Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu - podivné chování klávesnice

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Kema
Návštěvník
Návštěvník
Příspěvky: 152
Registrován: 08 led 2005 18:15
Bydliště: Bohosudov
Kontaktovat uživatele:

Prosím o kontrolu logu - podivné chování klávesnice

#1 Příspěvek od Kema »

Dobrý den.

Na počítači byla spuštěna instalace hry Farming simulátor 22, ale ne originálka.
Windows Defender nechtěl setup.exe povolit, takže se na chvilku musel deaktivovat.
Po opětovné aktivaci byl systém Windows 10 proskenován hloubkovým testem Defendrem a také online Esetem a nic podezřelého nalezeno nebylo.
Přesto se mi už několikrát zablokovala klávesnice.
Reset systému na to nestačí a pomůže jen úplné odpojení napájecího zdroje.
Možná to s tím vůbec nesouvisí ale pro jistotu poprosím o kontrolu logu jestli v tom nemá prsty nějaká havěť.
Děkuji.


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-07-2022
Ran by Milan (14-07-2022 08:36:40)
Running from D:\stažené soubory
Microsoft Windows 10 Pro Version 21H1 19043.1766 (X64) (2020-11-11 15:40:48)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2694576939-4152107225-3971293488-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2694576939-4152107225-3971293488-503 - Limited - Disabled)
Guest (S-1-5-21-2694576939-4152107225-3971293488-501 - Limited - Disabled)
KODI-PC (S-1-5-21-2694576939-4152107225-3971293488-1002 - Limited - Enabled)
Milan (S-1-5-21-2694576939-4152107225-3971293488-1001 - Administrator - Enabled) => C:\Users\mzeme
WDAGUtilityAccount (S-1-5-21-2694576939-4152107225-3971293488-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Balíček ovladače systému Windows - Silicon Laboratories Inc. (silabser) Ports (09/19/2016 6.7.4.261) (HKLM\...\9E2C239D42290B984A9E2B350A67AF8BC8BD11B9) (Version: 09/19/2016 6.7.4.261 - Silicon Laboratories Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.01 - Piriform)
CPUID CPU-Z 1.96 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.96 - CPUID, Inc.)
DCC_E2 (HKLM-x32\...\{B170E541-3668-480A-A2F0-3D7BAD17F877}) (Version: 2.40 - BernyR)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - )
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 60.0.2.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 103.0.5060.114 - Google LLC)
Imou (HKLM-x32\...\Imou_en) (Version: 2.2.0 - Hangzhou Huacheng Network Technology Company)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Kodi (HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Kodi) (Version: 19.0.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
LibreOffice 7.0.0.3 (HKLM\...\{7C7F19DA-6107-4284-9263-EC5C4792C8C7}) (Version: 7.0.0.3 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 103.0.1264.49 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.131.0619.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.22.27821 (HKLM\...\{6E2C7A8E-B17A-4637-9CE9-F0B1157CF378}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.22.27821 (HKLM\...\{0093C20C-273D-4397-B623-515CB8616CB9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.22.27821 (HKLM-x32\...\{3BDE80F7-7EC9-448E-8160-4ADA0CDA8879}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.22.27821 (HKLM-x32\...\{1E6FC929-567E-4D22-9206-C5B83F0A21B9}) (Version: 14.22.27821 - Microsoft Corporation) Hidden
NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 472.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 472.12 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23367 - Microsoft Corporation)
PuTTY release 0.73 (64-bit) (HKLM\...\{44F7642C-AB7E-4468-B028-E8D08A0CBB0E}) (Version: 0.73.0.0 - Simon Tatham)
Raspberry Pi Imager (HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Raspberry Pi Imager) (Version: 1.4 - Raspberry Pi)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
SD Card Formatter (HKLM-x32\...\{A61131DC-B92D-4AD8-A925-E2D6D5FE217C}) (Version: 5.0.1 - SD Association)
Signal 1.39.6 (HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 1.39.6 - Open Whisper Systems)
Skype verze 8.85 (HKLM-x32\...\Skype_is1) (Version: 8.85 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tenorshare 4DDiG 8.1.2.2 (HKLM\...\{UltData - Windows}_is1) (Version: 8.1.2.2 - Tenorshare, Inc.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WhatsApp (HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\WhatsApp) (Version: 2.2222.12 - WhatsApp)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Zip Password Recover (HKLM-x32\...\{F84258BC-AA68-4E24-BCD5-3FDA2D880ED6}) (Version: 1.1.1 - Recover Password)
ZIP Password Recovery 5.0 (HKLM-x32\...\ZIP Password Recovery) (Version: 5.0 - SmartDoctor)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.3 - ZONER software)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.20.89.0_x64__kgqvnymyfvs32 [2022-07-01] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.84.4.0_x64__kgqvnymyfvs32 [2022-07-07] (king.com)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-19] (Microsoft Corporation)
