}] => (Allow) E:\20_Application\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{971D8274-83DC-4C42-B7C0-38F4CD676766}] => (Allow) E:\20_Application\Steam\steamapps\common\Empire Total War\Empire.exe (Sega Europe Limited -> The Creative Assembly Ltd)
FirewallRules: [{B6D06D0B-891F-4068-A303-09EB3539E967}] => (Allow) LPort=32682
FirewallRules: [{7612A27A-DC2F-4FA5-AC2A-8E1FF0A93A96}] => (Allow) E:\20_Application\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{45FCD11C-C34B-4354-ABAA-7E0DF4730C3D}] => (Allow) E:\20_Application\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe (Zenimax Media Inc. -> Zenimax Online Studios)
FirewallRules: [{E6760DE9-0533-4141-8301-095FC863613C}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C1A6C5D5-6741-4B23-B4FD-E2EC426DA4A8}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{21630480-153D-4C6D-984D-5A20380D7C49}E:\20_application\davinci resolve\fuscript.exe] => (Block) E:\20_application\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [TCP Query User{7DFE4F40-EBA0-4B03-B59D-9DB31BF4A49A}E:\20_application\davinci resolve\fuscript.exe] => (Block) E:\20_application\davinci resolve\fuscript.exe (Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{5DB7B640-49F0-4AA4-8B95-E65A0CD9B6B1}E:\20_application\davinci resolve\resolve.exe] => (Block) E:\20_application\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{6DC042AE-269B-4F63-8CFD-A9F4CC593E0F}E:\20_application\davinci resolve\resolve.exe] => (Block) E:\20_application\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{F7B7F58C-85E8-4863-AD55-8C4AC4817993}E:\20_application\davinci resolve\dpdecoder.exe] => (Block) E:\20_application\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{2A29956B-AA35-455A-8F65-FCCCE9706E93}E:\20_application\davinci resolve\dpdecoder.exe] => (Block) E:\20_application\davinci resolve\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{B1390EB7-FBA0-4911-B33E-0B3492E3B687}E:\10_general\10_temp\01_download\torrent\utorrent.exe] => (Allow) E:\10_general\10_temp\01_download\torrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{FFF79345-D26A-4BEA-BC13-FAD0AF60F43E}E:\10_general\10_temp\01_download\torrent\utorrent.exe] => (Allow) E:\10_general\10_temp\01_download\torrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{920D3903-48BA-477C-BF99-7AED4CBF93A0}] => (Allow) E:\20_Application\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{3330FFDD-6072-4E89-99CC-D529DD250CA2}] => (Allow) E:\20_Application\DaVinci Resolve\TangentPanelDaemon.exe () [File not signed]
FirewallRules: [{C8E89CEB-56CD-4478-AE3E-52A50ADB3053}] => (Allow) E:\20_Application\DaVinci Resolve\EuphonixPanelDaemon.exe () [File not signed]
FirewallRules: [{7EFEEF76-4362-45CA-A5F6-4692E0139EEC}] => (Allow) E:\20_Application\DaVinci Resolve\JLCooperPanelDaemon.exe () [File not signed]
FirewallRules: [{12A1C3CC-A829-45E6-80DE-4F900236D57E}] => (Allow) E:\20_Application\DaVinci Resolve\DaVinciPanelDaemon.exe () [File not signed]
FirewallRules: [{BD001661-F817-4C4B-8C0F-787C020BB07C}] => (Allow) E:\20_Application\DaVinci Resolve\bmdpaneld.exe () [File not signed]
FirewallRules: [{135948A8-63E7-42EA-AEB0-9704564EA163}] => (Allow) E:\20_Application\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{F473C5AC-4FD2-41E4-BA8B-94348D34A3C9}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{28F67CF6-601E-4703-91DE-575F2AD17A5A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{0D980D6C-7623-413B-9F1F-FF29BC67092D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{47E32E13-3D1B-4BA0-B44C-79BA4EA56F90}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{37644AAF-A621-49BD-A630-F66C3ADE0D39}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F1B3087B-55DE-4CE4-A55B-B91349AE2DD3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{72FD2D19-A7AC-4F84-8788-C5207D883543}