Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Jarda62
Návštěvník
Návštěvník
Příspěvky: 170
Registrován: 28 črc 2008 17:59

Kontrola

#1 Příspěvek od Jarda62 »

Zdravím, počítač je v pohodě. Ale raději dávám preventivní kontrolu.
Druhý soubor jsem přidal jako přílohu.
Děkuji :)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-09-2023
Ran by Jarda (administrator) on DESKTOP-AT80Q8K (ASUS System Product Name) (13-09-2023 20:18:55)
Running from D:\Plocha\FRST64.exe
Loaded Profiles: Jarda
Platform: Microsoft Windows 10 Home Version 22H2 19045.3324 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute SAS -> A-Volute) C:\Users\Jarda\AppData\Local\NhNotifSys\sonicstudio\asusns.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryWebBrowserEdge.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\116.0.1938.76\msedgewebview2.exe <6>
(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <6>
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.CpuIdRemote64.exe
(C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.DisplayAdapter.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
(explorer.exe ->) (6099D0EF-9374-47ED-BDFE-A82136831235 -> File-New-Project) C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_2.3.0.0_x86__1sdd7yawvg6ne\EarTrumpet\EarTrumpet.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <18>
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (ShareX Team) [File not signed] C:\Program Files\ShareX\ShareX.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.25\AsSysCtrlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.22\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe
(services.exe ->) (Corsair Memory, Inc. -> Corsair) C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe <8>
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrB.exe
(services.exe ->) (GLAVSOFT, OOO -> GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\piecomponent.inf_amd64_0570478011758f12\Intel_PIE_Service.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> DTS Inc.) C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (philandro Software GmbH -> AnyDesk Software GmbH) C:\Program Files (x86)\AnyDesk\AnyDesk.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy) C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <6>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> TODO: <Company name>) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\System32\NahimicSvc64.exe <2>
(svchost.exe ->) (A-Volute SAS -> Nahimic) C:\Windows\SysWOW64\NahimicSvc32.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.823.7272.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [1084704 2020-05-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1808888 2021-08-09] (GLAVSOFT, OOO -> GlavSoft LLC.)
HKLM\...\Run: [CORSAIR iCUE 4 Software] => C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUE Launcher.exe [185384 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1129440 2023-09-04] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [44161792 2023-08-31] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [39159608 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4374888 2023-09-11] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\Run: [com.messenger] => "C:\Users\Jarda\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\Run: [MicrosoftEdgeAutoLaunch_15294568B9E029276CFD801D64E3B25D] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4108344 2023-09-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {00cf46ca-9975-11ec-bc7c-0433c2041969} - "H:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {3f3d8e39-2aaa-11ec-bbdc-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {46d995f5-315b-11eb-ba5d-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {a5ca97bc-6c39-11eb-bab6-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {cba3a365-0619-11eb-ba15-d45d64d2ff5a} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {fc741398-73aa-11ed-bdc6-0433c2041969} - "G:\OnePlus_setup.exe" /s
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\117.0.5938.63\Installer\chrmstp.exe [2023-09-13] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AnyDesk.lnk [2022-07-30]
ShortcutTarget: AnyDesk.lnk -> C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
Startup: C:\Users\Jarda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2021-02-12]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [File not signed]

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {4A6B1EAD-6584-4E79-9892-EDE9CDD3ED32} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3571168 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {E8B31E31-D3A9-401E-A49F-E98DBCEC2895} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3807712 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {A3425453-2D47-49EC-9A55-0D9176F07F80} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [308584 2023-02-01] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {5598A9C6-EAF5-498D-BADA-27B37534B456} - System32\Tasks\ASUS\ArmouryAIOFanServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AIOFanSDK\ArmouryAIOFanServer.exe (No File)
Task: {C41916F9-9C57-4DEA-913F-22EC0552F57F} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1860968 2023-02-01] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {8A09556C-B958-416B-9DCF-A94E22026E02} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2112560 2020-03-17] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {8066465C-6D0C-4C85-9746-FD71CD61F037} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1469288 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {254FFA8B-5537-4746-A9D3-ED50F8E50537} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d688de8ce20e44 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-09-12] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {CE7A29D1-3031-492B-A51E-44C4F4DAD168} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-09-12] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {B094AA12-7336-4840-B3A7-1D2825AD90B6} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1509424 2020-03-31] (ASUSTeK Computer Inc. -> )
Task: {7AA5836A-79D4-4A0F-852A-640009A32429} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [46597976 2022-12-15] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {A2EB2EAF-8F9F-4179-BEC5-15049AA0AA49} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4329008 2020-03-17] (ASUSTeK Computer Inc. -> TODO: <Company name>)
Task: {E5BA5B7F-21AF-4754-93D5-9285B47171C6} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2022-12-05] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {FB19ABDC-943F-4E8A-BD79-8A99AB8218D0} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (No File)
Task: {81008D7D-2E32-4B69-9D6B-9D8FF9EDDED3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {64086BEB-E04E-4BBC-9194-DE97A250341B} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703544 2023-03-07] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "9997c3a2-4d53-4ae0-b56f-fc11c063289f" --version "6.10.10347" --silent
Task: {B31EE8B6-E85B-400E-86BC-4E1798AFDE0A} - System32\Tasks\eth => Command(1): "C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe" -> -Profile2
Task: {B31EE8B6-E85B-400E-86BC-4E1798AFDE0A} - System32\Tasks\eth => Command(2): D:\Claymore's miner - widows\start.bat [ [ ]]
Task: {1E5B608A-F0BD-4D18-8209-8F9DE8D8F42B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-12] (Google LLC -> Google LLC)
Task: {24A186E3-AE3F-4205-88C5-9F45ADB1E0B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-12] (Google LLC -> Google LLC)
Task: {B2A91F49-E841-47F4-942F-1E0BCDF433EA} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {73673F49-EF0E-425B-B86A-234926F70AA4} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2889408300-3099558023-1739123032-1001 => C:\Users\Jarda\AppData\Local\Programs\Messenger\MessengerHelper.exe [2172664 2023-07-28] (Facebook, Inc. -> Meta Platforms, Inc.)
Task: {0CA18632-4C46-4A5E-A58D-F143667939A0} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913464 2023-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {663951E2-C828-4F49-BF3F-D710CBF25418} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913464 2023-08-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {4680AD1C-1FBC-4096-92FA-D50F61BF3C9A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124352 2023-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D3A6EA4-C44E-41E6-9E56-0A94C1D50330} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124352 2023-08-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {E332C608-12CD-469D-898E-9B7086FDA518} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {429A24D4-852F-4FB3-A778-0CB211E46422} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {12388C09-CD11-453D-85AB-4711D307C3EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3DF0E564-E488-4D1A-9D19-ACF6265A0F83} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FFFDFFB9-413F-4B39-B985-99A023959225} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [675232 2023-09-09] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {3806A4F5-D6CD-4F55-8A84-6CB6D9364275} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [722336 2023-09-09] (Mozilla Corporation -> Mozilla Foundation)
Task: {A92E2873-AA33-4CBE-B473-68B11CD8B8A0} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [791608 2021-03-01] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {FC9CF9D9-6B52-441B-833A-0D8AF5D20D26} - System32\Tasks\NahimicSvc32Run => C:\Windows\SysWOW64\NahimicSvc32.exe [833688 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {27303456-0D0A-4723-BE8E-8C84AFACFC5F} - System32\Tasks\NahimicSvc64Run => C:\Windows\system32\NahimicSvc64.exe [1094808 2021-11-01] (A-Volute SAS -> Nahimic)
Task: {FAB9B4D4-56D9-48C6-93DB-2A5AA1764EFE} - System32\Tasks\NahimicTask32 => C:\Windows\system32\..\SysWOW64\NahimicSvc32.exe [833688 ] (A-Volute SAS -> Nahimic)
Task: {E0FF1B26-15CD-49EC-94FB-CB03582D73DF} - System32\Tasks\NahimicTask64 => C:\Windows\system32\.\NahimicSvc64.exe [1094808 ] (A-Volute SAS -> Nahimic)
Task: {6938414A-535F-479B-B241-2C855B7F6812} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {D32EF680-0132-4A56-9475-F8AB5EF55B7F} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {2219E219-9E03-4781-8058-59F4A675E640} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {380C2905-25D7-4D3F-AE20-4BBEF90DB3F2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A285D0A8-FDD9-4E6F-91C3-2F4E40FD0D05} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C95D218E-8CB2-4263-8FD0-1B8537729960} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3291B384-48BF-42B6-9F1C-1FA7EEAB13B5} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2AD8D67C-16AD-41C6-B3F1-73F65B4DB808} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1F1338DF-2CD3-44D8-90D1-E72CD48DA4C2} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FDF1CA79-B2C3-4E17-A684-C47FC6D9F607} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {225D201F-A9D2-4C87-B608-E8A00F5A3F63} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [133905984 2023-03-10] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{9bbcb9d9-dce0-4cba-a026-a6a2fcba8c03}: [NameServer] 1.1.1.1
Tcpip\..\Interfaces\{9bbcb9d9-dce0-4cba-a026-a6a2fcba8c03}: [DhcpNameServer] 10.0.1.138
Tcpip\..\Interfaces\{c32b8611-beb6-4eba-809f-df963f6486c9}: [DhcpNameServer] 192.168.206.99
Tcpip\..\Interfaces\{c4de79b0-1b1e-42b6-8fbe-d62a96ce2b76}: [DhcpNameServer] 192.168.252.43

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Jarda\AppData\Local\Microsoft\Edge\User Data\Default [2023-08-25]
Edge Extension: (Edge relevant text changes) - C:\Users\Jarda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-08-14]
Edge Extension: (uBlock Origin) - C:\Users\Jarda\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\odfafepnkmbhccpbejgmiehpchacaeak [2023-07-29]

FireFox:
========
FF DefaultProfile: qax0vytj.default
FF ProfilePath: C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\qax0vytj.default [2022-12-25]
FF ProfilePath: C:\Users\Jarda\AppData\Roaming\Mozilla\Firefox\Profiles\5yg1uejh.default-release [2023-09-01]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-09-04] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-09-04] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default [2023-09-13]
CHR DownloadDir: D:\Stažené soubory
CHR Notifications: Default -> hxxps://www.twitch.tv
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://news.google.com/?hl=cs&gl=CZ&ceid=CZ%3Acs"
CHR Extension: (BetterTTV) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2023-07-26]
CHR Extension: (7TV) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\ammjkodgmmoknidbanneddgankgfejfh [2023-05-31]
CHR Extension: (Seznam Doplněk – Email) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2023-09-13]
CHR Extension: (uBlock Origin) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2023-09-12]
CHR Extension: (AHA Music - Song Finder for Browser) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpacanjfikmhoddligfbehkpomnbgblf [2023-07-07]
CHR Extension: (Distill Web Monitor) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\inlikjemeeknofckkjolnjbpehgadgge [2023-09-10]
CHR Extension: (PocketTube: Youtube Subscription Manager) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdmnjgijlmjgmimahnillepgcgeemffb [2023-09-08]
CHR Extension: (MetaMask) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nkbihfbeogaeaoehlefnkodbefgpgknn [2023-09-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jarda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-09-04] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3966432 2023-08-22] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AnyDesk; C:\Program Files (x86)\AnyDesk\AnyDesk.exe [3853384 2022-08-13] (philandro Software GmbH -> AnyDesk Software GmbH)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [399984 2023-03-26] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.22\atkexComSvc.exe [894824 2022-12-09] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.25\AsSysCtrlService.exe [1360016 2020-03-17] (ASUSTeK Computer Inc. -> ) [File not signed]
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-09-12] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.08\AsusFanControlService.exe [1438744 2022-08-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [168520 2020-09-12] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [1189784 2023-09-13] (ASUSTeK Computer Inc. -> )
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [14893832 2023-07-05] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817440 2023-08-19] (Microsoft Corporation -> Microsoft Corporation)
R2 CMigrationService; C:\Program Files (x86)\Samsung\Samsung Magician\MigrationService\MigrationService.exe [761408 2023-03-10] (Samsung Electronics Co., Ltd. -> Clonix & CottonCandy)
R2 CorsairGamingAudioConfig; C:\Windows\System32\CorsairGamingAudioCfgService64.exe [614432 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueLLAccessService.exe [238632 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\Corsair.Service.exe [84008 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 CorsairUniwillService; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CueUniwillService.exe [108072 2023-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [File not signed]
R2 CtHdaSvc; C:\Windows\sysWow64\CtHdaSvc.exe [133080 2021-01-11] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
R2 DtsApo4Service; C:\Windows\System32\DTS\PC\APO4x\DtsApo4Service.exe [185432 2020-06-01] (Microsoft Windows Hardware Compatibility Publisher -> DTS Inc.)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [10994792 2023-09-11] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2023-03-04] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [935344 2023-06-17] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029456 2023-08-06] (Epic Games Inc. -> Epic Games, Inc.)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [347408 2022-10-03] (Underwriters Laboratories Inc. -> Futuremark)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R3 iCUEDevicePluginHost; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\iCUEDevicePluginHost.exe [462888 2023-01-20] (Corsair Memory, Inc. -> Corsair)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10676992 2023-08-31] (Logitech Inc -> Logitech, Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4210536 2023-02-10] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9255384 2023-05-27] (Malwarebytes Inc. -> Malwarebytes)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1920152 2021-11-01] (A-Volute SAS -> Nahimic)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2021-06-20] (Even Balance, Inc. -> )
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2022-07-13] (Even Balance, Inc. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1244144 2023-07-10] (Rockstar Games, Inc. -> Rockstar Games)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 SamsungMagicianSVC; C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagicianSVC.exe [381504 2023-03-10] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1808888 2021-08-09] (GLAVSOFT, OOO -> GlavSoft LLC.)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\Wellbia.com\ucldr_battlegrounds_gl.exe [5964328 2023-02-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [10513248 2023-01-28] (KRAFTON, Inc. -> KRAFTON, Inc)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_d3828c822366e497\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_d3828c822366e497\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 aqnic650; C:\Windows\System32\drivers\aqnic650.sys [207672 2020-05-04] (Aquantia Corp. -> Aquantia Corporation)
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2019-07-02] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [34384 2022-02-10] (ASUSTeK Computer Inc. -> )
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-16] (ASUSTeK COMPUTER INC. -> )
S3 atvi-brynhildr; C:\ProgramData\Battle.net_components\brynhildr_odin\brynhildr.sys [2355952 2022-03-11] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 atvi-randgrid_sr; E:\Hry\Steam\steamapps\common\Call of Duty HQ\randgrid.sys [2986792 2023-08-16] (Activision Publishing Inc -> Activision Blizzard, Inc.)
R3 AVoluteSS3Vad; C:\Windows\System32\drivers\AVoluteSS3Vad.sys [93672 2021-10-14] (A-Volute -> Windows (R) Win 7 DDK provider)
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63008 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccessC2D033F14715AA7325305EA42FBFC65BF867CC1D; C:\Program Files\Corsair\CORSAIR iCUE 4 Software\CorsairLLAccess64.sys [21752 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2023-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz154; C:\Windows\temp\cpuz154\cpuz154_x64.sys [40976 2023-09-13] (Microsoft Windows Hardware Compatibility Publisher -> CPUID)
R3 cthda; C:\Windows\system32\drivers\cthda.sys [1090416 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R3 cthdb; C:\Windows\system32\DRIVERS\cthdb.sys [53616 2021-01-11] (Creative Technology Ltd -> Creative Technology Ltd)
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2022-12-29] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [54752 2023-01-18] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 logi_audio_surround; C:\Windows\system32\drivers\logi_audio_surround.sys [43856 2021-07-07] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-23] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-23] (Logitech Inc -> Logitech)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [21480 2023-05-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239544 2023-05-27] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl28424da5; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{7D7AEC01-1139-43CC-9B2F-87D9F39F63D1}\MpKslDrv.sys [222464 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [18496 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S2 SecDrv; C:\Windows\SysWOW64\drivers\SECDRV.SYS [12400 2020-10-26] (Macrovision Europe Ltd) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55872 2023-08-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [574872 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-31] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [1447240 2023-02-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 cpuz150; \??\C:\Windows\temp\cpuz150\cpuz150_x64.sys [X]
S1 EneTechIo; \??\C:\Windows\system32\drivers\ene.sys [X]
S3 HWiNFO_163; \??\C:\Users\Jarda\AppData\Local\Temp\HWiNFO64A_163.SYS [X] <==== ATTENTION

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-09-13 20:18 - 2023-09-13 20:19 - 000000000 ____D C:\FRST
2023-09-13 20:16 - 2023-09-13 20:16 - 000000000 ____D C:\AdwCleaner
2023-09-12 20:40 - 2023-09-12 20:40 - 000000000 ___HD C:\$WinREAgent
2023-09-09 08:48 - 2023-09-10 08:54 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-09-04 20:22 - 2023-09-04 20:22 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2023.lnk
2023-09-04 20:20 - 2023-09-04 20:20 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2023.lnk
2023-09-04 20:15 - 2023-09-04 20:15 - 000001386 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2023-09-03 09:19 - 2023-09-03 09:20 - 000000000 ____D C:\Users\Jarda\AppData\Local\Starfield
2023-09-02 11:17 - 2023-09-02 19:26 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\Resilio Sync
2023-09-02 11:17 - 2023-09-02 11:17 - 000000961 _____ C:\Users\Jarda\AppData\Roaming\Microsoft\Windows\Start Menu\Resilio Sync.lnk
2023-09-02 11:17 - 2023-09-02 11:17 - 000000000 ____D C:\ProgramData\Resilio Sync
2023-09-01 13:11 - 2023-09-01 13:11 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-09-01 13:11 - 2023-09-01 13:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-09-01 13:11 - 2021-01-27 13:17 - 002797808 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2023-09-01 13:11 - 2021-01-27 13:17 - 002154224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2023-09-01 13:11 - 2021-01-27 13:17 - 001295088 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2023-09-01 13:11 - 2020-12-02 08:48 - 000169272 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2023-09-01 13:11 - 2020-12-02 08:48 - 000145208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2023-09-01 13:11 - 2020-03-06 12:03 - 000069840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2023-09-01 13:11 - 2020-03-04 14:54 - 000050592 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\NvModuleTracker.sys
2023-09-01 13:07 - 2023-09-01 13:07 - 000000000 ____D C:\Windows\system32\lxss
2023-09-01 13:07 - 2023-09-01 13:07 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2023-09-01 13:07 - 2023-08-15 06:23 - 000086568 _____ C:\Windows\system32\FvSDK_x64.dll
2023-09-01 13:07 - 2023-08-15 06:23 - 000075304 _____ C:\Windows\SysWOW64\FvSDK_x86.dll
2023-09-01 13:03 - 2023-08-16 06:27 - 001487480 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-09-01 13:03 - 2023-08-16 06:27 - 001227400 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-09-01 13:03 - 2023-08-16 06:27 - 000849088 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-09-01 13:03 - 2023-08-16 06:27 - 000849088 _____ C:\Windows\system32\vulkaninfo.exe
2023-09-01 13:03 - 2023-08-16 06:27 - 000713912 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-09-01 13:03 - 2023-08-16 06:27 - 000713912 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-09-01 13:03 - 2023-08-16 06:27 - 000653504 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-09-01 13:03 - 2023-08-16 06:27 - 000653504 _____ C:\Windows\system32\vulkan-1.dll
2023-09-01 13:03 - 2023-08-16 06:27 - 000637112 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-09-01 13:03 - 2023-08-16 06:27 - 000637112 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-09-01 13:03 - 2023-08-16 06:24 - 000669320 _____ C:\Windows\system32\nvofapi64.dll
2023-09-01 13:03 - 2023-08-16 06:24 - 000504456 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-09-01 13:03 - 2023-08-16 06:23 - 001537648 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-09-01 13:03 - 2023-08-16 06:23 - 001195128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-09-01 13:03 - 2023-08-16 06:23 - 000938608 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-09-01 13:03 - 2023-08-16 06:23 - 000777864 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-09-01 13:03 - 2023-08-16 06:22 - 014520968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 012066424 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 006190200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 003483272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 002168456 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 001622152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 000992368 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 000768648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-09-01 13:03 - 2023-08-16 06:22 - 000459912 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-09-01 13:03 - 2023-08-16 06:21 - 007858120 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2023-09-01 13:03 - 2023-08-16 06:21 - 006737496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-09-01 13:03 - 2023-08-16 06:21 - 005845640 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-09-01 13:03 - 2023-08-16 06:21 - 005550728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-09-01 13:03 - 2023-08-16 06:21 - 000853104 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-09-01 13:03 - 2023-08-15 06:23 - 000108122 _____ C:\Windows\system32\nvinfo.pb
2023-09-01 13:01 - 2023-09-01 13:01 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\ArmoredCore6
2023-08-31 20:22 - 2023-08-31 21:25 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\G HUB
2023-08-31 20:21 - 2023-08-31 20:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-08-31 20:21 - 2023-08-31 20:21 - 000000000 ____D C:\Program Files\LGHUB
2023-08-19 17:13 - 2023-08-19 17:13 - 000000000 ____D C:\Users\Jarda\AppData\Local\GolfIt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-09-13 20:18 - 2020-09-12 13:33 - 000000000 ____D C:\Program Files (x86)\Steam
2023-09-13 20:15 - 2023-05-27 21:34 - 000000000 ____D C:\Users\Jarda\AppData\Local\Malwarebytes
2023-09-13 20:14 - 2021-12-18 00:59 - 000000000 ____D C:\Windows\SystemTemp
2023-09-13 20:14 - 2020-09-12 10:37 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-13 20:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-13 19:06 - 2020-09-12 10:37 - 001693140 _____ C:\Windows\system32\PerfStringBackup.INI
2023-09-13 19:06 - 2019-12-07 16:41 - 000716770 _____ C:\Windows\system32\perfh005.dat
2023-09-13 19:06 - 2019-12-07 16:41 - 000144948 _____ C:\Windows\system32\perfc005.dat
2023-09-13 19:06 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2023-09-13 19:04 - 2020-09-12 10:38 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-09-13 19:03 - 2021-07-03 14:29 - 000000000 ____D C:\ProgramData\NVIDIA
2023-09-13 19:03 - 2020-10-25 13:39 - 000000000 ____D C:\Program Files\CCleaner
2023-09-13 19:00 - 2021-07-25 10:53 - 000003112 _____ C:\Windows\system32\Tasks\NahimicTask32
2023-09-13 19:00 - 2021-07-25 10:53 - 000003092 _____ C:\Windows\system32\Tasks\NahimicTask64
2023-09-13 19:00 - 2020-09-12 16:20 - 000000000 ____D C:\ProgramData\ASUS
2023-09-13 18:59 - 2020-09-12 16:20 - 001228336 _____ C:\Windows\system32\wpbbin.exe
2023-09-13 18:59 - 2020-09-12 16:20 - 001189784 _____ C:\Windows\system32\AsusUpdateCheck.exe
2023-09-13 18:59 - 2020-09-12 16:20 - 000008192 ___SH C:\DumpStack.log.tmp
2023-09-13 18:59 - 2020-09-12 16:20 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-09-13 18:59 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ServiceState
2023-09-12 23:02 - 2019-12-07 11:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-09-12 23:01 - 2020-09-12 11:03 - 000003142 _____ C:\Windows\system32\Tasks\MSIAfterburner
2023-09-12 22:51 - 2020-09-12 16:20 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-09-12 20:44 - 2021-07-03 14:30 - 000000000 ____D C:\Users\Jarda\AppData\Local\NVIDIA Corporation
2023-09-12 20:43 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-12 20:43 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2023-09-12 20:42 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2023-09-12 20:39 - 2020-09-12 10:28 - 000000000 ____D C:\Program Files\ASUS
2023-09-11 21:22 - 2020-10-04 10:34 - 000000000 ____D C:\Users\Jarda\AppData\Local\CrashDumps
2023-09-11 20:48 - 2020-09-24 22:17 - 000000000 ____D C:\Users\Jarda\AppData\Local\Ubisoft Game Launcher
2023-09-11 20:39 - 2023-05-25 08:03 - 000000000 ___RD C:\Users\Jarda\Creative Cloud Files
2023-09-11 20:39 - 2022-06-14 12:14 - 000000000 ___HD C:\adobeTemp
2023-09-11 20:39 - 2020-10-25 22:55 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-09-11 20:32 - 2020-09-13 11:07 - 000000000 ____D C:\Users\Jarda\AppData\Local\Battle.net
2023-09-11 20:31 - 2023-02-05 15:28 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\Kodi
2023-09-11 20:22 - 2023-07-28 15:13 - 000003530 _____ C:\Windows\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-09-11 20:22 - 2020-10-25 22:59 - 000003506 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2023-09-10 21:18 - 2020-09-12 10:57 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2023-09-10 20:14 - 2020-09-12 10:26 - 000000000 ____D C:\Users\Jarda\AppData\Local\D3DSCache
2023-09-10 09:32 - 2020-09-13 18:46 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\vlc
2023-09-10 09:18 - 2020-09-24 21:03 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\Microsoft\Excel
2023-09-10 08:54 - 2023-06-16 21:32 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-09-09 18:35 - 2020-09-17 00:27 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-09 17:44 - 2023-06-16 21:32 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-09-07 20:26 - 2021-11-06 10:26 - 000000000 ____D C:\Users\Jarda\AppData\Local\ForzaHorizon5
2023-09-04 20:22 - 2020-10-25 22:55 - 000000000 ____D C:\Program Files\Adobe
2023-09-04 20:15 - 2020-10-25 22:55 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-09-04 19:42 - 2020-09-13 11:06 - 000000000 ____D C:\Program Files (x86)\Battle.net
2023-09-04 17:10 - 2020-09-12 11:07 - 000000000 ____D C:\Users\Jarda\AppData\Local\LGHUB
2023-09-04 00:05 - 2020-09-12 16:23 - 000000000 ____D C:\Users\Jarda
2023-09-03 20:23 - 2020-09-21 20:07 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2023-09-03 16:59 - 2020-09-12 14:41 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\discord
2023-09-03 16:52 - 2021-11-16 19:58 - 000000000 ____D C:\Users\Jarda\AppData\Local\Discord
2023-09-03 09:00 - 2020-09-15 18:07 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2023-09-02 17:09 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\LiveKernelReports
2023-09-01 14:15 - 2022-12-25 00:51 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-09-01 13:12 - 2023-07-28 22:47 - 000000000 ____D C:\Users\Jarda\.insomniac
2023-09-01 13:12 - 2022-07-08 16:18 - 000000000 ____D C:\Users\Jarda\AppData\Local\@trezorsuite-desktop-updater
2023-09-01 13:12 - 2021-07-03 13:30 - 000000000 ____D C:\Users\Jarda\AppData\Corsair
2023-09-01 13:11 - 2021-07-03 14:30 - 000000000 ____D C:\Users\Jarda\AppData\Local\NVIDIA
2023-09-01 13:11 - 2021-07-03 14:29 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-09-01 13:11 - 2020-09-12 10:47 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-09-01 13:11 - 2020-09-12 10:33 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-09-01 09:37 - 2020-09-21 20:07 - 000000000 ____D C:\Windows\SysWOW64\directx
2023-08-31 21:25 - 2020-09-12 11:07 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\LGHUB
2023-08-31 21:17 - 2021-02-20 19:04 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-08-31 20:29 - 2020-09-12 16:23 - 000000000 ____D C:\Users\Jarda\AppData\Local\Packages
2023-08-31 20:27 - 2020-09-12 16:20 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-08-31 20:24 - 2020-09-24 20:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2023-08-31 20:23 - 2022-10-22 09:02 - 000079360 _____ (Microsoft Corporation) C:\Windows\system32\xgamehelper.exe
2023-08-31 20:23 - 2022-10-22 09:02 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\xgamecontrol.exe
2023-08-31 20:23 - 2021-11-17 22:39 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\gamelaunchhelper.dll
2023-08-31 20:23 - 2020-09-13 19:31 - 002807296 _____ (Microsoft Corporation) C:\Windows\system32\xgameruntime.dll
2023-08-31 20:23 - 2020-09-13 19:31 - 000493056 _____ (Microsoft Corporation) C:\Windows\system32\gameplatformservices.dll
2023-08-31 20:23 - 2020-09-13 19:31 - 000247288 _____ (Microsoft Corporation) C:\Windows\system32\gamingservicesproxy.dll
2023-08-31 20:23 - 2020-09-13 19:31 - 000202240 _____ (Microsoft Corporation) C:\Windows\system32\gameconfighelper.dll
2023-08-31 20:23 - 2020-09-13 19:31 - 000131072 _____ (Microsoft Corporation) C:\Windows\system32\gamingtcuihelpers.dll
2023-08-16 21:27 - 2022-05-31 21:33 - 000000000 ____D C:\Users\Jarda\AppData\Roaming\Messenger
2023-08-16 21:27 - 2022-05-31 21:33 - 000000000 ____D C:\Users\Jarda\AppData\Local\Messenger
2023-08-14 20:51 - 2020-09-13 11:06 - 000000000 ____D C:\Users\Jarda\AppData\Local\Blizzard Entertainment

==================== Files in the root of some directories ========

2022-03-11 21:16 - 2023-08-08 21:12 - 000000235 _____ () C:\Users\Jarda\AppData\Roaming\BattleBitConfig.ini
2023-06-17 14:08 - 2023-06-17 14:08 - 000000019 _____ () C:\Users\Jarda\AppData\Roaming\BattleBitMutedPlayers.ini
2020-12-31 15:14 - 2020-12-31 15:14 - 000012288 _____ () C:\Users\Jarda\AppData\Roaming\emp.bin
2022-10-30 13:54 - 2022-10-30 13:54 - 000005278 _____ () C:\Users\Jarda\AppData\Local\92678131459
2020-09-12 15:16 - 2023-07-15 21:24 - 001065984 _____ () C:\Users\Jarda\AppData\Local\file__0.localstorage
2022-06-24 12:09 - 2022-06-24 12:09 - 000000001 _____ () C:\Users\Jarda\AppData\Local\llftool.4.40.agreement
2022-06-24 16:20 - 2022-06-24 16:20 - 000000019 _____ () C:\Users\Jarda\AppData\Local\llftool.license
2020-10-26 09:32 - 2020-10-26 09:32 - 000000000 _____ () C:\Users\Jarda\AppData\Local\oobelibMkey.log
2021-09-11 20:55 - 2021-09-11 20:55 - 000000861 _____ () C:\Users\Jarda\AppData\Local\recently-used.xbel
2020-10-24 14:05 - 2021-03-05 10:23 - 000007650 _____ () C:\Users\Jarda\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Přílohy
Addition.zip
(23.84 KiB) Staženo 27 x
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {00cf46ca-9975-11ec-bc7c-0433c2041969} - "H:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {3f3d8e39-2aaa-11ec-bbdc-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {46d995f5-315b-11eb-ba5d-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {a5ca97bc-6c39-11eb-bab6-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {cba3a365-0619-11eb-ba15-d45d64d2ff5a} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {fc741398-73aa-11ed-bdc6-0433c2041969} - "G:\OnePlus_setup.exe" /s
Task: {1E5B608A-F0BD-4D18-8209-8F9DE8D8F42B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-12] (Google LLC -> Google LLC)
Task: {24A186E3-AE3F-4205-88C5-9F45ADB1E0B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-12] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
S3 HWiNFO_163; \??\C:\Users\Jarda\AppData\Local\Temp\HWiNFO64A_163.SYS [X] <==== ATTENTION
C:\DumpStack.log.tmp
AlternateDataStreams: C:\Users\Jarda\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jarda\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4422]
FirewallRules: [TCP Query User{25A1EDAB-BEAA-4FE1-8DDE-55C2EC3BDFFC}D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe => No File
FirewallRules: [UDP Query User{F81FF2AC-4412-4FC3-875A-0C529842ADDE}D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe => No File
FirewallRules: [{ACA391CE-C664-4338-BB08-5EECD31BDCBC}] => (Allow) E:\Hry\Steam\steamapps\common\GRID (2019)\Grid_dx12.exe => No File
FirewallRules: [{753E7E02-17DA-4576-A116-7E86BDC513B3}] => (Allow) E:\Hry\Steam\steamapps\common\GRID (2019)\Grid_dx12.exe => No File
FirewallRules: [{51F874E3-1BC0-41AC-B5D1-4C5D80FAF6D3}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe => No File
FirewallRules: [{99A8A98E-BE51-4286-B453-A3D65DAF5C13}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe => No File
FirewallRules: [{52C26868-86B9-4FE9-9EC0-E57C4B1AE234}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe => No File
FirewallRules: [{BA2489D6-6B6B-4848-A192-34894AD903F2}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe => No File
FirewallRules: [TCP Query User{CDE44C21-65A3-41FD-AF23-38C97A354706}F:\hry\pac-man world re-pac\pac-man world re-pac.exe] => (Block) F:\hry\pac-man world re-pac\pac-man world re-pac.exe => No File
FirewallRules: [UDP Query User{1B40C52F-CE4C-4FD7-BE24-95B3F35F8072}F:\hry\pac-man world re-pac\pac-man world re-pac.exe] => (Block) F:\hry\pac-man world re-pac\pac-man world re-pac.exe => No File
FirewallRules: [{FA5947EE-789B-4755-B96A-552D49783553}] => (Allow) F:\Hry\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => No File
FirewallRules: [{02BBE435-3874-49B6-9843-E487D32F31C3}] => (Allow) F:\Hry\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => No File
FirewallRules: [{5B076C88-2445-454D-93B4-7E6BD67642C3}] => (Allow) E:\Hry\Steam\steamapps\common\Factorio\bin\x64\factorio.exe => No File
FirewallRules: [{E71EAD4F-9A70-4D0F-AE86-2CD634DB76D2}] => (Allow) E:\Hry\Steam\steamapps\common\Factorio\bin\x64\factorio.exe => No File
FirewallRules: [{2C5BD9E2-E1DE-47C3-9785-2FC960B9F316}] => (Allow) E:\Hry\Steam\steamapps\common\Soul Survivors\Soul Survivors.exe => No File
FirewallRules: [{F246F530-B089-424C-B2C8-E5D027D047B5}] => (Allow) E:\Hry\Steam\steamapps\common\Soul Survivors\Soul Survivors.exe => No File
FirewallRules: [TCP Query User{A82D1CD1-3A7F-4747-80D0-71F0C4FFDD55}E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe] => (Block) E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe => No File
FirewallRules: [UDP Query User{986DA1A1-2E3D-48FB-8A9A-9D9597165546}E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe] => (Block) E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe => No File
FirewallRules: [TCP Query User{1F01590C-B74E-444C-BA61-2B13C0EC5F91}F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe] => (Block) F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe => No File
FirewallRules: [UDP Query User{E8CC5A1E-B478-4CF2-977A-0299E3AD5240}F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe] => (Block) F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe => No File

EmptyTemp:
End
Uložte do D:\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Jarda62
Návštěvník
Návštěvník
Příspěvky: 170
Registrován: 28 črc 2008 17:59

Re: Kontrola

#3 Příspěvek od Jarda62 »

Děkuji za kontrolu a posílám log.

Fix result of Farbar Recovery Scan Tool (x64) Version: 14-09-2023
Ran by Jarda (14-09-2023 17:51:39) Run:1
Running from D:\Plocha
Loaded Profiles: Jarda
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {00cf46ca-9975-11ec-bc7c-0433c2041969} - "H:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {3f3d8e39-2aaa-11ec-bbdc-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {46d995f5-315b-11eb-ba5d-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {a5ca97bc-6c39-11eb-bab6-0433c2041969} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {cba3a365-0619-11eb-ba15-d45d64d2ff5a} - "F:\OnePlus_setup.exe" /s
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\...\MountPoints2: {fc741398-73aa-11ed-bdc6-0433c2041969} - "G:\OnePlus_setup.exe" /s
Task: {1E5B608A-F0BD-4D18-8209-8F9DE8D8F42B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-12] (Google LLC -> Google LLC)
Task: {24A186E3-AE3F-4205-88C5-9F45ADB1E0B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-09-12] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
S3 HWiNFO_163; \??\C:\Users\Jarda\AppData\Local\Temp\HWiNFO64A_163.SYS [X] <==== ATTENTION
C:\DumpStack.log.tmp
AlternateDataStreams: C:\Users\Jarda\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jarda\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4422]
FirewallRules: [TCP Query User{25A1EDAB-BEAA-4FE1-8DDE-55C2EC3BDFFC}D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe => No File
FirewallRules: [UDP Query User{F81FF2AC-4412-4FC3-875A-0C529842ADDE}D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe] => (Allow) D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe => No File
FirewallRules: [{ACA391CE-C664-4338-BB08-5EECD31BDCBC}] => (Allow) E:\Hry\Steam\steamapps\common\GRID (2019)\Grid_dx12.exe => No File
FirewallRules: [{753E7E02-17DA-4576-A116-7E86BDC513B3}] => (Allow) E:\Hry\Steam\steamapps\common\GRID (2019)\Grid_dx12.exe => No File
FirewallRules: [{51F874E3-1BC0-41AC-B5D1-4C5D80FAF6D3}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe => No File
FirewallRules: [{99A8A98E-BE51-4286-B453-A3D65DAF5C13}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\BattleBitEAC.exe => No File
FirewallRules: [{52C26868-86B9-4FE9-9EC0-E57C4B1AE234}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe => No File
FirewallRules: [{BA2489D6-6B6B-4848-A192-34894AD903F2}] => (Allow) E:\Hry\Steam\steamapps\common\BattleBit Remastered Playtest\EACRepair.exe => No File
FirewallRules: [TCP Query User{CDE44C21-65A3-41FD-AF23-38C97A354706}F:\hry\pac-man world re-pac\pac-man world re-pac.exe] => (Block) F:\hry\pac-man world re-pac\pac-man world re-pac.exe => No File
FirewallRules: [UDP Query User{1B40C52F-CE4C-4FD7-BE24-95B3F35F8072}F:\hry\pac-man world re-pac\pac-man world re-pac.exe] => (Block) F:\hry\pac-man world re-pac\pac-man world re-pac.exe => No File
FirewallRules: [{FA5947EE-789B-4755-B96A-552D49783553}] => (Allow) F:\Hry\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => No File
FirewallRules: [{02BBE435-3874-49B6-9843-E487D32F31C3}] => (Allow) F:\Hry\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe => No File
FirewallRules: [{5B076C88-2445-454D-93B4-7E6BD67642C3}] => (Allow) E:\Hry\Steam\steamapps\common\Factorio\bin\x64\factorio.exe => No File
FirewallRules: [{E71EAD4F-9A70-4D0F-AE86-2CD634DB76D2}] => (Allow) E:\Hry\Steam\steamapps\common\Factorio\bin\x64\factorio.exe => No File
FirewallRules: [{2C5BD9E2-E1DE-47C3-9785-2FC960B9F316}] => (Allow) E:\Hry\Steam\steamapps\common\Soul Survivors\Soul Survivors.exe => No File
FirewallRules: [{F246F530-B089-424C-B2C8-E5D027D047B5}] => (Allow) E:\Hry\Steam\steamapps\common\Soul Survivors\Soul Survivors.exe => No File
FirewallRules: [TCP Query User{A82D1CD1-3A7F-4747-80D0-71F0C4FFDD55}E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe] => (Block) E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe => No File
FirewallRules: [UDP Query User{986DA1A1-2E3D-48FB-8A9A-9D9597165546}E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe] => (Block) E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe => No File
FirewallRules: [TCP Query User{1F01590C-B74E-444C-BA61-2B13C0EC5F91}F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe] => (Block) F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe => No File
FirewallRules: [UDP Query User{E8CC5A1E-B478-4CF2-977A-0299E3AD5240}F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe] => (Block) F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{00cf46ca-9975-11ec-bc7c-0433c2041969} => removed successfully
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f3d8e39-2aaa-11ec-bbdc-0433c2041969} => removed successfully
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{46d995f5-315b-11eb-ba5d-0433c2041969} => removed successfully
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a5ca97bc-6c39-11eb-bab6-0433c2041969} => removed successfully
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cba3a365-0619-11eb-ba15-d45d64d2ff5a} => removed successfully
HKU\S-1-5-21-2889408300-3099558023-1739123032-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fc741398-73aa-11ed-bdc6-0433c2041969} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1E5B608A-F0BD-4D18-8209-8F9DE8D8F42B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E5B608A-F0BD-4D18-8209-8F9DE8D8F42B}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{24A186E3-AE3F-4205-88C5-9F45ADB1E0B7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{24A186E3-AE3F-4205-88C5-9F45ADB1E0B7}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\System\CurrentControlSet\Services\HWiNFO_163 => removed successfully
HWiNFO_163 => service removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Users\Jarda\Data aplikací => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS removed successfully
"C:\Users\Jarda\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{25A1EDAB-BEAA-4FE1-8DDE-55C2EC3BDFFC}D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F81FF2AC-4412-4FC3-875A-0C529842ADDE}D:\hry\steam\steamapps\common\paladins\binaries\win64\paladins.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ACA391CE-C664-4338-BB08-5EECD31BDCBC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{753E7E02-17DA-4576-A116-7E86BDC513B3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{51F874E3-1BC0-41AC-B5D1-4C5D80FAF6D3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{99A8A98E-BE51-4286-B453-A3D65DAF5C13}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{52C26868-86B9-4FE9-9EC0-E57C4B1AE234}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BA2489D6-6B6B-4848-A192-34894AD903F2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CDE44C21-65A3-41FD-AF23-38C97A354706}F:\hry\pac-man world re-pac\pac-man world re-pac.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{1B40C52F-CE4C-4FD7-BE24-95B3F35F8072}F:\hry\pac-man world re-pac\pac-man world re-pac.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FA5947EE-789B-4755-B96A-552D49783553}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{02BBE435-3874-49B6-9843-E487D32F31C3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5B076C88-2445-454D-93B4-7E6BD67642C3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E71EAD4F-9A70-4D0F-AE86-2CD634DB76D2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2C5BD9E2-E1DE-47C3-9785-2FC960B9F316}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F246F530-B089-424C-B2C8-E5D027D047B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A82D1CD1-3A7F-4747-80D0-71F0C4FFDD55}E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{986DA1A1-2E3D-48FB-8A9A-9D9597165546}E:\hry\grand emprise - time travel survival\newkaragon\binaries\win64\newkaragon.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1F01590C-B74E-444C-BA61-2B13C0EC5F91}F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E8CC5A1E-B478-4CF2-977A-0299E3AD5240}F:\hry\armored core 6 - fires of rubicon\artbookost\acvi_for digital artbook and soundtrack.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 226812361 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 911594201 B
Windows/system/drivers => 40755263 B
Edge => 91136 B
Chrome => 3044128083 B
Firefox => 225546415 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 7600 B
LocalService => 14958 B
NetworkService => 755480 B
Jarda => 1922255805 B

RecycleBin => 0 B
EmptyTemp: => 5.9 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 14-09-2023 17:54:20)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 17:54:20 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola

#4 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Jarda62
Návštěvník
Návštěvník
Příspěvky: 170
Registrován: 28 črc 2008 17:59

Re: Kontrola

#5 Příspěvek od Jarda62 »

Děkuji.
Můžeme uzavřít :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118275
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Kontrola

#6 Příspěvek od Rudy »

OK, rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“