Chordle -> C:\Program Files\WindowsApps\19116MUNKLESOFT.CHORDLE_2.2.143.0_x64__sjfyx6f2ztysj [2022-06-03] (Munklesoft)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7040.0_x64__8wekyb3d8bbwe [2022-07-10] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-01-17] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0 [2022-07-12] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\60.0.2.0\drivefsext.dll [2022-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\60.0.2.0\drivefsext.dll [2022-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\60.0.2.0\drivefsext.dll [2022-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\60.0.2.0\drivefsext.dll [2022-06-21] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\60.0.2.0\drivefsext.dll [2022-06-21] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\60.0.2.0\drivefsext.dll [2022-06-21] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncShell64.dll [2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\60.0.2.0\drivefsext.dll [2022-06-21] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\nvshext.dll [2021-09-16] (Nvidia Corporation -> NVIDIA Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:9A870F8B [268]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 06:49 - 2020-01-19 16:32 - 000000849 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 account.zoner.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\Control Panel\Desktop\\Wallpaper -> D:\stažené soubory\wokna.jpg
DNS Servers: 1.1.1.1 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{7FFD49BD-BA15-4D85-A5D9-F024ACF7B298}D:\steam\steam.exe] => (Allow) D:\steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{EDC8299D-F61A-4AF5-91D8-DDA9EF748821}D:\steam\steam.exe] => (Allow) D:\steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{BCE62EC3-3DB3-49DB-8CDA-592295F590A9}] => (Allow) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AE36D177-8B89-4C0F-94CF-880C2E5DA546}] => (Allow) D:\steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{3D50BC4B-85C3-4B79-B9CF-C885072D27D0}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{789EE48D-488F-40D8-9A80-5B1CAD31A0FB}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{47FA76C6-8ECF-4A0D-95DA-7DABE6BC9A3E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{19C5E664-AE86-4EB6-B92E-168427F4FE71}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{29D44FCD-9DFA-42CC-869B-B72F3799BD3C}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{191FA4CA-18CD-41D3-85D4-27AB7B48EC7F}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F9C4887F-B1B9-42BB-A8E1-A380112312A1}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{22B40A81-B8D1-417D-B25B-85695535C04B}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{20B38C0F-33BF-4A93-BE0F-0B79FC9E4E1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{F0AA4D60-202D-4DAA-B673-1107C48F1DBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{60682377-93C6-4773-882B-A33C66C2E048}C:\program files\imou_en\bin\imou_en.exe] => (Allow) C:\program files\imou_en\bin\imou_en.exe (Hangzhou Huacheng Network Technology Co.,Ltd. -> Hangzhou Huacheng Network Technology Company)
FirewallRules: [UDP Query User{3E8B4834-DC7C-419B-B633-8574421C4684}C:\program files\imou_en\bin\imou_en.exe] => (Allow) C:\program files\imou_en\bin\imou_en.exe (Hangzhou Huacheng Network Technology Co.,Ltd. -> Hangzhou Huacheng Network Technology Company)
FirewallRules: [{1410351A-4AE3-4EC2-88DA-5E5BC82006A2}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Tenorshare 4DDiG.exe (Tenorshare Co., Ltd. -> Tenorshare)
FirewallRules: [{232C3626-2C6E-492A-8D2A-5AA83B40E1E5}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Tenorshare 4DDiG.exe (Tenorshare Co., Ltd. -> Tenorshare)
FirewallRules: [{2B65F5D7-61EC-4E50-87B6-9F4C802FAFBD}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NetFrameCheck.exe (Tenorshare Co., Ltd. -> Tenorshare)
FirewallRules: [{8AD3AB29-8029-4E67-9A12-06960C9E3F45}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NetFrameCheck.exe (Tenorshare Co., Ltd. -> Tenorshare)
FirewallRules: [{2FDAF272-2D97-4CB0-86E1-79A711F51B8D}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8757072B-31E1-4435-AFDD-3C80FDA945D4}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B97300D6-6ADE-4C12-A480-A86FEBA80F2D}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{34706BD9-6DBE-4F7A-BC1D-4A78B9F6C180}] => (Allow) C:\steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{84B8009B-B182-454D-8750-98B0572238C6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CF401639-C482-477A-BBAF-5497355A4C89}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{396F4609-0935-43D4-9AAC-D99BF074F03C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B2727E29-1BA7-494B-9AA2-7F727BA89E13}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{04E7C4B4-8DB3-405C-A822-670580905825}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{E8CF8E09-65D5-4D2D-8478-CDDFD67ECD70}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{7A029223-C7B1-45C1-837B-F293FFC937E2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{9D219F6D-B407-42D5-87E0-0617D6CDCA51}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DE249865-09E8-4F17-B4D7-D0C80DBBA32B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7CE18D8B-6A2A-4AD4-9E79-1FA1EA14DA94}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1E6A3A0B-89CA-4E51-B057-6C22F2E1F8C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8F1AEB54-C3F7-4C6A-9948-36B59E5CDA2D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D64EE78C-5567-4E44-8BBE-0ACE019B0A9E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4162D24A-0287-4368-8032-13E78153907C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{87D68E08-1A7C-493C-89CF-35E8724AD7B2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.189.862.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

29-06-2022 07:05:48 Nainstalováno rozhraní DirectX
07-07-2022 17:51:03 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (07/08/2022 10:37:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2022Game.exe, verze: 9.0.0.0, časové razítko: 0x6195217d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1741, časové razítko: 0xe9b4a91b
Kód výjimky: 0xe24c4a02
Posun chyby: 0x0000000000034fd9
ID chybujícího procesu: 0x18fc
Čas spuštění chybující aplikace: 0x01d8929b6feaa9bc
Cesta k chybující aplikaci: D:\Games\Farming Simulator 22\x64\FarmingSimulator2022Game.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: fdc77883-baa4-4372-b8f5-1cebbf69aec4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/08/2022 09:19:31 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Fotky (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (07/08/2022 01:13:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2022Game.exe, verze: 9.0.0.0, časové razítko: 0x6195217d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1741, časové razítko: 0xe9b4a91b
Kód výjimky: 0xe24c4a02
Posun chyby: 0x0000000000034fd9
ID chybujícího procesu: 0xc90
Čas spuštění chybující aplikace: 0x01d89240f5b95591
Cesta k chybující aplikaci: D:\Games\Farming Simulator 22\x64\FarmingSimulator2022Game.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: d0578307-00be-4a88-99aa-4dad4b9bad4d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/07/2022 10:33:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2022Game.exe, verze: 9.0.0.0, časové razítko: 0x6195217d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1741, časové razítko: 0xe9b4a91b
Kód výjimky: 0xe24c4a02
Posun chyby: 0x0000000000034fd9
ID chybujícího procesu: 0x91c
Čas spuštění chybující aplikace: 0x01d8921dd94d4d22
Cesta k chybující aplikaci: D:\Games\Farming Simulator 22\x64\FarmingSimulator2022Game.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 7e1d84b2-18b2-49cf-ae49-eb0bd9d74716
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/07/2022 05:46:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2022Game.exe, verze: 9.0.0.0, časové razítko: 0x6195217d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1741, časové razítko: 0xe9b4a91b
Kód výjimky: 0xe24c4a02
Posun chyby: 0x0000000000034fd9
ID chybujícího procesu: 0x3088
Čas spuštění chybující aplikace: 0x01d8920a3e9fb7c2
Cesta k chybující aplikaci: D:\Games\Farming Simulator 22\x64\FarmingSimulator2022Game.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 1260cb0a-aec7-4775-b228-a317324d834b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/07/2022 03:22:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2022Game.exe, verze: 9.0.0.0, časové razítko: 0x6195217d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1741, časové razítko: 0xe9b4a91b
Kód výjimky: 0xe24c4a02
Posun chyby: 0x0000000000034fd9
ID chybujícího procesu: 0xe98
Čas spuštění chybující aplikace: 0x01d891eea79b851c
Cesta k chybující aplikaci: D:\Games\Farming Simulator 22\x64\FarmingSimulator2022Game.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: f9baf511-158a-4d9a-b215-124875cbf183
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/07/2022 12:44:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2022Game.exe, verze: 9.0.0.0, časové razítko: 0x6195217d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1741, časové razítko: 0xe9b4a91b
Kód výjimky: 0xe24c4a02
Posun chyby: 0x0000000000034fd9
ID chybujícího procesu: 0x1768
Čas spuštění chybující aplikace: 0x01d891ed4b0850d3
Cesta k chybující aplikaci: D:\Games\Farming Simulator 22\x64\FarmingSimulator2022Game.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 130d689c-723c-4c0a-bbfb-1becaa4b4fa4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (07/07/2022 03:15:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FarmingSimulator2022Game.exe, verze: 9.0.0.0, časové razítko: 0x6195217d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1741, časové razítko: 0xe9b4a91b
Kód výjimky: 0xe24c4a02
Posun chyby: 0x0000000000034fd9
ID chybujícího procesu: 0x3328
Čas spuštění chybující aplikace: 0x01d891996f69d40f
Cesta k chybující aplikaci: D:\Games\Farming Simulator 22\x64\FarmingSimulator2022Game.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: a88ffc31-1e6f-457a-b640-a9192b676f79
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (07/14/2022 08:31:08 AM) (Source: DCOM) (EventID: 10005) (User: PC-MILAN)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_9ee39 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (07/14/2022 08:31:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_9ee39 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (07/14/2022 08:31:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_9ee39 bylo dosaženo časového limitu (30000 ms).

Error: (07/13/2022 08:52:15 PM) (Source: DCOM) (EventID: 10005) (User: PC-MILAN)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_a582f s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (07/13/2022 08:52:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_a582f neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (07/13/2022 08:52:15 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_a582f bylo dosaženo časového limitu (30000 ms).

Error: (07/13/2022 09:44:54 AM) (Source: DCOM) (EventID: 10005) (User: PC-MILAN)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_6e72f s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell

Error: (07/13/2022 09:44:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_6e72f neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.


Windows Defender:
================
Date: 2022-07-10 11:19:24
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Mamson.A!ac
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_E:\setup.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: PC-MILAN\Milan
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.369.1083.0, AS: 1.369.1083.0, NIS: 1.369.1083.0
Verze modulu: AM: 1.1.19300.2, NIS: 1.1.19300.2

Date: 2022-07-10 11:19:20
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Mamson.A!ac
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_E:\setup.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: PC-MILAN\Milan
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.369.1083.0, AS: 1.369.1083.0, NIS: 1.369.1083.0
Verze modulu: AM: 1.1.19300.2, NIS: 1.1.19300.2

Date: 2022-07-10 11:19:07
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Mamson.A!ac
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_E:\Setup.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: PC-MILAN\Milan
Název procesu: D:\totalcmd\TOTALCMD64.EXE
Verze bezpečnostních informací: AV: 1.369.1083.0, AS: 1.369.1083.0, NIS: 1.369.1083.0
Verze modulu: AM: 1.1.19300.2, NIS: 1.1.19300.2

Date: 2022-07-10 11:18:50
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Mamson.A!ac
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_E:\Setup.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: PC-MILAN\Milan
Název procesu: D:\totalcmd\TOTALCMD64.EXE
Verze bezpečnostních informací: AV: 1.369.1083.0, AS: 1.369.1083.0, NIS: 1.369.1083.0
Verze modulu: AM: 1.1.19300.2, NIS: 1.1.19300.2