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AFAB7E57-3592-48F4-8F90-30EFB4C26BD3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BEC06667-459F-4B89-9AC8-BAE4DCFA96CA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DB42990F-5C0F-4E98-8FBF-153C7F48B87E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{ABFF7D18-AE5A-4B92-BDFF-9A37150E800D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4948E92A-DC6C-4A95-9C41-B7A09FAA895A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE1FD820-CECD-4140-97DE-4BE152DDDDAB}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{6E727A70-9119-4C91-8747-2E7A519984EC}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{558683B5-84E6-4010-9155-D0A668F8DB30}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{547274AA-736F-4641-9ECB-8CB2226F8AC7}] => (Allow) D:\Program Files\Ubisoft Game Launcher\games\Far Cry 6\bin_plus\FarCry6.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [{02B776D3-0A05-4289-A99F-2E700EDF6874}] => (Allow) D:\Program Files (x86)\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{08411D47-0E47-4F2C-8E7B-C69E45343CBB}] => (Allow) D:\Program Files (x86)\FIFA 21\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{D5A44B19-8A06-4C6A-B7FD-2121D44A1E04}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{33EF8B68-046E-46D8-B25B-8FDB1A23A1FF}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{030718BD-4671-4D92-BEFB-E1E81802CB79}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [{E0FCA254-1613-4636-AB56-BDDF3B7F0E73}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [TCP Query User{806EB279-E245-423F-80C5-84BD9E328796}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{0A450762-5386-4483-9866-DD429212E612}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{36592921-EA02-4E66-B5AD-D1C52A6EED0D}] => (Allow) D:\Program Files\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{081D4D13-1EE9-4585-8B8F-AD5A7EEDA187}] => (Allow) D:\Program Files\Steam\steamapps\common\Valheim\valheim.exe () [File not signed]
FirewallRules: [{C5355470-6975-4961-8EFB-C79FC53041A2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6C6F2533-8ECB-4635-B167-574D9235FB54}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0CFC42E2-F9BC-448E-A9F8-F3BB944D9211}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13FB758B-5084-483B-AB5E-54E6822AEC73}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60C021CE-7A61-4745-B8BF-A023F464230B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{88E60F9B-8F66-457D-A614-8A3A43D5725F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0784DAA1-AD5F-4816-BDB5-C700A2063FA5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2DC673AB-05A7-46EF-ADD6-00FF628AE8B8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12122.2.54019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{075962EB-6BD8-4F5F-A350-0D3F8D3AF347}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E26EE392-30DA-4318-9F51-34E78D1D123A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{438906EF-0F26-450D-9C6A-FB238002A91A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2BB5B5FE-3C2C-4FFA-8392-CFB5338FAF4C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{928C3456-BDA0-4E4B-86C5-3081A9B6D66D}F:1\forzahorizon5.exe] => (Allow) F:1\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{C6F624D5-EA8D-4B9E-94B8-4859CCF5B03F}F:1\forzahorizon5.exe] => (Allow) F:1\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{7EA74219-C3C7-4957-B14E-138EA0067EBF}F:0\forzahorizon5.exe] => (Allow) F:0\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{0CAF4F9F-1741-4EE3-AD6A-CDB656A758CC}F:0\forzahorizon5.exe] => (Allow) F:0\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{3A7638AE-296E-46BA-8E4F-F4E47A9F9865}F:4\forzahorizon5.exe] => (Allow) F:4\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{E91FBBA2-E4AE-427E-B088-73DA8AAE1750}F:4\forzahorizon5.exe] => (Allow) F:4\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{245049FF-7059-4BA8-B3E7-D39C293B98F3}F:5\forzahorizon5.exe] => (Allow) F:5\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{0D8192DA-657F-427E-BECE-0AC7F96E96FD}F:5\forzahorizon5.exe] => (Allow) F:5\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{49D3E684-6AAB-4537-B6F9-59E0C3692B04}F:6\forzahorizon5.exe] => (Allow) F:6\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{5C31AAC7-AAE7-4657-9F03-8D7CC186CA83}F:6\forzahorizon5.exe] => (Allow) F:6\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{06E35EEF-00DB-4648-AEFE-30CADA9965D0}F:8\forzahorizon5.exe] => (Allow) F:8\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{39F24610-1407-42AF-905B-99D5A148D722}F:8\forzahorizon5.exe] => (Allow) F:8\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{C823FB01-7ECB-4275-862C-C9F661A84CA8}F:9\forzahorizon5.exe] => (Allow) F:9\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{E9C697E7-6A4B-4073-BB5E-CBAB6E9E5B88}F:9\forzahorizon5.exe] => (Allow) F:9\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{A8BE5D2D-9686-4B3B-832D-52EEA44EE03F}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{8B6D5244-B7E1-4D86-BFC9-0FFD747FF38D}C:0\forzahorizon5.exe] => (Allow) C:0\forzahorizon5.exe => No File
FirewallRules: [{CEE99125-F19A-42B2-9F19-CF732A394C94}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{370B5D9E-4753-4124-BD0D-4D3510EE9487}F:3\forzahorizon5.exe] => (Allow) F:3\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{3C770CDB-85FF-44C7-948D-BAAE15A449AB}F:3\forzahorizon5.exe] => (Allow) F:3\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{5F0EA64D-360A-41D9-A96F-547271D57FF8}F:2\forzahorizon5.exe] => (Allow) F:2\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{303D7214-4172-4D2C-BA25-D51E078400B2}F:2\forzahorizon5.exe] => (Allow) F:2\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{F6FE90ED-67DC-4C86-96AD-827860A3FDF8}F:7\forzahorizon5.exe] => (Allow) F:7\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{665EBD6B-10E6-46D6-A0DC-9EA08C5ADEF2}F:7\forzahorizon5.exe] => (Allow) F:7\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{EB77B3F2-AA7F-470E-B654-58034E9B761A}D:\program files (x86)\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{78BFCEDF-47B5-4427-9EC0-5A26E3E5C281}D:\program files (x86)\wargaming.net\gamecenter\wgc.exe] => (Allow) D:\program files (x86)\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{339203A9-8809-480B-9182-E989192D3727}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{DAC671BB-770C-4E86-868C-28434944B739}C:1\forzahorizon5.exe] => (Allow) C:1\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{14CA5732-9F2F-4A97-8A79-7BBFE0B2D070}C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{9DCCAB27-8A14-459A-A5D4-6AF596AB1D26}C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe] => (Allow) C:\users\jakub\appdata\local\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{325E821F-D211-4AA7-B8CA-C02407748A90}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.43\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{6B61647F-207C-41A5-9B8B-F86DF71D8D2A}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{1D0AD97B-31A1-4627-8E03-F001FFA9EB5D}C:6\forzahorizon5.exe] => (Allow) C:6\forzahorizon5.exe => No File
FirewallRules: [TCP Query User{2ECC5316-ECBB-46E6-ADAE-68B8799A8C3E}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => No File
FirewallRules: [UDP Query User{384899AA-06C9-42CD-9348-1D36114FD92D}C:7\forzahorizon5.exe] => (Allow) C:7\forzahorizon5.exe => No File
==================== Restore Points =========================
23-11-2021 18:03:36 Instalační služba modulů systému Windows
30-11-2021 20:26:05 Naplánovaný kontrolní bod
02-12-2021 17:04:10 Installed AMD_Chipset_Drivers.
04-12-2021 16:41:45 Removed Intel(R) Wireless Bluetooth(R)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/03/2021 06:51:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServicesUI.exe, verze: 3.59.2111.11001, časové razítko: 0x618d4205
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007c648
ID chybujícího procesu: 0x113c
Čas spuštění chybující aplikace: 0x01d7e86e41062131
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServicesUI\GamingServicesUI.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 8f7b65b0-c0f3-4318-9fe9-0450178cfd0f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (12/01/2021 04:43:08 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: GamingServices.DLL, verze: 10.0.22000.2339, časové razítko: 0xe4231246
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000224567
ID chybujícího procesu: 0x3238
Čas spuštění chybující aplikace: 0x01d7e6067d101776
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.DLL
ID zprávy: 9c15ba56-671c-42b2-b0ba-98d7e096cc9d
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices
Error: (11/30/2021 05:20:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x1854
Čas spuštění chybující aplikace: 0x01d7e210aefe0b79
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 5460dcc1-ac59-4b16-9ed7-557b52d5dc87
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices
Error: (11/25/2021 04:25:38 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\ROCKET$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 25 Nov 2021 15:25:39 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 22ae2dc5-c29a-48fc-805a-141e84719541
Metoda: GET(187ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/25/2021 04:25:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 25 Nov 2021 15:25:38 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: dcc905e0-4ced-47ae-814e-a694cf86633d
Metoda: GET(328ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/24/2021 05:09:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GamingServices.exe, verze: 10.0.22000.2339, časové razítko: 0x911f46d6
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x14dc
Čas spuštění chybující aplikace: 0x01d7e08e2239f022
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe\GamingServices.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: d45251a0-e902-416a-9fdd-628d55d6d55d
Úplný název chybujícího balíčku: Microsoft.GamingServices_3.59.11001.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: GamingServices
Error: (11/23/2021 06:18:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\ROCKET$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 23 Nov 2021 17:18:34 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: a1e7cccf-9726-4411-8c4d-f922cbf8e410
Metoda: GET(187ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (11/23/2021 06:18:34 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 23 Nov 2021 17:18:34 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 2435f45b-b6e6-4bdf-81d9-90302b471492
Metoda: GET(250ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
System errors:
=============
Error: (12/04/2021 09:11:23 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (12/03/2021 01:52:14 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 12:36:20 PM) (Source: DCOM) (EventID: 10010) (User: ROCKET)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/03/2021 08:24:24 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (12/02/2021 02:28:13 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{4973BC1F-71C2-4643-B6F6-59D7E56A0947}, protože jiný počítač v síti má stejný název. Server nelze spustit.
CodeIntegrity:
===============
Date: 2021-12-04 16:42:33
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Intel\Wired Networking\NCS2\Agent\Coinstaller.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.80 08/07/2020
Motherboard: Micro-Star International Co., Ltd. MPG X570 GAMING PRO CARBON WIFI (MS-7B93)
Processor: AMD Ryzen 7 2700 Eight-Core Processor
Percentage of memory in use: 35%
Total physical RAM: 16309.99 MB
Available physical RAM: 10546.41 MB
Total Virtual: 19893.99 MB
Available Virtual: 11672.4 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:445.89 GB) (Free:289.14 GB) NTFS
Drive d: (App) (Fixed) (Total:931.5 GB) (Free:525.55 GB) NTFS
Drive e: (Data) (Fixed) (Total:3726.01 GB) (Free:2515.56 GB) NTFS
Drive f: (Rezervováno systémem) (Fixed) (Total:0.05 GB) (Free:0.04 GB) NTFS
\\?\Volume{6d35cf61-32e0-4514-8f81-f959818e374b}\ () (Fixed) (Total:0.6 GB) (Free:0.08 GB) NTFS
\\?\Volume{acf96615-25f4-11ec-9579-ac12039b51a3}\ () (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{f5b2cb1e-107e-a4ea-1b52-3ed1d603aec9}\ () (Fixed) (Total:101.92 GB) (Free:0 GB) NTFS
\\?\Volume{acf96614-25f4-11ec-9579-ac12039b51a3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 447.1 GB) (Disk ID: 918013BA)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.
==================== End of Addition.txt =======================
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: