Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
ed
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 14 led 2005 18:27

Prosím o kontrolu logu

#1 Příspěvek od ed »

Dobrý večer,

prosím o kontrolu logu mého PC. I přes dlouhodobou nečinnost PC pořád něco "chroupe" :-)

Díky!

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2024
Ran by admin (administrator) on DESKTOP-I28IM4U (18-11-2024 21:42:55)
Running from C:\Users\admin\Desktop\FRST64.exe
Loaded Profiles: admin
Platform: Microsoft Windows 10 Home Version 22H2 19045.5131 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.263.0.11\OverwolfHelper.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.263.0.11\OverwolfHelper64.exe
(C:\Program Files (x86)\Overwolf\Overwolf.exe ->) (Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe <5>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <48>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Moonsworth, LLC -> Moonsworth LLC) C:\Users\admin\AppData\Local\Programs\Lunar Client\Lunar Client.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E1YATIBXE.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Overwolf Ltd -> Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S11RPB.EXE
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (SeriousBit Srl -> SeriousBit) C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
(services.exe ->) (Sophos BV -> Sophos B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2411.1001.6.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116904 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-05-03] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1130416 2024-09-09] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-10-05] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31190360 2021-09-29] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [12292504 2024-11-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [NetBalancer] => C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Tray.exe [1919208 2023-02-08] (SeriousBit Srl -> SeriousBit)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [MicrosoftEdgeAutoLaunch_29EBC4579851B72EE312C449CF839B1A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911248 2024-11-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45227312 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [Lunar Client] => C:\Users\admin\AppData\Local\Programs\Lunar Client\Lunar Client.exe [182068272 2024-11-18] (Moonsworth, LLC -> Moonsworth LLC)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E1YATIBXE.EXE [485736 2021-12-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 18\Program32\ZPSTRAY.EXE [680520 2017-01-09] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\MountPoints2: {febef221-f2d8-11eb-ab01-a85e45536675} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\Canon MP980 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9B.DLL [27648 2008-06-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP980 series: C:\WINDOWS\system32\CNMLM9B.DLL [279040 2008-06-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\EPSON L3560 Series 64MonitorBE: C:\WINDOWS\system32\E1YLMBBXE.DLL [237568 2021-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [3167256 2024-08-30] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\131.0.6778.69\Installer\chrmstp.exe [2024-11-12] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {F234DAAC-70CB-492F-A96B-AA63C58E9F81} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {9B06147A-9E86-4631-866F-C111DDE664DD} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116904 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {BCDF68A6-F255-48BE-82E0-E602DE8E8451} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4455336 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {D828E853-5BDB-497C-83C5-7EC5DE67FF0B} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2110000 2019-04-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {730E6F3B-CB82-4395-89BA-C3F9581A58E2} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1509424 2019-07-18] (ASUSTeK Computer Inc. -> )
Task: {976FC833-75DB-4408-8F99-CF563852FAD6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6F4E77B4-3CAF-4BD7-9A68-590FF113FEA1} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-10-15] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "ab94f503-8e42-49e5-9dec-3dcd410e6d75" --version "6.29.11342" --silent
Task: {60B0271A-B09B-4E69-B33E-DE395678CE93} - System32\Tasks\CCleanerSkipUAC - admin => C:\Program Files\CCleaner\CCleaner.exe [39090480 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {9D2ACF0D-DB0F-4D97-AC12-350E6AE85FFC} - System32\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3} => C:\Windows\System32\spool\drivers\x64\3\E1YTSBXE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {D034A8EC-DA74-4CCD-858E-31B0C66588B8} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [26968 2021-09-29] (Garmin International, Inc. -> )
Task: {F31A27E3-A75B-4353-907F-50923E05A54B} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6806.0{0ABBF0E4-A3C8-4663-85B2-F5B321C52B0C} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6806.0\updater.exe [5567072 2024-10-29] (Google LLC -> Google LLC)
Task: {D6561256-A2B4-449A-8E0C-186787A38887} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-10-05] (Adobe Inc. -> Adobe Inc.)
Task: {DABAAE08-E018-4F8F-A42A-20AEDBA2D7D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D396BB38-4A9C-47A1-94E9-DA64FE94F9AD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {211E7057-FA9A-4D59-8402-CE5D854237EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8D18F308-D796-495E-822C-185338A15C2C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5F4899FA-3477-44D7-81A9-787E3A241AEE} - System32\Tasks\Opera scheduled assistant Autoupdate 1627586689 => C:\Users\admin\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\admin\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {ECF9B003-985B-4DA0-AEEE-C1AEB81AE131} - System32\Tasks\Opera scheduled Autoupdate 1627586682 => C:\Users\admin\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {82F33472-B1EE-451B-B3CA-EF7D7EFA0ADF} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2393344 2024-11-03] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E1YTSBXE.EXE:/EXE:{8AF816F6-7513-42B7-B4AA-8C41FA9C27B3} /F:UpdateWORKGROUP\DESKTOP-I28IM4U$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{842026ae-853e-40ec-a1d1-b4c1af9cfd6a}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default [2024-11-18]
Edge Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-08]
Edge Extension: (Edge relevant text changes) - C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-11-13] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-09-09] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-09-09] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default [2024-11-18]
CHR Notifications: Default -> hxxps://meet.google.com; hxxps://www.mall.tv; hxxps://www.netflix.com
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-10-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-10-12]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-11-18]
CHR Notifications: Profile 1 -> hxxps://www.netflix.com
CHR Extension: (Podpořte) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\amaegjccccajmhnbcbeagblpdccimoeh [2023-10-02]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-04]
CHR Extension: (BizMachine Prospector Go) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mdannaddgiklheglbfhoobggpdnhkdda [2024-08-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-02]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-11-18]
CHR Notifications: Profile 2 -> hxxps://aternos.org; hxxps://meet.google.com
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-10-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-04]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6 [2024-11-14]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-11-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-11]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\System Profile [2024-11-18]
CHR HKU\S-1-5-21-502460867-2142398443-4065067644-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR Profile: C:\Users\admin\AppData\Roaming\Opera Software\Opera Stable [2021-07-29]
OPR Extension: (Rich Hints Agent) - C:\Users\admin\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-07-29]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944048 2024-09-09] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2020-05-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-10-15] (Gen Digital Inc. -> Piriform Software Ltd)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2022-10-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_11; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S11RPB.EXE [171096 2020-04-01] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [154928 2024-07-15] (Sophos BV -> Sophos B.V.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NetBalancerService; C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe [197864 2023-02-08] (SeriousBit Srl -> SeriousBit)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2393344 2024-11-03] (Overwolf Ltd -> Overwolf LTD)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2020-05-18] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2020-05-18] (ASUSTeK Computer Inc. -> )
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R1 nbdrv; C:\WINDOWS\system32\DRIVERS\nbdrv.sys [42128 2021-07-15] (SeriousBit Srl -> SeriousBit)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-11-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-11-02] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-18 21:42 - 2024-11-18 21:43 - 000023801 _____ C:\Users\admin\Desktop\FRST.txt
2024-11-18 21:42 - 2024-11-18 21:43 - 000000000 ____D C:\FRST
2024-11-18 21:42 - 2024-11-18 21:42 - 002402816 _____ (Farbar) C:\Users\admin\Desktop\FRST64.exe
2024-11-18 20:27 - 2024-11-18 20:28 - 006013210 _____ C:\Users\admin\Downloads\Pojištění_vozidel_pojistné_podmínky_A001_01042024.pdf
2024-11-15 16:18 - 2024-11-15 16:18 - 003106326 _____ C:\Users\admin\Downloads\Clean_Choices_v1.1.zip
2024-11-14 23:06 - 2024-11-14 23:06 - 000239705 _____ C:\Users\admin\Downloads\British Airways - Confirmation.pdf
2024-11-14 20:33 - 2024-11-14 20:33 - 000000000 ____D C:\Users\admin\Desktop\Nejhorsi mazlicci na svete
2024-11-14 20:32 - 2024-11-14 20:32 - 190192554 _____ C:\Users\admin\Desktop\Nejhorsi mazlicci na svete.zip
2024-11-14 20:30 - 2024-11-14 20:32 - 190192554 _____ C:\Users\admin\Downloads\Nejhorsi mazlicci na svete.zip
2024-11-13 22:14 - 2024-11-13 23:25 - 000000951 _____ C:\WINDOWS\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3}.job
2024-11-13 22:14 - 2024-11-13 22:14 - 000004146 _____ C:\WINDOWS\system32\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3}
2024-11-13 22:07 - 2024-11-13 22:07 - 000002209 _____ C:\Users\Public\Desktop\Epson Printer Connection Checker.lnk
2024-11-13 22:07 - 2024-11-13 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2024-11-13 22:07 - 2024-11-13 22:07 - 000000000 ____D C:\Program Files (x86)\EPSON Software
2024-11-13 20:45 - 2024-11-13 20:45 - 000244386 _____ C:\Users\admin\Downloads\03417658.jpeg
2024-11-13 19:56 - 2024-11-13 19:56 - 000012714 _____ C:\Users\admin\Downloads\stažený soubor.jfif
2024-11-13 19:52 - 2024-11-13 19:52 - 001162468 _____ C:\Users\admin\Downloads\Dokument bez názvu.pdf
2024-11-13 19:47 - 2024-11-13 19:47 - 000108952 _____ C:\Users\admin\Downloads\2b39bbc5-2ec7-4c68-b113-debc9887daf3 (1).webp
2024-11-13 19:46 - 2024-11-13 19:46 - 000108952 _____ C:\Users\admin\Downloads\2b39bbc5-2ec7-4c68-b113-debc9887daf3.webp
2024-11-13 19:17 - 2024-11-13 19:17 - 000000000 ___HD C:\$WinREAgent
2024-11-12 22:00 - 2024-11-12 22:00 - 000248936 _____ C:\Users\admin\Downloads\uniqa_vypoved_1-sloučen.pdf
2024-11-12 21:57 - 2024-11-12 21:57 - 000175142 _____ C:\Users\admin\Documents\uniqa_vypoved_1.pdf
2024-11-12 21:56 - 2024-11-12 21:56 - 000073269 _____ C:\Users\admin\Documents\uniqa_vypoved_2.pdf
2024-11-12 21:51 - 2024-11-12 21:51 - 000000000 ____D C:\Users\admin\AppData\Roaming\EPSON
2024-11-12 21:24 - 2024-11-12 21:24 - 000025292 _____ C:\Users\admin\Downloads\cancellationDocument (1).pdf
2024-11-12 21:10 - 2024-11-12 21:10 - 000000000 ____D C:\Program Files\Common Files\EPSON
2024-11-12 20:43 - 2024-11-12 20:43 - 000000000 ____D C:\Program Files\EpsonNet
2024-11-12 20:42 - 2024-11-12 20:42 - 000000123 _____ C:\Users\Public\Desktop\Epson Connect Site.url
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\WINDOWS\twain_64
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\Program Files\epson
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\Program Files (x86)\epson
2024-11-12 20:42 - 2022-10-21 11:29 - 000206304 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\escsvc64.exe
2024-11-12 20:42 - 2022-10-21 11:29 - 000165392 _____ (TWAIN Working Group) C:\WINDOWS\system32\twaindsm.dll
2024-11-12 20:42 - 2022-10-21 11:29 - 000147472 _____ (TWAIN Working Group) C:\WINDOWS\SysWOW64\twaindsm.dll
2024-11-12 20:40 - 2024-11-12 21:10 - 000000000 ____D C:\ProgramData\Epson
2024-11-12 20:39 - 2024-11-12 20:39 - 002536536 _____ (Seiko Epson Corporation. ) C:\Users\admin\Downloads\Epson_L3560_Series_EM_50_Web.exe
2024-11-12 20:03 - 2024-11-12 20:03 - 000321520 _____ C:\Users\admin\Downloads\forum-romanum-1.webp
2024-11-12 20:03 - 2024-11-12 20:03 - 000133502 _____ C:\Users\admin\Downloads\puzzle-forum-romanum-rim-2000-dilku.webp
2024-11-11 21:38 - 2024-11-11 21:38 - 000025449 _____ C:\Users\admin\Downloads\cancellationDocument.pdf
2024-11-11 15:38 - 2024-11-11 15:38 - 000000000 ____D C:\Users\admin\AppData\Local\.resourcefullib
2024-11-07 23:15 - 2024-11-07 23:16 - 000000000 ____D C:\AdwCleaner
2024-11-07 23:15 - 2024-11-07 23:15 - 008790880 _____ (Malwarebytes) C:\Users\admin\Downloads\adwcleaner_8.4.2.exe
2024-11-07 23:14 - 2024-11-07 23:14 - 002744320 _____ (Malwarebytes) C:\Users\admin\Downloads\MBSetup.exe
2024-11-05 17:18 - 2024-11-18 14:13 - 000000000 ____D C:\Users\admin\AppData\Roaming\lunarclient
2024-11-05 17:18 - 2024-11-16 12:33 - 000000000 ____D C:\Users\admin\AppData\Local\lunarclient-updater
2024-11-05 17:18 - 2024-11-05 17:24 - 000000000 ____D C:\Users\admin\.lunarclient
2024-11-05 17:18 - 2024-11-05 17:18 - 002400448 _____ (Overwolf Ltd.) C:\Users\admin\Downloads\Lunar Client - Installer (1).exe
2024-11-05 17:18 - 2024-11-05 17:18 - 000002399 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lunar Client.lnk
2024-11-05 17:17 - 2024-11-05 17:17 - 002400448 _____ (Overwolf Ltd.) C:\Users\admin\Downloads\Lunar Client - Installer.exe
2024-10-31 20:38 - 2024-10-31 20:38 - 000174455 _____ C:\Users\admin\Downloads\potvrzeni-47885.pdf
2024-10-28 18:56 - 2024-10-28 18:56 - 000000000 ____D C:\Program Files (x86)\Temp
2024-10-28 18:54 - 2024-10-28 18:55 - 000000000 ____D C:\Program Files (x86)\Java
2024-10-28 18:54 - 2024-10-28 18:54 - 000000000 ____D C:\Users\admin\AppData\Roaming\Sun
2024-10-28 18:54 - 2024-10-28 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2024-10-28 18:54 - 2024-09-30 08:34 - 000178816 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2024-10-27 22:05 - 2024-10-27 22:05 - 002208016 _____ (Overwolf Ltd.) C:\Users\admin\Downloads\CurseForge - Installer.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-18 21:39 - 2020-06-10 21:25 - 000000000 ____D C:\Users\admin\AppData\Local\CrashDumps
2024-11-18 21:36 - 2021-02-27 20:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-11-18 21:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-11-18 21:22 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-11-18 20:31 - 2020-05-31 20:08 - 000000000 ____D C:\Users\admin\Desktop\Untitled Export
2024-11-18 19:32 - 2020-05-31 19:20 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2024-11-18 18:03 - 2021-07-29 22:25 - 000000000 ____D C:\Users\admin\AppData\Roaming\.minecraft
2024-11-18 15:15 - 2022-05-04 19:48 - 000000000 ____D C:\Users\admin\AppData\Local\MinecraftInstaller
2024-11-18 14:42 - 2024-02-23 15:34 - 000003582 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2024-11-18 14:13 - 2024-03-03 16:39 - 000002317 _____ C:\Users\admin\Desktop\CurseForge.lnk
2024-11-18 14:13 - 2024-03-03 16:36 - 000000000 ____D C:\Users\admin\AppData\Local\Overwolf
2024-11-18 14:12 - 2020-05-18 20:24 - 000000000 ____D C:\ProgramData\ASUS
2024-11-18 07:32 - 2020-05-26 19:59 - 000000000 ____D C:\ProgramData\NVIDIA
2024-11-18 06:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-11-18 06:46 - 2020-07-14 23:46 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-11-18 06:46 - 2020-07-14 23:46 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-11-16 08:44 - 2021-12-16 06:57 - 000000000 ___HD C:\adobeTemp
2024-11-16 08:43 - 2020-05-26 20:00 - 000000000 ____D C:\ProgramData\Adobe
2024-11-16 07:20 - 2020-05-18 20:17 - 000000000 ____D C:\Users\admin\AppData\Local\D3DSCache
2024-11-15 17:17 - 2022-10-14 13:56 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-11-15 17:17 - 2022-10-14 13:56 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-11-15 17:17 - 2021-02-27 20:04 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-11-15 13:59 - 2024-03-03 16:39 - 000000000 ____D C:\Program Files (x86)\Overwolf
2024-11-14 23:06 - 2020-05-18 20:10 - 000000000 ____D C:\Users\admin\AppData\Local\Packages
2024-11-14 20:07 - 2021-02-27 20:09 - 001693820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-11-14 20:07 - 2019-12-07 15:41 - 000716932 _____ C:\WINDOWS\system32\perfh005.dat
2024-11-14 20:07 - 2019-12-07 15:41 - 000145110 _____ C:\WINDOWS\system32\perfc005.dat
2024-11-14 20:07 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-11-14 20:02 - 2021-02-27 20:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-11-14 20:02 - 2021-02-27 20:00 - 000008192 ___SH C:\DumpStack.log.tmp
2024-11-13 23:25 - 2021-12-15 20:38 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-11-13 23:25 - 2021-02-27 20:00 - 000269344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-11-13 23:25 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-11-13 21:31 - 2023-07-29 09:30 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2024-11-13 21:31 - 2021-02-27 20:04 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2024-11-13 19:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-11-13 19:21 - 2021-02-27 20:04 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-11-13 19:17 - 2020-05-18 20:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-11-13 19:15 - 2020-05-18 20:59 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-11-12 22:37 - 2022-01-15 10:16 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-502460867-2142398443-4065067644-1001
2024-11-12 22:37 - 2021-02-27 20:04 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-502460867-2142398443-4065067644-1001
2024-11-12 22:37 - 2021-02-27 20:01 - 000002377 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-11-12 21:51 - 2021-02-27 20:01 - 000000000 ____D C:\Users\admin
2024-11-12 20:40 - 2020-05-18 20:18 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-11-12 20:40 - 2020-05-18 20:18 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-11-12 17:02 - 2022-05-04 19:51 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\InputMethod
2024-11-10 12:43 - 2023-10-02 21:13 - 000002432 _____ C:\Users\admin\Desktop\Alena - Chrome.lnk
2024-11-09 09:59 - 2021-02-27 20:04 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-09 09:59 - 2021-02-27 20:04 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-05 17:21 - 2024-06-24 18:31 - 000000000 ____D C:\Users\admin\Desktop\skiny
2024-11-05 17:17 - 2024-10-11 17:13 - 000000000 ____D C:\Users\admin\AppData\Roaming\ow-electron
2024-11-03 08:46 - 2022-10-20 13:03 - 000124456 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-11-03 08:46 - 2022-10-20 13:03 - 000075304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-11-03 08:46 - 2022-05-04 19:49 - 002872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000775720 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000153152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-11-02 19:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-11-02 14:25 - 2024-04-29 20:08 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-11-02 14:25 - 2021-07-29 20:22 - 000000000 ____D C:\ProgramData\Avast Software
2024-11-02 14:16 - 2024-04-29 20:08 - 000000000 ____D C:\Program Files\CCleaner
2024-11-02 14:15 - 2023-03-12 17:52 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2024-11-02 14:10 - 2020-05-19 01:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-11-02 14:02 - 2020-05-18 20:24 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-11-02 14:00 - 2023-05-03 05:54 - 000000000 ____D C:\Users\admin\AppData\Local\Bluestacks
2024-11-02 13:57 - 2021-02-27 16:50 - 000000000 ____D C:\Users\admin\AppData\Local\LogMeIn Hamachi
2024-11-02 13:55 - 2020-06-01 20:45 - 000000000 ____D C:\Users\admin\AppData\Local\GHISLER
2024-11-02 11:14 - 2020-05-18 20:26 - 000012032 _____ C:\WINDOWS\PE_Rom.dll
2024-11-02 09:42 - 2024-04-29 20:08 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-11-02 09:42 - 2024-04-29 20:08 - 000002952 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-11-02 09:42 - 2024-04-29 20:08 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - admin
2024-11-02 09:42 - 2024-03-03 16:39 - 000003270 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2024-11-02 09:42 - 2021-10-02 11:46 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2024-11-02 09:42 - 2021-07-29 20:24 - 000003856 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1627586689
2024-11-02 09:42 - 2021-07-29 20:24 - 000003602 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1627586682
2024-11-01 00:27 - 2020-11-01 20:40 - 000000000 ____D C:\Users\admin\AppData\Roaming\Topaz Labs LLC
2024-11-01 00:27 - 2020-11-01 20:39 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Topaz Labs LLC
2024-11-01 00:27 - 2020-11-01 20:39 - 000000000 ____D C:\Program Files\Topaz Labs LLC
2024-11-01 00:27 - 2020-09-13 15:48 - 000000000 ____D C:\ProgramData\Topaz Labs LLC
2024-10-30 13:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-10-28 18:56 - 2024-01-24 17:08 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2024-10-28 18:55 - 2020-06-01 20:45 - 000000000 ____D C:\totalcmd
2024-10-28 18:55 - 2020-05-18 20:24 - 000000000 ____D C:\ProgramData\Package Cache

==================== Files in the root of some directories ========

2020-06-25 21:49 - 2024-04-09 21:27 - 000001456 _____ () C:\Users\admin\AppData\Local\Adobe Save for Web 13.0 Prefs
2020-05-31 19:17 - 2020-05-31 19:17 - 000000410 _____ () C:\Users\admin\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2024
Ran by admin (18-11-2024 21:43:51)
Running from C:\Users\admin\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5131 (X64) (2021-02-27 19:04:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

admin (S-1-5-21-502460867-2142398443-4065067644-1001 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-502460867-2142398443-4065067644-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-502460867-2142398443-4065067644-503 - Limited - Disabled)
Guest (S-1-5-21-502460867-2142398443-4065067644-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-502460867-2142398443-4065067644-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 24.08 (x64) (HKLM\...\7-Zip) (Version: 24.08 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.004.20272 - Adobe)
Adobe Bridge 2025 (HKLM-x32\...\KBRG_15_0_0) (Version: 15.0.0 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.4.0.361 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.5.1.48 - Adobe Inc.)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_14_0_1) (Version: 14.0.1 - Adobe Inc.)
Adobe Photoshop 2025 (HKLM-x32\...\PHSP_26_0) (Version: 26.0.0.26 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.52 - ASUSTeK Computer Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.30.28 - Advanced Micro Devices, Inc.)
ANT Drivers Installer x64 (HKLM\...\{71A1AEB1-EF84-4531-8A6B-B36F104C9F1D}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Balanced (HKLM-x32\...\{24819F88-1B0B-4808-9982-5DC9C4AC7FA6}) (Version: 5.00.0000 - Advanced Micro Devices, Inc.) Hidden
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.29 - Piriform)
CurseForge (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 1.265.0.1056 - Overwolf app)
CurseForge 1.262.1-20597 (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\ca0e291c-abd4-5fc3-b6a0-3d4333eccbd7) (Version: 1.262.1-20597 - Overwolf)
Elevated Installer (HKLM-x32\...\{3D0CEA2A-AAD6-428D-967B-C88F0E958AE2}) (Version: 7.9.0.0 - Garmin Ltd or its subsidiaries) Hidden
EPSON L3560 Series Printer Uninstall (HKLM\...\EPSON L3560 Series) (Version: - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32\...\{DE32F90E-1A29-4D74-BCF1-E7DDB25D713A}) (Version: 3.4.0.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{92DCE546-2A73-4BCF-ADA5-0E6BD95E6B61}) (Version: 3.2.0.0 - Seiko Epson Corporation)
Garmin Express (HKLM-x32\...\{580B8950-94E4-43F4-B4AA-E300A87E82B9}) (Version: 7.9.0.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{dc3a797a-2ec2-46c3-aa02-2de93fa270c6}) (Version: 7.9.0.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM\...\{825DE266-F7F9-3C28-BC5C-1DAED26C249C}) (Version: 131.0.6778.69 - Google LLC)
HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.36.332 - SurfRight B.V.)
Java 8 Update 431 (HKLM-x32\...\{71024AE4-039E-4CA4-87B4-2F32180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Medal of Honor - Allied Assault War Chest (HKLM-x32\...\1207659126_is1) (Version: 2.1.0.22 - GOG.com)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 130.0.2849.80 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\OneDriveSetup.exe) (Version: 24.206.1013.0004 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33816 (HKLM-x32\...\{77169412-f642-45e7-b533-0c6f48de12f9}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33816 (HKLM-x32\...\{4373d0b5-4457-4a80-bad9-029de8df097b}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33816 (HKLM\...\{5904914B-9FC8-44C2-AE48-5C7F30A603EC}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33816 (HKLM\...\{560D2DA4-096E-4868-B22A-DA6418FDE6FB}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33816 (HKLM-x32\...\{0DF1D9F9-6038-4641-AB6D-13DD654758A7}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33816 (HKLM-x32\...\{D7A66DA5-B103-45C1-A0A7-736C08E2F464}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Mp3tag v2.99 (HKLM-x32\...\Mp3tag) (Version: 2.99 - Florian Heidenreich)
NetBalancer (HKLM\...\NetBalancer_is1) (Version: - SeriousBit)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.18 - DxO)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenTTD (HKLM-x32\...\OpenTTD) (Version: 13.4 - OpenTTD)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.263.0.11 - Overwolf Ltd.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.)
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp)
Topaz Sharpen AI (HKLM\...\Topaz Sharpen AI 2.1.8) (Version: 3.2.2 - Topaz Labs LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Uninstall Lunar Client (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 3.2.29-ow - Moonsworth LLC)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
UXP WebView Support (HKLM-x32\...\UXPW_1_2_0) (Version: 1.2.0 - Adobe Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.92.0 - Winamp SA)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.10 - ZONER software)

Chrome apps:
============
Disk Google (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\1b4b3acb34569556e963c5be9c5f66ca) (Version: 1.0 - Google\Chrome)
Disk Google (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\f802ca1ebdfffe2561f774d0af40d936) (Version: 1.0 - Google\Chrome)
Dokumenty (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\c2298ff0600f6d0a9e5e694b89d125fe) (Version: 1.0 - Google\Chrome)
Dokumenty (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\e312ea0bcd5a539356392fe6a2ccef36) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\1677f967f7498eba7fa0170357d2e2f7) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\af4493368aaef81d86c4775a5b625363) (Version: 1.0 - Google\Chrome)
LEGO.com (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\def80795df5189b47346449aa2d4ff6c) (Version: 1.0 - Google\Chrome)
Prezentace (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\32a9acda1cae9992272be94d1a1e1875) (Version: 1.0 - Google\Chrome)
Prezentace (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\f271b3d4ea52542e408b8163b9d25db1) (Version: 1.0 - Google\Chrome)
Tabulky (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\97bdea63382a0abe9cc05ad74c61bacd) (Version: 1.0 - Google\Chrome)
Tabulky (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\e6ce904702f85c52099b6d81283da6dd) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\2be86c87714923a68cb2151c092f841e) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\74593adf70606ceb3f30ce7025bbe56f) (Version: 1.0 - Google\Chrome)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-15] ()
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc [2024-05-22] (Adobe Systems Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-03-04] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa [2024-10-25] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-27] (Microsoft Corporation) [MS Ad]
Minecraft Dungeons -> C:\Program Files\WindowsApps\Microsoft.Lovika_1.17.0.0_x64__8wekyb3d8bbwe [2024-06-16] (Microsoft Studios)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.4401.0_x64__8wekyb3d8bbwe [2024-11-01] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.1.3.0_x64__8wekyb3d8bbwe [2024-11-01] (Microsoft Studios)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2024-07-23] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-23] (NVIDIA Corp.)
Zip Extractor Pro -> C:\Program Files\WindowsApps\38526MediaLife.ZipPlus_2.0.4.0_x86__1crh1k73ty8mg [2020-07-31] (Media Life)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-10-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-10-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-10-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\admin\Desktop\Alena - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\admin\Desktop\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\Desktop\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Web Applications\_crx_nmnjmgkpkfocpgkgopfmicanghkbckhd\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Disk Google (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Disk Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Dokumenty (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Dokumenty.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Gmail (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Gmail.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Prezentace (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Prezentace.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Tabulky (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Tabulky.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Vladimir (Osoba 1) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b4459b1d68d26673\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Antonin (zsradostna.cz) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Vladimir - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2024-11-18 14:12 - 2024-11-18 14:12 - 000271360 _____ () [File not signed] \\?\C:\Users\admin\AppData\Local\Temp\52f82598-50ba-4b62-a1c8-71b0d0f5975d.tmp.node
2024-11-18 14:12 - 2024-11-18 14:12 - 000111616 _____ () [File not signed] \\?\C:\Users\admin\AppData\Local\Temp\de43931e-a76a-43d5-a530-bc9d2113cac3.tmp.node
2020-05-18 20:24 - 2019-03-22 21:45 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2020-05-18 20:24 - 2019-07-18 17:02 - 001163776 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2020-05-18 20:24 - 2019-05-13 15:44 - 005843732 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2020-05-18 20:24 - 2019-05-13 15:44 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2020-05-18 20:24 - 2019-05-13 15:44 - 000681984 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll
2020-05-18 20:24 - 2020-05-18 20:24 - 000242176 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.38\cpuutil.dll
2023-03-20 19:58 - 2021-09-09 08:10 - 000463360 _____ () [File not signed] C:\Program Files\NetBalancer\nDPI.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 002682880 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\ffmpeg.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 000481280 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\libegl.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 008058368 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\libglesv2.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 005475328 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\vk_swiftshader.dll
2020-05-18 20:24 - 2019-03-22 21:45 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsAcpi.dll
2020-05-18 20:24 - 2024-11-14 20:02 - 000033536 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.38\PEbiosinterface32.dll
2020-05-18 20:24 - 2019-03-22 21:45 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll
2020-05-18 20:24 - 2019-03-22 21:45 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll
2019-10-18 17:32 - 2019-10-18 17:32 - 000424448 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2023-06-07 21:24 - 2024-08-11 14:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2023-03-20 19:58 - 2021-07-15 08:49 - 000091648 _____ (NT Kernel Resources) [File not signed] C:\Program Files\NetBalancer\ndisapi.dll
2023-03-20 19:58 - 2020-04-05 20:14 - 001662976 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\NetBalancer\SQLite.Interop.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\18339028554473784721\133764283079906641.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys

nt_nbdrv: NetBalancer Filter

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "OnrymSpeedup"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "GarminExpress"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "NetBalancer"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_29EBC4579851B72EE312C449CF839B1A"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "electron.app.BlueStacks Services"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{67D3EBC4-5B88-4247-8454-6006CD580D96}C:\program files (x86)\common files\oracle\java\javapath_target_928338484\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_928338484\java.exe => No File
FirewallRules: [TCP Query User{604B94FA-AE66-4656-9CD6-B884A646082F}C:\program files (x86)\common files\oracle\java\javapath_target_928338484\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_928338484\java.exe => No File
FirewallRules: [UDP Query User{44329A33-FDF2-4FC8-BC21-BD5566454430}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => No File
FirewallRules: [TCP Query User{2CCBECA5-65D9-4712-BFE0-31E638BC7FDC}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe => No File
FirewallRules: [UDP Query User{CA9A7359-02B3-468F-9120-A727590BC71E}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => No File
FirewallRules: [TCP Query User{77568FA9-A1CF-4BF7-84A9-3109D4F747F4}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe => No File
FirewallRules: [{2385FFC6-1712-46C8-9773-AF4E93088EA5}] => (Allow) C:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe => No File
FirewallRules: [{FA59817F-CC1A-48BE-9DC0-F3C685B445B3}] => (Allow) C:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe => No File
FirewallRules: [{C3641345-B9C0-4DA0-AC96-4B0B48238366}] => (Allow) C:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe => No File
FirewallRules: [{A98593DD-3BB8-49C8-BA03-429DA9895FA3}] => (Allow) C:\Program Files (x86)\Minecraft Launcher\MinecraftLauncher.exe => No File
FirewallRules: [{31A15BFE-93D1-4CBE-A60A-70542C5CE45C}] => (Allow) C:\Users\admin\Desktop\Minecraft server\minecraft_server.jar => No File
FirewallRules: [{B0ACD51A-1890-4599-8151-830CDD697E40}] => (Allow) C:\Users\admin\Desktop\Minecraft server\minecraft_server.jar => No File
FirewallRules: [{CADFDD87-29FF-47D1-A329-CA6DCC60E475}] => (Allow) C:\Users\admin\Desktop\Minecraft server\minecraft_server.jar => No File
FirewallRules: [{46BBF823-DF74-4AB5-A451-A9854F8E5B48}] => (Allow) C:\Users\admin\Desktop\Minecraft server\minecraft_server.jar => No File
FirewallRules: [TCP Query User{CE0B5737-FB99-4AA9-9A1D-BF04355975C0}C:\program files\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [UDP Query User{6DE5E81D-51ED-4408-B856-5433ED86C89F}C:\program files\java\jre1.8.0_291\bin\javaw.exe] => (Block) C:\program files\java\jre1.8.0_291\bin\javaw.exe => No File
FirewallRules: [TCP Query User{BC533FD1-B967-42F8-9346-95E029E22BA9}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe => No File
FirewallRules: [UDP Query User{EA9139E3-D27A-48A1-810E-D02A7EE158B6}C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-alpha\windows-x64\java-runtime-alpha\bin\javaw.exe => No File
FirewallRules: [{A2D92C3B-22B6-4FBF-B5ED-8DD4E00A67A8}] => (Allow) C:\Users\admin\AppData\Local\Programs\Opera\77.0.4054.277\opera.exe => No File
FirewallRules: [TCP Query User{860CD34C-4635-4D02-8D72-94B90ED83874}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [UDP Query User{AA48AB15-8E8C-4903-AB91-E56B88199472}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [TCP Query User{8FC1E072-8576-4F1F-B224-546AC6CE00C0}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [UDP Query User{67CE75F3-F107-4C66-95D1-2FC1E6FA9470}C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [TCP Query User{7590B502-D15E-4A2A-847C-504E378A6798}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{9BB9C6AD-50D7-44CB-AFAA-A1774B3D2D23}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{6D3BF9B9-B0EE-406D-9D86-AA8D4E41E183}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{E1B7EFD4-BC46-40DC-BF74-4B2B1FB25A23}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{AF45DD0B-0578-4BCA-94A7-53EE9914DFF5}C:\program files (x86)\ea games\medal of honor allied assault spearhead demo\moh_spearhead_demo.exe] => (Allow) C:\program files (x86)\ea games\medal of honor allied assault spearhead demo\moh_spearhead_demo.exe => No File
FirewallRules: [UDP Query User{C0AD86C0-F209-4B2D-A787-6F9B39448643}C:\program files (x86)\ea games\medal of honor allied assault spearhead demo\moh_spearhead_demo.exe] => (Allow) C:\program files (x86)\ea games\medal of honor allied assault spearhead demo\moh_spearhead_demo.exe => No File
FirewallRules: [{497EAF4D-F603-4EF6-8994-D54410D12DD2}] => (Block) C:\program files (x86)\ea games\medal of honor allied assault spearhead demo\moh_spearhead_demo.exe => No File
FirewallRules: [{84C58682-23D5-4DD0-B42E-510B72B919A4}] => (Block) C:\program files (x86)\ea games\medal of honor allied assault spearhead demo\moh_spearhead_demo.exe => No File
FirewallRules: [TCP Query User{E4929A1F-B69D-4DAB-84E0-01468A1F65AE}C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe] => (Allow) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{A22C1AC2-A3C5-42F6-8907-A6D753FD89A2}C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe] => (Allow) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{2D66C2A8-DA59-4122-A057-AB720954B84A}] => (Block) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{20D19EF2-D5BE-43B5-B95A-7E30A34834CD}] => (Block) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{52D34DFB-1DA2-4EA4-9117-1305DCF6D928}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{A4114949-38C6-4596-BB4D-455259A07CE3}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{5BECED1E-C857-4974-AF33-A08C896C4CA9}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{F4AB9562-ABA3-4E80-A204-50AA22127B0B}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File
FirewallRules: [{CD71A00B-260D-4FB6-8336-67FFABFE8221}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{2B1E4FED-6462-464A-8980-0FB8C20578F2}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [TCP Query User{2FD9325B-1362-4C7D-9CF9-F8385B86C668}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{5AA3B767-4B0C-4209-8E1F-E9544E9BC508}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{5BD3B513-C223-404B-AD16-6901FB75647E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{11A689C0-82C4-49FB-96CE-7CF6737FD31F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [TCP Query User{A0ABC63D-B323-4522-B8A6-2795A72DA673}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{713AA67B-3FC3-4B5E-8AEB-D5CEF12B716E}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{6EC24F81-FA93-43FA-B7BF-ADDE1C832096}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{57C72252-7C58-4A15-B43D-14A87C3AB4DC}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{5B20397C-E814-48A7-BCC8-34691D56FFB1}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [UDP Query User{5EB45100-A8BC-4399-B3FB-4D700BA34186}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe => No File
FirewallRules: [TCP Query User{5E371D9F-AE25-4DDF-8057-3AFF65D7C15A}C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe] => (Block) C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe
FirewallRules: [UDP Query User{5D8BD396-E1BB-4DC4-920D-05EF3AFD69D5}C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe] => (Block) C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe
FirewallRules: [{EE9A8CD1-4F23-4210-A108-C2FCF014743B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{0CCDC0A6-BC5B-4941-B52A-87BFFE47DEEF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ED4511C0-620A-4FEE-8A8E-8193E58A6762}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{28DAD857-B038-467E-A060-503631FE3510}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FB9CB7D0-1EE9-4314-AAA7-71CE72BEF620}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F3C6D215-43EE-4AE2-9D30-BBBCBC64454B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{17C899F3-CEAA-4BE2-92A7-E45D0AA44D47}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{A566FECB-2445-4A75-B68D-AB2957827C54}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{99D6A20A-265A-4D6B-A0EA-6BC2C1A0D794}] => (Allow) C:\Program Files (x86)\Zoom\bin\Zoom.exe => No File
FirewallRules: [{04F949A4-6D57-41D3-85B8-16D0D34F5F69}] => (Allow) C:\Program Files (x86)\Zoom\bin\airhost.exe => No File
FirewallRules: [{3192E08C-41C2-46F4-94C1-F2882B238F99}] => (Allow) C:\Program Files (x86)\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{AD8BC3EB-9320-4522-8F0F-DAFEAE27FDC6}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [UDP Query User{F16EAE1E-0316-46AA-B1D3-2220761A2C32}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [TCP Query User{C2EE5362-14C6-4475-B832-94D34ADD931F}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [UDP Query User{4C71072A-87C9-49C5-8A05-E12F407FAEE7}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [{81E67FB9-A697-46AB-B08E-85BE52502FA2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.80\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{40E79581-4F78-4FE7-84A5-74E103489369}] => (Block) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{5210660B-E91E-4EC5-9A0B-789AC3FB05BD}] => (Block) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{28016428-2FFC-4917-9AA6-7DE9E578473B}] => (Allow) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{535C4033-E57C-4C14-B39D-409EAE8C18B2}] => (Allow) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{FCCB7ADC-A218-4846-9EED-E0342362EF77}] => (Block) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{6D2152F9-AC0E-4DD5-B68C-98A1916FACC8}] => (Block) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{8B985C58-58A7-470D-BABA-25E327EB1DD4}] => (Block) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{BD003E9F-1521-4375-8DF8-DF7988959532}] => (Block) C:\Program Files (x86)\Overwolf\0.260.0.8\OverwolfBrowser.exe => No File
FirewallRules: [{63D1C29C-F759-4F84-8041-0E2006A1E5D9}] => (Allow) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{4118F87E-FF0F-4119-93F4-D4685CFBC981}] => (Allow) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{B8B86905-0EAD-43FA-8B60-D8C6D44F2CA8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{209D8B1D-A454-4FFA-ABCC-6B3A41FD0F01}] => (Allow) C:\Users\admin\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => No File
FirewallRules: [{09378E80-3E4C-403B-9F96-10F4DD28A240}] => (Allow) C:\Users\admin\AppData\Local\Temp\EpInsNav\DL\3013\Network\EpsonNetSetup\Data\ENEasyApp.exe => No File
FirewallRules: [{964FC810-436E-45AF-8865-217A5A37418F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0C3F800C-E6E1-4536-B35D-81079B7BF4EA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0141FCE4-4DB0-4AC2-9D5F-7C3B3D9DB2BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{068FF80A-56AF-4720-A2CA-B73B3EFA86CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

11-11-2024 21:59:23 Naplánovaný kontrolní bod
13-11-2024 19:17:18 Instalační služba modulů systému Windows
13-11-2024 19:17:40 Instalační služba modulů systému Windows
13-11-2024 19:18:55 Instalační služba modulů systému Windows
13-11-2024 22:06:56 Installed Epson Printer Connection Checker

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (11/18/2024 09:39:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Název chybujícího modulu: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Kód výjimky: 0xc000041d
Posun chyby: 0x0000000000317815
ID chybujícího procesu: 0x60f0
Čas spuštění chybující aplikace: 0x01db39e817900552
Cesta k chybující aplikaci: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
Cesta k chybujícímu modulu: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
ID zprávy: 6126f2a8-f513-46a4-b370-06de4253ca97
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/18/2024 09:39:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Název chybujícího modulu: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000317815
ID chybujícího procesu: 0x60f0
Čas spuštění chybující aplikace: 0x01db39e817900552
Cesta k chybující aplikaci: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
Cesta k chybujícímu modulu: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
ID zprávy: fd6aecb9-2e5e-4960-810e-f8b1ca1cd4bd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/18/2024 09:36:22 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (11/18/2024 02:13:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0x1fe0
Čas spuštění chybující aplikace: 0x01db39bbb05a6a77
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: af533680-a1a7-41af-8f31-366469b3f0b0
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/18/2024 06:46:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0x27ec
Čas spuštění chybující aplikace: 0x01db397d2794e87a
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: f860b540-c13d-4497-8ad2-a4943960f01d
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/15/2024 07:36:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0x7f8
Čas spuštění chybující aplikace: 0x01db378d42abe448
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: 96114815-012c-4bbe-950e-b7f80885293b
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/15/2024 02:00:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0xe00
Čas spuštění chybující aplikace: 0x01db375e4c316e56
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: 4c37ad67-2743-45ba-8262-ee7e7f78b3dc
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/13/2024 11:25:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]


System errors:
=============
Error: (11/16/2024 10:55:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-I28IM4U)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/16/2024 10:55:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-I28IM4U)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/16/2024 10:55:38 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-I28IM4U)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/16/2024 08:18:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9MV0B5HZVK9Z-Microsoft.GamingApp.

Error: (11/14/2024 08:04:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/14/2024 08:04:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (11/14/2024 08:02:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba GameInput Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (11/14/2024 08:02:43 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba GameInput Service byla ukončena s následující chybou:
Složený soubor GameInput Service byl vytvořen s novější verzi úložného prostoru.


Windows Defender:
================
Date: 2024-11-18 21:24:03
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {81495EB4-2D3A-4CB0-83C6-6BD3DB385ED7}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-16 14:30:40
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D1386A43-F37C-45D1-88D7-2F1C82B913B1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-15 20:40:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B70C85B8-1075-412E-9B6F-F5D78DAE9C79}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-14 21:48:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A1EDAEB0-01E6-4B73-AE61-E06D9F26F722}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-14 21:38:09
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FDA5F298-06C0-403F-A783-94CA7096A7C3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2024-08-24 10:00:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.217.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2024-08-24 10:00:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.217.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2024-07-19 14:42:28
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.415.103.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24060.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2024-07-19 14:42:28
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.415.103.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24060.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2024-07-19 14:42:28
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.415.103.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24060.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2024-10-11 07:19:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2024-10-11 07:19:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2006 11/13/2019
Motherboard: ASUSTeK COMPUTER INC. PRIME B450M-A
Processor: AMD Ryzen 7 3700X 8-Core Processor
Percentage of memory in use: 24%
Total physical RAM: 32704.38 MB
Available physical RAM: 24715.53 MB
Total Virtual: 38080.38 MB
Available Virtual: 27198.08 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.32 GB) (Free:58.97 GB) (Model: Samsung SSD 970 EVO Plus 250GB) NTFS
Drive d: (Data) (Fixed) (Total:5589.01 GB) (Free:890.03 GB) (Model: ST6000DM003-2CY186) NTFS
Drive j: (NIKON D7200) (Removable) (Total:29.71 GB) (Free:1.52 GB) FAT32

\\?\Volume{84c3da77-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.12 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 84C3DA77)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)

==========================================================
Disk: 4 (Protective MBR) (Size: 29.7 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15640
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#2 Příspěvek od JaRon »

Ahoj,
- vycisti registre s Ccleanerom
- prescanuj PC s MBAM
- aka je velkost adresara plocha/desktop :???:
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
ed
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 14 led 2005 18:27

Re: Prosím o kontrolu logu

#3 Příspěvek od ed »

Dobré odpoledne,

- Registry promazány
- MBAM scan proběhl, nic nenalezl
- Plocha z původních 1.68 GB :shock: už jen na 40MB

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-11-2024
Ran by admin (administrator) on DESKTOP-I28IM4U (19-11-2024 17:26:39)
Running from C:\Users\admin\Desktop\FRST64.exe
Loaded Profiles: admin
Platform: Microsoft Windows 10 Home Version 22H2 19045.5131 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\js\node_modules\adobe-cr\build\Release\Adobe Crash Processor.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Moonsworth, LLC -> Moonsworth LLC) C:\Users\admin\AppData\Local\Programs\Lunar Client\Lunar Client.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE
(explorer.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E1YATIBXE.EXE
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S11RPB.EXE
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (SeriousBit Srl -> SeriousBit) C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe
(services.exe ->) (Sophos BV -> Sophos B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(svchost.exe ->) (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22098.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22098.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116904 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [455968 2023-05-26] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [133128 2024-05-03] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1130416 2024-09-09] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-10-05] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31190360 2021-09-29] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [12292504 2024-11-13] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [NetBalancer] => C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Tray.exe [1919208 2023-02-08] (SeriousBit Srl -> SeriousBit)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [MicrosoftEdgeAutoLaunch_29EBC4579851B72EE312C449CF839B1A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3911248 2024-11-15] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45359408 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [Lunar Client] => C:\Users\admin\AppData\Local\Programs\Lunar Client\Lunar Client.exe [182068272 2024-11-18] (Moonsworth, LLC -> Moonsworth LLC)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E1YATIBXE.EXE [485736 2021-12-02] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 18\Program32\ZPSTRAY.EXE [680520 2017-01-09] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\MountPoints2: {febef221-f2d8-11eb-ab01-a85e45536675} - "E:\HiSuiteDownLoader.exe"
HKLM\...\Windows x64\Print Processors\Canon MP980 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD9B.DLL [27648 2008-06-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP980 series: C:\WINDOWS\system32\CNMLM9B.DLL [279040 2008-06-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\EPSON L3560 Series 64MonitorBE: C:\WINDOWS\system32\E1YLMBBXE.DLL [237568 2021-09-21] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [3167256 2024-08-30] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\131.0.6778.70\Installer\chrmstp.exe [2024-11-19] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {F234DAAC-70CB-492F-A96B-AA63C58E9F81} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {9B06147A-9E86-4631-866F-C111DDE664DD} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4116904 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {BCDF68A6-F255-48BE-82E0-E602DE8E8451} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4455336 2024-10-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {D828E853-5BDB-497C-83C5-7EC5DE67FF0B} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2110000 2019-04-22] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {730E6F3B-CB82-4395-89BA-C3F9581A58E2} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [1509424 2019-07-18] (ASUSTeK Computer Inc. -> )
Task: {976FC833-75DB-4408-8F99-CF563852FAD6} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {97661CD3-0949-4FEA-A9C3-92DF94EADFCE} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-11-06] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "ab94f503-8e42-49e5-9dec-3dcd410e6d75" --version "6.30.11385" --silent
Task: {60B0271A-B09B-4E69-B33E-DE395678CE93} - System32\Tasks\CCleanerSkipUAC - admin => C:\Program Files\CCleaner\CCleaner.exe [39135536 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {9D2ACF0D-DB0F-4D97-AC12-350E6AE85FFC} - System32\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3} => C:\Windows\System32\spool\drivers\x64\3\E1YTSBXE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {D034A8EC-DA74-4CCD-858E-31B0C66588B8} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [26968 2021-09-29] (Garmin International, Inc. -> )
Task: {F31A27E3-A75B-4353-907F-50923E05A54B} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6806.0{0ABBF0E4-A3C8-4663-85B2-F5B321C52B0C} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6806.0\updater.exe [5567072 2024-10-29] (Google LLC -> Google LLC)
Task: {D6561256-A2B4-449A-8E0C-186787A38887} - System32\Tasks\Launch Adobe CCXProcess => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [194056 2024-10-05] (Adobe Inc. -> Adobe Inc.)
Task: {5F4899FA-3477-44D7-81A9-787E3A241AEE} - System32\Tasks\Opera scheduled assistant Autoupdate 1627586689 => C:\Users\admin\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\admin\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {ECF9B003-985B-4DA0-AEEE-C1AEB81AE131} - System32\Tasks\Opera scheduled Autoupdate 1627586682 => C:\Users\admin\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (No File)
Task: {82F33472-B1EE-451B-B3CA-EF7D7EFA0ADF} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2393344 2024-11-03] (Overwolf Ltd -> Overwolf LTD) -> C:\Program Files (x86)\Overwolf\/RunningFrom Schedule

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E1YTSBXE.EXE:/EXE:{8AF816F6-7513-42B7-B4AA-8C41FA9C27B3} /F:UpdateWORKGROUP\DESKTOP-I28IM4U$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{842026ae-853e-40ec-a1d1-b4c1af9cfd6a}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default [2024-11-18]
Edge Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-08]
Edge Extension: (Edge relevant text changes) - C:\Users\admin\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-11-13] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-09-09] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-09-09] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default [2024-11-19]
CHR Notifications: Default -> hxxps://meet.google.com; hxxps://www.mall.tv; hxxps://www.netflix.com
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-10-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-10-12]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1 [2024-11-19]
CHR Notifications: Profile 1 -> hxxps://www.netflix.com
CHR Extension: (Podpořte) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\amaegjccccajmhnbcbeagblpdccimoeh [2023-10-02]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-04]
CHR Extension: (BizMachine Prospector Go) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mdannaddgiklheglbfhoobggpdnhkdda [2024-08-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-02]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2 [2024-11-19]
CHR Notifications: Profile 2 -> hxxps://aternos.org; hxxps://meet.google.com
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-10-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-10-04]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6 [2024-11-14]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-11-07]
CHR Extension: (Dokumenty Google offline) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-07]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-11]
CHR Profile: C:\Users\admin\AppData\Local\Google\Chrome\User Data\System Profile [2024-11-19]
CHR HKU\S-1-5-21-502460867-2142398443-4065067644-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR Profile: C:\Users\admin\AppData\Roaming\Opera Software\Opera Stable [2021-07-29]
OPR Extension: (Rich Hints Agent) - C:\Users\admin\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-07-29]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944048 2024-09-09] (Adobe Inc. -> Adobe Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2020-05-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-11-06] (Gen Digital Inc. -> Piriform Software Ltd)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [206304 2022-10-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 EPSON_PM_RPCV4_11; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S11RPB.EXE [171096 2020-04-01] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [154928 2024-07-15] (Sophos BV -> Sophos B.V.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9433496 2024-11-19] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [3073888 2024-11-19] (Malwarebytes Inc. -> Malwarebytes)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NetBalancerService; C:\Program Files\NetBalancer\SeriousBit.NetBalancer.Service.exe [197864 2023-02-08] (SeriousBit Srl -> SeriousBit)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2393344 2024-11-03] (Overwolf Ltd -> Overwolf LTD)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-11-02] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [34112 2020-05-18] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33832 2020-05-18] (ASUSTeK Computer Inc. -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [232024 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2024-11-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [201280 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [80448 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2024-11-19] (Malwarebytes Inc. -> Malwarebytes)
R1 nbdrv; C:\WINDOWS\system32\DRIVERS\nbdrv.sys [42128 2021-07-15] (SeriousBit Srl -> SeriousBit)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22104 2024-11-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [606624 2024-11-02] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-11-02] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-19 17:24 - 2024-11-19 17:24 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2024-11-19 17:24 - 2024-11-19 17:24 - 000000000 ____D C:\Users\admin\AppData\LocalLow\IGDump
2024-11-19 17:20 - 2024-11-19 17:23 - 000000000 ____D C:\Users\admin\AppData\Local\Malwarebytes
2024-11-19 17:20 - 2024-11-19 17:20 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2024-11-19 17:20 - 2024-11-19 17:20 - 000002081 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2024-11-19 17:19 - 2024-11-19 17:19 - 002744320 _____ (Malwarebytes) C:\Users\admin\Downloads\MBSetup (1).exe
2024-11-19 17:19 - 2024-11-19 17:19 - 000000000 ____D C:\ProgramData\Malwarebytes
2024-11-19 17:19 - 2024-11-19 17:19 - 000000000 ____D C:\Program Files\Malwarebytes
2024-11-19 17:15 - 2024-11-19 17:15 - 000515800 _____ C:\Users\admin\Documents\cc_20241119_171550.reg
2024-11-18 21:43 - 2024-11-18 21:44 - 000064663 _____ C:\Users\admin\Desktop\Addition.txt
2024-11-18 21:42 - 2024-11-19 17:27 - 000024345 _____ C:\Users\admin\Desktop\FRST.txt
2024-11-18 21:42 - 2024-11-19 17:26 - 000000000 ____D C:\FRST
2024-11-18 21:42 - 2024-11-18 21:42 - 002402816 _____ (Farbar) C:\Users\admin\Desktop\FRST64.exe
2024-11-18 20:27 - 2024-11-18 20:28 - 006013210 _____ C:\Users\admin\Downloads\Pojištění_vozidel_pojistné_podmínky_A001_01042024.pdf
2024-11-15 16:18 - 2024-11-15 16:18 - 003106326 _____ C:\Users\admin\Downloads\Clean_Choices_v1.1.zip
2024-11-14 23:06 - 2024-11-14 23:06 - 000239705 _____ C:\Users\admin\Downloads\British Airways - Confirmation.pdf
2024-11-14 20:33 - 2024-11-14 20:33 - 000000000 ____D C:\Users\admin\Desktop\Nejhorsi mazlicci na svete
2024-11-14 20:30 - 2024-11-14 20:32 - 190192554 _____ C:\Users\admin\Downloads\Nejhorsi mazlicci na svete.zip
2024-11-13 22:14 - 2024-11-13 23:25 - 000000951 _____ C:\WINDOWS\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3}.job
2024-11-13 22:14 - 2024-11-13 22:14 - 000004146 _____ C:\WINDOWS\system32\Tasks\EPSON L3560 Series Update {8AF816F6-7513-42B7-B4AA-8C41FA9C27B3}
2024-11-13 22:07 - 2024-11-13 22:07 - 000002209 _____ C:\Users\Public\Desktop\Epson Printer Connection Checker.lnk
2024-11-13 22:07 - 2024-11-13 22:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2024-11-13 22:07 - 2024-11-13 22:07 - 000000000 ____D C:\Program Files (x86)\EPSON Software
2024-11-13 20:45 - 2024-11-13 20:45 - 000244386 _____ C:\Users\admin\Downloads\03417658.jpeg
2024-11-13 19:56 - 2024-11-13 19:56 - 000012714 _____ C:\Users\admin\Downloads\stažený soubor.jfif
2024-11-13 19:52 - 2024-11-13 19:52 - 001162468 _____ C:\Users\admin\Downloads\Dokument bez názvu.pdf
2024-11-13 19:47 - 2024-11-13 19:47 - 000108952 _____ C:\Users\admin\Downloads\2b39bbc5-2ec7-4c68-b113-debc9887daf3 (1).webp
2024-11-13 19:46 - 2024-11-13 19:46 - 000108952 _____ C:\Users\admin\Downloads\2b39bbc5-2ec7-4c68-b113-debc9887daf3.webp
2024-11-13 19:17 - 2024-11-13 19:17 - 000000000 ___HD C:\$WinREAgent
2024-11-12 22:00 - 2024-11-12 22:00 - 000248936 _____ C:\Users\admin\Downloads\uniqa_vypoved_1-sloučen.pdf
2024-11-12 21:57 - 2024-11-12 21:57 - 000175142 _____ C:\Users\admin\Documents\uniqa_vypoved_1.pdf
2024-11-12 21:56 - 2024-11-12 21:56 - 000073269 _____ C:\Users\admin\Documents\uniqa_vypoved_2.pdf
2024-11-12 21:51 - 2024-11-12 21:51 - 000000000 ____D C:\Users\admin\AppData\Roaming\EPSON
2024-11-12 21:24 - 2024-11-12 21:24 - 000025292 _____ C:\Users\admin\Downloads\cancellationDocument (1).pdf
2024-11-12 21:10 - 2024-11-12 21:10 - 000000000 ____D C:\Program Files\Common Files\EPSON
2024-11-12 20:43 - 2024-11-12 20:43 - 000000000 ____D C:\Program Files\EpsonNet
2024-11-12 20:42 - 2024-11-12 20:42 - 000000123 _____ C:\Users\Public\Desktop\Epson Connect Site.url
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\WINDOWS\twain_64
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\Program Files\epson
2024-11-12 20:42 - 2024-11-12 20:42 - 000000000 ____D C:\Program Files (x86)\epson
2024-11-12 20:42 - 2022-10-21 11:29 - 000206304 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\escsvc64.exe
2024-11-12 20:42 - 2022-10-21 11:29 - 000165392 _____ (TWAIN Working Group) C:\WINDOWS\system32\twaindsm.dll
2024-11-12 20:42 - 2022-10-21 11:29 - 000147472 _____ (TWAIN Working Group) C:\WINDOWS\SysWOW64\twaindsm.dll
2024-11-12 20:40 - 2024-11-12 21:10 - 000000000 ____D C:\ProgramData\Epson
2024-11-12 20:39 - 2024-11-12 20:39 - 002536536 _____ (Seiko Epson Corporation. ) C:\Users\admin\Downloads\Epson_L3560_Series_EM_50_Web.exe
2024-11-12 20:03 - 2024-11-12 20:03 - 000321520 _____ C:\Users\admin\Downloads\forum-romanum-1.webp
2024-11-12 20:03 - 2024-11-12 20:03 - 000133502 _____ C:\Users\admin\Downloads\puzzle-forum-romanum-rim-2000-dilku.webp
2024-11-11 21:38 - 2024-11-11 21:38 - 000025449 _____ C:\Users\admin\Downloads\cancellationDocument.pdf
2024-11-11 15:38 - 2024-11-11 15:38 - 000000000 ____D C:\Users\admin\AppData\Local\.resourcefullib
2024-11-07 23:15 - 2024-11-07 23:16 - 000000000 ____D C:\AdwCleaner
2024-11-07 23:15 - 2024-11-07 23:15 - 008790880 _____ (Malwarebytes) C:\Users\admin\Downloads\adwcleaner_8.4.2.exe
2024-11-07 23:14 - 2024-11-07 23:14 - 002744320 _____ (Malwarebytes) C:\Users\admin\Downloads\MBSetup.exe
2024-11-05 17:18 - 2024-11-19 17:06 - 000000000 ____D C:\Users\admin\AppData\Roaming\lunarclient
2024-11-05 17:18 - 2024-11-16 12:33 - 000000000 ____D C:\Users\admin\AppData\Local\lunarclient-updater
2024-11-05 17:18 - 2024-11-05 17:24 - 000000000 ____D C:\Users\admin\.lunarclient
2024-11-05 17:18 - 2024-11-05 17:18 - 002400448 _____ (Overwolf Ltd.) C:\Users\admin\Downloads\Lunar Client - Installer (1).exe
2024-11-05 17:18 - 2024-11-05 17:18 - 000002399 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lunar Client.lnk
2024-11-05 17:17 - 2024-11-05 17:17 - 002400448 _____ (Overwolf Ltd.) C:\Users\admin\Downloads\Lunar Client - Installer.exe
2024-10-31 20:38 - 2024-10-31 20:38 - 000174455 _____ C:\Users\admin\Downloads\potvrzeni-47885.pdf
2024-10-28 18:56 - 2024-10-28 18:56 - 000000000 ____D C:\Program Files (x86)\Temp
2024-10-28 18:54 - 2024-10-28 18:55 - 000000000 ____D C:\Program Files (x86)\Java
2024-10-28 18:54 - 2024-10-28 18:54 - 000000000 ____D C:\Users\admin\AppData\Roaming\Sun
2024-10-28 18:54 - 2024-10-28 18:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2024-10-28 18:54 - 2024-09-30 08:34 - 000178816 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2024-10-27 22:05 - 2024-10-27 22:05 - 002208016 _____ (Overwolf Ltd.) C:\Users\admin\Downloads\CurseForge - Installer.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-11-19 17:25 - 2024-04-29 20:08 - 000000000 ____D C:\Program Files\CCleaner
2024-11-19 17:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-11-19 17:20 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-11-19 17:20 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2024-11-19 17:16 - 2024-04-29 20:08 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2024-11-19 17:16 - 2024-04-29 20:08 - 000003380 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2024-11-19 17:16 - 2024-04-29 20:08 - 000000666 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2024-11-19 17:14 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2024-11-19 17:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-11-19 17:06 - 2020-05-18 20:24 - 000000000 ____D C:\ProgramData\ASUS
2024-11-19 07:25 - 2020-05-26 19:59 - 000000000 ____D C:\ProgramData\NVIDIA
2024-11-19 07:23 - 2021-07-29 22:25 - 000000000 ____D C:\Users\admin\AppData\Roaming\.minecraft
2024-11-19 07:12 - 2022-01-15 10:16 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-502460867-2142398443-4065067644-1001
2024-11-19 07:12 - 2021-02-27 20:04 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-502460867-2142398443-4065067644-1001
2024-11-19 07:12 - 2021-02-27 20:01 - 000002377 _____ C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-11-19 07:09 - 2020-05-31 19:20 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2024-11-19 06:59 - 2022-05-04 19:48 - 000000000 ____D C:\Users\admin\AppData\Local\MinecraftInstaller
2024-11-19 06:59 - 2021-12-15 20:38 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-11-19 06:59 - 2020-05-18 20:18 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-11-19 06:59 - 2020-05-18 20:18 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-11-18 21:39 - 2020-06-10 21:25 - 000000000 ____D C:\Users\admin\AppData\Local\CrashDumps
2024-11-18 21:36 - 2021-02-27 20:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-11-18 14:42 - 2024-02-23 15:34 - 000003582 _____ C:\WINDOWS\system32\Tasks\Launch Adobe CCXProcess
2024-11-18 14:13 - 2024-03-03 16:39 - 000002317 _____ C:\Users\admin\Desktop\CurseForge.lnk
2024-11-18 14:13 - 2024-03-03 16:36 - 000000000 ____D C:\Users\admin\AppData\Local\Overwolf
2024-11-18 06:46 - 2020-07-14 23:46 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-11-18 06:46 - 2020-07-14 23:46 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-11-16 08:44 - 2021-12-16 06:57 - 000000000 ___HD C:\adobeTemp
2024-11-16 08:43 - 2020-05-26 20:00 - 000000000 ____D C:\ProgramData\Adobe
2024-11-16 07:20 - 2020-05-18 20:17 - 000000000 ____D C:\Users\admin\AppData\Local\D3DSCache
2024-11-15 17:17 - 2022-10-14 13:56 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-11-15 17:17 - 2022-10-14 13:56 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-11-15 17:17 - 2021-02-27 20:04 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-11-15 13:59 - 2024-03-03 16:39 - 000000000 ____D C:\Program Files (x86)\Overwolf
2024-11-14 23:06 - 2020-05-18 20:10 - 000000000 ____D C:\Users\admin\AppData\Local\Packages
2024-11-14 20:07 - 2021-02-27 20:09 - 001693820 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-11-14 20:07 - 2019-12-07 15:41 - 000716932 _____ C:\WINDOWS\system32\perfh005.dat
2024-11-14 20:07 - 2019-12-07 15:41 - 000145110 _____ C:\WINDOWS\system32\perfc005.dat
2024-11-14 20:02 - 2021-02-27 20:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-11-14 20:02 - 2021-02-27 20:00 - 000008192 ___SH C:\DumpStack.log.tmp
2024-11-13 23:25 - 2021-02-27 20:00 - 000269344 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-11-13 23:25 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-11-13 23:24 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-11-13 21:31 - 2023-07-29 09:30 - 000003530 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2024-11-13 21:31 - 2021-02-27 20:04 - 000003506 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2024-11-13 19:23 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-11-13 19:21 - 2021-02-27 20:04 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-11-13 19:17 - 2020-05-18 20:59 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-11-13 19:15 - 2020-05-18 20:59 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-11-12 21:51 - 2021-02-27 20:01 - 000000000 ____D C:\Users\admin
2024-11-12 17:02 - 2022-05-04 19:51 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\InputMethod
2024-11-10 12:43 - 2023-10-02 21:13 - 000002432 _____ C:\Users\admin\Desktop\Alena - Chrome.lnk
2024-11-09 09:59 - 2021-02-27 20:04 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-09 09:59 - 2021-02-27 20:04 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-05 17:21 - 2024-06-24 18:31 - 000000000 ____D C:\Users\admin\Desktop\skiny
2024-11-05 17:17 - 2024-10-11 17:13 - 000000000 ____D C:\Users\admin\AppData\Roaming\ow-electron
2024-11-03 08:46 - 2022-10-20 13:03 - 000124456 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamehelper.exe
2024-11-03 08:46 - 2022-10-20 13:03 - 000075304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgamecontrol.exe
2024-11-03 08:46 - 2022-05-04 19:49 - 002872896 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000775720 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000243240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2024-11-03 08:46 - 2022-05-04 19:49 - 000153152 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2024-11-02 19:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-11-02 14:25 - 2021-07-29 20:22 - 000000000 ____D C:\ProgramData\Avast Software
2024-11-02 14:15 - 2023-03-12 17:52 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2024-11-02 14:10 - 2020-05-19 01:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-11-02 14:02 - 2020-05-18 20:24 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2024-11-02 14:00 - 2023-05-03 05:54 - 000000000 ____D C:\Users\admin\AppData\Local\Bluestacks
2024-11-02 13:57 - 2021-02-27 16:50 - 000000000 ____D C:\Users\admin\AppData\Local\LogMeIn Hamachi
2024-11-02 13:55 - 2020-06-01 20:45 - 000000000 ____D C:\Users\admin\AppData\Local\GHISLER
2024-11-02 11:14 - 2020-05-18 20:26 - 000012032 _____ C:\WINDOWS\PE_Rom.dll
2024-11-02 09:42 - 2024-04-29 20:08 - 000002252 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - admin
2024-11-02 09:42 - 2024-03-03 16:39 - 000003270 _____ C:\WINDOWS\system32\Tasks\Overwolf Updater Task
2024-11-02 09:42 - 2021-10-02 11:46 - 000002702 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2024-11-02 09:42 - 2021-07-29 20:24 - 000003856 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1627586689
2024-11-02 09:42 - 2021-07-29 20:24 - 000003602 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1627586682
2024-11-01 00:27 - 2020-11-01 20:40 - 000000000 ____D C:\Users\admin\AppData\Roaming\Topaz Labs LLC
2024-11-01 00:27 - 2020-11-01 20:39 - 000000000 ____D C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Topaz Labs LLC
2024-11-01 00:27 - 2020-11-01 20:39 - 000000000 ____D C:\Program Files\Topaz Labs LLC
2024-11-01 00:27 - 2020-09-13 15:48 - 000000000 ____D C:\ProgramData\Topaz Labs LLC
2024-10-30 13:05 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2024-10-28 18:56 - 2024-01-24 17:08 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2024-10-28 18:55 - 2020-06-01 20:45 - 000000000 ____D C:\totalcmd
2024-10-28 18:55 - 2020-05-18 20:24 - 000000000 ____D C:\ProgramData\Package Cache

==================== Files in the root of some directories ========

2020-06-25 21:49 - 2024-04-09 21:27 - 000001456 _____ () C:\Users\admin\AppData\Local\Adobe Save for Web 13.0 Prefs
2020-05-31 19:17 - 2020-05-31 19:17 - 000000410 _____ () C:\Users\admin\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2024
Ran by admin (19-11-2024 17:27:18)
Running from C:\Users\admin\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5131 (X64) (2021-02-27 19:04:15)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

admin (S-1-5-21-502460867-2142398443-4065067644-1001 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-502460867-2142398443-4065067644-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-502460867-2142398443-4065067644-503 - Limited - Disabled)
Guest (S-1-5-21-502460867-2142398443-4065067644-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-502460867-2142398443-4065067644-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 24.08 (x64) (HKLM\...\7-Zip) (Version: 24.08 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.004.20272 - Adobe)
Adobe Bridge 2025 (HKLM-x32\...\KBRG_15_0_0) (Version: 15.0.0 - Adobe Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.4.0.361 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.5.1.48 - Adobe Inc.)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_14_0_1) (Version: 14.0.1 - Adobe Inc.)
Adobe Photoshop 2025 (HKLM-x32\...\PHSP_26_0) (Version: 26.0.0.26 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.52 - ASUSTeK Computer Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.30.28 - Advanced Micro Devices, Inc.)
ANT Drivers Installer x64 (HKLM\...\{71A1AEB1-EF84-4531-8A6B-B36F104C9F1D}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Balanced (HKLM-x32\...\{24819F88-1B0B-4808-9982-5DC9C4AC7FA6}) (Version: 5.00.0000 - Advanced Micro Devices, Inc.) Hidden
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.30 - Piriform)
CurseForge (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 1.265.0.1056 - Overwolf app)
CurseForge 1.262.1-20597 (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\ca0e291c-abd4-5fc3-b6a0-3d4333eccbd7) (Version: 1.262.1-20597 - Overwolf)
Elevated Installer (HKLM-x32\...\{3D0CEA2A-AAD6-428D-967B-C88F0E958AE2}) (Version: 7.9.0.0 - Garmin Ltd or its subsidiaries) Hidden
EPSON L3560 Series Printer Uninstall (HKLM\...\EPSON L3560 Series) (Version: - Seiko Epson Corporation)
Epson Printer Connection Checker (HKLM-x32\...\{DE32F90E-1A29-4D74-BCF1-E7DDB25D713A}) (Version: 3.4.0.0 - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{92DCE546-2A73-4BCF-ADA5-0E6BD95E6B61}) (Version: 3.2.0.0 - Seiko Epson Corporation)
Garmin Express (HKLM-x32\...\{580B8950-94E4-43F4-B4AA-E300A87E82B9}) (Version: 7.9.0.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{dc3a797a-2ec2-46c3-aa02-2de93fa270c6}) (Version: 7.9.0.0 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM\...\{825DE266-F7F9-3C28-BC5C-1DAED26C249C}) (Version: 131.0.6778.70 - Google LLC)
HitmanPro 3.8 (HKLM\...\HitmanPro38) (Version: 3.8.36.332 - SurfRight B.V.)
Java 8 Update 431 (HKLM-x32\...\{71024AE4-039E-4CA4-87B4-2F32180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Malwarebytes version 5.2.2.154 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.2.154 - Malwarebytes)
Medal of Honor - Allied Assault War Chest (HKLM-x32\...\1207659126_is1) (Version: 2.1.0.22 - GOG.com)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 130.0.2849.80 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\OneDriveSetup.exe) (Version: 24.211.1020.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33816 (HKLM-x32\...\{77169412-f642-45e7-b533-0c6f48de12f9}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33816 (HKLM-x32\...\{4373d0b5-4457-4a80-bad9-029de8df097b}) (Version: 14.40.33816.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33816 (HKLM\...\{5904914B-9FC8-44C2-AE48-5C7F30A603EC}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33816 (HKLM\...\{560D2DA4-096E-4868-B22A-DA6418FDE6FB}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33816 (HKLM-x32\...\{0DF1D9F9-6038-4641-AB6D-13DD654758A7}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33816 (HKLM-x32\...\{D7A66DA5-B103-45C1-A0A7-736C08E2F464}) (Version: 14.40.33816 - Microsoft Corporation) Hidden
Mp3tag v2.99 (HKLM-x32\...\Mp3tag) (Version: 2.99 - Florian Heidenreich)
NetBalancer (HKLM\...\NetBalancer_is1) (Version: - SeriousBit)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.18 - DxO)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OpenTTD (HKLM-x32\...\OpenTTD) (Version: 13.4 - OpenTTD)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.263.0.11 - Overwolf Ltd.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.)
TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp)
Topaz Sharpen AI (HKLM\...\Topaz Sharpen AI 2.1.8) (Version: 3.2.2 - Topaz Labs LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
UE4 Prerequisites (x64) (HKLM\...\{F9EC45F9-074A-48BF-92E9-A8CADD56F693}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{4e242cc8-5e3c-4b08-9d55-dbc62ddd1208}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Uninstall Lunar Client (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\1fcec38f-e773-5444-8669-32b8eb41524b) (Version: 3.2.29-ow - Moonsworth LLC)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
UXP WebView Support (HKLM-x32\...\UXPW_1_2_0) (Version: 1.2.0 - Adobe Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.92.0 - Winamp SA)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.10 - ZONER software)

Chrome apps:
============
Disk Google (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\1b4b3acb34569556e963c5be9c5f66ca) (Version: 1.0 - Google\Chrome)
Disk Google (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\f802ca1ebdfffe2561f774d0af40d936) (Version: 1.0 - Google\Chrome)
Dokumenty (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\c2298ff0600f6d0a9e5e694b89d125fe) (Version: 1.0 - Google\Chrome)
Dokumenty (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\e312ea0bcd5a539356392fe6a2ccef36) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\1677f967f7498eba7fa0170357d2e2f7) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\af4493368aaef81d86c4775a5b625363) (Version: 1.0 - Google\Chrome)
LEGO.com (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\def80795df5189b47346449aa2d4ff6c) (Version: 1.0 - Google\Chrome)
Prezentace (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\32a9acda1cae9992272be94d1a1e1875) (Version: 1.0 - Google\Chrome)
Prezentace (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\f271b3d4ea52542e408b8163b9d25db1) (Version: 1.0 - Google\Chrome)
Tabulky (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\97bdea63382a0abe9cc05ad74c61bacd) (Version: 1.0 - Google\Chrome)
Tabulky (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\e6ce904702f85c52099b6d81283da6dd) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\2be86c87714923a68cb2151c092f841e) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\74593adf70606ceb3f30ce7025bbe56f) (Version: 1.0 - Google\Chrome)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-15] ()
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_6.0.0.1_x86__enpm4xejd91yc [2024-05-22] (Adobe Systems Incorporated)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-03-04] (Microsoft Corporation)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa [2024-10-25] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-02-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-02-27] (Microsoft Corporation) [MS Ad]
Minecraft Dungeons -> C:\Program Files\WindowsApps\Microsoft.Lovika_1.17.0.0_x64__8wekyb3d8bbwe [2024-06-16] (Microsoft Studios)
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.4401.0_x64__8wekyb3d8bbwe [2024-11-01] (Microsoft Studios)
Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_2.1.3.0_x64__8wekyb3d8bbwe [2024-11-01] (Microsoft Studios)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2024-07-23] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-04-23] (NVIDIA Corp.)
Zip Extractor Pro -> C:\Program Files\WindowsApps\38526MediaLife.ZipPlus_2.0.4.0_x86__1crh1k73ty8mg [2020-07-31] (Media Life)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-502460867-2142398443-4065067644-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-10-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-10-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-11-19] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2019-10-18] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-16] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-07-19] (Adobe Inc. -> )
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-11-19] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\admin\Desktop\Alena - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\admin\Desktop\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\Desktop\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\admin\AppData\Local\Google\Chrome\User Data\Profile 2\Web Applications\_crx_nmnjmgkpkfocpgkgopfmicanghkbckhd\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Disk Google (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Disk Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Dokumenty (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Dokumenty.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Gmail (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Gmail.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Prezentace (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Prezentace.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Tabulky (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Tabulky.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\LEGO.com.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=nmnjmgkpkfocpgkgopfmicanghkbckhd
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Vladimir (Osoba 1) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b4459b1d68d26673\YouTube Music.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cinhimbnkkaeohfgghhklpknlkffjgod
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Antonin (zsradostna.cz) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Vladimir - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2024-11-19 17:06 - 2024-11-19 17:06 - 000271360 _____ () [File not signed] \\?\C:\Users\admin\AppData\Local\Temp\63b85ace-b3b6-45f3-be5c-9537b36cd8a7.tmp.node
2024-11-19 17:06 - 2024-11-19 17:06 - 000111616 _____ () [File not signed] \\?\C:\Users\admin\AppData\Local\Temp\9358b8ba-b5b5-49cf-8492-bbefd62a20d7.tmp.node
2020-05-18 20:24 - 2019-03-22 21:45 - 000147456 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2020-05-18 20:24 - 2019-07-18 17:02 - 001163776 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2020-05-18 20:24 - 2019-05-13 15:44 - 005843732 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2020-05-18 20:24 - 2019-05-13 15:44 - 000208896 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2020-05-18 20:24 - 2019-05-13 15:44 - 000681984 _____ () [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll
2020-05-18 20:24 - 2020-05-18 20:24 - 000242176 _____ () [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.38\cpuutil.dll
2023-03-20 19:58 - 2021-09-09 08:10 - 000463360 _____ () [File not signed] C:\Program Files\NetBalancer\nDPI.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 002682880 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\ffmpeg.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 000481280 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\libegl.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 008058368 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\libglesv2.dll
2024-11-05 17:18 - 2024-11-18 06:45 - 005475328 _____ () [File not signed] C:\Users\admin\AppData\Local\Programs\Lunar Client\vk_swiftshader.dll
2020-05-18 20:24 - 2019-03-22 21:45 - 000108544 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsAcpi.dll
2020-05-18 20:24 - 2024-11-14 20:02 - 000033536 _____ (ASUSTeK Computer Inc. -> ) [File not signed] C:\Program Files (x86)\ASUS\AXSP\4.00.38\PEbiosinterface32.dll
2020-05-18 20:24 - 2019-03-22 21:45 - 000676864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll
2020-05-18 20:24 - 2019-03-22 21:45 - 000221184 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll
2019-10-18 17:32 - 2019-10-18 17:32 - 000424448 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2023-06-07 21:24 - 2024-08-11 14:00 - 000101376 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2023-03-20 19:58 - 2021-07-15 08:49 - 000091648 _____ (NT Kernel Resources) [File not signed] C:\Program Files\NetBalancer\ndisapi.dll
2023-03-20 19:58 - 2020-04-05 20:14 - 001662976 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\NetBalancer\SQLite.Interop.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\18339028554473784721\133764283079906641.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys

nt_nbdrv: NetBalancer Filter

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "OnrymSpeedup"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "GarminExpress"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "NetBalancer"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_29EBC4579851B72EE312C449CF839B1A"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-502460867-2142398443-4065067644-1001\...\StartupApproved\Run: => "electron.app.BlueStacks Services"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{7590B502-D15E-4A2A-847C-504E378A6798}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{9BB9C6AD-50D7-44CB-AFAA-A1774B3D2D23}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{6D3BF9B9-B0EE-406D-9D86-AA8D4E41E183}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{E1B7EFD4-BC46-40DC-BF74-4B2B1FB25A23}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{E4929A1F-B69D-4DAB-84E0-01468A1F65AE}C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe] => (Allow) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [UDP Query User{A22C1AC2-A3C5-42F6-8907-A6D753FD89A2}C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe] => (Allow) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{2D66C2A8-DA59-4122-A057-AB720954B84A}] => (Block) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{20D19EF2-D5BE-43B5-B95A-7E30A34834CD}] => (Block) C:\program files (x86)\gog galaxy\games\medal of honor - allied assault war chest\mohaa.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{CD71A00B-260D-4FB6-8336-67FFABFE8221}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{2B1E4FED-6462-464A-8980-0FB8C20578F2}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [TCP Query User{2FD9325B-1362-4C7D-9CF9-F8385B86C668}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{5AA3B767-4B0C-4209-8E1F-E9544E9BC508}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{A0ABC63D-B323-4522-B8A6-2795A72DA673}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{713AA67B-3FC3-4B5E-8AEB-D5CEF12B716E}C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\curseforge\minecraft\install\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{6EC24F81-FA93-43FA-B7BF-ADDE1C832096}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [UDP Query User{57C72252-7C58-4A15-B43D-14A87C3AB4DC}C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe] => (Block) C:\users\admin\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-delta\windows-x64\java-runtime-delta\bin\javaw.exe
FirewallRules: [TCP Query User{5E371D9F-AE25-4DDF-8057-3AFF65D7C15A}C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe] => (Block) C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe
FirewallRules: [UDP Query User{5D8BD396-E1BB-4DC4-920D-05EF3AFD69D5}C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe] => (Block) C:\users\admin\appdata\roaming\modrinthapp\meta\java_versions\zulu21.36.17-ca-jre21.0.4-win_x64\bin\javaw.exe
FirewallRules: [{EE9A8CD1-4F23-4210-A108-C2FCF014743B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{0CCDC0A6-BC5B-4941-B52A-87BFFE47DEEF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ED4511C0-620A-4FEE-8A8E-8193E58A6762}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{28DAD857-B038-467E-A060-503631FE3510}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{FB9CB7D0-1EE9-4314-AAA7-71CE72BEF620}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{F3C6D215-43EE-4AE2-9D30-BBBCBC64454B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{17C899F3-CEAA-4BE2-92A7-E45D0AA44D47}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{A566FECB-2445-4A75-B68D-AB2957827C54}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [TCP Query User{AD8BC3EB-9320-4522-8F0F-DAFEAE27FDC6}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [UDP Query User{F16EAE1E-0316-46AA-B1D3-2220761A2C32}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [TCP Query User{C2EE5362-14C6-4475-B832-94D34ADD931F}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [UDP Query User{4C71072A-87C9-49C5-8A05-E12F407FAEE7}C:\users\admin\appdata\local\programs\lunar client\lunar client.exe] => (Block) C:\users\admin\appdata\local\programs\lunar client\lunar client.exe (Moonsworth, LLC -> Moonsworth LLC)
FirewallRules: [{81E67FB9-A697-46AB-B08E-85BE52502FA2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.80\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{63D1C29C-F759-4F84-8041-0E2006A1E5D9}] => (Allow) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{4118F87E-FF0F-4119-93F4-D4685CFBC981}] => (Allow) C:\Program Files (x86)\Overwolf\0.263.0.11\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{964FC810-436E-45AF-8865-217A5A37418F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0C3F800C-E6E1-4536-B35D-81079B7BF4EA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0141FCE4-4DB0-4AC2-9D5F-7C3B3D9DB2BC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{068FF80A-56AF-4720-A2CA-B73B3EFA86CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.132.3201.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9A8C1603-7311-4381-8D30-17C35C68460A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

11-11-2024 21:59:23 Naplánovaný kontrolní bod
13-11-2024 19:17:18 Instalační služba modulů systému Windows
13-11-2024 19:17:40 Instalační služba modulů systému Windows
13-11-2024 19:18:55 Instalační služba modulů systému Windows
13-11-2024 22:06:56 Installed Epson Printer Connection Checker

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (11/18/2024 09:39:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Název chybujícího modulu: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Kód výjimky: 0xc000041d
Posun chyby: 0x0000000000317815
ID chybujícího procesu: 0x60f0
Čas spuštění chybující aplikace: 0x01db39e817900552
Cesta k chybující aplikaci: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
Cesta k chybujícímu modulu: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
ID zprávy: 6126f2a8-f513-46a4-b370-06de4253ca97
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/18/2024 09:39:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Název chybujícího modulu: Zps.exe, verze: 18.0.1.10, časové razítko: 0x5873831b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000317815
ID chybujícího procesu: 0x60f0
Čas spuštění chybující aplikace: 0x01db39e817900552
Cesta k chybující aplikaci: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
Cesta k chybujícímu modulu: C:\Program Files\Zoner\Photo Studio 18\Program64\Zps.exe
ID zprávy: fd6aecb9-2e5e-4960-810e-f8b1ca1cd4bd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/18/2024 09:36:22 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (11/18/2024 02:13:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0x1fe0
Čas spuštění chybující aplikace: 0x01db39bbb05a6a77
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: af533680-a1a7-41af-8f31-366469b3f0b0
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/18/2024 06:46:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0x27ec
Čas spuštění chybující aplikace: 0x01db397d2794e87a
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: f860b540-c13d-4497-8ad2-a4943960f01d
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/15/2024 07:36:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0x7f8
Čas spuštění chybující aplikace: 0x01db378d42abe448
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: 96114815-012c-4bbe-950e-b7f80885293b
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/15/2024 02:00:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RuntimeBroker.exe, verze: 10.0.19041.4355, časové razítko: 0x6b2db9af
Název chybujícího modulu: windows.storage.dll, verze: 10.0.19041.5072, časové razítko: 0x7c89cd7d
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d5869
ID chybujícího procesu: 0xe00
Čas spuštění chybující aplikace: 0x01db375e4c316e56
Cesta k chybující aplikaci: C:\Windows\System32\RuntimeBroker.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\windows.storage.dll
ID zprávy: 4c37ad67-2743-45ba-8262-ee7e7f78b3dc
Úplný název chybujícího balíčku: Microsoft.OneConnect_5.2308.2294.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: runtimebroker07f4358a809ac99a64a67c1

Error: (11/13/2024 11:25:45 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]


System errors:
=============
Error: (11/19/2024 07:04:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (11/16/2024 10:55:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-I28IM4U)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/16/2024 10:55:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-I28IM4U)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/16/2024 10:55:38 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-I28IM4U)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/16/2024 08:18:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9MV0B5HZVK9Z-Microsoft.GamingApp.

Error: (11/14/2024 08:04:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/14/2024 08:04:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (11/14/2024 08:02:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba GameInput Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.


Windows Defender:
================
Date: 2024-11-18 21:24:03
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {81495EB4-2D3A-4CB0-83C6-6BD3DB385ED7}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-16 14:30:40
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D1386A43-F37C-45D1-88D7-2F1C82B913B1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-15 20:40:46
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B70C85B8-1075-412E-9B6F-F5D78DAE9C79}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-14 21:48:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A1EDAEB0-01E6-4B73-AE61-E06D9F26F722}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-11-14 21:38:09
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FDA5F298-06C0-403F-A783-94CA7096A7C3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2024-08-24 10:00:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.217.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2024-08-24 10:00:15
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.417.217.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24070.3
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2024-07-19 14:42:28
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.415.103.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24060.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2024-07-19 14:42:28
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.415.103.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24060.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

Date: 2024-07-19 14:42:28
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.415.103.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24060.5
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2024-11-19 17:24:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-11-19 17:24:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2024-10-11 07:19:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2006 11/13/2019
Motherboard: ASUSTeK COMPUTER INC. PRIME B450M-A
Processor: AMD Ryzen 7 3700X 8-Core Processor
Percentage of memory in use: 21%
Total physical RAM: 32704.38 MB
Available physical RAM: 25689.24 MB
Total Virtual: 38080.38 MB
Available Virtual: 29700.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.32 GB) (Free:57.56 GB) (Model: Samsung SSD 970 EVO Plus 250GB) NTFS
Drive d: (Data) (Fixed) (Total:5589.01 GB) (Free:888.52 GB) (Model: ST6000DM003-2CY186) NTFS
Drive g: (Elements) (Fixed) (Total:1397.23 GB) (Free:1026.02 GB) (Model: WD Elements 2620 USB Device) NTFS
Drive j: (NIKON D7200) (Removable) (Total:29.71 GB) (Free:1.52 GB) FAT32

\\?\Volume{84c3da77-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.57 GB) (Free:0.12 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 84C3DA77)
Partition 1: (Active) - (Size=579 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.3 GB) - (Type=07 NTFS)

==========================================================
Disk: 4 (Protective MBR) (Size: 29.7 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 6 (Size: 1397.2 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15640
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#4 Příspěvek od JaRon »

https://forum.viry.cz/viewtopic.php?p=1 ... x#p1543625
Pouzi delfix a hotovo 🙂
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
ed
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 14 led 2005 18:27

Re: Prosím o kontrolu logu

#5 Příspěvek od ed »

OK, tak snad to pošlape zase nějakou dobu bez prboémů.

Díky moc a přeji fajn večer!
Nahoru
Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15640
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu logu

#6 Příspěvek od JaRon »

Rado sa stalo
Ak by nieco, ozvi sa
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Nahoru
Zamčeno

Zpět na „Preventivní kontroly logů“