Date: 2022-07-10 11:18:39
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Mamson.A!ac
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_E:\Setup.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: PC-MILAN\Milan
Název procesu: D:\totalcmd\TOTALCMD64.EXE
Verze bezpečnostních informací: AV: 1.369.1083.0, AS: 1.369.1083.0, NIS: 1.369.1083.0
Verze modulu: AM: 1.1.19300.2, NIS: 1.1.19300.2
Event[0]:

Date: 2022-07-09 10:10:43
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.369.962.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19300.2
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===============
Date: 2022-07-11 12:37:09
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume1\Program Files\Google\Drive File Stream\59.0.3.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.

Date: 2022-03-06 20:02:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume1\Program Files\Google\Drive File Stream\55.0.3.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.

Date: 2021-10-10 20:08:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume1\Program Files\Google\Drive File Stream\51.0.15.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.

Date: 2021-01-15 04:39:40
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: American Megatrends Inc. FC 08/11/2015
Motherboard: Gigabyte Technology Co., Ltd. H81M-S2PV
Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Percentage of memory in use: 33%
Total physical RAM: 12254.32 MB
Available physical RAM: 8190.91 MB
Total Virtual: 14110.32 MB
Available Virtual: 9039.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:231.94 GB) (Free:93.67 GB) (Model: Samsung SSD 860 EVO 250GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Fotky) (Fixed) (Total:465.76 GB) (Free:124.11 GB) (Model: WDC WD5000AZRX-00A8LB0) NTFS
Drive g: (Google Drive) (Fixed) (Total:15 GB) (Free:12.5 GB) (Model: Samsung SSD 860 EVO 250GB) FAT32

\\?\Volume{e30ce30c-0000-0000-0000-20fc39000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{e30ce30c-0000-0000-0000-801c3a000000}\ () (Fixed) (Total:0.44 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: E30CE30C)
Partition 1: (Active) - (Size=231.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=517 MB) - (Type=27)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0367C0E6)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2022
Ran by Milan (administrator) on PC-MILAN (Gigabyte Technology Co., Ltd. H81M-S2PV) (14-07-2022 08:35:33)
Running from D:\stažené soubory
Loaded Profiles: Milan
Platform: Microsoft Windows 10 Pro Version 21H1 19043.1766 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCopyAccelerator.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\60.0.2.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <12>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\60.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <6>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(WhatsApp, Inc -> WhatsApp) C:\Users\mzeme\AppData\Local\WhatsApp\app-2.2222.12\WhatsApp.exe <7>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\60.0.2.0\GoogleDriveFS.exe [55254344 2022-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\60.0.2.0\GoogleDriveFS.exe [55254344 2022-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632088 2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Run: [Steam] => D:\steam\steam.exe [4282328 2022-06-07] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Run: [com.squirrel.WhatsApp.WhatsApp] => C:\Users\mzeme\AppData\Local\WhatsApp\Update.exe [2255032 2022-06-23] (WhatsApp, Inc -> )
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [36976728 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [121608072 2022-06-17] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\60.0.2.0\GoogleDriveFS.exe [55254344 2022-06-21] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\...\Run: [Zoner Photo Studio Autoupdate] => D:\Photo Studio 17\Program32\ZPSTRAY.EXE [437248 2014-10-03] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\60.0.2.0\GoogleDriveFS.exe [55254344 2022-06-21] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\103.0.5060.114\Installer\chrmstp.exe [2022-07-05] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {069581A5-E128-4E60-8587-7DB4FDDA6B9D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {07792A0A-3D92-4152-BF67-2DB7A88F5CC6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-18] (Google LLC -> Google LLC)
Task: {0C69C76B-48E6-4E5A-A5F1-85232E888B36} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-01-18] (Google LLC -> Google LLC)
Task: {0C79BC61-7EAC-4E2A-9106-99F07C8A4BFE} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {14B0A652-B30A-4420-B633-3A41D9090971} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {275B3338-AD7D-4919-AAD4-5BF3EE2246A3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {32234031-826E-44D1-A921-66E225533162} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {332D4DEE-DAC5-45E4-84C0-29444D2C08BE} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-06-14] (Piriform Software Ltd -> Piriform)
Task: {59C29201-44D9-43F6-AF90-6D16996F2DFA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {5B6587DE-7CBE-424B-933C-D8CF579BC4CB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {69719C76-9580-4787-BAE5-D9899E5DB1A7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {7F3D2B4B-D746-4C16-B77B-A9ADEF9874ED} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {A8EA7162-852F-4491-836C-666B677928CF} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {AAEB9A16-069E-4E36-9E53-D374B9F77D04} - System32\Tasks\CCleanerSkipUAC - Milan => C:\Program Files\CCleaner\CCleaner.exe [31027800 2022-06-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B2E8502A-38C4-4B58-83A9-466F19EE570E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BF0F9115-AF66-449A-9C12-27E81FA905D5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {BF78E9B3-AC40-4AA0-B740-B29C29390870} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2694576939-4152107225-3971293488-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {C08E9DBD-AE62-479F-9B67-0EA18DC82B83} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C1131042-CAF8-4216-8425-479CFD306B70} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CE80BA1D-7C8B-49C3-AFCB-E574DB9933C2} - System32\Tasks\EOSv3 Scheduler onLogOn => D:\stažené soubory\esetonlinescanner.exe [15274968 2022-07-11] (ESET, spol. s r.o. -> ESET)
Task: {F66238BB-2DD8-4994-BADA-F49F6DC07F3F} - System32\Tasks\EOSv3 Scheduler onTime => D:\stažené soubory\esetonlinescanner.exe [15274968 2022-07-11] (ESET, spol. s r.o. -> ESET)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.0 account.zoner.com
Tcpip\..\Interfaces\{ef68ba61-334f-4f41-b581-a52f167845f2}: [NameServer] 1.1.1.1,8.8.8.8

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\mzeme\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-11]
Edge DownloadDir: Default -> D:\stažené soubory
Edge HomePage: Default -> hxxp://www.google.cz/
Edge Extension: (Replace Favicon) - C:\Users\mzeme\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh [2020-05-18]
Edge Extension: (Flash Player) - C:\Users\mzeme\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bmimdmkleccdoghpgdhaahkelfhjfhgm [2020-10-11]
Edge Extension: (I don't care about cookies) - C:\Users\mzeme\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-06-21]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\mzeme\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-06-04]
Edge Extension: (All Video Downloader professional) - C:\Users\mzeme\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\mbpnbnogejaolbhfpfgagldkeahefbhd [2022-06-27]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR Profile: C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default [2022-07-14]
CHR DownloadDir: D:\stažené soubory
CHR Notifications: Default -> hxxp://127.0.0.1; hxxps://calendar.google.com; hxxps://cs.athowto.com
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/0/?shva=1#inbox"
CHR Extension: (Replace Favicon) - C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\akaelkiagnbfcccfnmbimdbplecgbikh [2020-01-18]
CHR Extension: (Flash Player) - C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmimdmkleccdoghpgdhaahkelfhjfhgm [2020-10-07]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2022-07-05]
CHR Extension: (I don't care about cookies) - C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2022-06-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-06-09]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\mzeme\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR HKU\S-1-5-21-2694576939-4152107225-3971293488-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.131.0619.0001\FileSyncHelper.exe [3381632 2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.131.0619.0001\OneDriveUpdaterService.exe [3822496 2022-07-07] (Microsoft Corporation -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6254368 2022-06-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_19c79fb6254e3b11\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [284672 2021-04-15] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [153088 2021-08-11] (Microsoft Corporation) [File not signed]
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-07-13 09:11 - 2022-07-13 09:11 - 000000000 ___HD C:\$WinREAgent
2022-07-08 10:50 - 2022-07-08 10:51 - 000000000 ____D C:\Users\mzeme\AppData\Roaming\.1911
2022-07-08 10:49 - 2022-07-13 09:10 - 000001013 _____ C:\Users\mzeme\Desktop\Farming Simulator 22.lnk
2022-07-08 10:49 - 2022-07-08 11:23 - 000000000 ____D C:\Users\mzeme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Farming Simulator 22
2022-07-08 10:44 - 2022-07-08 10:44 - 000000000 ____D C:\Games
2022-06-29 08:40 - 2022-06-29 08:40 - 000000000 ____D C:\Users\mzeme\Documents\My Games
2022-06-29 08:40 - 2022-06-29 08:40 - 000000000 ____D C:\Users\mzeme\AppData\Roaming\FLT
2022-06-17 07:23 - 2022-06-17 07:23 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-17 07:23 - 2022-06-17 07:23 - 000479744 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2022-06-17 07:23 - 2022-06-17 07:23 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-17 07:23 - 2022-06-17 07:23 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2022-06-17 07:23 - 2022-06-17 07:23 - 000011787 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-06-17 07:22 - 2022-06-17 07:22 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-06-17 07:22 - 2022-06-17 07:22 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-07-14 08:35 - 2021-07-25 10:15 - 000000000 ____D C:\FRST
2022-07-14 08:33 - 2020-01-19 13:30 - 000000000 ___RD C:\Users\mzeme\Disk Google
2022-07-14 08:33 - 2020-01-19 10:20 - 000000000 ____D C:\ProgramData\NVIDIA
2022-07-14 08:33 - 2020-01-18 17:06 - 000000000 ____D C:\Users\mzeme\AppData\Roaming\WhatsApp
2022-07-14 08:33 - 2020-01-18 15:13 - 000000000 ____D C:\Program Files (x86)\Google
2022-07-14 08:33 - 2020-01-18 15:12 - 000000000 ___RD C:\Users\mzeme\OneDrive
2022-07-14 08:21 - 2020-11-11 17:39 - 001694140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-07-14 08:21 - 2019-12-07 16:43 - 000717008 _____ C:\WINDOWS\system32\perfh005.dat
2022-07-14 08:21 - 2019-12-07 16:43 - 000145186 _____ C:\WINDOWS\system32\perfc005.dat
2022-07-14 08:21 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-07-14 08:20 - 2020-11-18 17:04 - 000000000 ____D C:\Program Files\CCleaner
2022-07-14 08:14 - 2020-11-11 17:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-07-14 08:14 - 2020-11-11 17:35 - 000008192 ___SH C:\DumpStack.log.tmp
2022-07-14 08:14 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-07-14 00:49 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-07-13 20:16 - 2020-01-18 18:16 - 000000000 ____D C:\Users\mzeme\AppData\Local\D3DSCache
2022-07-13 20:07 - 2020-11-11 17:36 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-07-12 19:09 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-07-12 19:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-07-11 20:33 - 2021-09-10 20:24 - 000002057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-07-11 20:33 - 2021-09-10 20:24 - 000001899 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-07-11 20:33 - 2021-09-10 20:24 - 000001899 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-07-11 20:33 - 2021-09-10 20:24 - 000001887 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-07-11 10:51 - 2021-02-16 17:43 - 000001420 _____ C:\Users\mzeme\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2022-07-11 10:51 - 2021-02-16 17:43 - 000001314 _____ C:\Users\mzeme\Desktop\ESET Online Scanner.lnk
2022-07-11 10:48 - 2020-11-11 20:29 - 000000000 ____D C:\WINDOWS\Minidump
2022-07-11 10:48 - 2020-01-27 16:08 - 000000000 ____D C:\Users\mzeme\AppData\Local\CrashDumps
2022-07-09 09:30 - 2020-11-18 17:05 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2022-07-08 19:43 - 2020-05-18 06:35 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-07-08 19:43 - 2020-05-18 06:35 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-07-08 19:42 - 2020-01-18 16:10 - 000000000 ____D C:\steam
2022-07-08 08:46 - 2021-06-19 19:20 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-07-07 10:00 - 2021-12-11 19:24 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2694576939-4152107225-3971293488-1001
2022-07-07 10:00 - 2020-11-12 16:50 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-07-07 10:00 - 2020-11-12 16:50 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-07-05 19:32 - 2020-01-18 15:13 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-07-05 19:32 - 2020-01-18 15:13 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2022-07-01 11:41 - 2020-02-09 18:11 - 000000000 ____D C:\Users\mzeme\DCC_E2
2022-07-01 06:57 - 2020-01-19 13:30 - 000000000 ____D C:\Users\mzeme\GoogleDisk
2022-06-29 13:18 - 2020-02-09 18:24 - 000000000 ____D C:\Users\mzeme\AppData\Roaming\vlc
2022-06-29 07:06 - 2020-07-26 09:25 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-06-29 07:06 - 2020-01-18 15:06 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-06-29 07:05 - 2020-11-11 17:40 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-11-11 17:40 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-06-29 07:05 - 2020-07-26 09:24 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-06-29 07:05 - 2020-01-18 15:06 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-06-28 07:16 - 2020-01-18 16:23 - 000000000 ___RD C:\Users\mzeme\Documents\Euro Truck Simulator 2
2022-06-25 21:58 - 2020-01-18 15:26 - 000000000 ____D C:\ProgramData\Packages
2022-06-24 14:51 - 2021-11-14 20:08 - 000000000 ____D C:\Users\Public\Imou_en
2022-06-23 20:24 - 2022-02-01 16:21 - 000000000 ____D C:\Users\mzeme\AppData\Local\WhatsApp
2022-06-23 19:39 - 2020-11-19 16:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-06-23 14:23 - 2020-11-11 17:36 - 000000000 ____D C:\Users\mzeme
2022-06-23 08:05 - 2020-01-18 15:02 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-06-17 09:29 - 2020-11-11 17:36 - 000458488 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-06-17 09:28 - 2019-12-07 16:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-06-17 09:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-06-17 09:28 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2022-06-17 07:25 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-06-17 07:23 - 2020-01-18 15:01 - 000415524 __RSH C:\bootmgr
2022-06-17 07:22 - 2020-11-11 17:39 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-06-17 07:17 - 2020-01-18 18:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-06-17 07:16 - 2020-01-18 18:23 - 145918784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-06-16 06:01 - 2020-11-30 16:41 - 000003546 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b840e357042c
2022-06-16 06:01 - 2020-11-11 17:40 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-14 10:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF

==================== Files in the root of some directories ========

2022-03-13 10:40 - 2022-03-13 10:40 - 000002043 _____ () C:\Users\mzeme\AppData\Roaming\Microsoft\2ae5198e-120a-48ad-a3ae-1860ee29241a.tmp
2022-04-17 13:25 - 2022-04-17 13:25 - 000002041 _____ () C:\Users\mzeme\AppData\Roaming\Microsoft\550a6ca0-2af1-40ab-9b7d-a2507c8e7216.tmp
2022-04-28 21:24 - 2022-04-28 21:24 - 000002042 _____ () C:\Users\mzeme\AppData\Roaming\Microsoft\b4803a5c-24b5-4e75-96c9-20a113898e10.tmp
2020-02-16 15:27 - 2022-04-02 14:38 - 000009216 _____ () C:\Users\mzeme\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-02-10 18:45 - 2021-01-16 22:30 - 000000128 _____ () C:\Users\mzeme\AppData\Local\PUTTY.RND
2020-05-06 15:33 - 2020-05-06 15:33 - 000000017 _____ () C:\Users\mzeme\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podivné chování klávesnice

#2 Příspěvek od Rudy »

Zdravím!
Pořiďte si originál a nezkoušejte cracklé verze! Toto fórum tu není od toho, abychom řešili problémy, které si vědomě způsobí užvatel sám tím, že spouští v PC něco, o čem ví, že by neměl.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kema
Návštěvník
Návštěvník
Příspěvky: 152
Registrován: 08 led 2005 18:15
Bydliště: Bohosudov
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podivné chování klávesnice

#3 Příspěvek od Kema »

Rozumím.
Díky.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu - podivné chování klávesnice

#4 Příspěvek od Rudy »

Není zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno