Spomaleny notebook
Napsal: 04 úno 2023 13:55
Dobry den,
prosim o kontrolu logu, notebook je spomaleny.
Prikladam logy.
Dakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
Ran by nicol (administrator) on DESKTOP-JLIELH2 (LENOVO 81N6) (04-02-2023 13:43:09)
Running from C:\Users\nicol\Desktop
Loaded Profiles: nicol
Platform: Microsoft Windows 11 Home Version 21H2 22000.1335 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\MicrosoftEdge_X64_109.0.1518.70_109.0.1518.61.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\EDGEMITMP_488AA.tmp\setup.exe
(C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\MicrosoftEdge_X64_109.0.1518.70_109.0.1518.61.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(C:\Windows\UUS\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoNotificationUx.exe
(DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atiesrxx.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\YMC.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (McAfee, Inc. -> McAfee) C:\Windows\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_7f44bb1f2cd06bad\mcafeeintegrationservice.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc64.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_4690d097c38be4a9\WTabletServiceISD.exe <2>
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\AFA\CAudioFilterAgent64.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\Flow.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\SA3\SmartAudio3.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\$WinREAgent\Scratch\6AB96EB2-0738-47DC-A280-F0E9A8E7C532\DismHost.exe
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9B257C7C4ABB38D87EB5195476F971F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-01-25] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1D43B1BB-D44F-4019-9E85-1574E60888B6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0cb073b9-0f63-46e0-a3be-4e1371e0cc56 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {2612CD70-FFA8-46D0-AC11-5B23DBF6587A} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {315DFC94-FD48-4738-A1D1-52B79AA0C480} - System32\Tasks\Mozilla\Firefox Default Browser Agent 1FC75ECF220B7081 => C:\Users\nicol\AppData\Local\Mozilla Firefox\default-browser-agent.exe [694688 2022-12-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {33D8C559-CFEC-4F9E-9221-9D9986E46E74} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {373D1518-1A7E-4020-BB62-81AB5B562878} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\12a1b0b4-3a99-42f7-a36c-15deec070aeb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {5123D97D-E14E-4C73-A6E3-3E656F18DBE2} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {51CEC4CB-A434-4958-9660-16BA911B1041} - System32\Tasks\Lenovo\LNBITS PNP Task => C:\Windows\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
Task: {5C7CA1F9-5FFF-4241-AB5A-46CCB231CA34} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {6E3F1DB0-6500-4B19-823B-D6390E39B809} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f1d0e85e-ae54-49a7-89ba-932d3463d692 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A0CDC611-087E-40A6-8375-37459E1CB5F3} - System32\Tasks\Lenovo\Lenovo YMC Uninstall Task => C:\Windows\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)
Task: {A6273348-ACF4-4BC1-99C4-DDB384DE173B} - System32\Tasks\Mirkat => C:\Users\nicol\AppData\Local\Microsoft\WindowsApps\MirkatService.exe [0 2022-01-25] () [simlink -> ]
Task: {A9C6510C-884D-4B12-A016-F5DE244F2B8D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {B330D8D2-57A2-4502-91F6-9F54ADD39564} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B6318CE0-9744-49A5-9968-9ABB17B16466} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {CB280DAF-2E58-46F2-9A97-1DDE3EA9185E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D7AFE4CA-3A87-43CA-B409-9958078FFA73} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {E8CA45B4-54C7-4E3B-B2AD-0748E085F4C4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\76c6d9e5-b785-4ec0-bc0e-e7a6458599dc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F0FCB5BC-8C8B-46F0-866F-F0BF44942CEB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F905223B-33AA-4B20-942F-A4E653BEAE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2e2d02a0-b9eb-4170-bac1-0625af6a08e3}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-04]
Edge HomePage: Default -> hxxp://lenovo17win10.msn.com/?pc=LCTE
FireFox:
========
FF DefaultProfile: yzhlui1j.default
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\yzhlui1j.default [2022-01-31]
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release [2023-01-27]
FF Extension: (Slovak (SK) Language Pack) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release\Extensions\langpack-sk@firefox.mozilla.org.xpi [2022-12-22]
FF Extension: (Slovenská kontrola preklepov) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release\Extensions\sk@dictionaries.addons.mozilla.org.xpi [2022-12-22]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [93456 2020-12-06] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxAudMsg; C:\WINDOWS\System32\CxAudMsg64.exe [243472 2020-12-06] (Synaptics Incorporated -> Conexant Systems Inc.)
R2 CxUIUSvc; C:\WINDOWS\System32\CxUIUSvc64.exe [122104 2020-12-06] (Synaptics Incorporated -> Conexant Systems, Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
R2 mcafeeintegrationservice; C:\WINDOWS\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_7f44bb1f2cd06bad\mcafeeintegrationservice.exe [2578272 2018-08-03] (McAfee, Inc. -> McAfee)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YMC; C:\WINDOWS\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [176032 2019-09-25] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-01-25] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-01-25] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [File not signed]
R3 CnxtHdAudService; C:\WINDOWS\system32\drivers\CHDRT64HDA.sys [2231080 2020-06-17] (Synaptics Incorporated -> Conexant Systems Inc.)
R3 McAfeeIntegrationDriver; C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys [49920 2018-08-03] (McAfee, Inc. -> McAfee)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2023-01-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2023-01-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-25] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-02-04 13:43 - 2023-02-04 13:44 - 000015746 _____ C:\Users\nicol\Desktop\FRST.txt
2023-02-04 13:41 - 2023-02-04 13:43 - 000000000 ____D C:\FRST
2023-02-04 13:39 - 2023-02-04 13:40 - 002376704 _____ (Farbar) C:\Users\nicol\Desktop\FRST64.exe
2023-02-04 13:36 - 2023-02-04 13:36 - 000000000 ___HD C:\$WinREAgent
2023-01-26 19:44 - 2023-01-27 13:17 - 000000000 ____D C:\Users\nicol\Documents\Euro Truck Simulator 2
2023-01-25 22:41 - 2023-01-25 22:41 - 000000222 _____ C:\Users\nicol\Desktop\Euro Truck Simulator 2.url
2023-01-25 22:41 - 2023-01-25 22:41 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-01-25 22:38 - 2023-01-25 22:40 - 000000000 ____D C:\Users\nicol\AppData\Local\Steam
2023-01-25 22:38 - 2023-01-25 22:38 - 000000000 ____D C:\Users\nicol\AppData\Local\CEF
2023-01-25 22:17 - 2023-02-04 13:37 - 000000000 ____D C:\Program Files (x86)\Steam
2023-01-25 22:17 - 2023-01-25 22:17 - 002296488 _____ C:\Users\nicol\Downloads\SteamSetup.exe
2023-01-25 22:17 - 2023-01-25 22:17 - 000001039 _____ C:\Users\Public\Desktop\Steam.lnk
2023-01-25 22:17 - 2023-01-25 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2023-01-25 22:16 - 2023-01-25 22:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-02-04 13:44 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-04 13:41 - 2022-01-26 03:56 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-04 13:41 - 2022-01-26 03:56 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-02-04 13:38 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-04 13:36 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-01-27 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-27 12:14 - 2022-01-31 14:21 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\Mozilla
2023-01-27 12:13 - 2022-12-22 15:25 - 000000000 ____D C:\Users\nicol\AppData\Local\Mozilla Firefox
2023-01-27 12:11 - 2022-02-12 10:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-27 12:10 - 2022-01-25 19:26 - 000000000 ____D C:\Users\nicol\AppData\Local\D3DSCache
2023-01-27 12:04 - 2022-01-25 22:22 - 000803404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-27 12:04 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2023-01-27 12:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-01-27 11:57 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-27 11:56 - 2022-01-26 03:55 - 000012288 ___SH C:\DumpStack.log.tmp
2023-01-27 11:56 - 2022-01-25 22:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-27 11:56 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-27 11:56 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-01-26 20:01 - 2022-01-25 22:15 - 000330096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemApps
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2023-01-26 19:53 - 2022-01-25 22:19 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-142477489-203225701-748183004-1001
2023-01-26 19:53 - 2022-01-25 22:19 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-142477489-203225701-748183004-1001
2023-01-26 19:53 - 2022-01-25 19:21 - 000002374 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-26 01:47 - 2022-01-25 22:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-25 22:48 - 2022-01-25 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-25 22:38 - 2022-01-25 19:26 - 000000000 ____D C:\Users\nicol\AppData\Local\AMD
2023-01-25 22:24 - 2022-01-25 19:38 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-25 22:21 - 2022-01-25 19:34 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-25 22:16 - 2022-01-31 14:21 - 000001280 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-01-25 22:14 - 2022-01-26 03:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-01-15 22:41 - 2022-01-25 22:18 - 003110912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-15 22:33 - 2022-01-25 22:19 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-01-15 22:33 - 2022-01-25 22:19 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-02-2023
Ran by nicol (04-02-2023 13:45:52)
Running from C:\Users\nicol\Desktop
Microsoft Windows 11 Home Version 21H2 22000.1335 (X64) (2022-01-25 21:19:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-142477489-203225701-748183004-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-142477489-203225701-748183004-503 - Limited - Disabled)
Guest (S-1-5-21-142477489-203225701-748183004-501 - Limited - Disabled)
nicol (S-1-5-21-142477489-203225701-748183004-1001 - Administrator - Enabled) => C:\Users\nicol
WDAGUtilityAccount (S-1-5-21-142477489-203225701-748183004-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.41.18.03 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{E6D2F9D5-4122-4945-B145-1E791DE4C5CA}) (Version: 1.00.0003 - Advanced Micro Devices, Inc.) Hidden
Lenovo Pen Settings Service (HKLM\...\ISD Tablet Driver) (Version: 7.6.1.41 - Wacom Technology Corp.)
LibreOffice 7.2 Help Pack (Slovak) (HKLM\...\{577E7ADC-443F-49F5-A5E9-1795282F89DD}) (Version: 7.2.5.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.70 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-142477489-203225701-748183004-1001\...\OneDriveSetup.exe) (Version: 23.002.0102.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{843E8BAC-637E-4354-94D7-73D910E2168F}) (Version: 4.71.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-GB) (HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Mozilla Firefox 108.0.1 (x64 en-GB)) (Version: 108.0.1 - Mozilla)
OEM Application Profile (HKLM-x32\...\{3DEE814D-F1DB-315D-E627-63B6B600643A}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenOffice 4.1.11 (HKLM-x32\...\{1006FF60-29FF-49F8-B688-D148DB487136}) (Version: 4.111.9808 - Apache Software Foundation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\dolbylaboratories.dolbyaudio_3.20500.501.0_x64__rz1tebttyb220 [2022-01-25] (Dolby Laboratories)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-23] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-07-23] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_142.1.133.0_x64__v10z8vjag6ke6 [2023-01-25] (HP Inc.)
Lenovo Pen Settings -> C:\Program Files\WindowsApps\WacomTechnologyCorp.157535B83C264_7.7.61.0_neutral__ss941bf8mfs8a [2022-06-24] (Wacom Technology Corp.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2209.2.0_x64__k1h2ywk1493x8 [2022-12-22] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2022-12-22] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2023-01-15] (McAfee LLC.)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Mirkat -> C:\Program Files\WindowsApps\mirkat.mirkat_1.0.305.0_x64__hm0vq9nycmfde [2022-01-25] (Mirkat)
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-06-19] (Microsoft Corporation)
SmartAudio 3 -> C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw [2022-01-25] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-22] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-142477489-203225701-748183004-1001_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2210.4.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-01-25 22:37 - 2022-11-10 07:19 - 134859776 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 000387072 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 008052736 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2019-12-07 15:40 - 2019-12-07 15:40 - 001165824 _____ () [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\e_sqlite3.dll
2022-01-25 22:09 - 2022-01-25 22:10 - 016742912 _____ (McAfee LLC) [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.dll
2019-06-28 18:23 - 2019-06-28 18:23 - 001460224 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\x64\SQLite.Interop.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 000992256 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-142477489-203225701-748183004-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5F1B54E6-7EB2-45F2-B20F-92E7AD64C1CE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16040.10730.20103.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => No File
FirewallRules: [{D4E2BA8D-8EEF-4AE8-8687-3F00E077B6A2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B0AA762D-A475-44BE-B23F-5D05FE80A452}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2522AF26-F495-4048-88E2-F2C843FE3AE8}C:\users\nicol\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\nicol\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{747C481A-76A6-482F-A128-EF948DE24CDB}C:\users\nicol\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\nicol\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{26DBE9FE-DFDD-4C05-876E-3382CE00791F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D7B7CBA6-F290-4C6D-ABF8-CEE9A51C8953}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10D4E04F-92C3-4898-9230-73F64DF5A402}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B590F7EC-9844-4D62-A74D-E3164A082E8C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9A21F3C8-A97D-4222-9D75-D774D4B536D5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15928.20216.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{734808ED-DA00-4020-94FF-5C837E62A292}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7735C5F7-5820-46E4-8A18-67DFE2E0C87D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{872A8304-5ADF-4F53-80C4-74D4F1D21E90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{500212FD-63D7-479A-93A5-0CE057953AB3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E93E7AC1-73D9-4DBB-9228-31875CA7DD94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9B9217D5-16EB-4BBD-BE91-81932012C5BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F10677EC-CCEB-4F6F-B793-6B681F3ADF2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E80DB20E-D3A5-452A-BC14-FA9E1CBFD66B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{7F176844-08BC-4AE0-AB24-4A8CA3ECE874}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118 GB) (Free:57.02 GB) (48%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/27/2023 11:57:12 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(16ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/27/2023 11:57:12 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(94ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/27/2023 10:39:34 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(0ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/27/2023 10:39:34 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(47ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/26/2023 08:01:30 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(2016ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/26/2023 08:01:28 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(31ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/25/2023 10:12:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(0ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/25/2023 10:12:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(47ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
System errors:
=============
Error: (02/04/2023 01:36:59 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (02/04/2023 01:36:59 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/29/2023 02:51:03 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/27/2023 04:17:42 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/27/2023 11:56:35 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JLIELH2)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (01/27/2023 10:47:37 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/27/2023 10:46:57 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/26/2023 08:01:32 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Windows Defender:
================
Date: 2023-01-25 22:26:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-01-25 22:24:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-08-22 19:56:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-06-28 13:26:18
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-06-24 18:09:39
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]
Date: 2022-10-26 13:08:19
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.373.798.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19500.2
Error code: 0x80070102
Error description: The wait operation timed out.
Date: 2022-10-26 13:08:19
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.373.798.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19500.2
Error code: 0x80070102
Error description: The wait operation timed out.
Date: 2022-06-19 10:57:06
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.363.1403.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19200.5
Error code: 0x8024402c
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
Date: 2022-03-04 00:10:03
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.355.2929.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.
Date: 2022-03-04 00:10:03
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.355.2929.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.
==================== Memory info ===========================
BIOS: LENOVO AGCN22WW(V1.05) 07/08/2019
Motherboard: LENOVO LNVNB161216
Processor: AMD Ryzen 3 3200U with Radeon Vega Mobile Gfx
Percentage of memory in use: 77%
Total physical RAM: 3522.54 MB
Available physical RAM: 784.93 MB
Total Virtual: 9522.9 MB
Available Virtual: 5567.59 MB
==================== Drives ================================
Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:57.01 GB) (Model: SAMSUNG MZNLN128HAHQ-000L2) NTFS
\\?\Volume{f8c2fe4d-5cd3-4795-ac44-515052d00748}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.5 GB) NTFS
\\?\Volume{6ad1297a-4470-4ebf-bc31-ed1621b51db8}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 6274974D)
Partition: GPT.
==================== End of Addition.txt =======================
prosim o kontrolu logu, notebook je spomaleny.
Prikladam logy.
Dakujem
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
Ran by nicol (administrator) on DESKTOP-JLIELH2 (LENOVO 81N6) (04-02-2023 13:43:09)
Running from C:\Users\nicol\Desktop
Loaded Profiles: nicol
Platform: Microsoft Windows 11 Home Version 21H2 22000.1335 (X64) Language: Slovenčina (Slovensko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\MicrosoftEdge_X64_109.0.1518.70_109.0.1518.61.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\EDGEMITMP_488AA.tmp\setup.exe
(C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\Install\{BB083318-5F93-4245-8895-47F0330DF09D}\MicrosoftEdge_X64_109.0.1518.70_109.0.1518.61.exe
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCopyAccelerator.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(C:\Windows\UUS\amd64\MoUsoCoreWorker.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoNotificationUx.exe
(DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atieclxx.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0354619.inf_amd64_d9b4476a0369a8d0\B354599\atiesrxx.exe
(services.exe ->) (Conexant Systems LLC -> Conexant Systems, Inc.) C:\Windows\CxSvc\CxUtilSvc.exe
(services.exe ->) (Dolby Laboratories, Inc. -> ) C:\Windows\System32\dolbyaposvc\DAX3API.exe <2>
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\YMC.exe
(services.exe ->) (Lenovo -> Lenovo(beijing) Limited) C:\Windows\System32\LNBITSSvc.exe
(services.exe ->) (McAfee, Inc. -> McAfee) C:\Windows\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_7f44bb1f2cd06bad\mcafeeintegrationservice.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Qualcomm Atheros -> Qualcomm Technologies Inc.) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems LLC.) C:\Windows\CxSvc\CxAudioSvc.exe
(services.exe ->) (Synaptics Incorporated -> Conexant Systems, Inc.) C:\Windows\System32\CxUIUSvc64.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(services.exe ->) (Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_4690d097c38be4a9\WTabletServiceISD.exe <2>
(sihost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\Win32\mcafee-security-ft.exe
(svchost.exe ->) (McAfee LLC.) C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\AFA\CAudioFilterAgent64.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\Flow.exe
(Synaptics Hong Kong Limited, Taiwan Branch (H.K.)) C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\SA3\SmartAudio3.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\$WinREAgent\Scratch\6AB96EB2-0738-47DC-A280-F0E9A8E7C532\DismHost.exe
(wuauclt.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wimserv.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Run: [MicrosoftEdgeAutoLaunch_B9B257C7C4ABB38D87EB5195476F971F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-01-25] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1D43B1BB-D44F-4019-9E85-1574E60888B6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0cb073b9-0f63-46e0-a3be-4e1371e0cc56 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {2612CD70-FFA8-46D0-AC11-5B23DBF6587A} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {315DFC94-FD48-4738-A1D1-52B79AA0C480} - System32\Tasks\Mozilla\Firefox Default Browser Agent 1FC75ECF220B7081 => C:\Users\nicol\AppData\Local\Mozilla Firefox\default-browser-agent.exe [694688 2022-12-22] (Mozilla Corporation -> Mozilla Foundation)
Task: {33D8C559-CFEC-4F9E-9221-9D9986E46E74} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {373D1518-1A7E-4020-BB62-81AB5B562878} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\12a1b0b4-3a99-42f7-a36c-15deec070aeb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {5123D97D-E14E-4C73-A6E3-3E656F18DBE2} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {51CEC4CB-A434-4958-9660-16BA911B1041} - System32\Tasks\Lenovo\LNBITS PNP Task => C:\Windows\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
Task: {5C7CA1F9-5FFF-4241-AB5A-46CCB231CA34} - System32\Tasks\Microsoft\Windows\WaaSMedic\DeferredWork => {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32}
Task: {6E3F1DB0-6500-4B19-823B-D6390E39B809} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\f1d0e85e-ae54-49a7-89ba-932d3463d692 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {A0CDC611-087E-40A6-8375-37459E1CB5F3} - System32\Tasks\Lenovo\Lenovo YMC Uninstall Task => C:\Windows\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)
Task: {A6273348-ACF4-4BC1-99C4-DDB384DE173B} - System32\Tasks\Mirkat => C:\Users\nicol\AppData\Local\Microsoft\WindowsApps\MirkatService.exe [0 2022-01-25] () [simlink -> ]
Task: {A9C6510C-884D-4B12-A016-F5DE244F2B8D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {B330D8D2-57A2-4502-91F6-9F54ADD39564} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B6318CE0-9744-49A5-9968-9ABB17B16466} - System32\Tasks\LenovoUtility Startup => C:\Windows\explorer.exe lenovo-utility://
Task: {CB280DAF-2E58-46F2-9A97-1DDE3EA9185E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D7AFE4CA-3A87-43CA-B409-9958078FFA73} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [149280 2022-09-23] (Lenovo -> Lenovo Group Ltd.)
Task: {E8CA45B4-54C7-4E3B-B2AD-0748E085F4C4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\76c6d9e5-b785-4ec0-bc0e-e7a6458599dc => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F0FCB5BC-8C8B-46F0-866F-F0BF44942CEB} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [64256 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
Task: {F905223B-33AA-4B20-942F-A4E653BEAE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2e2d02a0-b9eb-4170-bac1-0625af6a08e3}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\nicol\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-04]
Edge HomePage: Default -> hxxp://lenovo17win10.msn.com/?pc=LCTE
FireFox:
========
FF DefaultProfile: yzhlui1j.default
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\yzhlui1j.default [2022-01-31]
FF ProfilePath: C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release [2023-01-27]
FF Extension: (Slovak (SK) Language Pack) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release\Extensions\langpack-sk@firefox.mozilla.org.xpi [2022-12-22]
FF Extension: (Slovenská kontrola preklepov) - C:\Users\nicol\AppData\Roaming\Mozilla\Firefox\Profiles\t4uzzgs5.default-release\Extensions\sk@dictionaries.addons.mozilla.org.xpi [2022-12-22]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 CxAudioSvc; C:\WINDOWS\CxSvc\CxAudioSvc.exe [93456 2020-12-06] (Synaptics Incorporated -> Conexant Systems LLC.)
R2 CxAudMsg; C:\WINDOWS\System32\CxAudMsg64.exe [243472 2020-12-06] (Synaptics Incorporated -> Conexant Systems Inc.)
R2 CxUIUSvc; C:\WINDOWS\System32\CxUIUSvc64.exe [122104 2020-12-06] (Synaptics Incorporated -> Conexant Systems, Inc.)
R2 DolbyDAXAPI; C:\WINDOWS\system32\dolbyaposvc\DAX3API.exe [1926600 2019-09-02] (Dolby Laboratories, Inc. -> )
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [84240 2022-01-28] (Lenovo -> Lenovo Group Ltd.)
R2 LITSSVC; C:\WINDOWS\System32\LNBITSSvc.exe [1643688 2019-05-06] (Lenovo -> Lenovo(beijing) Limited)
R2 mcafeeintegrationservice; C:\WINDOWS\System32\DriverStore\FileRepository\mcafeeintegrationextension.inf_amd64_7f44bb1f2cd06bad\mcafeeintegrationservice.exe [2578272 2018-08-03] (McAfee, Inc. -> McAfee)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2023-01-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 YMC; C:\WINDOWS\System32\YMC.exe [856960 2019-05-26] (Lenovo -> Lenovo Group Ltd.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [176032 2019-09-25] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [507904 2022-01-25] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [180224 2022-01-25] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [File not signed]
R3 CnxtHdAudService; C:\WINDOWS\system32\drivers\CHDRT64HDA.sys [2231080 2020-06-17] (Synaptics Incorporated -> Conexant Systems Inc.)
R3 McAfeeIntegrationDriver; C:\WINDOWS\System32\drivers\McAfeeIntegrationDriver.sys [49920 2018-08-03] (McAfee, Inc. -> McAfee)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2023-01-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2023-01-25] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2023-01-25] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-02-04 13:43 - 2023-02-04 13:44 - 000015746 _____ C:\Users\nicol\Desktop\FRST.txt
2023-02-04 13:41 - 2023-02-04 13:43 - 000000000 ____D C:\FRST
2023-02-04 13:39 - 2023-02-04 13:40 - 002376704 _____ (Farbar) C:\Users\nicol\Desktop\FRST64.exe
2023-02-04 13:36 - 2023-02-04 13:36 - 000000000 ___HD C:\$WinREAgent
2023-01-26 19:44 - 2023-01-27 13:17 - 000000000 ____D C:\Users\nicol\Documents\Euro Truck Simulator 2
2023-01-25 22:41 - 2023-01-25 22:41 - 000000222 _____ C:\Users\nicol\Desktop\Euro Truck Simulator 2.url
2023-01-25 22:41 - 2023-01-25 22:41 - 000000000 ____D C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-01-25 22:38 - 2023-01-25 22:40 - 000000000 ____D C:\Users\nicol\AppData\Local\Steam
2023-01-25 22:38 - 2023-01-25 22:38 - 000000000 ____D C:\Users\nicol\AppData\Local\CEF
2023-01-25 22:17 - 2023-02-04 13:37 - 000000000 ____D C:\Program Files (x86)\Steam
2023-01-25 22:17 - 2023-01-25 22:17 - 002296488 _____ C:\Users\nicol\Downloads\SteamSetup.exe
2023-01-25 22:17 - 2023-01-25 22:17 - 000001039 _____ C:\Users\Public\Desktop\Steam.lnk
2023-01-25 22:17 - 2023-01-25 22:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2023-01-25 22:16 - 2023-01-25 22:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-02-04 13:44 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-04 13:41 - 2022-01-26 03:56 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-04 13:41 - 2022-01-26 03:56 - 000002293 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-02-04 13:38 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-04 13:36 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-01-27 13:17 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-27 12:14 - 2022-01-31 14:21 - 000000000 ____D C:\Users\nicol\AppData\LocalLow\Mozilla
2023-01-27 12:13 - 2022-12-22 15:25 - 000000000 ____D C:\Users\nicol\AppData\Local\Mozilla Firefox
2023-01-27 12:11 - 2022-02-12 10:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-01-27 12:10 - 2022-01-25 19:26 - 000000000 ____D C:\Users\nicol\AppData\Local\D3DSCache
2023-01-27 12:04 - 2022-01-25 22:22 - 000803404 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-27 12:04 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2023-01-27 12:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-01-27 11:57 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-27 11:56 - 2022-01-26 03:55 - 000012288 ___SH C:\DumpStack.log.tmp
2023-01-27 11:56 - 2022-01-25 22:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-27 11:56 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2023-01-27 11:56 - 2021-06-05 13:01 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-01-26 20:01 - 2022-01-25 22:15 - 000330096 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemApps
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\DDFs
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-26 20:00 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2023-01-26 19:53 - 2022-01-25 22:19 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-142477489-203225701-748183004-1001
2023-01-26 19:53 - 2022-01-25 22:19 - 000003374 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-142477489-203225701-748183004-1001
2023-01-26 19:53 - 2022-01-25 19:21 - 000002374 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-01-26 01:47 - 2022-01-25 22:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-25 22:48 - 2022-01-25 19:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-25 22:38 - 2022-01-25 19:26 - 000000000 ____D C:\Users\nicol\AppData\Local\AMD
2023-01-25 22:24 - 2022-01-25 19:38 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-25 22:21 - 2022-01-25 19:34 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-25 22:16 - 2022-01-31 14:21 - 000001280 _____ C:\Users\nicol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-01-25 22:14 - 2022-01-26 03:55 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-01-15 22:41 - 2022-01-25 22:18 - 003110912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-15 22:33 - 2022-01-25 22:19 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-01-15 22:33 - 2022-01-25 22:19 - 000003508 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-02-2023
Ran by nicol (04-02-2023 13:45:52)
Running from C:\Users\nicol\Desktop
Microsoft Windows 11 Home Version 21H2 22000.1335 (X64) (2022-01-25 21:19:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-142477489-203225701-748183004-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-142477489-203225701-748183004-503 - Limited - Disabled)
Guest (S-1-5-21-142477489-203225701-748183004-501 - Limited - Disabled)
nicol (S-1-5-21-142477489-203225701-748183004-1001 - Administrator - Enabled) => C:\Users\nicol
WDAGUtilityAccount (S-1-5-21-142477489-203225701-748183004-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.41.18.03 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{E6D2F9D5-4122-4945-B145-1E791DE4C5CA}) (Version: 1.00.0003 - Advanced Micro Devices, Inc.) Hidden
Lenovo Pen Settings Service (HKLM\...\ISD Tablet Driver) (Version: 7.6.1.41 - Wacom Technology Corp.)
LibreOffice 7.2 Help Pack (Slovak) (HKLM\...\{577E7ADC-443F-49F5-A5E9-1795282F89DD}) (Version: 7.2.5.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.70 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-142477489-203225701-748183004-1001\...\OneDriveSetup.exe) (Version: 23.002.0102.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{843E8BAC-637E-4354-94D7-73D910E2168F}) (Version: 4.71.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 en-GB) (HKU\S-1-5-21-142477489-203225701-748183004-1001\...\Mozilla Firefox 108.0.1 (x64 en-GB)) (Version: 108.0.1 - Mozilla)
OEM Application Profile (HKLM-x32\...\{3DEE814D-F1DB-315D-E627-63B6B600643A}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenOffice 4.1.11 (HKLM-x32\...\{1006FF60-29FF-49F8-B688-D148DB487136}) (Version: 4.111.9808 - Apache Software Foundation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Packages:
=========
Dolby Audio -> C:\Program Files\WindowsApps\dolbylaboratories.dolbyaudio_3.20500.501.0_x64__rz1tebttyb220 [2022-01-25] (Dolby Laboratories)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-23] (Microsoft Corporation)
Doplnok pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2022-07-23] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_142.1.133.0_x64__v10z8vjag6ke6 [2023-01-25] (HP Inc.)
Lenovo Pen Settings -> C:\Program Files\WindowsApps\WacomTechnologyCorp.157535B83C264_7.7.61.0_neutral__ss941bf8mfs8a [2022-06-24] (Wacom Technology Corp.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2209.2.0_x64__k1h2ywk1493x8 [2022-12-22] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2022-12-22] (LinkedIn)
McAfee® Personal Security -> C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy [2023-01-15] (McAfee LLC.)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.15928.20216.0_x86__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation)
Mirkat -> C:\Program Files\WindowsApps\mirkat.mirkat_1.0.305.0_x64__hm0vq9nycmfde [2022-01-25] (Mirkat)
Rozšírenie pre video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-06-19] (Microsoft Corporation)
SmartAudio 3 -> C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw [2022-01-25] (Synaptics Hong Kong Limited, Taiwan Branch (H.K.))
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-22] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-142477489-203225701-748183004-1001_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2210.4.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-01-25 22:37 - 2022-11-10 07:19 - 134859776 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libcef.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 000387072 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libegl.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 008052736 _____ () [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\libglesv2.dll
2019-12-07 15:40 - 2019-12-07 15:40 - 001165824 _____ () [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\e_sqlite3.dll
2022-01-25 22:09 - 2022-01-25 22:10 - 016742912 _____ (McAfee LLC) [File not signed] C:\Program Files\WindowsApps\5A894077.McAfeeSecurity_2.1.68.0_x64__wafk5atnkzcwy\mcafee-security.dll
2019-06-28 18:23 - 2019-06-28 18:23 - 001460224 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\WindowsApps\22094synapticsincorporate.smartaudio3_1.0.85.0_x64__qt57b6kdvhcfw\Flow\Flow1\x64\SQLite.Interop.dll
2023-01-25 22:37 - 2022-11-07 11:17 - 000992256 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\chrome_elf.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-142477489-203225701-748183004-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-142477489-203225701-748183004-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-142477489-203225701-748183004-1001\...\StartupApproved\Run: => "OneDrive"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5F1B54E6-7EB2-45F2-B20F-92E7AD64C1CE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16040.10730.20103.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe => No File
FirewallRules: [{D4E2BA8D-8EEF-4AE8-8687-3F00E077B6A2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B0AA762D-A475-44BE-B23F-5D05FE80A452}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21354.200.1118.3091_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2522AF26-F495-4048-88E2-F2C843FE3AE8}C:\users\nicol\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\nicol\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{747C481A-76A6-482F-A128-EF948DE24CDB}C:\users\nicol\appdata\local\mozilla firefox\firefox.exe] => (Block) C:\users\nicol\appdata\local\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{26DBE9FE-DFDD-4C05-876E-3382CE00791F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D7B7CBA6-F290-4C6D-ABF8-CEE9A51C8953}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10D4E04F-92C3-4898-9230-73F64DF5A402}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B590F7EC-9844-4D62-A74D-E3164A082E8C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9A21F3C8-A97D-4222-9D75-D774D4B536D5}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.15928.20216.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{734808ED-DA00-4020-94FF-5C837E62A292}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7735C5F7-5820-46E4-8A18-67DFE2E0C87D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{872A8304-5ADF-4F53-80C4-74D4F1D21E90}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{500212FD-63D7-479A-93A5-0CE057953AB3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.93.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E93E7AC1-73D9-4DBB-9228-31875CA7DD94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9B9217D5-16EB-4BBD-BE91-81932012C5BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{F10677EC-CCEB-4F6F-B793-6B681F3ADF2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E80DB20E-D3A5-452A-BC14-FA9E1CBFD66B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{7F176844-08BC-4AE0-AB24-4A8CA3ECE874}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118 GB) (Free:57.02 GB) (48%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/27/2023 11:57:12 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(16ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/27/2023 11:57:12 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(94ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/27/2023 10:39:34 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(0ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/27/2023 10:39:34 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(47ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/26/2023 08:01:30 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(2016ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/26/2023 08:01:28 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(31ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/25/2023 10:12:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for WORKGROUP\DESKTOP-JLIELH2$ via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(0ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (01/25/2023 10:12:37 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: SCEP Certificate enrollment initialization for Local system via https://AMD-KeyId-8a0578cf56146fea399af ... s/Aik/scep failed:
GetCACaps
Method: GET(47ms)
Stage: GetCACaps
The server name or address could not be resolved 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
System errors:
=============
Error: (02/04/2023 01:36:59 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (02/04/2023 01:36:59 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/29/2023 02:51:03 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/27/2023 04:17:42 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/27/2023 11:56:35 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JLIELH2)
Description: The server {FD06603A-2BDF-4BB1-B7DF-5DC68F353601} did not register with DCOM within the required timeout.
Error: (01/27/2023 10:47:37 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/27/2023 10:46:57 AM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Error: (01/26/2023 08:01:32 PM) (Source: Server) (EventID: 2505) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{2E2D02A0-B9EB-4170-BAC1-0625AF6A08E3} because another computer on the network has the same name. The server could not start.
Windows Defender:
================
Date: 2023-01-25 22:26:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2023-01-25 22:24:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-08-22 19:56:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-06-28 13:26:18
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2022-06-24 18:09:39
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]
Date: 2022-10-26 13:08:19
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.373.798.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19500.2
Error code: 0x80070102
Error description: The wait operation timed out.
Date: 2022-10-26 13:08:19
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.373.798.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19500.2
Error code: 0x80070102
Error description: The wait operation timed out.
Date: 2022-06-19 10:57:06
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.363.1403.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.19200.5
Error code: 0x8024402c
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.
Date: 2022-03-04 00:10:03
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.355.2929.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.
Date: 2022-03-04 00:10:03
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.355.2929.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.18800.4
Error code: 0x80240022
Error description: Program nemôže skontrolovať aktualizácie definícií.
==================== Memory info ===========================
BIOS: LENOVO AGCN22WW(V1.05) 07/08/2019
Motherboard: LENOVO LNVNB161216
Processor: AMD Ryzen 3 3200U with Radeon Vega Mobile Gfx
Percentage of memory in use: 77%
Total physical RAM: 3522.54 MB
Available physical RAM: 784.93 MB
Total Virtual: 9522.9 MB
Available Virtual: 5567.59 MB
==================== Drives ================================
Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:57.01 GB) (Model: SAMSUNG MZNLN128HAHQ-000L2) NTFS
\\?\Volume{f8c2fe4d-5cd3-4795-ac44-515052d00748}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.5 GB) NTFS
\\?\Volume{6ad1297a-4470-4ebf-bc31-ed1621b51db8}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 6274974D)
Partition: GPT.
==================== End of Addition.txt =======================
