Prosím o kontrolu logu z FRST

[Zahryz90]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-01-2025
Ran by Dusan (administrator) on DESKTOP-439QJ7T (Gigabyte Technology Co., Ltd. Z690 AORUS PRO) (23-01-2025 10:41:48)
Running from C:\Users\Dusan\Desktop\FRST64.exe
Loaded Profiles: Dusan
Platform: Microsoft Windows 10 Home Version 22H2 19045.5371 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Common Files\Rockwell\ftsvchost.exe ->) (Rockwell Automation Inc -> Node.js) C:\Program Files (x86)\Common Files\Rockwell\FTWebSupportService.exe
(C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\flexsvr.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(D:\Program Files (x86)\Rockwell Software\EtherNet IP Address Commissioning Tool\ftsm.exe ->) (Rockwell Automation Inc -> Rockwell Automation Inc.) D:\Program Files (x86)\Rockwell Software\EtherNet IP Address Commissioning Tool\EIPCommissionWebSer.exe
(D:\Program Files (x86)\Rockwell Software\EtherNet IP Address Commissioning Tool\ftsm.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\EtherNet IP Address Commissioning Tool\EIPCommissionWinSer.exe
(D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\FTLinxServices.exe ->) (Rockwell Automation Inc -> Rockwell Automation Inc.) D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\NetBrowserManager.exe
(D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\ftsm.exe ->) (Rockwell Automation Inc -> Rockwell Automation Inc.) D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\FTLinxServices.exe <4>
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <51>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe <2>
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9425e4c3b1ac1c47\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1c5e940d4ffae802\RtkAudUService64.exe
(services.exe ->) (Rockwell Automation Inc -> ) C:\Program Files (x86)\Common Files\Rockwell\ftsvchost.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation Inc.) C:\Program Files (x86)\Common Files\Rockwell\RNADiagnosticsSrv.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\EventClientMultiplexer.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\EventServer.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagSvcHost.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\LocalOPCServer.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RdcyHost.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RNADirMultiplexor.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RnaDirServer.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\RsvcHost.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) C:\Program Files (x86)\Common Files\Rockwell\Updater\Agent\UpdaterAgent.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\EtherNet IP Address Commissioning Tool\ftsm.exe <2>
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\FTLinxSecurityServer.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\ftsm.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\RSLinxNG.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\RSView Enterprise\FTViewServiceHost.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\RSView Enterprise\HMIDIAGNOSTICSLSTADAPT.exe
(services.exe ->) (Rockwell Automation Inc -> Rockwell Automation, Inc.) D:\Program Files (x86)\Rockwell Software\RSView Enterprise\TagSrv.exe
(services.exe ->) (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_1c5e940d4ffae802\RtkAudUService64.exe [2165104 2024-08-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Corsair iCUE5 Software] => C:\Program Files\Corsair\Corsair iCUE5 Software\Corsair iCUE5 Software\iCUE Launcher.exe [189824 2025-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [Creative.SBCommand] => C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe [210904 2023-10-06] (Creative Technology Ltd -> Creative Technology Ltd)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\Dusan\AppData\Local\Microsoft\Teams\Update.exe [2454240 2022-03-23] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [FactoryTalk Directory Information] => C:\Program Files (x86)\Common Files\Rockwell\FTLoginLogout.exe [480624 2022-02-22] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
HKLM-x32\...\Run: [UsbCipHelper] => C:\Program Files\Rockwell Automation\UsbCipDriver\USBCIPHelper\UsbCipHelper.exe [4638192 2019-01-28] (Rockwell Automation, Inc -> Rockwell Automation, Inc.)
HKLM-x32\...\Run: [ActivationNotifier] => C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\Tools\ActivationNotifier.exe [369720 2022-02-23] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
HKU\S-1-5-21-254389370-4066128350-1364079936-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3597056 2024-11-26] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-254389370-4066128350-1364079936-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45381424 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-254389370-4066128350-1364079936-1001\...\Run: [Steam] => D:\Steam\steam.exe [4435552 2025-01-22] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-254389370-4066128350-1364079936-1001\...\Run: [EpicGamesLauncher] => D:\Epic\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36981208 2024-12-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-254389370-4066128350-1364079936-1001\...\Run: [MicrosoftEdgeAutoLaunch_14E57C54C11BDF8154A560BBDF30F8A1] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3923496 2025-01-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-254389370-4066128350-1364079936-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22373784 2024-12-18] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3597056 2024-11-26] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.267\Installer\chrmstp.exe [2025-01-22] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2025-01-14]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {FC992124-260F-4945-BEFB-470DFD890BBA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {D6AEAF95-F40A-46B8-BACA-5D7CE990FCB3} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "368c87cc-f827-4396-bdf6-efb2895efe0c" --version "6.31.11415" --silent
Task: {38A2730D-0245-43B3-B14C-740827F4FCF0} - System32\Tasks\CCleanerSkipUAC - Dusan => C:\Program Files\CCleaner\CCleaner.exe [39151920 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {BF8F91EC-E2FE-4D84-9515-17FFE8C28398} - System32\Tasks\GCC => C:\Program Files\GIGABYTE\Control Center\GCC.exe [35405928 2024-12-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> ) -> C:\Program Files\GIGABYTE\Control Center\\-b
Task: {8A15237A-6C98-4835-B2BA-837E8A4673BD} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{4233CAC1-4F5F-44DD-81C6-745D53002C6D} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {752CD809-11FE-41CB-98AB-F03E27813833} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [78288 2025-01-15] (HP Inc. -> HP Inc.)
Task: {C2BE291C-9CC2-44E4-BA24-D16B828CC9C2} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [78288 2025-01-15] (HP Inc. -> HP Inc.)
Task: {85C7446E-BC75-4A2D-B536-5D9E26183AB1} - System32\Tasks\Intel\Intel Telemetry 3 => C:\Program Files\Intel\Telemetry 3.0\lrio.exe [6045240 2024-02-14] (Intel Corporation -> Intel Corporation)
Task: {DB1AA263-437E-477D-85F2-1E53FABF80F1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DD77444-817A-4C49-B8E8-BA0DC5D61F56} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {4EF36938-14E2-4705-8DF4-7BA80CA82598} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311416 2025-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {6F017C71-68D2-4F6A-9064-9C31BF83FD31} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [311416 2025-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CB2FAC6C-4FC0-4891-B638-ACB4BEE2C596} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [192144 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {728827CA-C0B5-47D0-9E3D-96DF6702223F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {454E0B29-D263-4C81-881B-B61AAAFD16AD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1A1215C9-F092-4E21-A4FA-1854F0D1E556} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9CE650CC-8891-4A34-8C14-D56E245CC5AF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FEAD996C-A543-4AA2-A46F-4541C4F12FB3} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3333672 2024-12-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8033A9A-FA1C-402B-ACC4-5DDCA3B08923} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4222504 2025-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {F38CBDB1-269C-4C1C-A31A-856555B1681A} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-254389370-4066128350-1364079936-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4222504 2025-01-21] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{9c250a5c-464b-404d-9123-061791ffc076}: [DhcpNameServer] 192.168.0.1 0.0.0.0

Edge:
=======
Edge Profile: C:\Users\Dusan\AppData\Local\Microsoft\Edge\User Data\Default [2024-11-25]
Edge Extension: (Dokumenty Google offline) - C:\Users\Dusan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-13]
Edge Extension: (Edge relevant text changes) - C:\Users\Dusan\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-27]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-12-14] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\Dusan\AppData\Local\Google\Chrome\User Data\Default [2025-01-23]
CHR DownloadDir: E:\Temp E
CHR Notifications: Default -> hxxps://kfc.cz; hxxps://y2mate.nu
CHR Session Restore: Default -> is enabled.
CHR Extension: (Adblock na Youtube™) - C:\Users\Dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2024-12-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-18]
CHR Extension: (Adblock pro YouTube™) - C:\Users\Dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpefmbpcbebpjpmelobfakahfdcgcmkl [2024-02-22]
CHR Extension: (Coupert - Automatic Coupon Finder & Cashback) - C:\Users\Dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfidniedemcgceagapgdekdbmanojomk [2025-01-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dusan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-03-22]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AorusLcdService; C:\Program Files\GIGABYTE\Control Center\Lib\GBT_VGA\Service\AorusLcdService.exe [58840 2024-10-28] (GIGA-BYTE TECHNOLOGY CO., LTD. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
S2 CdRomArbiterService; C:\Program Files\Common Files\cdarbsvc\cdarbsvc_v1.2.0_x64.exe [9728 2024-03-17] (GuinpinSoft inc) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13572312 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
R2 CmWebAdmin.exe; C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe [10759616 2021-09-29] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG)
S3 CorsairCpuIdService; C:\Program Files\Corsair\Corsair iCUE5 Software\Corsair iCUE5 Software\CorsairCpuIdService.exe [304512 2025-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 CorsairDeviceListerService; C:\Program Files\Corsair\Corsair iCUE5 Software\Corsair iCUE5 Software\CorsairDeviceListerService.exe [176520 2025-01-20] (Corsair Memory, Inc. -> )
S3 dnWhoDisp; D:\Program Files (x86)\Rockwell Software\RSLINX\dnwhodisp.exe [181704 2020-03-20] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [150640 2023-11-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 EIP Commission Tool UI Service; D:\Program Files (x86)\Rockwell Software\EtherNet IP Address Commissioning Tool\ftsm.exe [359280 2021-12-26] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
R2 EIP Commission Tool Windows Service; D:\Program Files (x86)\Rockwell Software\EtherNet IP Address Commissioning Tool\ftsm.exe [359280 2021-12-26] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934368 2022-03-03] (Epic Games Inc. -> Epic Games, Inc.)
R2 FactoryTalk Activation Service; C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\lmgrd.exe [916304 2022-02-23] (Flexera Software LLC -> Flexera)
R2 FactoryTalk Linx Browser UI; D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\ftsm.exe [359280 2021-12-26] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
R2 FactoryTalk Linx CIP Security Service; D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\FTLinxSecurityServer.exe [469360 2022-02-24] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.244.1204.0003\FileSyncHelper.exe [3530280 2025-01-21] (Microsoft Corporation -> Microsoft Corporation)
S2 FTActivationBoost; C:\Program Files (x86)\Rockwell Software\FactoryTalk Activation\Tools\FTActivationBoost.exe [180792 2022-02-23] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
R2 FTSvcHost; C:\Program Files (x86)\Common Files\Rockwell\ftsvchost.exe [459120 2022-02-22] (Rockwell Automation Inc -> )
U2 FTSysDiagSvcHost; C:\Program Files (x86)\Common Files\Rockwell\FTSysDiagSvcHost.exe [72560 2022-02-15] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S2 FTView Shared Service; D:\Program Files (x86)\Rockwell Software\RSView Enterprise\ViewSharedService.exe [154992 2022-03-20] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
R2 FTViewServiceHost; D:\Program Files (x86)\Rockwell Software\RSView Enterprise\FTViewServiceHost.exe [83312 2022-03-20] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S2 GBTECService; C:\Program Files (x86)\GIGABYTE\GBTECService\OLEDDisplayService.exe [19568 2024-07-04] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-01-15] (HP Inc. -> HP Inc.)
S3 iCUEUpdateService; C:\Program Files\Corsair\Corsair iCUE5 Software\Corsair iCUE5 Software\iCUEUpdateService.exe [532864 2025-01-20] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S2 Intel(R) Platform License Manager Service; C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\PlatformLicenseManagerService.exe [741488 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11744152 2024-12-18] (Logitech Inc -> Logitech, Inc.)
R2 LocalOPCServer; C:\Program Files (x86)\Common Files\Rockwell\LocalOPCServer.exe [361840 2022-02-22] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9425e4c3b1ac1c47\Display.NvContainer\NVDisplay.Container.exe [1275568 2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
S2 OCButtonService; C:\Program Files (x86)\Gigabyte\EasyTuneEngineService\OcButtonService.exe [131184 2023-12-06] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.244.1204.0003\OneDriveUpdaterService.exe [3876392 2025-01-21] (Microsoft Corporation -> Microsoft Corporation)
S3 OpcEnum; C:\Windows\SysWOW64\OpcEnum.exe [146432 2016-03-09] (OPC Foundation) [File not signed]
S2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256256 2024-10-15] (Razer USA Ltd. -> Razer Inc)
S2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [298240 2024-11-25] (Razer USA Ltd. -> Razer Inc.)
S3 RnaUaClientDataProviderService; C:\Program Files (x86)\Common Files\Rockwell\OpcUaConnector\RnaUaClientDataProvider.exe [6586672 2022-10-27] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S3 Rockstar Service; D:\Rockstar\RockstarService.exe [7682024 2025-01-20] (Rockstar Games, Inc. -> Rockstar Games)
R2 Rockwell HMI Diagnostics; D:\Program Files (x86)\Rockwell Software\RSView Enterprise\HMIDIAGNOSTICSLSTADAPT.exe [282992 2022-03-20] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
R2 Rockwell Tag Server; D:\Program Files (x86)\Rockwell Software\RSView Enterprise\TagSrv.exe [293744 2022-03-20] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S3 RSLinx; D:\Program Files (x86)\Rockwell Software\RSLinx\RSLINX.EXE [3656560 2022-03-04] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S2 RSLinx Classic Local OPC Server; D:\Program Files (x86)\Rockwell Software\RSLinx\RSLinxLocalServer.exe [23496 2020-05-20] (Rockwell Automation Inc -> Rockwell Automation, Inc)
R2 RSLinxNG; D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\RSLinxNG.exe [568176 2022-02-24] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S2 RSLinxNG02; D:\Program Files (x86)\Rockwell Software\RSLinx Enterprise\RSLinxNG02.EXE [533360 2022-02-24] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
S2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [538416 2024-11-20] (Razer USA Ltd. -> Razer Inc.)
R2 UpdaterAgent; C:\Program Files (x86)\Common Files\Rockwell\Updater\Agent\UpdaterAgent.exe [95088 2022-02-09] (Rockwell Automation Inc -> Rockwell Automation, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-11-03] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 GigabyteUpdateService; %SystemRoot%\system32\GigabyteUpdateService.exe 2\C:\Windows\system32\ [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdTools64; C:\Windows\System32\drivers\AmdTools64.sys [77240 2022-07-18] (Advanced Micro Devices Inc. -> AMD)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 CorsairGamingAudioService; C:\Windows\System32\drivers\CorsairGamingAudio64.sys [63016 2022-02-03] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47032 2025-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [22968 2025-01-20] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
S3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44592 2024-11-24] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R3 cpuz159; C:\Windows\temp\cpuz159\cpuz159_x64.sys [44680 2025-01-17] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R1 CTIIO; C:\Windows\system32\drivers\CtiIo64.sys [34920 2024-11-22] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
R3 e2fexpress; C:\Windows\System32\DriverStore\FileRepository\e2f.inf_amd64_d0d0d2073f0fc12f\e2f.sys [536160 2024-05-12] (Intel Corporation -> Intel Corporation)
R3 gdrv3; C:\Windows\System32\drivers\gdrv3.sys [52440 2024-11-22] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R0 hswultpep; C:\Windows\System32\drivers\hswultpep.sys [62968 2023-03-04] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
R3 iaLPSS2_GPIO2_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_adl.inf_amd64_302e75596cffa74a\iaLPSS2_GPIO2_ADL.sys [150616 2024-11-17] (Intel Corporation -> Intel Corporation)
S3 iaLPSS2_I2C_ADL; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_adl.inf_amd64_778b19a5f4d49cba\iaLPSS2_I2C_ADL.sys [202896 2021-07-29] (Intel Corporation -> Intel Corporation)
R3 KsUSBa64; C:\Windows\system32\drivers\ksUSBa64.sys [1747912 2021-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
R3 logi_audio_surround; C:\Windows\System32\DriverStore\FileRepository\logi_audio.inf_amd64_affafe6e263c4f51\logi_audio_surround.sys [44112 2024-09-17] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
R3 logi_joy_bus_enum; C:\Windows\system32\drivers\logi_joy_bus_enum.sys [44880 2024-09-17] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [32080 2024-03-22] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\Windows\system32\drivers\logi_joy_xlcore.sys [73040 2024-09-17] (Logitech Inc -> Logitech)
R3 MpKsl61ad8c7a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EEEFBC18-6904-41F0-80A1-CF945678E72D}\MpKslDrv.sys [267552 2025-01-23] (Microsoft Windows -> Microsoft Corporation)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19672 2025-01-06] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 RSSERIAL; C:\Windows\SysWOW64\RSSERIAL.SYS [155440 2020-11-19] (Rockwell Software Inc.) [File not signed]
S3 RtkUsbAD_2330; C:\Windows\System32\DriverStore\FileRepository\rtdusbad_gigabyte.inf_amd64_5b2a396fb02a358c\RtUsbA64.sys [493408 2022-06-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 RtkUsbAD_2396; C:\Windows\System32\DriverStore\FileRepository\rtdusbad_gigabyte.inf_amd64_9b9ab73e3c0997db\RtUsbA64.sys [517576 2024-08-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 RzCommon; C:\Windows\System32\drivers\RzCommon.sys [64168 2022-08-18] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_005c; C:\Windows\System32\drivers\RzDev_005c.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0084; C:\Windows\System32\drivers\RzDev_0084.sys [54152 2020-08-24] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_00b2; C:\Windows\System32\drivers\RzDev_00b2.sys [63224 2022-05-30] (Razer USA Ltd. -> Razer Inc)
R0 secnvme; C:\Windows\System32\drivers\secnvme.sys [133944 2023-03-04] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R3 SensorsSimulatorDriver; C:\Windows\System32\drivers\WUDFRd.sys [315904 2023-12-14] (Microsoft Windows -> Microsoft Corporation)
R1 VirtualBackplane; C:\Windows\System32\drivers\VirtualBackplane.sys [70144 2022-05-05] (Rockwell Automation Inc -> Rockwell Automation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [22104 2024-11-03] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [606624 2024-11-03] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-11-03] (Microsoft Windows -> Microsoft Corporation)
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-23 10:41 - 2025-01-23 10:42 - 000034736 _____ C:\Users\Dusan\Desktop\FRST.txt
2025-01-23 10:41 - 2025-01-23 10:41 - 000000000 ____D C:\FRST
2025-01-23 10:41 - 2025-01-23 10:38 - 002403328 _____ (Farbar) C:\Users\Dusan\Desktop\FRST64.exe
2025-01-23 10:39 - 2025-01-23 10:39 - 000000000 ____D C:\AdwCleaner
2025-01-22 23:17 - 2025-01-22 23:17 - 000000202 _____ C:\Users\Dusan\Desktop\Zaklínač 3 Divoký hon.url
2025-01-20 21:04 - 2025-01-20 21:04 - 000001102 _____ C:\Users\Public\Desktop\iCUE.lnk
2025-01-20 21:04 - 2025-01-20 21:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair
2025-01-19 19:17 - 2025-01-19 19:17 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-01-17 12:22 - 2024-12-10 23:29 - 000787432 _____ (Intel) C:\Windows\system32\libvpl.dll
2025-01-17 12:22 - 2024-12-10 23:29 - 000671664 _____ (Intel) C:\Windows\SysWOW64\libvpl.dll
2025-01-17 12:22 - 2024-12-10 23:28 - 000982232 _____ (Intel Corporation) C:\Windows\system32\libmfxhw64.dll
2025-01-17 12:22 - 2024-12-10 23:28 - 000740952 _____ (Intel Corporation) C:\Windows\SysWOW64\libmfxhw32.dll
2025-01-17 12:22 - 2024-12-10 23:28 - 000628192 _____ C:\Windows\SysWOW64\IntelControlLib32.dll
2025-01-17 12:22 - 2024-12-10 23:28 - 000624904 _____ (Intel Corporation) C:\Windows\system32\intel_gfx_api-x64.dll
2025-01-17 12:22 - 2024-12-10 23:28 - 000483912 _____ (Intel Corporation) C:\Windows\SysWOW64\intel_gfx_api-x86.dll
2025-01-17 12:22 - 2024-12-10 23:27 - 027987064 _____ (Intel Corporation) C:\Windows\system32\mfxplugin64_hw.dll
2025-01-17 12:22 - 2024-12-10 23:27 - 020711000 _____ (Intel Corporation) C:\Windows\SysWOW64\mfxplugin32_hw.dll
2025-01-17 12:22 - 2024-12-10 23:27 - 002041976 _____ C:\Windows\system32\ze_intel_gpu_raytracing.dll
2025-01-17 12:22 - 2024-12-10 23:27 - 000802912 _____ C:\Windows\system32\ze_loader.dll
2025-01-17 12:22 - 2024-12-10 23:27 - 000563808 _____ C:\Windows\system32\ze_tracing_layer.dll
2025-01-17 12:22 - 2024-12-10 23:27 - 000430176 _____ C:\Windows\system32\ze_validation_layer.dll
2025-01-17 12:22 - 2024-12-10 23:26 - 000351776 _____ C:\Windows\system32\ControlLib.dll
2025-01-17 12:22 - 2024-12-10 23:26 - 000293296 _____ C:\Windows\SysWOW64\ControlLib32.dll
2025-01-15 14:30 - 2025-01-15 14:30 - 000000000 ___HD C:\$WinREAgent
2025-01-14 15:41 - 2025-01-14 15:41 - 000000000 ____D C:\Users\Dusan\AppData\Local\Logix Designer
2025-01-14 15:40 - 2025-01-14 15:40 - 000000000 ____D C:\Users\Dusan\Documents\Studio 5000
2025-01-14 11:37 - 2025-01-14 11:37 - 000000068 ___SH C:\Windows\system32\Drivers\WUDFPf.winsecurity
2025-01-14 11:23 - 2025-01-14 11:23 - 000000000 ____D C:\Program Files\Rockwell Automation
2025-01-14 11:23 - 2025-01-14 11:23 - 000000000 ____D C:\Program Files (x86)\Rockwell
2025-01-14 11:19 - 2025-01-14 11:19 - 000001932 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FactoryTalk View Studio.lnk
2025-01-14 11:19 - 2025-01-14 11:19 - 000000000 ____D C:\ProgramData\Software Toolbox
2025-01-14 11:19 - 2025-01-14 11:19 - 000000000 ____D C:\Program Files (x86)\Allen-Bradley
2025-01-14 11:17 - 2025-01-14 11:17 - 000000000 ____D C:\ProgramData\Documents\Rockwell Automation
2025-01-14 11:04 - 2025-01-14 11:19 - 000003446 _____ C:\Windows\SysWOW64\RdcyReg.reg
2025-01-14 11:04 - 2025-01-14 11:19 - 000001450 _____ C:\Windows\SysWOW64\Rsvchost.reg
2025-01-14 11:04 - 2025-01-14 11:19 - 000000000 ____D C:\Users\Public\Documents\RSView Enterprise
2025-01-14 10:49 - 2025-01-14 10:49 - 000000000 ____D C:\ProgramData\FNP
2025-01-14 10:40 - 2025-01-14 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FLASH Programming Tools
2025-01-14 10:40 - 2025-01-14 10:40 - 000000000 ____D C:\ProgramData\Documents\Rockwell
2025-01-14 10:40 - 2025-01-14 10:40 - 000000000 ____D C:\Program Files (x86)\ControlFLASH Plus
2025-01-14 10:40 - 2025-01-14 10:40 - 000000000 ____D C:\Program Files (x86)\ControlFLASH
2025-01-14 10:36 - 2025-01-14 10:37 - 000002471 _____ C:\Windows\EDS.ini
2025-01-14 10:33 - 2025-01-14 10:36 - 000000000 ____D C:\Users\Public\Documents\Studio 5000
2025-01-14 10:30 - 2025-01-14 10:30 - 000000000 ____D C:\Program Files (x86)\Rockwell Automation
2025-01-14 10:29 - 2025-01-14 10:29 - 000000000 ____D C:\Windows\SWSEDS
2025-01-14 10:28 - 2025-01-14 10:28 - 000000000 ____D C:\Windows\CR30EDS
2025-01-14 10:27 - 2025-01-14 10:32 - 000000000 ____D C:\Program Files (x86)\RSLogix 5000 Module Profiles
2025-01-14 10:27 - 2025-01-14 10:27 - 000000000 ____D C:\Users\Dusan\Documents\HMS
2025-01-14 10:27 - 2025-01-14 10:27 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\HMS
2025-01-14 10:27 - 2025-01-14 10:27 - 000000000 ____D C:\ProgramData\HMS
2025-01-14 10:27 - 2025-01-14 10:27 - 000000000 ____D C:\Program Files (x86)\HMS
2025-01-14 10:23 - 2025-01-23 10:18 - 000000068 ___SH C:\Windows\system32\Drivers\ws2ifsl.winsecurity
2025-01-14 10:23 - 2025-01-23 09:40 - 000000068 ___SH C:\Windows\system32\Drivers\winusb.winsecurity
2025-01-14 10:23 - 2025-01-14 11:17 - 000000000 ____D C:\Program Files\Common Files\Rockwell
2025-01-14 10:23 - 2025-01-14 10:36 - 000000000 ____D C:\Users\Public\Documents\Rockwell Automation
2025-01-14 10:19 - 2025-01-14 11:19 - 000000000 ____D C:\ProgramData\WFCU
2025-01-14 10:18 - 2025-01-14 11:27 - 000000225 _____ C:\Windows\CommonEds.ini
2025-01-14 10:18 - 2025-01-14 11:27 - 000000140 _____ C:\Windows\rocksoft.ini
2025-01-14 10:18 - 2025-01-14 11:26 - 000000000 ____D C:\ProgramData\Rockwell Automation
2025-01-14 10:18 - 2025-01-14 10:40 - 000000000 ____D C:\Users\Public\Documents\Rockwell
2025-01-14 10:18 - 2025-01-14 10:18 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\Microsoft\CLR Security Config
2025-01-14 10:18 - 2025-01-14 10:18 - 000000000 ____D C:\Program Files\Common Files\OPC Foundation
2025-01-14 10:17 - 2025-01-14 11:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CodeMeter
2025-01-14 10:17 - 2025-01-14 11:08 - 000000000 ____D C:\Program Files (x86)\CodeMeter
2025-01-14 10:17 - 2025-01-14 10:18 - 000000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2025-01-14 10:17 - 2025-01-14 10:17 - 000000000 ____D C:\ProgramData\CodeMeter
2025-01-14 10:17 - 2025-01-14 10:17 - 000000000 ____D C:\Program Files\WIBU-SYSTEMS
2025-01-14 10:17 - 2025-01-14 10:17 - 000000000 ____D C:\Program Files\CodeMeter
2025-01-14 10:17 - 2025-01-14 10:17 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2025-01-14 10:17 - 2025-01-14 10:17 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2025-01-14 10:17 - 2025-01-14 10:17 - 000000000 ____D C:\Program Files (x86)\Microsoft Help Viewer
2025-01-14 10:16 - 2025-01-14 11:27 - 000000000 ____D C:\Program Files (x86)\Rockwell Software
2025-01-14 10:16 - 2025-01-14 11:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockwell Software
2025-01-14 10:16 - 2025-01-14 11:09 - 000000000 ____D C:\Program Files\Microsoft SQL Server
2025-01-14 10:16 - 2025-01-14 11:09 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2025-01-14 10:16 - 2025-01-14 10:18 - 000000000 ____D C:\Windows\SysWOW64\1033
2025-01-14 10:16 - 2025-01-14 10:17 - 000000000 ____D C:\Windows\system32\1033
2025-01-14 10:15 - 2025-01-14 15:40 - 000000000 ____D C:\ProgramData\Rockwell
2025-01-12 15:45 - 2025-01-12 15:45 - 000000000 ____D C:\Users\Dusan\AppData\Local\MonolithBay
2025-01-11 09:12 - 2025-01-11 09:12 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\Sun
2025-01-11 09:12 - 2025-01-11 09:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2025-01-11 09:12 - 2024-09-30 08:34 - 000213120 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2025-01-11 09:11 - 2025-01-11 09:12 - 000000000 ____D C:\Program Files\Java
2025-01-11 09:09 - 2025-01-11 09:12 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\PC HelpSoft Driver Updater
2025-01-10 18:51 - 2025-01-10 18:51 - 000000000 ____D C:\Users\Dusan\AppData\Local\Milftoon.com
2025-01-06 21:35 - 2025-01-06 21:35 - 000003515 _____ C:\Windows\cFosSpeed_Setup_Log.txt
2025-01-06 21:35 - 2025-01-06 21:35 - 000000000 ____D C:\Users\Dusan\AppData\Local\cFos
2025-01-06 21:35 - 2025-01-06 21:35 - 000000000 ____D C:\ProgramData\cFos
2024-12-25 21:53 - 2024-12-25 21:53 - 000000000 ____D C:\Users\Dusan\AppData\Local\rmmz-game

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-23 10:40 - 2022-03-21 19:47 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-23 09:43 - 2024-11-26 08:34 - 000000130 _____ C:\Users\Dusan\AppData\LocalLow\e2ab92fb3990b0b88d9350e4e4abf3109cb5485acd2a79b4725a7d6bad6087f0
2025-01-23 09:41 - 2024-03-22 11:13 - 000000000 ____D C:\Users\Dusan\AppData\Local\LGHUB
2025-01-23 09:40 - 2024-11-22 23:00 - 000003448 _____ C:\Windows\system32\Tasks\GCC
2025-01-23 09:40 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-22 23:41 - 2022-04-10 18:57 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\Microsoft\Excel
2025-01-22 23:17 - 2022-03-22 10:26 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-01-22 22:16 - 2022-03-22 09:32 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-22 22:16 - 2022-03-21 19:24 - 000000000 ____D C:\Windows\SystemTemp
2025-01-22 21:52 - 2022-03-22 01:44 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-01-22 11:21 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-22 11:21 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2025-01-21 17:56 - 2022-03-22 10:07 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\vlc
2025-01-21 14:30 - 2024-08-08 08:52 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\Kodi
2025-01-21 11:33 - 2024-08-02 20:42 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-01-21 11:33 - 2022-03-25 09:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-01-21 11:33 - 2022-03-23 23:03 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-254389370-4066128350-1364079936-1001
2025-01-21 11:33 - 2022-03-22 22:08 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-01-20 21:30 - 2022-03-22 09:42 - 000000000 ____D C:\Users\Dusan\Documents\Rockstar Games
2025-01-20 21:30 - 2022-03-21 18:59 - 000000000 ____D C:\Users\Dusan\AppData\Local\D3DSCache
2025-01-20 21:04 - 2022-03-22 09:25 - 000000000 ____D C:\Users\Dusan\AppData\Local\Corsair
2025-01-20 21:04 - 2022-03-21 18:56 - 001786894 _____ C:\Windows\system32\PerfStringBackup.INI
2025-01-20 21:04 - 2019-12-07 15:41 - 000747294 _____ C:\Windows\system32\perfh005.dat
2025-01-20 21:04 - 2019-12-07 15:41 - 000161408 _____ C:\Windows\system32\perfc005.dat
2025-01-20 21:04 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2025-01-20 10:52 - 2022-03-22 22:09 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\Microsoft\Word
2025-01-20 10:46 - 2022-03-22 01:50 - 000000000 ____D C:\Users\Dusan\AppData\Local\Packages
2025-01-19 19:18 - 2022-03-22 22:07 - 000000000 ____D C:\Program Files\Microsoft Office
2025-01-19 19:18 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-01-19 09:42 - 2022-03-22 01:44 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-01-18 20:41 - 2022-03-26 14:05 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\RenPy
2025-01-17 12:26 - 2024-11-26 08:34 - 000000026 _____ C:\Users\Dusan\AppData\LocalLow\ab095bfdfdcb74ef57c98233f598b26ef64c295450f5a802f43be94154d2092b
2025-01-17 12:24 - 2022-03-22 01:50 - 000089336 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteDownloadAssistant.exe
2025-01-17 12:24 - 2022-03-22 01:44 - 000617760 _____ C:\Windows\system32\wpbbin.exe
2025-01-17 12:24 - 2022-03-22 01:44 - 000590072 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Windows\system32\GigabyteUpdateService.exe
2025-01-17 12:24 - 2022-03-22 01:44 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-17 12:24 - 2022-03-22 01:44 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-01-17 12:24 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2025-01-17 12:23 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2025-01-16 03:11 - 2024-11-20 17:50 - 000000000 ____D C:\Users\Dusan\AppData\Local\GameAnalytics
2025-01-15 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2025-01-15 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-01-15 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2025-01-15 14:45 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2025-01-15 14:41 - 2023-12-14 14:02 - 000000000 ____D C:\Windows\system32\Tasks\HP
2025-01-15 14:41 - 2023-09-07 18:06 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2025-01-15 14:33 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2025-01-15 14:32 - 2022-03-22 01:48 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-01-15 11:43 - 2022-03-21 19:19 - 000000000 ____D C:\Windows\system32\MRT
2025-01-15 11:41 - 2024-11-25 19:13 - 000000000 ____D C:\Program Files\dotnet
2025-01-15 11:41 - 2022-03-21 19:19 - 206927936 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-01-15 11:41 - 2022-03-21 19:12 - 000000000 ____D C:\ProgramData\Package Cache
2025-01-14 11:22 - 2022-03-22 01:44 - 000462976 _____ C:\Windows\system32\FNTCACHE.DAT
2025-01-14 10:42 - 2022-03-22 22:09 - 000000000 ____D C:\Users\Dusan\AppData\Roaming\Microsoft\Office
2025-01-14 10:17 - 2022-03-22 10:52 - 000000000 ____D C:\Program Files (x86)\MSBuild
2025-01-11 09:11 - 2024-11-17 09:14 - 000000000 ____D C:\Users\Dusan\AppData\Local\PC HelpSoft Driver Updater
2025-01-06 21:32 - 2022-03-21 19:20 - 000019672 _____ (MICSYS Technology Co., LTd) C:\Windows\system32\Drivers\MsIo64.sys
2025-01-06 21:31 - 2024-11-22 23:00 - 000001921 _____ C:\Users\Public\Desktop\GCC.lnk
2025-01-06 21:24 - 2024-12-05 14:41 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-01-06 21:24 - 2024-12-05 14:41 - 000001430 _____ C:\Users\Public\Desktop\NVIDIA.lnk
2025-01-06 21:24 - 2022-03-22 09:15 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-01-06 10:19 - 2022-03-22 09:39 - 000000000 ____D C:\Users\Dusan\AppData\Local\Steam
2024-12-30 16:34 - 2022-03-22 09:26 - 000000000 ____D C:\Users\Dusan\AppData\Local\CrashDumps
2024-12-25 20:27 - 2022-03-21 18:56 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2024-12-24 13:26 - 2024-11-09 22:33 - 000000000 _____ C:\Users\Dusan\Documents\HPSmartPrintingPort

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[JaRon]

Ahoj,
pouzi fixlist s obsahom:

Start

S2 GigabyteUpdateService; %SystemRoot%\system32\GigabyteUpdateService.exe 2\C:\Windows\system32\ [X]

S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [X]

EmptyTemp:

End

[Zahryz90]

Ahoj,
díky moc za pomoc.

Tady je fixlog.
Fix result of Farbar Recovery Scan Tool (x64) Version: 21-01-2025
Ran by Dusan (25-01-2025 14:00:01) Run:1
Running from C:\Users\Dusan\Desktop
Loaded Profiles: Dusan
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

S2 GigabyteUpdateService; %SystemRoot%\system32\GigabyteUpdateService.exe 2\C:\Windows\system32\ [X]

S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [X]

EmptyTemp:

End
*****************

GigabyteUpdateService => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\GigabyteUpdateService => removed successfully
GigabyteUpdateService => service removed successfully
HKLM\System\CurrentControlSet\Services\NvModuleTracker => removed successfully
NvModuleTracker => service removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1835008 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 81621086 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 678835266 B
Windows/system/drivers => 52427856 B
Edge => 0 B
Chrome => 1172135546 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 74709825 B
systemprofile32 => 75783014 B
LocalService => 76027434 B
NetworkService => 76094010 B
Dusan => 527093721 B

RecycleBin => 0 B
EmptyTemp: => 2.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 14:03:09 ====

[JaRon]

Pokial nie su ziadne problemy - hotovo

[Zahryz90]

Nejsou. Moc děkuji za pomoc!