Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o preventivní kontrolu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Kuba5
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 bře 2011 13:08

Prosím o preventivní kontrolu

#1 Příspěvek od Kuba5 »

Zdravím,
nedávno jsem aktualizoval na W11 a v poslední době mi příjde, že je zejména prohlížeč o trošku pomalejší (např. při prohlížení google map). Prosím tak o preventivní kontrolu viz níže. Díky moc

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 09-02-2023 01
Ran by jmiga (administrator) on JAKUB (Gigabyte Technology Co., Ltd. B360M-D3H) (13-02-2023 18:03:12)
Running from C:\Users\jmiga\OneDrive\Plocha
Loaded Profiles: jmiga
Platform: Microsoft Windows 11 Pro Version 22H2 22621.1105 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.3000.10.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe <6>
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0387206.inf_amd64_081d192bd0a4e0cb\B386218\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0387206.inf_amd64_081d192bd0a4e0cb\B386218\atieclxx.exe
(explorer.exe ->) (Qisda Corporation -> Dell Inc.) C:\Program Files\Dell\Dell Display Manager 2\DDM.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0387206.inf_amd64_081d192bd0a4e0cb\B386218\atiesrxx.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\System32\Sgrm\SgrmBroker.exe
(services.exe ->) (Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(services.exe ->) (Microsoft) [File not signed] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(sihost.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_8.71.12001.0_x64__8wekyb3d8bbwe\tcui-app.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Realtek Semiconductor Corp) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\RtkUWP.exe
(svchost.exe ->) (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\XboxGameBarSpotify.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [122427152 2021-07-14] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\System32\OneDriveSetup.exe [50312608 2022-05-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2443117864-2420506393-1361682287-1001\...\Run: [AMDNoiseSuppression] => C:\Windows\system32\AMD\ANR\AMDNoiseSuppression.exe [155544 2022-08-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\109.0.5414.121\Installer\chrmstp.exe [2023-02-10] (Google LLC -> Google LLC)
IFEO\osppsvc.exe: [VerifierDlls] SppExtComObjHook.dll
IFEO\SppExtComObj.exe: [VerifierDlls] SppExtComObjHook.dll
Startup: C:\Users\jmiga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DDM2.0.lnk [2023-01-27]
ShortcutTarget: DDM2.0.lnk -> C:\Program Files\Dell\Dell Display Manager 2\DDM.exe (Qisda Corporation -> Dell Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0600DD45-FAF2-4131-A006-0B17509B9F78} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => %windir%\system32\sc.exe start InventorySvc
Task: {0683EF3E-2F2E-4DF6-BA4B-E6670DA8634E} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [291768 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {23A6E0E4-1FA2-4D01-815C-BBB92DE50604} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {2418F61E-0965-45CF-80AF-61190C8FD27B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864416 2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {3620C6B9-D7A4-4AD5-8897-7146BFEDB6C4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3B04B1C1-2A42-43F4-80A6-84F6558BF938} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {45F34935-C9BF-484A-88F3-2244B3CEA97D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5BDCD737-DE7B-488B-BFCC-FC1D29089F5C} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141216 2023-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {6155035B-5CAE-4819-81BF-F8D8DE25B551} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2443117864-2420506393-1361682287-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\Windows\System32\wpninprc.dll [65536 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
Task: {6C5B4F4A-8A2C-4838-A4C9-BB56A48131B9} - System32\Tasks\GoogleUpdateTaskMachineCore{3219F438-AE2C-4725-B5D3-A45A366C0D39} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-20] (Google LLC -> Google LLC)
Task: {9BDB1E97-CFAF-46DD-9E5D-CBA8A1900720} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21864416 2022-12-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E3FB85D-B180-4F66-BB6B-666ED107E66D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AA1059DF-BE8D-4A1A-85D3-EDBAD8AA84A7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141216 2023-01-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {B835C0A0-2424-45E3-9FA8-C254331E16D2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7056328 2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6372256-2168-4F7B-803B-71C586C90C0A} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {D3244751-4CB3-4D02-BD89-15B0121F1BDC} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [954808 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {DC7958C8-43C5-43DE-868B-C070C6DCA74F} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [56760 2022-11-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\Windows\system32\MusNotification.exe (No File)
Task: {EDB1264F-13B9-4BC8-88C7-5E2C5BB39323} - System32\Tasks\GoogleUpdateTaskMachineUA{ECB3218E-B920-4500-97E4-CE6A380908C9} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-20] (Google LLC -> Google LLC)
Task: {F7EB4169-406D-40C0-9059-0F309BF1A881} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [7056328 2022-11-21] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{69a00580-3848-4d82-9321-7e726410777e}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fd0880be-aa3d-4e75-a1be-4a340e1576b0}: [DhcpNameServer] 192.168.0.1

Edge:
=======
Edge Profile: C:\Users\jmiga\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-13]
Edge Session Restore: Default -> is enabled.

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-03-24] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\jmiga\AppData\Local\Google\Chrome\User Data\Default [2023-02-13]
CHR Session Restore: Default -> is enabled.
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\jmiga\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2023-02-06]
CHR Extension: (Dokumenty Google offline) - C:\Users\jmiga\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-01-27]
CHR Extension: (SmoothScroll) - C:\Users\jmiga\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbokbjkabcmbfdlbddjidfmibcpneigj [2022-10-20]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jmiga\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-10-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9198496 2022-11-30] (Microsoft Corporation -> Microsoft Corporation)
S3 InventorySvc; C:\Windows\system32\inventorysvc.dll [304480 2022-10-22] (Microsoft Windows -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [249376 2022-12-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SgrmBroker; C:\Windows\system32\Sgrm\SgrmBroker.exe [414632 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TextInputManagementService; C:\Windows\System32\TabSvc.dll [266240 2022-10-22] (Microsoft Windows -> Microsoft Corporation)
R2 USBAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe [12288 2022-05-24] (Microsoft) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WorkflowAppControl; C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe [19968 2022-05-24] (Microsoft) [File not signed]
S3 wuauserv; C:\Windows\system32\wuauserv.dll [137552 2022-12-18] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [35344 2022-09-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_1a1a381a2c0e293c\amdsafd.sys [113056 2022-08-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0387206.inf_amd64_081d192bd0a4e0cb\B386218\amdkmdag.sys [94464424 2023-01-04] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [59920 2022-05-31] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 bfs; C:\Windows\system32\drivers\bfs.sys [91480 2022-10-22] (Microsoft Windows -> Microsoft Corporation)
S0 GenPass; C:\Windows\System32\DriverStore\FileRepository\genpass.inf_amd64_bef88a423225ecdc\genpass.sys [62800 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R3 MpKsl2fe195a5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4CC3E399-C11A-441C-A79F-F068BE910D31}\MpKslDrv.sys [214280 2023-02-13] (Microsoft Windows -> Microsoft Corporation)
S0 pvscsi; C:\Windows\System32\drivers\pvscsii.sys [45408 2022-05-07] (Microsoft Windows -> VMware, Inc.)
S3 RoutePolicy; C:\Windows\System32\drivers\RoutePolicy.sys [98304 2022-05-07] (Microsoft Windows -> )
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R2 wtd; C:\Windows\System32\drivers\wtd.sys [118784 2022-12-18] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-13 18:03 - 2023-02-13 18:03 - 000000000 ____D C:\FRST
2023-02-13 17:27 - 2023-02-13 17:27 - 000691102 _____ C:\Windows\system32\perfh005.dat
2023-02-13 17:27 - 2023-02-13 17:27 - 000143008 _____ C:\Windows\system32\perfc005.dat
2023-02-09 17:08 - 2023-02-09 17:08 - 000007611 _____ C:\Users\jmiga\AppData\Local\Resmon.ResmonCfg
2023-02-03 10:15 - 2023-02-03 10:15 - 000000000 ____D C:\Users\jmiga\OneDrive\Documents\Vlastní šablony Office
2023-01-30 21:18 - 2023-01-30 21:19 - 000000000 ____D C:\Users\jmiga\AppData\Roaming\fsltl-trafic-injector
2023-01-28 21:58 - 2023-01-28 21:58 - 000000000 ____D C:\Users\jmiga\AppData\Local\ToastNotificationManagerCompat
2023-01-27 14:26 - 2023-01-27 14:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2023-01-27 14:24 - 2023-01-27 14:29 - 000000000 ____D C:\ProgramData\Dell Display Manager
2023-01-27 14:24 - 2023-01-27 14:24 - 000000000 ____D C:\Program Files\dotnet
2023-01-27 14:24 - 2023-01-27 14:24 - 000000000 ____D C:\Program Files\Dell
2023-01-27 14:24 - 2023-01-27 14:24 - 000000000 ____D C:\Dell
2023-01-21 20:29 - 2023-01-21 20:29 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-19 19:12 - 2023-01-19 19:12 - 000000000 ____D C:\Users\jmiga\OneDrive\Documents\Frontier Developments
2023-01-19 19:12 - 2023-01-19 19:12 - 000000000 ____D C:\Users\jmiga\AppData\Local\Frontier Developments
2023-01-19 19:12 - 2023-01-19 19:12 - 000000000 ____D C:\ProgramData\Frontier Developments
2023-01-17 16:03 - 2023-02-13 16:00 - 000003098 _____ C:\Windows\system32\Tasks\AMDInstallLauncher
2023-01-17 16:02 - 2023-02-13 16:00 - 000003078 _____ C:\Windows\system32\Tasks\AMDLinkUpdate
2023-01-17 16:02 - 2023-01-17 16:02 - 000003488 _____ C:\Windows\system32\Tasks\ModifyLinkUpdate
2023-01-17 16:02 - 2023-01-17 16:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2023-01-17 15:58 - 2023-01-04 18:18 - 001975176 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-01-17 15:58 - 2023-01-04 18:18 - 001975176 _____ C:\Windows\system32\vulkaninfo.exe
2023-01-17 15:58 - 2023-01-04 18:18 - 001531792 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-01-17 15:58 - 2023-01-04 18:18 - 001531792 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-01-17 15:58 - 2023-01-04 18:18 - 001457000 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 001457000 _____ C:\Windows\system32\vulkan-1.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 001168584 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 001168584 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000801168 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Rapidfire64.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000678288 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\Rapidfire.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000604080 _____ C:\Windows\system32\GameManager64.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000546728 _____ C:\Windows\system32\libsmi_guest.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000541104 _____ C:\Windows\system32\libsmi_host.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000539048 _____ C:\Windows\system32\dgtrayicon.exe
2023-01-17 15:58 - 2023-01-04 18:18 - 000502184 _____ C:\Windows\system32\EEURestart.exe
2023-01-17 15:58 - 2023-01-04 18:18 - 000360880 _____ C:\Windows\system32\clinfo.exe
2023-01-17 15:58 - 2023-01-04 18:18 - 000206224 _____ C:\Windows\system32\mantle64.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000185736 _____ C:\Windows\system32\mantleaxl64.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000163208 _____ C:\Windows\SysWOW64\mantle32.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000147336 _____ C:\Windows\SysWOW64\mantleaxl32.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000051080 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\RapidFireServer64.dll
2023-01-17 15:58 - 2023-01-04 18:18 - 000048008 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\RapidFireServer.dll
2023-01-17 15:58 - 2023-01-04 18:17 - 000183688 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2023-01-17 15:58 - 2023-01-04 18:17 - 000146824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000937856 _____ (AMD) C:\Windows\system32\atieclxx.exe
2023-01-17 15:58 - 2023-01-04 18:16 - 000535392 _____ C:\Windows\system32\atieah64.exe
2023-01-17 15:58 - 2023-01-04 18:16 - 000472912 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000404352 _____ C:\Windows\SysWOW64\atieah32.exe
2023-01-17 15:58 - 2023-01-04 18:16 - 000266112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000226640 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000210064 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000172992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000170928 _____ (AMD) C:\Windows\system32\atimuixx.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000144248 _____ C:\Windows\system32\atidxx64.dll
2023-01-17 15:58 - 2023-01-04 18:16 - 000118160 _____ C:\Windows\SysWOW64\atidxx32.dll
2023-01-17 15:58 - 2023-01-04 18:15 - 091449728 _____ C:\Windows\system32\amd_comgr.dll
2023-01-17 15:58 - 2023-01-04 18:15 - 075124096 _____ C:\Windows\SysWOW64\amd_comgr32.dll
2023-01-17 15:58 - 2023-01-04 18:15 - 001516416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2023-01-17 15:58 - 2023-01-04 18:15 - 001516416 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxx.dll
2023-01-17 15:58 - 2023-01-04 18:15 - 000142208 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amfrt64.dll
2023-01-17 15:58 - 2023-01-04 18:15 - 000118144 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amfrt32.dll
2023-01-17 15:58 - 2023-01-04 18:15 - 000074576 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ati2erec.dll
2023-01-17 15:58 - 2023-01-04 18:13 - 000138080 _____ C:\Windows\system32\amdxc64.dll
2023-01-17 15:58 - 2023-01-04 18:13 - 000113512 _____ C:\Windows\SysWOW64\amdxc32.dll
2023-01-17 15:58 - 2023-01-04 18:12 - 007017944 _____ C:\Windows\system32\amdsmi.exe
2023-01-17 15:58 - 2023-01-04 18:12 - 000167048 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2023-01-17 15:58 - 2023-01-04 18:12 - 000136488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2023-01-17 15:58 - 2023-01-04 18:11 - 001719776 _____ (AMD) C:\Windows\system32\amf-mft-mjpeg-decoder64.dll
2023-01-17 15:58 - 2023-01-04 18:11 - 001395776 _____ (AMD) C:\Windows\SysWOW64\amf-mft-mjpeg-decoder32.dll
2023-01-17 15:58 - 2023-01-04 18:11 - 000942976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdlvr64.dll
2023-01-17 15:58 - 2023-01-04 18:11 - 000770944 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdlvr32.dll
2023-01-17 15:58 - 2023-01-04 18:11 - 000470912 _____ C:\Windows\system32\amdlogum.exe
2023-01-17 15:58 - 2023-01-04 18:07 - 010567520 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdhip64.dll
2023-01-17 15:58 - 2023-01-04 18:07 - 000568144 _____ C:\Windows\system32\amdgfxinfo64.dll
2023-01-17 15:58 - 2023-01-04 18:07 - 000567672 _____ C:\Windows\system32\amdmiracast.dll
2023-01-17 15:58 - 2023-01-04 18:07 - 000431952 _____ C:\Windows\SysWOW64\amdgfxinfo32.dll
2023-01-17 15:58 - 2023-01-04 18:07 - 000176880 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2023-01-17 15:58 - 2023-01-04 18:07 - 000166968 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2023-01-17 15:58 - 2023-01-04 18:07 - 000151024 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2023-01-17 15:58 - 2023-01-04 18:07 - 000136416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2023-01-17 15:58 - 2023-01-04 16:40 - 080595072 _____ C:\Windows\system32\amdxc64.so
2023-01-17 15:58 - 2022-08-12 20:25 - 000054704 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ANR-bgproc-Lib.dll
2023-01-17 15:14 - 2023-01-17 15:14 - 000000000 ____D C:\Users\jmiga\AppData\Local\ATI
2023-01-17 13:36 - 2023-01-17 13:36 - 000000000 ____D C:\Users\jmiga\OneDrive\Documents\My Games
2023-01-16 10:54 - 2023-01-16 11:06 - 000000000 ____D C:\Users\jmiga\OneDrive\Documents\Euro Truck Simulator 2
2023-01-16 10:43 - 2023-01-17 14:35 - 000000000 ____D C:\Users\jmiga\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-13 17:27 - 2022-10-20 17:50 - 001629502 _____ C:\Windows\system32\PerfStringBackup.INI
2023-02-13 17:27 - 2022-05-07 06:22 - 000000000 ____D C:\Windows\INF
2023-02-13 17:15 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-02-13 17:14 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\SystemTemp
2023-02-13 17:08 - 2022-10-20 18:03 - 000000000 ____D C:\Program Files (x86)\Google
2023-02-13 16:46 - 2022-10-20 18:14 - 000000000 ____D C:\Users\jmiga\AppData\Local\AMD_Common
2023-02-13 16:20 - 2022-10-20 17:52 - 000000000 ____D C:\Users\jmiga\AppData\Local\AMD
2023-02-13 16:16 - 2022-10-22 06:37 - 000000000 ____D C:\Users\jmiga\AppData\Local\FlightSimulator
2023-02-13 16:00 - 2022-11-22 11:59 - 000000000 ____D C:\Users\jmiga\AppData\Local\SquirrelTemp
2023-02-13 16:00 - 2022-10-20 17:41 - 000012288 ___SH C:\DumpStack.log.tmp
2023-02-13 16:00 - 2022-10-20 17:41 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-02-13 16:00 - 2022-10-20 17:41 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-02-13 16:00 - 2022-05-07 06:17 - 000524288 _____ C:\Windows\system32\config\BBI
2023-02-13 15:44 - 2022-05-07 06:17 - 000000000 ____D C:\Windows\CbsTemp
2023-02-13 14:26 - 2022-10-20 17:52 - 000000000 ____D C:\Users\jmiga\AppData\Local\D3DSCache
2023-02-13 14:19 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-02-13 14:19 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\AppReadiness
2023-02-13 13:55 - 2022-10-20 17:43 - 000001607 _____ C:\Windows\system32\config\VSMIDK
2023-02-11 11:39 - 2022-05-07 06:24 - 000000000 ____D C:\Windows\LiveKernelReports
2023-02-11 11:25 - 2022-10-20 17:41 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-10 14:19 - 2022-10-20 17:41 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-02-10 14:19 - 2022-10-20 17:41 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-02-10 14:09 - 2022-10-20 18:04 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-02-09 14:53 - 2022-12-06 09:38 - 000000000 ____D C:\Users\jmiga\AppData\Roaming\utorrent
2023-02-09 14:38 - 2022-11-18 20:03 - 000000000 ____D C:\Users\jmiga\AppData\Local\BitTorrentHelper
2023-02-08 16:17 - 2022-12-25 19:06 - 000000000 ____D C:\Users\jmiga\AppData\Roaming\FlyByWire Installer
2023-01-30 20:52 - 2022-12-25 19:06 - 000000000 ____D C:\Users\jmiga\AppData\Local\fbw-installer-updater
2023-01-29 07:33 - 2022-11-18 20:34 - 000000000 ____D C:\Users\jmiga\AppData\Roaming\vlc
2023-01-28 21:59 - 2022-10-20 17:52 - 000000000 ____D C:\Users\jmiga\AppData\Local\Packages
2023-01-27 14:24 - 2022-10-20 18:12 - 000000000 ____D C:\ProgramData\Package Cache
2023-01-18 13:21 - 2022-11-21 16:06 - 000000000 ____D C:\Program Files\Microsoft Office
2023-01-18 13:15 - 2022-11-26 21:58 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-01-18 13:15 - 2022-10-20 17:48 - 000000000 ____D C:\Windows\system32\AMD
2023-01-17 16:02 - 2022-10-20 17:48 - 000000000 ____D C:\Program Files\AMD
2023-01-17 15:58 - 2022-10-20 18:10 - 000000000 ____D C:\AMD
2023-01-17 14:20 - 2022-10-20 17:43 - 000000000 ____D C:\ProgramData\Packages
2023-01-17 13:56 - 2022-10-20 17:54 - 000000000 ___RD C:\Users\jmiga\OneDrive

==================== Files in the root of some directories ========

2023-02-09 17:08 - 2023-02-09 17:08 - 000007611 _____ () C:\Users\jmiga\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-02-2023 01
Ran by jmiga (13-02-2023 18:04:02)
Running from C:\Users\jmiga\OneDrive\Plocha
Microsoft Windows 11 Pro Version 22H2 22621.1105 (X64) (2022-10-20 16:43:39)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2443117864-2420506393-1361682287-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2443117864-2420506393-1361682287-503 - Limited - Disabled)
Guest (S-1-5-21-2443117864-2420506393-1361682287-501 - Limited - Disabled)
jmiga (S-1-5-21-2443117864-2420506393-1361682287-1001 - Administrator - Enabled) => C:\Users\jmiga
WDAGUtilityAccount (S-1-5-21-2443117864-2420506393-1361682287-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2443117864-2420506393-1361682287-1001\...\uTorrent) (Version: 3.6.0.46590 - BitTorrent Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.11.2 - Advanced Micro Devices, Inc.)
Branding64 (HKLM\...\{0DB6E0DC-607A-42C1-A3CE-7567A9F85AF4}) (Version: 1.00.0008 - Advanced Micro Devices, Inc.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{06e7b8fa-f412-4f47-a8d7-74d4a780099e}) (Version: 10.3.1.1 - Brother Industries, Ltd.)
Brother iPrint&Scan (HKLM-x32\...\{79F6CD87-9761-414F-87C4-79767318CBFA}) (Version: 10.3.1.1 - Brother Industries, Ltd.) Hidden
Dell Display Manager 2.1 (HKLM\...\Dell Display Manager 2) (Version: 2.1.0.45 - Dell Inc.)
FlyByWire Installer 3.3.8 (HKU\S-1-5-21-2443117864-2420506393-1361682287-1001\...\80b9efbf-2017-5d38-8868-3afd67a5a47d) (Version: 3.3.8 - FlyByWire Simulations)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.121 - Google LLC)
HttpToUsbBridge (HKLM-x32\...\{6FF1DBC1-A313-460D-B1F2-6444D2F01DEE}) (Version: 2.0.18.1 - Brother Industries Ltd.)
KMS_VL_ALL_AIO (HKLM-x32\...\{21498B56-B51C-4EB6-8846-0A7A5A62C93F}) (Version: 1.0.0 - KMS_VL_ALL_AIO)
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 110.0.1587.41 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{6BBE9278-659F-FA16-E4B8-C2D60DE0DCC7}) (Version: 10.1.22621.1863 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Volume - cs-cz) (Version: 16.0.14332.20447 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Volume - en-us) (Version: 16.0.14332.20447 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{EF9EBC42-6969-45CE-A8D2-B9249B00C838}) (Version: 5.69.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.31.31103 (HKLM-x32\...\{41d7b770-418a-43b7-95a5-f925fff05789}) (Version: 14.31.31103.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30133 (HKLM\...\{E699E009-1C3C-4E50-9B57-2B39F0954C7F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30133 (HKLM\...\{6CD9E9ED-906D-4196-8DC3-F987D2F6615F}) (Version: 14.29.30133 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.31.31103 (HKLM-x32\...\{5720EC03-F26F-40B7-980C-50B5D420B5DE}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.31.31103 (HKLM-x32\...\{799E3FFF-705C-461F-B400-6DE27398B3E5}) (Version: 14.31.31103 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM\...\{3C31CBA1-A0D9-4B95-A807-AD2313D12F47}) (Version: 40.68.31219 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 5.0.17 (x64) (HKLM-x32\...\{20d5df4e-006c-4d6d-a0dc-490d009b9786}) (Version: 5.0.17.31219 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20447 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20447 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.19572 - Microsoft Corporation)
VAT-Spy (HKLM-x32\...\VATSpy) (Version: 1.3.3 - Ross Alan Carlson)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)

Packages:
=========
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2023-01-17] (0)
Farming Simulator 22 - Window 10 Edition -> C:\Program Files\WindowsApps\GIANTSSoftware.FarmingSimulator22-Window10Edition_1.0.14.0_x64__fa8jxm5fj0esw [2023-01-17] (GIANTS Software)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1760.12.101.0_x64__8xx8rvfyw5nnt [2023-02-13] (Meta) [Startup Task]
Microsoft Flight Simulator -> C:\Program Files\WindowsApps\Microsoft.FlightSimulator_1.30.12.0_x64__8wekyb3d8bbwe [2023-02-01] (Microsoft Studios)
Microsoft Flight Simulator Digital Ownership -> C:\Program Files\WindowsApps\Microsoft.DigitalOwnership_1.0.1.0_x64__8wekyb3d8bbwe [2022-10-20] (Microsoft Studios)
ms-resource:APP_WINDOW_NAME -> C:\Program Files\WindowsApps\MicrosoftCorporationII.QuickAssist_2.0.9.0_x64__8wekyb3d8bbwe [2022-10-22] (Microsoft Corp.)
ms-resource:AppStoreName -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_2.1.40041.0_x64__8wekyb3d8bbwe [2023-01-28] (Microsoft Corporation)
ms-resource:AppxManifest_DisplayName -> C:\Windows\SystemApps\Microsoft.Windows.PrintQueueActionCenter_cw5n1h2txyewy [2022-10-20] (Microsoft Corporation)
ms-resource:DisplayName -> C:\Program Files\WindowsApps\ParadoxInteractive.81845321AE_13.0.20032.2_x64__zfnrdv2de78ny [2023-01-17] (Paradox Interactive)
ms-resource:ProductPkgDisplayName -> C:\Windows\SystemApps\MicrosoftWindows.Client.Core_cw5n1h2txyewy [2023-01-11] (ms-resource:ProductPublisherDisplayName)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2022-10-20] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2023-01-24] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0 [2023-02-09] (Spotify AB) [Startup Task]
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x64__8wekyb3d8bbwe [2023-01-28] (Microsoft Corporation)
WindowsAppRuntime.1.2 -> C:\Program Files\WindowsApps\Microsoft.WindowsAppRuntime.1.2_2000.747.1945.0_x86__8wekyb3d8bbwe [2023-01-28] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2022-11-18] (0)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2443117864-2420506393-1361682287-1001_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 -> => No File
CustomCLSID: HKU\S-1-5-21-2443117864-2420506393-1361682287-1001_Classes\CLSID\{989dacff-3a01-6b2c-f623-9ef1597c6141}\localserver32 -> C:\Program Files\Dell\Dell Display Manager 2\DDM.exe (Qisda Corporation -> Dell Inc.)
CustomCLSID: HKU\S-1-5-21-2443117864-2420506393-1361682287-1001_Classes\CLSID\{D3E34B21-9D75-101A-8C3D-00AA001A1652}\localserver32 -> C:\Program Files\WindowsApps\Microsoft.Paint_11.2210.4.0_x64__8wekyb3d8bbwe\PaintApp\mspaint.exe () [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-10-20 17:49 - 2022-10-20 17:49 - 002352640 _____ () [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\RtkAudioComponent.dll
2022-10-20 17:49 - 2022-10-20 17:49 - 001787392 _____ () [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\RtkAudioCore.dll
2022-10-20 17:49 - 2022-10-20 17:49 - 000023040 _____ (Synaptics Incorporated.) [File not signed] C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj\SynAudSrvDll.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TextInputManagementService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => ""="Memory"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{5099944A-F6B9-4057-A056-8C550228544C} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HidSpiCx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TextInputManagementService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-21] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2443117864-2420506393-1361682287-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img19.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{ED42CEF0-E8EB-414A-8219-B2F2F64526C7}E:\xboxgames\microsoft flight simulator\content\flightsimulator.exe] => (Allow) E:\xboxgames\microsoft flight simulator\content\flightsimulator.exe (Access Denied) [File not signed]
FirewallRules: [UDP Query User{5E06FD95-71FF-4609-96EA-249E61478698}E:\xboxgames\microsoft flight simulator\content\flightsimulator.exe] => (Allow) E:\xboxgames\microsoft flight simulator\content\flightsimulator.exe (Access Denied) [File not signed]
FirewallRules: [{E601264F-B1AA-4800-95E2-2E8513B8735E}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{09879706-D6E6-4C58-88CC-7D5E5D410759}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22287.702.1670.9453_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C337648B-7924-4F70-833B-6F34DEDB06BB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8F81F55F-F7CB-46F4-B27E-A5A236501DCC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E38016CE-5268-4755-9397-7579489F81C0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE7A8670-FF45-485F-B998-E5843F04E009}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CB035F8B-3F20-4BD4-B26F-4A979505A2DC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1EA3D70A-C793-4483-83BA-8E531FE48261}] => (Allow) C:\Users\jmiga\AppData\Local\Temp\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) [File not signed]
FirewallRules: [{5C085A52-FE56-4D12-A8D0-96021DCB0406}] => (Allow) C:\Users\jmiga\AppData\Local\Temp\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) [File not signed]
FirewallRules: [{36DE4692-5D40-4014-87B4-5BEB8691E5B0}] => (Allow) C:\Users\jmiga\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{9ACD899A-AB52-43EC-B91D-71C73CCEAB89}] => (Allow) C:\Users\jmiga\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{E6A34F26-3AAF-45CD-8E4F-818A3059E739}] => (Allow) LPort=54950
FirewallRules: [{FD43CE7D-AAC3-4A53-A8AA-ED2950C15B38}] => (Allow) LPort=54955
FirewallRules: [{75089DF9-2D4B-4F2F-BC76-666240A6B1BF}] => (Allow) D:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CDAB1DFB-BB02-4378-9D0B-A31087F2C19D}] => (Allow) D:\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3C1612BF-0DAE-4454-9886-AFB649A9FC7E}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AFEC1CD5-4C49-439E-90B5-5D8CCB47349E}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A0315566-5702-4EB1-9599-5BF89A8ADE83}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{4FB57585-3130-4CC8-920E-54C623464B7C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{2E8FE913-9FE9-4BF5-87BA-817EB3321DCF}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{71A42625-A403-4A42-8BE2-4EC911404EDE}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{41328907-45C9-48CF-B239-571C16F9C5A8}E:\msfs_mca_v1-9-1_hcocg\msfs_mca_v1-9-1.exe] => (Allow) E:\msfs_mca_v1-9-1_hcocg\msfs_mca_v1-9-1.exe () [File not signed]
FirewallRules: [UDP Query User{395241FB-8351-4269-8AEE-80EC56A97904}E:\msfs_mca_v1-9-1_hcocg\msfs_mca_v1-9-1.exe] => (Allow) E:\msfs_mca_v1-9-1_hcocg\msfs_mca_v1-9-1.exe () [File not signed]
FirewallRules: [TCP Query User{40228EA2-B3CD-4ADA-8052-AB8404A2EDB3}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe] => (Allow) D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe => No File
FirewallRules: [UDP Query User{C1A019D9-F1F1-4CF0-95D0-887225884B99}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe] => (Allow) D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe => No File
FirewallRules: [{17D05208-9FAE-4BB8-83C2-6CCAAEDA3D36}] => (Allow) E:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [{79A6F3AF-D872-453C-8BFD-9E836EC19829}] => (Allow) E:\SteamLibrary\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [File not signed]
FirewallRules: [TCP Query User{B7608C3B-F667-403A-92CC-D0961BD62CC4}E:\msfs\community\fsltl-traffic-injector\fsltl-trafficinjector.exe] => (Allow) E:\msfs\community\fsltl-traffic-injector\fsltl-trafficinjector.exe (Node.js) [File not signed]
FirewallRules: [UDP Query User{CBD6B3A1-64F4-4DDD-8512-8850164B2489}E:\msfs\community\fsltl-traffic-injector\fsltl-trafficinjector.exe] => (Allow) E:\msfs\community\fsltl-traffic-injector\fsltl-trafficinjector.exe (Node.js) [File not signed]
FirewallRules: [{76CED571-02EA-4FED-94E1-59C274EF22F2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1A5F2DDA-E357-4639-BA7E-A122978D4AB4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6A2015A0-4B04-4F29-8FA2-34419A51E8AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{03DD770B-DC69-4258-8C2F-A3F814A85C7C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D1E7F289-4C29-4109-B23D-581DF5851648}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{88749B3D-BC9D-4A11-AB03-DBDC35A8FF44}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{10E38836-0E7C-4300-8ED8-8079B406D551}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{12C71884-D6D0-4913-9ECA-AAD14A75336F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5BE97C9C-1733-4AA6-964F-BA31EFEB607D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.204.912.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{9E64C140-2897-4A0E-A45B-C7272B42BABA}C:\users\jmiga\appdata\roaming\utorrent\updates\utorrent.exe] => (Allow) C:\users\jmiga\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) [File not signed]
FirewallRules: [UDP Query User{D6DA7E2F-69D1-4C0F-89B8-AA7FA4DD26C8}C:\users\jmiga\appdata\roaming\utorrent\updates\utorrent.exe] => (Allow) C:\users\jmiga\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.) [File not signed]
FirewallRules: [{593B1DDC-5DB5-413F-8ECD-43DFBEC1DD23}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

11-02-2023 14:22:41 Naplánovaný kontrolní bod
13-02-2023 15:44:02 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Broadcast Receiver Server...

Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Wait Workflow Commands request from device.

Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...

Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...

Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[3]: 192.168.0.249

Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[2]: 2a02:8308:218:9500:677d:c603:b99d:84a9

Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[1]: 2a02:8308:218:9500:3464:f43a:4c14:bbd1

Error: (02/13/2023 04:00:25 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[0]: fe80::24e1:43dd:a8e5:7f1%17


System errors:
=============
Error: (02/13/2023 04:02:12 PM) (Source: DCOM) (EventID: 10010) (User: JAKUB)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/13/2023 02:16:20 PM) (Source: DCOM) (EventID: 10010) (User: JAKUB)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/13/2023 01:57:58 PM) (Source: DCOM) (EventID: 10010) (User: JAKUB)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/11/2023 02:12:02 PM) (Source: DCOM) (EventID: 10010) (User: JAKUB)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/11/2023 10:59:27 AM) (Source: DCOM) (EventID: 10010) (User: JAKUB)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/10/2023 09:46:49 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.

Error: (02/10/2023 09:32:48 PM) (Source: DCOM) (EventID: 10010) (User: JAKUB)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/10/2023 02:10:41 PM) (Source: DCOM) (EventID: 10010) (User: JAKUB)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2023-01-16 17:37:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D0E9732A-15C4-4324-B8F6-F23432E2FBB1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-01-10 18:43:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {14980BFA-5533-44CE-8593-DEFE3EFA2895}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-01-09 16:41:56
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {24F28E66-2B51-48B3-A3BC-1DA6BE6FE369}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-01-07 16:19:52
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {46550BF5-E941-4FFF-B4EB-A66BEC74380C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-12-22 16:25:52
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B8D046D1-D95B-4F7E-8496-F270B3E0204C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]

Date: 2022-11-23 11:40:44
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.379.798.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19800.4
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===============
Date: 2023-02-13 17:13:38
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2023-02-10 21:43:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F6 07/13/2018
Motherboard: Gigabyte Technology Co., Ltd. B360M D3H-CF
Processor: Intel(R) Core(TM) i5-8400 CPU @ 2.80GHz
Percentage of memory in use: 25%
Total physical RAM: 16317.06 MB
Available physical RAM: 12164.71 MB
Total Virtual: 23229.06 MB
Available Virtual: 16014.96 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.84 GB) (Free:170.76 GB) (Model: KINGSTON SA400S37240G) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:742.02 GB) (Model: WDC WD10EZEX-00WN4A0) NTFS
Drive e: () (Fixed) (Total:931.51 GB) (Free:603.39 GB) (Model: WD Blue SN570 1TB) NTFS

\\?\Volume{b3e47ca2-e91c-4d8b-b03f-190d91d228b7}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS
\\?\Volume{a363446a-88ac-4621-81e7-cbf919db086d}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 8CC7BB4E)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 8CC7BBB9)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: F110EB61)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
Task: {6C5B4F4A-8A2C-4838-A4C9-BB56A48131B9} - System32\Tasks\GoogleUpdateTaskMachineCore{3219F438-AE2C-4725-B5D3-A45A366C0D39} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-20] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\Windows\system32\MusNotification.exe (No File)
Task: {EDB1264F-13B9-4BC8-88C7-5E2C5BB39323} - System32\Tasks\GoogleUpdateTaskMachineUA{ECB3218E-B920-4500-97E4-CE6A380908C9} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-20] (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-2443117864-2420506393-1361682287-1001_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 -> => No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
FirewallRules: [TCP Query User{40228EA2-B3CD-4ADA-8052-AB8404A2EDB3}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe] => (Allow) D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe => No File
FirewallRules: [UDP Query User{C1A019D9-F1F1-4CF0-95D0-887225884B99}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe] => (Allow) D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe => No File

EmptyTemp:
End
Uložte do C:\Users\jmiga\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kuba5
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 bře 2011 13:08

Re: Prosím o preventivní kontrolu

#3 Příspěvek od Kuba5 »

Zdravím,

zde fixlog:
Fix result of Farbar Recovery Scan Tool (x64) Version: 09-02-2023 01
Ran by jmiga (15-02-2023 16:34:43) Run:1
Running from C:\Users\jmiga\OneDrive\Plocha
Loaded Profiles: jmiga
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {6C5B4F4A-8A2C-4838-A4C9-BB56A48131B9} - System32\Tasks\GoogleUpdateTaskMachineCore{3219F438-AE2C-4725-B5D3-A45A366C0D39} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-20] (Google LLC -> Google LLC)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => C:\Windows\system32\MusNotification.exe (No File)
Task: {EDB1264F-13B9-4BC8-88C7-5E2C5BB39323} - System32\Tasks\GoogleUpdateTaskMachineUA{ECB3218E-B920-4500-97E4-CE6A380908C9} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [171480 2022-10-20] (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-2443117864-2420506393-1361682287-1001_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 -> => No File
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
FirewallRules: [TCP Query User{40228EA2-B3CD-4ADA-8052-AB8404A2EDB3}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe] => (Allow) D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe => No File
FirewallRules: [UDP Query User{C1A019D9-F1F1-4CF0-95D0-887225884B99}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe] => (Allow) D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6C5B4F4A-8A2C-4838-A4C9-BB56A48131B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C5B4F4A-8A2C-4838-A4C9-BB56A48131B9}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore{3219F438-AE2C-4725-B5D3-A45A366C0D39} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{3219F438-AE2C-4725-B5D3-A45A366C0D39}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0F10DCF-44AD-40E8-9370-FB5DA59F93FB}" => removed successfully
C:\Windows\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDB1264F-13B9-4BC8-88C7-5E2C5BB39323}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDB1264F-13B9-4BC8-88C7-5E2C5BB39323}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA{ECB3218E-B920-4500-97E4-CE6A380908C9} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{ECB3218E-B920-4500-97E4-CE6A380908C9}" => removed successfully
HKU\S-1-5-21-2443117864-2420506393-1361682287-1001_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2} => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{40228EA2-B3CD-4ADA-8052-AB8404A2EDB3}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C1A019D9-F1F1-4CF0-95D0-887225884B99}D:\xboxgames\farming simulator 22 - window 10 edition\content\x64\farmingsimulator2022game.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 62327997 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 228972432 B
Windows/system/drivers => 109853814 B
Edge => 0 B
Chrome => 676241732 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 243334 B
jmiga => 23255869 B

RecycleBin => 0 B
EmptyTemp: => 1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:34:57 ====
Díky moc

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu

#4 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Kuba5
Návštěvník
Návštěvník
Příspěvky: 37
Registrován: 03 bře 2011 13:08

Re: Prosím o preventivní kontrolu

#5 Příspěvek od Kuba5 »

Mockrát děkuji za Váš čas a ochotu! :thumbsup:

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o preventivní kontrolu

#6 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno