Preventivní kontrola logu + zloby mys
Napsal: 21 říj 2025 16:52
Zdravím
posílám logy k tomu dodám před týdnem jsem měl Agenta toho jsem odstranil Malwarebytem ale říkal jsem si že by bylo dobrý to zkotrolovat i jinak dlouho jsem nedělal registry a ovladače.Celkově zapnout nějaký čistič.
Dále trošku mi zloby myš špatně přesouvá soubory a nebo dvakrát klikne to jsem ji čistil a dával do jiného USB.
ještě jedna věc občas se mi stává že když přesunu fotky album tak to celé nepřesune a já musím vypnout ve správci úloh COM Surrogate
Trpim nedostatkem mista na discích
FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-10-2025
Ran by PCsestava (administrator) on DESKTOP-3IQ2PG2 (Micro-Star International Co., Ltd. MS-7B98) (21-10-2025 17:04:32)
Running from C:\Users\PCsestava\Desktop\Programs\FRST64.exe
Loaded Profiles: PCsestava & Administrator
Platform: Microsoft Windows 10 Pro Version 22H2 19045.6332 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eServiceHost.exe <2>
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Users\PCsestava\AppData\Roaming\Seznam Browser\Seznam.cz.exe ->) (Seznam.cz, a.s. -> Seznam.cz) C:\Users\PCsestava\AppData\Roaming\Seznam Browser\sznAgent\Seznam.cz.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Seznam.cz, a.s. -> Seznam.cz) C:\Users\PCsestava\AppData\Roaming\Seznam Browser\Seznam.cz.exe <7>
(Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2025.11080.28001.0_x64__8wekyb3d8bbwe\Photos.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDrive.Sync.Service.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <45>
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe <2>
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2502.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (83564403-0B26-46B8-9D84-040F43691D31 -> Realtek Semiconductor) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.38.277.0_x64__dt26b99r8h8gj\RtkUWP.exe
(svchost.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Winamp SA -> Winamp SA) C:\Program Files (x86)\Winamp\winamp.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618320 2022-11-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [285616 2025-09-11] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobePSE19AutoAnalyzer] => C:\Program Files\Adobe\Elements 2021 Organizer\Elements Auto Creations 2021.exe [2653808 2020-11-29] (Adobe Inc. -> Adobe)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1008336 2025-10-19] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [247b6221a26d5c5da9074c127870d49f] => C:\Program Files\StreamFab\StreamFab\StreamUpdate.exe [7234064 2022-11-07] (StreamFab Technology -> )
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files (x86)\Programy\Zone Photo Studio X 19\Program32\ZPSTRAY.EXE [790512 2020-08-18] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Application Restart #1] => C:\Users\PCsestava\AppData\Roaming\Seznam Browser\Seznam.cz.exe [2056984 2025-09-01] (Seznam.cz, a.s. -> Seznam.cz)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [92473208 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Uninstall 25.179.0914.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.179.0914.0003" [0 2025-10-20] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\MountPoints2: {debf6fa3-4e7c-11ee-b4e0-00d861c42462} - "E:\CMADownloader.exe"
HKU\S-1-5-21-541797711-3321791765-32256482-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4265024 2025-10-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files (x86)\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2025-10-20] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\141.0.7390.108\Installer\chrmstp.exe [2025-10-17] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05863795-1E5D-4F6B-B271-AE882D071203} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [File not signed]
Task: {6443DCBD-2F4F-4A90-91F6-E584AE293CCC} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem142.0.7416.0{61FBE7D7-BBD9-4BD2-B0C7-C04F7080DBCE} => C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe [6863512 2025-09-15] (Google LLC -> Google LLC)
Task: {5C877B02-B88A-48D7-883A-3F3690149046} - System32\Tasks\GoogleUserPEH\RunPlatformExperienceHelper_FirstRun => C:\Program Files (x86)\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2624664 2025-10-20] (Google LLC -> Google LLC)
Task: {CE03A2AD-CBEB-4848-9219-1341EDF05A98} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe [855664 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
Task: {3E56F3C5-0FC4-472D-9C6F-D42433B6D05E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86F10A59-D6A7-438F-8D45-970B5AD3C719} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0632C887-72DE-4814-BD48-379FDFCA21F4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1AC5B27-07B0-44B0-B561-F6C66ED3C6AD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {99E4BA3F-DE2F-4354-BD90-D84043F1371C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693376 2025-10-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {57CA26C5-8B5B-47C3-A7C0-8A437786209C} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-541797711-3321791765-32256482-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693376 2025-10-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {9E46A39A-109F-47EE-816B-BB57C338DC51} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-10-15] (Mozilla Corporation -> Mozilla Foundation)
Task: {AFCF050C-6B05-4BE3-A808-743E2C47D3FD} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3324528 2025-09-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {45B4254E-51B1-4255-BAA2-3F7A6915B071} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2FDD8D45-64DD-460A-8959-71D0679DAA73} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {60D0C194-D6F0-47E3-A71C-BCD4AF0BA2D4} - System32\Tasks\OneDrive Startup Task-S-1-5-21-541797711-3321791765-32256482-1001 => C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDriveLauncher.exe [725880 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6090EC3A-CF0A-4571-8C29-0CFAF03B7A51} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-541797711-3321791765-32256482-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {1454311B-535A-4403-B6CC-754C1F78D17D} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-541797711-3321791765-32256482-500 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6DE55A53-0E59-48CA-A953-B75EAD71DD4A} - System32\Tasks\Piriform\CCleaner 7 BugReport => C:\Program Files\Piriform\CCleaner 7\CCleanerBugReport.exe [6243960 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --product 234 --programpath "C:\Program Files\Piriform\CCleaner 7" --configpath "C:\Program Files\Piriform\CCleaner 7\data" --path "C:\Program Files\Piriform\CCleaner 7\log" --path "C:\Program Files\Piriform\CCleaner 7\data\dumps" --logpath "C:\Program Files\Piriform\CCleaner 7 (the data entry has 58 more characters).
Task: {8DD2C7EA-934E-47C1-B428-10191728F9B9} - System32\Tasks\Piriform\CCleaner 7 Update => C:\Program Files\Common Files\Piriform\Icarus\piriform-ccl\icarus.exe [8971064 2025-10-14] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {1BB2841C-97EF-4BC8-9128-3E2A731FBB6B} - System32\Tasks\ViGEmBusUpdater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [901144 2019-05-10] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{1b3b3f58-c8fe-4d72-b5f6-d9dbfa5cf561}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\PCsestava\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-17]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
Edge Extension: (Dokumenty Google offline) - C:\Users\PCsestava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-10-17]
Edge Extension: (Edge relevant text changes) - C:\Users\PCsestava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]
FireFox:
========
FF DefaultProfile: gpkb9vab.default
FF ProfilePath: C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\gpkb9vab.default [2024-07-07]
FF ProfilePath: C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release [2025-10-21]
FF Session Restore: Mozilla\Firefox\Profiles\4cnw17gd.default-release -> is enabled.
FF Extension: (The Stream Detector) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\@m3u8link.xpi [2022-04-25]
FF Extension: (CDA Downloader) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\cdadownloader@undefined.cba.pl.xpi [2025-09-22]
FF Extension: (Image Max URL) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\maxurl@qsniyg.xpi [2025-05-12]
FF Extension: (IDM Integration Module) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2025-10-05]
FF Extension: (New Tab) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\newtab@mozilla.org.xpi [2025-09-28]
FF Extension: (PrehrajtoWatch) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{510385eb-644b-494a-870b-c4fb4576aa2d}.xpi [2023-01-01]
FF Extension: (Downloader for Instagram) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{6d40ea86-9870-43e0-8e09-415b29b58ffe}.xpi [2021-10-30]
FF Extension: (Ninja Turtles in urban sewage) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{6f7fd1e2-1572-4311-9860-04eebba7fa53}.xpi [2019-12-24]
FF Extension: (Easy and fast browser extension, which allows you to download music from popular sites.) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{9bb4ec92-ebd8-4ce3-8a2f-a57150764720}.xpi [2024-04-26]
FF Extension: (Free music downloader pro VK | VKD) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{a8fff5e8-00c2-455a-9958-d8cd10f8206d}.xpi [2023-06-06]
FF Extension: (vk_music) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{aafa9a4e-6e99-48e5-aa4f-0b62ea1b9b61}.xpi [2024-04-26]
FF Extension: (Video DownloadHelper) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2025-06-05]
FF Extension: (SoundCloud Downloader) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{c7a839e7-7086-4021-8176-1cfcb7f169ce}.xpi [2025-10-18]
FF Extension: (Data Leak Blocker) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\features\{3f3cc926-98db-42e3-b331-e88df9eb18fa}\data-leak-blocker@mozilla.com.xpi [2025-10-13]
FF Plugin: @java.com/DTPlugin,version=11.461.0 -> C:\Program Files\Java\jre1.8.0_461\bin\dtplugin\npDeployJava1.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.461.0 -> C:\Program Files\Java\jre1.8.0_461\bin\plugin2\npjp2.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2025-10-21]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default [2025-10-21]
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> google
CHR Extension: (Dokumenty Google offline) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-20]
CHR Extension: (IG Download Image - IG Video Downloader - SocialPlus) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaonookehgfokaglaodkeooddjeaodnc [2025-04-01]
CHR Extension: (Chrome extension source viewer) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifpbeccnghkjeaalbbjmodiffmgedin [2023-12-19]
CHR Extension: (Tweaks for VSCO) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljbopeedkjbnlapghcfjgigmknofmbkp [2025-05-21]
CHR Extension: (VSCO Media Downloader) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\looapkhpinpjaioiljphfmbnhbbgfcpl [2020-05-12]
CHR Extension: (Instant Save for Instagram and Flickr) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\majobfiinhihjjndfdncncgdfgdncnek [2025-02-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2025-07-05]
CHR Profile: C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Guest Profile [2025-09-08]
CHR Profile: C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\System Profile [2025-09-08]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-09-21] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R2 CCleaner7; C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe [28276344 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [439616 2020-06-02] (Digital Wave Ltd -> Digital Wave Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2020-11-01] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5538224 2025-09-11] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4662320 2025-09-11] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4662320 2025-09-11] (ESET, spol. s r.o. -> ESET)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-26] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-05-06] (GOG Sp. z o.o. -> GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9608720 2025-09-22] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-09-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpDefenderCoreService.exe [2009656 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [918456 2025-08-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ViGEmBusUpdater; C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [901144 2019-05-10] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\NisSrv.exe [4414464 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MsMpEng.exe [282480 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [280064 2022-10-12] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-15] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [175824 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [232456 2025-08-24] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [139944 2025-08-24] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-10-21] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [270136 2025-08-24] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57352 2025-08-24] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [86792 2025-08-24] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [126024 2025-08-24] (ESET, spol. s r.o. -> ESET)
S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333216 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234072 2025-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [244800 2025-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174264 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-04-02] (TunnelBear, Inc. -> The OpenVPN Project)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20880 2025-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [627104 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102816 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-20 13:25 - 2025-10-20 14:43 - 000000000 ____D C:\Users\PCsestava\Desktop\Happy plocha
2025-10-19 22:17 - 2025-10-21 17:04 - 000000000 ____D C:\FRST
2025-10-18 15:39 - 2025-10-18 15:39 - 000000000 ____D C:\Users\PCsestava\Downloads\SoundCloud
2025-10-16 18:27 - 2025-10-16 18:29 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\CCleaner
2025-10-16 18:27 - 2025-10-16 18:27 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 7.lnk
2025-10-16 18:27 - 2025-10-16 18:27 - 000002136 _____ C:\Users\Public\Desktop\CCleaner 7.lnk
2025-10-16 18:27 - 2025-10-16 18:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Piriform
2025-10-16 18:26 - 2025-10-16 18:26 - 000000000 ____D C:\Program Files\Piriform
2025-10-16 18:26 - 2025-10-16 18:26 - 000000000 ____D C:\Program Files\Common Files\Piriform
2025-10-16 18:26 - 2025-10-16 18:24 - 000055064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\icarus_rvrt.exe
2025-10-15 04:29 - 2025-10-19 21:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-10-14 12:16 - 2025-10-14 12:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleUserPEH
2025-10-13 17:52 - 2025-10-21 17:03 - 000000000 ____D C:\Users\PCsestava\Desktop\13.10 S
2025-09-29 14:58 - 2025-10-20 02:08 - 000949930 _____ C:\WINDOWS\ntbtlog.txt
2025-09-29 14:13 - 2025-09-29 14:13 - 002311428 _____ C:\Users\PCsestava\Desktop\SnapInsta.to_AQOH_6QkcvU63HVcZU5gdq9iv6zYv4kObqino7v9i1oSnpUgM-a3lQr9MFoF69vun306vwTWYkhwSHdesAMGUXTgQfFv_ea3EgXteEM.mp4
2025-09-29 07:08 - 2024-10-17 03:53 - 000175824 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
2025-09-23 18:20 - 2024-10-17 03:54 - 000174264 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2025-09-23 08:55 - 2025-09-23 08:56 - 000094454 _____ C:\Users\PCsestava\Desktop\big-wolf-on-campus_202211_archive.torrent
2025-09-22 17:36 - 2025-09-22 17:36 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webová aplikace Firefoxu
2025-09-22 08:46 - 2025-10-20 02:07 - 000000000 ____D C:\Users\PCsestava\AppData\Local\Malwarebytes
2025-09-22 08:46 - 2025-09-22 08:46 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-09-22 08:45 - 2025-09-22 08:45 - 000000000 ___SD C:\ProgramData\MB2Migration
2025-09-22 08:44 - 2025-09-23 03:52 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-09-22 08:44 - 2025-09-22 08:44 - 000000000 ____D C:\Program Files\Malwarebytes
2025-09-22 08:04 - 2025-09-22 08:04 - 000000000 ____D C:\Users\PCsestava\AppData\Local\mbamtray
2025-09-22 08:03 - 2025-09-22 08:43 - 000000586 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2025-09-22 01:01 - 2025-09-22 01:01 - 000000000 ____D C:\Users\PCsestava\AppData\Local\MarkdownViewer
2025-09-22 01:00 - 2025-09-22 01:00 - 000000000 ____D C:\WINDOWS\Panther
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-21 17:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-10-21 16:19 - 2025-09-10 05:16 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\Seznam Browser
2025-10-21 12:51 - 2021-04-21 20:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-10-21 05:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-10-21 05:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-10-21 00:23 - 2025-02-07 02:41 - 000003566 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-541797711-3321791765-32256482-1001
2025-10-21 00:23 - 2021-12-11 19:06 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-541797711-3321791765-32256482-1001
2025-10-21 00:23 - 2021-04-21 20:13 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-541797711-3321791765-32256482-1001
2025-10-21 00:23 - 2021-04-21 20:09 - 000002387 _____ C:\Users\PCsestava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-21 00:20 - 2021-12-17 18:46 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-10-20 19:12 - 2022-02-15 09:29 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-10-20 16:15 - 2020-08-13 13:17 - 000000000 ____D C:\Users\PCsestava\AppData\Local\CrashDumps
2025-10-20 16:14 - 2020-08-12 19:59 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-10-20 16:01 - 2020-01-19 19:40 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\vlc
2025-10-20 14:55 - 2019-12-24 01:41 - 000000000 ____D C:\Users\PCsestava\Desktop\Patrik
2025-10-20 14:43 - 2021-08-10 17:43 - 000000000 ____D C:\Users\PCsestava\Desktop\Happy Hardcore All plocha
2025-10-20 13:29 - 2019-12-24 00:36 - 000000000 ____D C:\Users\PCsestava\Desktop\ITALOdance
2025-10-20 13:27 - 2019-12-24 00:18 - 000000000 ____D C:\Users\PCsestava\Desktop\Eiffel 65 - Bloom 06
2025-10-20 06:43 - 2021-04-21 20:17 - 000000000 ____D C:\Users\PCsestava\AppData\Local\D3DSCache
2025-10-20 04:33 - 2021-09-25 02:53 - 000000000 ____D C:\Users\PCsestava\AppData\Local\Battle.net
2025-10-20 02:12 - 2021-04-21 20:17 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-10-20 02:12 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2025-10-20 02:12 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2025-10-20 02:12 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2025-10-20 02:08 - 2021-04-21 20:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-10-20 02:08 - 2021-04-21 20:08 - 000008192 ___SH C:\DumpStack.log.tmp
2025-10-20 02:08 - 2019-12-25 03:10 - 000000000 ____D C:\ProgramData\NVIDIA
2025-10-20 02:08 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-10-19 23:59 - 2020-10-12 20:49 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2025-10-19 23:55 - 2021-09-25 02:53 - 000000000 ____D C:\Program Files (x86)\Battle.net
2025-10-19 23:54 - 2019-12-24 01:37 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\uTorrent
2025-10-19 21:26 - 2019-12-23 20:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-10-19 21:12 - 2020-08-23 15:07 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-10-18 20:35 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-18 17:12 - 2024-06-10 06:26 - 000000000 ____D C:\Users\PCsestava\Desktop\SSSS
2025-10-18 08:23 - 2021-10-10 01:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-10-18 08:23 - 2019-12-23 20:11 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-10-17 16:14 - 2019-12-24 20:39 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-10-16 18:26 - 2024-03-14 04:10 - 000000000 ____D C:\ProgramData\Piriform
2025-10-16 18:26 - 2019-12-25 01:05 - 000000000 ____D C:\Program Files\CCleaner
2025-10-15 04:37 - 2019-12-23 22:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-15 04:36 - 2019-12-23 22:26 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-14 11:50 - 2020-03-25 16:28 - 000000000 ___RD C:\Users\PCsestava\Desktop\Hudba
2025-10-13 06:49 - 2025-08-31 11:12 - 000000000 ____D C:\Users\PCsestava\Desktop\31.08
2025-10-13 06:49 - 2025-06-08 12:47 - 000000000 ____D C:\Users\PCsestava\Desktop\mobil aktualni
2025-10-13 04:53 - 2021-04-21 20:13 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-10-13 04:53 - 2021-04-21 20:13 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-07 05:14 - 2024-07-11 11:28 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\qBittorrent
2025-09-29 13:52 - 2019-12-27 19:47 - 000000000 ____D C:\Program Files (x86)\Steam
2025-09-29 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-09-29 05:01 - 2024-11-09 15:08 - 000000000 ____D C:\Users\PCsestava\AppData\Local\PlaceholderTileLogoFolder
2025-09-29 05:01 - 2019-12-23 15:25 - 000000000 ____D C:\Users\PCsestava\AppData\Local\Packages
2025-09-29 04:59 - 2022-07-22 23:39 - 000000000 ____D C:\Users\PCsestava\Documents\StreamFab
2025-09-22 19:30 - 2025-02-17 01:47 - 001310832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2025-09-22 19:30 - 2025-02-17 01:47 - 001115248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2025-09-22 19:06 - 2024-07-07 08:32 - 000000000 ____D C:\Users\PCsestava\dwhelper
2025-09-22 19:05 - 2020-08-12 19:59 - 000180760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2025-09-22 19:05 - 2020-08-12 19:59 - 000159768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2025-09-22 19:04 - 2020-08-12 19:59 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2025-09-22 09:20 - 2022-04-24 03:01 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\Mp3tag
2025-09-22 08:44 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-09-22 07:27 - 2021-04-21 20:09 - 000000000 ____D C:\Users\PCsestava
2025-09-22 01:00 - 2021-04-21 20:08 - 000434224 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
==================== Files in the root of some directories ========
2022-07-22 23:41 - 2022-07-22 23:41 - 000000012 _____ () C:\Users\PCsestava\AppData\Roaming\2457fe3357cbf1220231e8917326f70f
2023-10-11 02:30 - 2023-10-11 02:30 - 000007597 _____ () C:\Users\PCsestava\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Addition
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-10-2025
Ran by PCsestava (21-10-2025 17:05:28)
Running from C:\Users\PCsestava\Desktop\Programs
Microsoft Windows 10 Pro Version 22H2 19045.6332 (X64) (2021-04-21 18:13:32)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-541797711-3321791765-32256482-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-541797711-3321791765-32256482-503 - Limited - Disabled)
Guest (S-1-5-21-541797711-3321791765-32256482-501 - Limited - Disabled)
PCsestava (S-1-5-21-541797711-3321791765-32256482-1001 - Administrator - Enabled) => C:\Users\PCsestava
WDAGUtilityAccount (S-1-5-21-541797711-3321791765-32256482-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Disabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Premiere Elements 2021 (HKLM-x32\...\PRE_19_0) (Version: 19.0 - Adobe Inc.)
AnyMP4 Screen Recorder 1.2.22 (HKLM-x32\...\AnyMP4 Screen Recorder_is1) (Version: 1.2.22 - AnyMP4 Studio)
AnyMP4 Video Converter Ultimate 7.2.56 (HKLM-x32\...\AnyMP4 Video Converter Ultimate_is1) (Version: 7.2.56 - AnyMP4 Studio)
AnyMP4 Video Converter Ultimate 8.5.22 (HKLM-x32\...\{B77ACAAE-53EE-43c3-86F1-4AEA52F6CDD5}_is1) (Version: 8.5.22 - AnyMP4 Studio)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1993.6 - AVAST Software) Hidden
Avidemux VC++ 64bits (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\{a87b093b-b61a-4879-a27a-c9cd8705ed51}) (Version: 2.8.1 - Mean)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Bandicut (HKLM-x32\...\Bandicut) (Version: 3.6.8.711 - Bandicam.com)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BeeCut V1.7.5.7 (HKLM-x32\...\{CA76BFA8-1862-49D7-B2C7-AE3D6CF40E53}_is1) (Version: 1.7.5.7 - Apowersoft LIMITED)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.77.1092 - AB Team, d.o.o.)
Bud Spencer and Terence Hill Slaps And Beans (HKLM-x32\...\Bud Spencer and Terence Hill Slaps And Beans_is1) (Version: - )
Bulk Image Downloader v6.58.0.0 (64 bit) (HKLM\...\Bulk Image Downloader (64 bit)_is1) (Version: 6.58 - Antibody Software)
Camtasia 2019 (HKLM\...\{19A62A1C-7918-487A-85FC-7FAEBCBC12C6}) (Version: 19.0.9.17643 - TechSmith Corporation) Hidden
Camtasia 2019 (HKLM-x32\...\{de99fe51-5615-4a7b-beea-6d59fe981c23}) (Version: 19.0.9.17643 - TechSmith Corporation)
CCleaner 7 (HKLM\...\CCleaner 7) (Version: 7.0.1010.1196 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1636.4 - Piriform Software) Hidden
CPUID CPU-Z 1.94 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.94 - CPUID, Inc.)
CPUID HWMonitor 1.56 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.56 - CPUID, Inc.)
Creaks (HKLM-x32\...\Creaks_is1) (Version: - )
CrystalDiskInfo 9.2.1 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.2.1 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
DownloadHelper CoApp (HKLM-x32\...\DownloadHelper CoApp) (Version: 2.0.19.0 - ACLAP)
Epic Mickey 2 The Power of Two verze 1.0 (HKLM-x32\...\{E7B1D255-053D-4D73-9173-4F2605B84A3A}_is1) (Version: 1.0 - Disney Interactive)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 18.2.18.0 - ESET, spol. s r.o.)
Free Audio Converter version 5.0.61.805 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.61.805 - DVDVideoSoft Ltd.)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 141.0.7390.108 - Google LLC)
Harry Potter CZ (HKLM-x32\...\Harry Potter CZ) (Version: - )
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
Java 8 Update 461 (64-bit) (HKLM\...\{71124AE4-039E-4CA4-87B4-2F64180461F0}) (Version: 8.0.4610.11 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0.1 - AppWork GmbH)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Malwarebytes version 5.4.0.213 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.0.213 - Malwarebytes)
MediaInfo 23.04 (HKLM\...\MediaInfo) (Version: 23.04 - MediaArea.net)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Metal Slug Complete PC 1.0 (HKLM-x32\...\Metal Slug Complete PC) (Version: 1.0 - SNK PLAYMORE)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 141.0.3537.85 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 141.0.3537.85 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\OneDriveSetup.exe) (Version: 25.184.0921.0004 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-541797711-3321791765-32256482-500\...\OneDriveSetup.exe) (Version: 21.220.1024.0005 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox) (Version: 144.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 71.0 - Mozilla)
Mp3tag v3.14 (HKLM-x32\...\Mp3tag) (Version: 3.14 - Florian Heidenreich)
Mrazik CZ Pohadka o Mrazikovi Ivanovi a Nastence (HKLM-x32\...\Mrazik CZ Pohadka o Mrazikovi Ivanovi a Nastence) (Version: Pohadka o Mrazikovi Ivanovi a Nastence - Libbi)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.7 - Notepad++ Team)
NVIDIA App 11.0.5.245 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.245 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Oceanhorn - Monster of Uncharted Seas (HKLM-x32\...\1426499435_is1) (Version: 2.5.0.6 - GOG.com)
OpenIV (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\OpenIV) (Version: 3.2.1102 - .black/OpenIV Team)
Polda 2 Remástr verze 1.0 (HKLM-x32\...\{17B920F6-EED9-415A-85C5-A2025745125C}_is1) (Version: 1.0 - )
Prohlížeč Seznam.cz (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Seznam Browser) (Version: 6.30.1 - Seznam.cz a.s.)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 5.0.2 - The qBittorrent project)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Skype verze 8.131 (HKLM-x32\...\Skype_is1) (Version: 8.131 - Skype Technologies S.A.)
Spirit of the North Enhanced Edition (HKLM-x32\...\Spirit of the North Enhanced Edition_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamFab (x64) (10/11/2022) (HKLM-x32\...\StreamFab (x64)) (Version: 6.0.0.2 - Streamfab Technology)
Streets of Rage 4 (HKLM-x32\...\Streets of Rage 4_is1) (Version: - )
The Simpsons Hit & Run(TM) (HKLM-x32\...\{F79AAB3A-B8B4-4AC7-94AB-1C4C076C6A89}) (Version: 1.00.000 - )
TMNT The Cowabunga Collection (HKLM-x32\...\TMNT The Cowabunga Collection_is1) (Version: - )
Topaz Video AI (HKLM\...\{E0869EBB-A9EE-4B6B-B32C-AA47B8476FA3}) (Version: 5.3.4 - Topaz Labs LLC)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
Ve stínu havrana (HKLM-x32\...\Ve stínu havrana_is1) (Version: - CINEMAX, s.r.o.)
ViGEm Bus Driver (HKLM\...\{869109FC-8D5A-46D0-B619-47D7E4173D93}) (Version: 1.16.115 - Nefarius Software Solutions e.U.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Vzum (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\6cfa0c5674100ff8) (Version: 1.0.0.47 - Vzum)
Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Yoku's Island Express (HKLM-x32\...\1576137547_is1) (Version: Aug 24 2018, 205911 - GOG.com)
Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos)
ZPS 19 CZ (HKU\S-1-5-21-541797711-3321791765-32256482-500\...\{E83AA227-7862-F115-2E87-46DCA9E3D879}) (Version: v.19.2004.2.262 - 18.08.2020 - libbi)
Packages:
=========
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.23.0_neutral__8xx8rvfyw5nnt [2024-02-14] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-18] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.968.0_x64__56jybvy8sckqj [2025-06-13] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.38.277.0_x64__dt26b99r8h8gj [2023-03-28] (Realtek Semiconductor Corp)
Trio Office: DOCX & XLSX Editor -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.4.9.0_x64__3h5nez1g3qt2c [2025-10-05] (GT Office PDF Studio) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2020}\localserver32 -> C:\Program Files\Adobe\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2021}\localserver32 -> C:\Program Files\Adobe\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{930e604a-cc01-4d06-8d7a-5a07914f3afb}\localserver32 -> C:\Program Files\TechSmith\Camtasia 2019\CamtasiaStudio.exe (TechSmith Corporation -> TechSmith Corporation)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files (x86)\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Programy\Notepad++\NppShell_06.dll [2020-06-05] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2022-03-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2022-03-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2022-03-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\PCsestava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webová aplikace Firefoxu\Youtube.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> "-taskbar-tab" "b341d566-8d0f-460d-bb52-b8c7acde4709" "-new-window" "hxxps://www.youtube.com" "-profile" "C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release" "-container" "0"
==================== Loaded Modules (Whitelisted) =============
2025-09-10 05:16 - 2025-09-01 13:35 - 002588672 _____ () [File not signed] \\?\C:\Users\PCsestava\AppData\Roaming\Seznam Browser\node_modules\sbrowser-sqlite3\lib\binding\napi-v6-win32-unknown-ia32\node_sqlite3.node
2018-10-19 00:13 - 2018-10-19 00:13 - 000939008 _____ () [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mod.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000012800 _____ () [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_wasapi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000519680 _____ () [File not signed] C:\Program Files (x86)\Winamp\Shared\lame_enc.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000268288 _____ () [File not signed] C:\Program Files (x86)\Winamp\Shared\libFLAC.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 000355328 _____ () [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\libegl.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 005630464 _____ () [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\libglesv2.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 003535360 _____ () [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\vk_swiftshader.dll
2022-03-29 16:19 - 2022-03-29 16:19 - 000474624 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 157966336 _____ (Seznam.cz) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\nw.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 000824832 _____ (Seznam.cz) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\nw_elf.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 002896384 _____ (The NW.js Community) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\ffmpeg.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 014369792 _____ (The NW.js Community) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\node.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000017408 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Components\ssdp.w6c
2018-10-19 00:13 - 2018-10-19 00:13 - 000338944 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2018-10-19 00:13 - 2018-10-19 00:13 - 000041984 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_crasher.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 001770496 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_ff.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000031232 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_hotkeys.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000323072 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_ml.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000026624 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_tray.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000070144 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_avi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000061440 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_cdda.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000072704 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_dshow.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000051200 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_flac.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000044032 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_flv.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000008192 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_linein.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000112128 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_midi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000041472 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mkv.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000150016 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mp3.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000052224 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mp4.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000077824 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_nsv.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000024064 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_swf.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000239104 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_vorbis.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000024064 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_wave.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000100864 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_wm.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000031744 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_bookmarks.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000226816 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_devices.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000165376 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_disc.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000057856 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_downloads.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000060928 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_history.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000059904 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_impex.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000329728 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_local.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000139776 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_online.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000111104 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_playlists.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000287232 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_pmp.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000038912 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_rg.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000033792 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_transcode.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000126464 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_wire.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000024576 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_disk.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000053760 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_ds.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000019968 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_wave.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000058368 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_android.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000163840 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_ipod.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000020992 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_njb.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000113664 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_p4s.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000053248 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_usb.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000078336 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_wifi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000867328 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\jnetlib.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000212992 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\libmp4v2.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000165376 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\libmpg123.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000260096 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\libsndfile.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000086016 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\nde.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000418304 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\nsutil.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000030208 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\nxlite.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000094208 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\tataki.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000051200 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\zlib.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000030208 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\aacdec.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000026112 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\albumart.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000018432 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\bmp.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000034304 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\devices.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000017920 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\dlmgr.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000015360 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\filereader.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000019456 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\gif.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000869888 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\jnetlib.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000156160 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\jpeg.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000027648 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\mp3.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000308224 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\ombrowser.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000091648 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\playlist.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000086528 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\png.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000024064 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\tagz.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000037376 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\timer.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000048128 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\wasabi2.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000088576 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\xml.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000017408 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\xspf.w5s
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_461\bin\ssv.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_461\bin\jp2ssv.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2025-09-23 18:03 - 000001041 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 account.zoner.com
0.0.0.0 www.google-analytics.com
127.0.0.1 telemetry.malwarebytes.com
127.0.0.1 hubble.mb-cosmos.com
127.0.0.1 links.malwarebytes.com
2025-09-22 08:03 - 2025-09-22 08:43 - 000000586 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
127.0.0.1 keystone.mwbsys.com
127.0.0.1 holocron.mwbsys.com
127.0.0.1 telemetry.malwarebytes.com
127.0.0.1 hubble.mb-cosmos.com
127.0.0.1 links.malwarebytes.com
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 192.168.0.1
Windows Firewall is disabled.
Network Binding:
=============
Ethernet: Intel(R) Ethernet Connection (7) I219-V -> e1d68x64.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA app\NvDLISR
HKU\S-1-5-21-541797711-3321791765-32256482-1001\Control Panel\Desktop\\Wallpaper -> D:\Hudba\Happy Hardcore\Hardcore Underground Wallpaper.png
HKU\S-1-5-21-541797711-3321791765-32256482-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\DesktopSpotlight\Assets\Images\image_2.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "AdobePSE19AutoAnalyzer"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\StartupApproved\Run: => "247b6221a26d5c5da9074c127870d49f"
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{88D217AC-F176-4FC4-8DF7-7C0C507836F1}] => (Allow) LPort=8320
FirewallRules: [{27BD47D9-3F42-4FB3-8652-14110868C722}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> )
FirewallRules: [{E0914046-6942-4DB2-9380-70AE098ACDAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> )
FirewallRules: [{59177613-8321-4C23-BFC8-F9393187A0D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe () [File not signed]
FirewallRules: [{2F39F253-D440-4479-8C29-7FDD99F37EE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe () [File not signed]
FirewallRules: [{2F19A06C-0A24-4F12-A9BF-A97A1155447F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kao the Kangaroo Round 2\kao2.exe () [File not signed]
FirewallRules: [{C1A53A5F-6E0B-4C36-8209-689702DAE86B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kao the Kangaroo Round 2\kao2.exe () [File not signed]
FirewallRules: [{D419D61E-F0B4-49FE-A37A-DF28ACFC7685}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7C1F0A0B-1355-468C-B1C7-BEC10D5BD0F9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10CC3C08-240D-4584-B9B2-92F44CC3B2C1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{8F8B711D-6F45-4F07-9317-A65D1B1729A7}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{EFEE42B7-CB3B-4B17-B0D1-9EBB203B15FD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{31F3843D-9D83-4A10-9CA3-18AFE24AE72F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{35E0594A-76C3-4E8D-9EE6-A84446200F92}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3DF74B40-4B48-4513-9B4D-CABA56DCC473}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{D7C4951F-9D43-4F7D-BA0A-FF8FB0B51E0D}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{9A92D8EF-9F1E-43D9-9C7B-919E395C4FB4}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{FC679213-A562-4E11-85D9-FDA31B25B7B4}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{2BAD92D5-33C4-47E8-902C-8DD032D239DA}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{9B46FB14-EBE1-40A4-85F9-DC6BCAA85C6E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A24A882D-3ACC-4BF6-AB9D-4D4279A3FCA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EF2018A6-1C6B-452C-9EFB-647873D0D896}] => (Allow) C:\Program Files (x86)\Apowersoft\Beecut\BeeCut.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{0B05807A-E9B1-465D-A010-A5E30E5FC07E}] => (Allow) C:\Program Files (x86)\Apowersoft\Beecut\BeeCut.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{A9F7CF72-A576-44A2-BCE5-BEDCDF65B3FA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AC316C9F-EB6F-4070-86D8-8FCA433D22C2}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{40934705-668E-4698-ACBC-EF7EAC762750}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/20/2025 04:16:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NVIDIA App.exe, verze: 128.4.13.14, časové razítko: 0x68d18345
Název chybujícího modulu: libcef.dll, verze: 128.4.13.0, časové razítko: 0x66df642d
Kód výjimky: 0x80000003
Posun chyby: 0x0000000001696be9
ID chybujícího procesu: 0x1744
Čas spuštění chybující aplikace: 0x01dc41cc11f6e7ea
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\libcef.dll
ID zprávy: e9ef662e-182b-40f6-9b82-8073c6048d95
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 04:15:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NVIDIA App.exe, verze: 128.4.13.14, časové razítko: 0x68d18345
Název chybujícího modulu: libcef.dll, verze: 128.4.13.0, časové razítko: 0x66df642d
Kód výjimky: 0x80000003
Posun chyby: 0x0000000001696be9
ID chybujícího procesu: 0x21f8
Čas spuštění chybující aplikace: 0x01dc41cc0ef7da9a
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\libcef.dll
ID zprávy: b4662b87-64de-4d69-84dc-2853ad873f7f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 04:15:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NVIDIA App.exe, verze: 128.4.13.14, časové razítko: 0x68d18345
Název chybujícího modulu: libcef.dll, verze: 128.4.13.0, časové razítko: 0x66df642d
Kód výjimky: 0x80000003
Posun chyby: 0x0000000001696be9
ID chybujícího procesu: 0x2b9c
Čas spuštění chybující aplikace: 0x01dc41cbf955c03e
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\libcef.dll
ID zprávy: eb3a333b-631b-4d2a-8c17-f016107aa8ce
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 04:15:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: setup.exe_NVIDIA Install Application, verze: 2.1002.438.0, časové razítko: 0x68ac0eab
Název chybujícího modulu: NVI2.DLL, verze: 2.1002.438.0, časové razítko: 0x68ac0f64
Kód výjimky: 0xc0000409
Posun chyby: 0x003697b2
ID chybujícího procesu: 0x2350
Čas spuštění chybující aplikace: 0x01dc41cbe60bfe60
Cesta k chybující aplikaci: C:\ProgramData\NVIDIA Corporation\NVIDIA App\UpdateFramework\ota-artifacts\nvapp\post-processing\963172263307e6561c56bde24bc732c8\setup.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{2C2F9B31-C92C-445E-97F3-F43CD7D88E50}\NVI2.DLL
ID zprávy: 8b7fa7ae-2c4a-46d6-984b-5bc3806c1a9b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 03:58:46 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2125-09-26T13:58:46Z. Kód chyby: 0x80070070
Error: (10/20/2025 10:07:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ekrn.exe, verze: 10.56.11.0, časové razítko: 0x68b980cf
Název chybujícího modulu: ekrn.exe, verze: 10.56.11.0, časové razítko: 0x68b980cf
Kód výjimky: 0xc00000fd
Posun chyby: 0x00000000002eb037
ID chybujícího procesu: 0x78c
Čas spuštění chybující aplikace: 0x01dc4155b06ceac0
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Security\ekrn.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Security\ekrn.exe
ID zprávy: 2502bbfe-43a2-43db-b0ff-a01d07efe693
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 10:07:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: bad_module_info, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00000fd
Posun chyby: 0x00007fff554bb27b
ID chybujícího procesu: 0x28b0
Čas spuštění chybující aplikace: 0x01dc418610af2609
Cesta k chybující aplikaci: bad_module_info
Cesta k chybujícímu modulu: unknown
ID zprávy: d9eb922e-ff11-450f-9a18-649690a9eefb
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/19/2025 09:22:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 3.1.3.26837, časové razítko: 0x4f5934c0
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.6157, časové razítko: 0xe5a43d8e
Kód výjimky: 0xc000041d
Posun chyby: 0x00005e17
ID chybujícího procesu: 0x7dc
Čas spuštění chybující aplikace: 0x01dc3e5d4addf423
Cesta k chybující aplikaci: C:\Users\PCsestava\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 09997a5d-83cd-4fc1-a80f-7a136d182897
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/21/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/21/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/21/2025 05:27:30 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/21/2025 05:27:30 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/20/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/20/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/20/2025 10:08:07 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ESET Firewall Helper byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2025 10:08:07 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba ESET Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Windows Defender:
================
Date: 2025-10-19 19:55:00
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{F073CE4C-5FAF-4A7B-96FC-F134F2901DE6}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-18 20:08:54
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{1F2467E5-A71B-4181-A1DA-32B575D66100}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-17 20:21:41
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{23C033CC-6B92-41DB-99CA-FC636035586F}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-16 20:01:46
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{8044DFDA-9FD8-4219-AE5F-4F690BCA478F}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-16 02:40:59
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{BB7F77E8-77BF-413A-8645-9AF04A40267F}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Event[0]:
Date: 2025-10-19 23:59:04
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-10-14 12:29:47
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-09-29 14:58:35
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-09-24 05:03:52
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-09-23 10:54:32
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
CodeIntegrity:
===============
Date: 2025-10-21 16:37:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-10-21 14:38:01
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.70 08/13/2019
Motherboard: Micro-Star International Co., Ltd. Z390-A PRO (MS-7B98)
Processor: Intel(R) Core(TM) i7-9700K CPU @ 3.60GHz
Percentage of memory in use: 63%
Total physical RAM: 16318.47 MB
Available physical RAM: 5965.71 MB
Total Virtual: 21633.7 MB
Available Virtual: 4577.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.13 GB) (Free:5.34 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:4.97 GB) (Model: ST2000DM008-2FR102) NTFS
\\?\Volume{8bb453a5-caae-4d35-9788-0c2e0ef949a0}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{e353d6e1-332a-4b60-a3bc-a71a0008a825}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
posílám logy k tomu dodám před týdnem jsem měl Agenta toho jsem odstranil Malwarebytem ale říkal jsem si že by bylo dobrý to zkotrolovat i jinak dlouho jsem nedělal registry a ovladače.Celkově zapnout nějaký čistič.
Dále trošku mi zloby myš špatně přesouvá soubory a nebo dvakrát klikne to jsem ji čistil a dával do jiného USB.
ještě jedna věc občas se mi stává že když přesunu fotky album tak to celé nepřesune a já musím vypnout ve správci úloh COM Surrogate
Trpim nedostatkem mista na discích
FRST
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-10-2025
Ran by PCsestava (administrator) on DESKTOP-3IQ2PG2 (Micro-Star International Co., Ltd. MS-7B98) (21-10-2025 17:04:32)
Running from C:\Users\PCsestava\Desktop\Programs\FRST64.exe
Loaded Profiles: PCsestava & Administrator
Platform: Microsoft Windows 10 Pro Version 22H2 19045.6332 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eServiceHost.exe <2>
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Users\PCsestava\AppData\Roaming\Seznam Browser\Seznam.cz.exe ->) (Seznam.cz, a.s. -> Seznam.cz) C:\Users\PCsestava\AppData\Roaming\Seznam Browser\sznAgent\Seznam.cz.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (Seznam.cz, a.s. -> Seznam.cz) C:\Users\PCsestava\AppData\Roaming\Seznam Browser\Seznam.cz.exe <7>
(Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2025.11080.28001.0_x64__8wekyb3d8bbwe\Photos.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDrive.Sync.Service.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <45>
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MsMpEng.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe <2>
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2502.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (83564403-0B26-46B8-9D84-040F43691D31 -> Realtek Semiconductor) C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.38.277.0_x64__dt26b99r8h8gj\RtkUWP.exe
(svchost.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\Piriform\CCleaner 7\CCleaner.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Winamp SA -> Winamp SA) C:\Program Files (x86)\Winamp\winamp.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_550508a90a3c9a47\RtkAudUService64.exe [1618320 2022-11-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [285616 2025-09-11] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobePSE19AutoAnalyzer] => C:\Program Files\Adobe\Elements 2021 Organizer\Elements Auto Creations 2021.exe [2653808 2020-11-29] (Adobe Inc. -> Adobe)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [371304 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1008336 2025-10-19] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [247b6221a26d5c5da9074c127870d49f] => C:\Program Files\StreamFab\StreamFab\StreamUpdate.exe [7234064 2022-11-07] (StreamFab Technology -> )
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files (x86)\Programy\Zone Photo Studio X 19\Program32\ZPSTRAY.EXE [790512 2020-08-18] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Application Restart #1] => C:\Users\PCsestava\AppData\Roaming\Seznam Browser\Seznam.cz.exe [2056984 2025-09-01] (Seznam.cz, a.s. -> Seznam.cz)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" [92473208 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\RunOnce: [Uninstall 25.179.0914.0003] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.179.0914.0003" [0 2025-10-20] () <==== ATTENTION [zero byte File/Folder]
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\MountPoints2: {debf6fa3-4e7c-11ee-b4e0-00d861c42462} - "E:\CMADownloader.exe"
HKU\S-1-5-21-541797711-3321791765-32256482-500\...\Run: [MicrosoftEdgeAutoLaunch_98769996E24836F99EC8617644423B4C] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4265024 2025-10-17] (Microsoft Corporation -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{49210152-871f-4ffa-961d-a172abcbc09d}] -> C:\Program Files (x86)\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2025-10-20] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\141.0.7390.108\Installer\chrmstp.exe [2025-10-17] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05863795-1E5D-4F6B-B271-AE882D071203} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe [19968 2016-10-04] (InputMapper) [File not signed]
Task: {6443DCBD-2F4F-4A90-91F6-E584AE293CCC} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem142.0.7416.0{61FBE7D7-BBD9-4BD2-B0C7-C04F7080DBCE} => C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe [6863512 2025-09-15] (Google LLC -> Google LLC)
Task: {5C877B02-B88A-48D7-883A-3F3690149046} - System32\Tasks\GoogleUserPEH\RunPlatformExperienceHelper_FirstRun => C:\Program Files (x86)\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe [2624664 2025-10-20] (Google LLC -> Google LLC)
Task: {CE03A2AD-CBEB-4848-9219-1341EDF05A98} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe [855664 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
Task: {3E56F3C5-0FC4-472D-9C6F-D42433B6D05E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86F10A59-D6A7-438F-8D45-970B5AD3C719} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0632C887-72DE-4814-BD48-379FDFCA21F4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E1AC5B27-07B0-44B0-B561-F6C66ED3C6AD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {99E4BA3F-DE2F-4354-BD90-D84043F1371C} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693376 2025-10-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {57CA26C5-8B5B-47C3-A7C0-8A437786209C} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-541797711-3321791765-32256482-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [693376 2025-10-15] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {9E46A39A-109F-47EE-816B-BB57C338DC51} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-10-15] (Mozilla Corporation -> Mozilla Foundation)
Task: {AFCF050C-6B05-4BE3-A808-743E2C47D3FD} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3324528 2025-09-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {45B4254E-51B1-4255-BAA2-3F7A6915B071} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2FDD8D45-64DD-460A-8959-71D0679DAA73} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {60D0C194-D6F0-47E3-A71C-BCD4AF0BA2D4} - System32\Tasks\OneDrive Startup Task-S-1-5-21-541797711-3321791765-32256482-1001 => C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDriveLauncher.exe [725880 2025-10-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {6090EC3A-CF0A-4571-8C29-0CFAF03B7A51} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-541797711-3321791765-32256482-1001 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {1454311B-535A-4403-B6CC-754C1F78D17D} - System32\Tasks\Piriform\CCleaner 7 - S-1-5-21-541797711-3321791765-32256482-500 => C:\Program Files\Piriform\CCleaner 7\CCleaner.exe [4717688 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {6DE55A53-0E59-48CA-A953-B75EAD71DD4A} - System32\Tasks\Piriform\CCleaner 7 BugReport => C:\Program Files\Piriform\CCleaner 7\CCleanerBugReport.exe [6243960 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.) -> --send "dumps|report" --product 234 --programpath "C:\Program Files\Piriform\CCleaner 7" --configpath "C:\Program Files\Piriform\CCleaner 7\data" --path "C:\Program Files\Piriform\CCleaner 7\log" --path "C:\Program Files\Piriform\CCleaner 7\data\dumps" --logpath "C:\Program Files\Piriform\CCleaner 7 (the data entry has 58 more characters).
Task: {8DD2C7EA-934E-47C1-B428-10191728F9B9} - System32\Tasks\Piriform\CCleaner 7 Update => C:\Program Files\Common Files\Piriform\Icarus\piriform-ccl\icarus.exe [8971064 2025-10-14] (PIRIFORM SOFTWARE LIMITED -> Gen Digital Inc.)
Task: {1BB2841C-97EF-4BC8-9128-3E2A731FBB6B} - System32\Tasks\ViGEmBusUpdater => C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [901144 2019-05-10] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{1b3b3f58-c8fe-4d72-b5f6-d9dbfa5cf561}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\PCsestava\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-17]
Edge HomePage: Default -> hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
Edge Extension: (Dokumenty Google offline) - C:\Users\PCsestava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-10-17]
Edge Extension: (Edge relevant text changes) - C:\Users\PCsestava\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge HKLM-x32\...\Edge\Extension: [nkapkmklnmidbbgjaipbgpcnbomnaakc]
FireFox:
========
FF DefaultProfile: gpkb9vab.default
FF ProfilePath: C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\gpkb9vab.default [2024-07-07]
FF ProfilePath: C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release [2025-10-21]
FF Session Restore: Mozilla\Firefox\Profiles\4cnw17gd.default-release -> is enabled.
FF Extension: (The Stream Detector) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\@m3u8link.xpi [2022-04-25]
FF Extension: (CDA Downloader) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\cdadownloader@undefined.cba.pl.xpi [2025-09-22]
FF Extension: (Image Max URL) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\maxurl@qsniyg.xpi [2025-05-12]
FF Extension: (IDM Integration Module) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\mozilla_cc3@internetdownloadmanager.com.xpi [2025-10-05]
FF Extension: (New Tab) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\newtab@mozilla.org.xpi [2025-09-28]
FF Extension: (PrehrajtoWatch) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{510385eb-644b-494a-870b-c4fb4576aa2d}.xpi [2023-01-01]
FF Extension: (Downloader for Instagram) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{6d40ea86-9870-43e0-8e09-415b29b58ffe}.xpi [2021-10-30]
FF Extension: (Ninja Turtles in urban sewage) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{6f7fd1e2-1572-4311-9860-04eebba7fa53}.xpi [2019-12-24]
FF Extension: (Easy and fast browser extension, which allows you to download music from popular sites.) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{9bb4ec92-ebd8-4ce3-8a2f-a57150764720}.xpi [2024-04-26]
FF Extension: (Free music downloader pro VK | VKD) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{a8fff5e8-00c2-455a-9958-d8cd10f8206d}.xpi [2023-06-06]
FF Extension: (vk_music) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{aafa9a4e-6e99-48e5-aa4f-0b62ea1b9b61}.xpi [2024-04-26]
FF Extension: (Video DownloadHelper) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2025-06-05]
FF Extension: (SoundCloud Downloader) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\Extensions\{c7a839e7-7086-4021-8176-1cfcb7f169ce}.xpi [2025-10-18]
FF Extension: (Data Leak Blocker) - C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release\features\{3f3cc926-98db-42e3-b331-e88df9eb18fa}\data-leak-blocker@mozilla.com.xpi [2025-10-13]
FF Plugin: @java.com/DTPlugin,version=11.461.0 -> C:\Program Files\Java\jre1.8.0_461\bin\dtplugin\npDeployJava1.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.461.0 -> C:\Program Files\Java\jre1.8.0_461\bin\plugin2\npjp2.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.20 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2025-10-21]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default [2025-10-21]
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> google
CHR Extension: (Dokumenty Google offline) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-09-20]
CHR Extension: (IG Download Image - IG Video Downloader - SocialPlus) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaonookehgfokaglaodkeooddjeaodnc [2025-04-01]
CHR Extension: (Chrome extension source viewer) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\jifpbeccnghkjeaalbbjmodiffmgedin [2023-12-19]
CHR Extension: (Tweaks for VSCO) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljbopeedkjbnlapghcfjgigmknofmbkp [2025-05-21]
CHR Extension: (VSCO Media Downloader) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\looapkhpinpjaioiljphfmbnhbbgfcpl [2020-05-12]
CHR Extension: (Instant Save for Instagram and Flickr) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\majobfiinhihjjndfdncncgdfgdncnek [2025-02-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ESET Browser Privacy & Security) - C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Default\Extensions\oombnmpbbhbakfpfgdflaajkhicgfaam [2025-07-05]
CHR Profile: C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\Guest Profile [2025-09-08]
CHR Profile: C:\Users\PCsestava\AppData\Local\Google\Chrome\User Data\System Profile [2025-09-08]
CHR HKLM-x32\...\Chrome\Extension: [oombnmpbbhbakfpfgdflaajkhicgfaam]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [3386064 2025-09-21] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
R2 CCleaner7; C:\Program Files\Piriform\CCleaner 7\CCleaner_service.exe [28276344 2025-10-17] (Gen Digital Inc. -> Gen Digital Inc.)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [439616 2020-06-02] (Digital Wave Ltd -> Digital Wave Ltd)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4452456 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [382504 2020-11-01] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [5538224 2025-09-11] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [4662320 2025-09-11] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [4662320 2025-09-11] (ESET, spol. s r.o. -> ESET)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1741384 2020-12-26] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-05-06] (GOG Sp. z o.o. -> GOG.com)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9608720 2025-09-22] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-09-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpDefenderCoreService.exe [2009656 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [918456 2025-08-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ViGEmBusUpdater; C:\Program Files\Nefarius Software Solutions\ViGEm Bus Driver\ViGEmBusUpdater.exe [901144 2019-05-10] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\NisSrv.exe [4414464 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MsMpEng.exe [282480 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [280064 2022-10-12] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-04-15] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [76800 2019-12-07] (Microsoft Corporation) [File not signed]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [175824 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [232456 2025-08-24] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [139944 2025-08-24] (Microsoft Windows Hardware Compatibility Publisher -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-10-21] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [270136 2025-08-24] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [57352 2025-08-24] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [86792 2025-08-24] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [126024 2025-08-24] (ESET, spol. s r.o. -> ESET)
S3 HidGuardian; C:\WINDOWS\System32\drivers\HidGuardian.sys [26736 2017-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333216 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [234072 2025-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [22120 2025-09-22] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
S3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [244800 2025-10-19] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [174264 2024-10-17] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2019-04-02] (TunnelBear, Inc. -> The OpenVPN Project)
R3 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [69168 2019-04-04] (Microsoft Windows Hardware Compatibility Publisher -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20880 2025-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [627104 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102816 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-20 13:25 - 2025-10-20 14:43 - 000000000 ____D C:\Users\PCsestava\Desktop\Happy plocha
2025-10-19 22:17 - 2025-10-21 17:04 - 000000000 ____D C:\FRST
2025-10-18 15:39 - 2025-10-18 15:39 - 000000000 ____D C:\Users\PCsestava\Downloads\SoundCloud
2025-10-16 18:27 - 2025-10-16 18:29 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\CCleaner
2025-10-16 18:27 - 2025-10-16 18:27 - 000002148 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 7.lnk
2025-10-16 18:27 - 2025-10-16 18:27 - 000002136 _____ C:\Users\Public\Desktop\CCleaner 7.lnk
2025-10-16 18:27 - 2025-10-16 18:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Piriform
2025-10-16 18:26 - 2025-10-16 18:26 - 000000000 ____D C:\Program Files\Piriform
2025-10-16 18:26 - 2025-10-16 18:26 - 000000000 ____D C:\Program Files\Common Files\Piriform
2025-10-16 18:26 - 2025-10-16 18:24 - 000055064 _____ (Gen Digital Inc.) C:\WINDOWS\system32\icarus_rvrt.exe
2025-10-15 04:29 - 2025-10-19 21:26 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-10-14 12:16 - 2025-10-14 12:16 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleUserPEH
2025-10-13 17:52 - 2025-10-21 17:03 - 000000000 ____D C:\Users\PCsestava\Desktop\13.10 S
2025-09-29 14:58 - 2025-10-20 02:08 - 000949930 _____ C:\WINDOWS\ntbtlog.txt
2025-09-29 14:13 - 2025-09-29 14:13 - 002311428 _____ C:\Users\PCsestava\Desktop\SnapInsta.to_AQOH_6QkcvU63HVcZU5gdq9iv6zYv4kObqino7v9i1oSnpUgM-a3lQr9MFoF69vun306vwTWYkhwSHdesAMGUXTgQfFv_ea3EgXteEM.mp4
2025-09-29 07:08 - 2024-10-17 03:53 - 000175824 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus2.sys
2025-09-23 18:20 - 2024-10-17 03:54 - 000174264 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2025-09-23 08:55 - 2025-09-23 08:56 - 000094454 _____ C:\Users\PCsestava\Desktop\big-wolf-on-campus_202211_archive.torrent
2025-09-22 17:36 - 2025-09-22 17:36 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webová aplikace Firefoxu
2025-09-22 08:46 - 2025-10-20 02:07 - 000000000 ____D C:\Users\PCsestava\AppData\Local\Malwarebytes
2025-09-22 08:46 - 2025-09-22 08:46 - 000002093 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-09-22 08:45 - 2025-09-22 08:45 - 000000000 ___SD C:\ProgramData\MB2Migration
2025-09-22 08:44 - 2025-09-23 03:52 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-09-22 08:44 - 2025-09-22 08:44 - 000000000 ____D C:\Program Files\Malwarebytes
2025-09-22 08:04 - 2025-09-22 08:04 - 000000000 ____D C:\Users\PCsestava\AppData\Local\mbamtray
2025-09-22 08:03 - 2025-09-22 08:43 - 000000586 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2025-09-22 01:01 - 2025-09-22 01:01 - 000000000 ____D C:\Users\PCsestava\AppData\Local\MarkdownViewer
2025-09-22 01:00 - 2025-09-22 01:00 - 000000000 ____D C:\WINDOWS\Panther
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-10-21 17:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-10-21 16:19 - 2025-09-10 05:16 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\Seznam Browser
2025-10-21 12:51 - 2021-04-21 20:08 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-10-21 05:41 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-10-21 05:41 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-10-21 00:23 - 2025-02-07 02:41 - 000003566 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-541797711-3321791765-32256482-1001
2025-10-21 00:23 - 2021-12-11 19:06 - 000003580 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-541797711-3321791765-32256482-1001
2025-10-21 00:23 - 2021-04-21 20:13 - 000003382 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-541797711-3321791765-32256482-1001
2025-10-21 00:23 - 2021-04-21 20:09 - 000002387 _____ C:\Users\PCsestava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-10-21 00:20 - 2021-12-17 18:46 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-10-20 19:12 - 2022-02-15 09:29 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-10-20 16:15 - 2020-08-13 13:17 - 000000000 ____D C:\Users\PCsestava\AppData\Local\CrashDumps
2025-10-20 16:14 - 2020-08-12 19:59 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-10-20 16:01 - 2020-01-19 19:40 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\vlc
2025-10-20 14:55 - 2019-12-24 01:41 - 000000000 ____D C:\Users\PCsestava\Desktop\Patrik
2025-10-20 14:43 - 2021-08-10 17:43 - 000000000 ____D C:\Users\PCsestava\Desktop\Happy Hardcore All plocha
2025-10-20 13:29 - 2019-12-24 00:36 - 000000000 ____D C:\Users\PCsestava\Desktop\ITALOdance
2025-10-20 13:27 - 2019-12-24 00:18 - 000000000 ____D C:\Users\PCsestava\Desktop\Eiffel 65 - Bloom 06
2025-10-20 06:43 - 2021-04-21 20:17 - 000000000 ____D C:\Users\PCsestava\AppData\Local\D3DSCache
2025-10-20 04:33 - 2021-09-25 02:53 - 000000000 ____D C:\Users\PCsestava\AppData\Local\Battle.net
2025-10-20 02:12 - 2021-04-21 20:17 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-10-20 02:12 - 2019-12-07 16:43 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2025-10-20 02:12 - 2019-12-07 16:43 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2025-10-20 02:12 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2025-10-20 02:08 - 2021-04-21 20:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-10-20 02:08 - 2021-04-21 20:08 - 000008192 ___SH C:\DumpStack.log.tmp
2025-10-20 02:08 - 2019-12-25 03:10 - 000000000 ____D C:\ProgramData\NVIDIA
2025-10-20 02:08 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-10-19 23:59 - 2020-10-12 20:49 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2025-10-19 23:55 - 2021-09-25 02:53 - 000000000 ____D C:\Program Files (x86)\Battle.net
2025-10-19 23:54 - 2019-12-24 01:37 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\uTorrent
2025-10-19 21:26 - 2019-12-23 20:11 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-10-19 21:12 - 2020-08-23 15:07 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-10-18 20:35 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-18 17:12 - 2024-06-10 06:26 - 000000000 ____D C:\Users\PCsestava\Desktop\SSSS
2025-10-18 08:23 - 2021-10-10 01:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-10-18 08:23 - 2019-12-23 20:11 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-10-17 16:14 - 2019-12-24 20:39 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-10-16 18:26 - 2024-03-14 04:10 - 000000000 ____D C:\ProgramData\Piriform
2025-10-16 18:26 - 2019-12-25 01:05 - 000000000 ____D C:\Program Files\CCleaner
2025-10-15 04:37 - 2019-12-23 22:26 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-10-15 04:36 - 2019-12-23 22:26 - 214534944 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-10-14 11:50 - 2020-03-25 16:28 - 000000000 ___RD C:\Users\PCsestava\Desktop\Hudba
2025-10-13 06:49 - 2025-08-31 11:12 - 000000000 ____D C:\Users\PCsestava\Desktop\31.08
2025-10-13 06:49 - 2025-06-08 12:47 - 000000000 ____D C:\Users\PCsestava\Desktop\mobil aktualni
2025-10-13 04:53 - 2021-04-21 20:13 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-10-13 04:53 - 2021-04-21 20:13 - 000003514 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-10-07 05:14 - 2024-07-11 11:28 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\qBittorrent
2025-09-29 13:52 - 2019-12-27 19:47 - 000000000 ____D C:\Program Files (x86)\Steam
2025-09-29 13:10 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-09-29 05:01 - 2024-11-09 15:08 - 000000000 ____D C:\Users\PCsestava\AppData\Local\PlaceholderTileLogoFolder
2025-09-29 05:01 - 2019-12-23 15:25 - 000000000 ____D C:\Users\PCsestava\AppData\Local\Packages
2025-09-29 04:59 - 2022-07-22 23:39 - 000000000 ____D C:\Users\PCsestava\Documents\StreamFab
2025-09-22 19:30 - 2025-02-17 01:47 - 001310832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2025-09-22 19:30 - 2025-02-17 01:47 - 001115248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2025-09-22 19:06 - 2024-07-07 08:32 - 000000000 ____D C:\Users\PCsestava\dwhelper
2025-09-22 19:05 - 2020-08-12 19:59 - 000180760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2025-09-22 19:05 - 2020-08-12 19:59 - 000159768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2025-09-22 19:04 - 2020-08-12 19:59 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2025-09-22 09:20 - 2022-04-24 03:01 - 000000000 ____D C:\Users\PCsestava\AppData\Roaming\Mp3tag
2025-09-22 08:44 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-09-22 07:27 - 2021-04-21 20:09 - 000000000 ____D C:\Users\PCsestava
2025-09-22 01:00 - 2021-04-21 20:08 - 000434224 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-09-22 00:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
==================== Files in the root of some directories ========
2022-07-22 23:41 - 2022-07-22 23:41 - 000000012 _____ () C:\Users\PCsestava\AppData\Roaming\2457fe3357cbf1220231e8917326f70f
2023-10-11 02:30 - 2023-10-11 02:30 - 000007597 _____ () C:\Users\PCsestava\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Addition
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-10-2025
Ran by PCsestava (21-10-2025 17:05:28)
Running from C:\Users\PCsestava\Desktop\Programs
Microsoft Windows 10 Pro Version 22H2 19045.6332 (X64) (2021-04-21 18:13:32)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-541797711-3321791765-32256482-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-541797711-3321791765-32256482-503 - Limited - Disabled)
Guest (S-1-5-21-541797711-3321791765-32256482-501 - Limited - Disabled)
PCsestava (S-1-5-21-541797711-3321791765-32256482-1001 - Administrator - Enabled) => C:\Users\PCsestava
WDAGUtilityAccount (S-1-5-21-541797711-3321791765-32256482-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Disabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Premiere Elements 2021 (HKLM-x32\...\PRE_19_0) (Version: 19.0 - Adobe Inc.)
AnyMP4 Screen Recorder 1.2.22 (HKLM-x32\...\AnyMP4 Screen Recorder_is1) (Version: 1.2.22 - AnyMP4 Studio)
AnyMP4 Video Converter Ultimate 7.2.56 (HKLM-x32\...\AnyMP4 Video Converter Ultimate_is1) (Version: 7.2.56 - AnyMP4 Studio)
AnyMP4 Video Converter Ultimate 8.5.22 (HKLM-x32\...\{B77ACAAE-53EE-43c3-86F1-4AEA52F6CDD5}_is1) (Version: 8.5.22 - AnyMP4 Studio)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1993.6 - AVAST Software) Hidden
Avidemux VC++ 64bits (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\{a87b093b-b61a-4879-a27a-c9cd8705ed51}) (Version: 2.8.1 - Mean)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Bandicut (HKLM-x32\...\Bandicut) (Version: 3.6.8.711 - Bandicam.com)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BeeCut V1.7.5.7 (HKLM-x32\...\{CA76BFA8-1862-49D7-B2C7-AE3D6CF40E53}_is1) (Version: 1.7.5.7 - Apowersoft LIMITED)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.77.1092 - AB Team, d.o.o.)
Bud Spencer and Terence Hill Slaps And Beans (HKLM-x32\...\Bud Spencer and Terence Hill Slaps And Beans_is1) (Version: - )
Bulk Image Downloader v6.58.0.0 (64 bit) (HKLM\...\Bulk Image Downloader (64 bit)_is1) (Version: 6.58 - Antibody Software)
Camtasia 2019 (HKLM\...\{19A62A1C-7918-487A-85FC-7FAEBCBC12C6}) (Version: 19.0.9.17643 - TechSmith Corporation) Hidden
Camtasia 2019 (HKLM-x32\...\{de99fe51-5615-4a7b-beea-6d59fe981c23}) (Version: 19.0.9.17643 - TechSmith Corporation)
CCleaner 7 (HKLM\...\CCleaner 7) (Version: 7.0.1010.1196 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1636.4 - Piriform Software) Hidden
CPUID CPU-Z 1.94 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.94 - CPUID, Inc.)
CPUID HWMonitor 1.56 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.56 - CPUID, Inc.)
Creaks (HKLM-x32\...\Creaks_is1) (Version: - )
CrystalDiskInfo 9.2.1 (HKLM\...\CrystalDiskInfo_is1) (Version: 9.2.1 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
DownloadHelper CoApp (HKLM-x32\...\DownloadHelper CoApp) (Version: 2.0.19.0 - ACLAP)
Epic Mickey 2 The Power of Two verze 1.0 (HKLM-x32\...\{E7B1D255-053D-4D73-9173-4F2605B84A3A}_is1) (Version: 1.0 - Disney Interactive)
ESET Security (HKLM\...\{D8E84711-EDFC-4D4E-B579-95AEB40DAA4D}) (Version: 18.2.18.0 - ESET, spol. s r.o.)
Free Audio Converter version 5.0.61.805 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.61.805 - DVDVideoSoft Ltd.)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 141.0.7390.108 - Google LLC)
Harry Potter CZ (HKLM-x32\...\Harry Potter CZ) (Version: - )
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
Java 8 Update 461 (64-bit) (HKLM\...\{71124AE4-039E-4CA4-87B4-2F64180461F0}) (Version: 8.0.4610.11 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0.1 - AppWork GmbH)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Malwarebytes version 5.4.0.213 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.4.0.213 - Malwarebytes)
MediaInfo 23.04 (HKLM\...\MediaInfo) (Version: 23.04 - MediaArea.net)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Metal Slug Complete PC 1.0 (HKLM-x32\...\Metal Slug Complete PC) (Version: 1.0 - SNK PLAYMORE)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 141.0.3537.85 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 141.0.3537.85 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\OneDriveSetup.exe) (Version: 25.184.0921.0004 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-541797711-3321791765-32256482-500\...\OneDriveSetup.exe) (Version: 21.220.1024.0005 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox) (Version: 144.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 71.0 - Mozilla)
Mp3tag v3.14 (HKLM-x32\...\Mp3tag) (Version: 3.14 - Florian Heidenreich)
Mrazik CZ Pohadka o Mrazikovi Ivanovi a Nastence (HKLM-x32\...\Mrazik CZ Pohadka o Mrazikovi Ivanovi a Nastence) (Version: Pohadka o Mrazikovi Ivanovi a Nastence - Libbi)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.7 - Notepad++ Team)
NVIDIA App 11.0.5.245 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.245 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Oceanhorn - Monster of Uncharted Seas (HKLM-x32\...\1426499435_is1) (Version: 2.5.0.6 - GOG.com)
OpenIV (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\OpenIV) (Version: 3.2.1102 - .black/OpenIV Team)
Polda 2 Remástr verze 1.0 (HKLM-x32\...\{17B920F6-EED9-415A-85C5-A2025745125C}_is1) (Version: 1.0 - )
Prohlížeč Seznam.cz (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\Seznam Browser) (Version: 6.30.1 - Seznam.cz a.s.)
qBittorrent (HKLM-x32\...\qBittorrent) (Version: 5.0.2 - The qBittorrent project)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Skype verze 8.131 (HKLM-x32\...\Skype_is1) (Version: 8.131 - Skype Technologies S.A.)
Spirit of the North Enhanced Edition (HKLM-x32\...\Spirit of the North Enhanced Edition_is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamFab (x64) (10/11/2022) (HKLM-x32\...\StreamFab (x64)) (Version: 6.0.0.2 - Streamfab Technology)
Streets of Rage 4 (HKLM-x32\...\Streets of Rage 4_is1) (Version: - )
The Simpsons Hit & Run(TM) (HKLM-x32\...\{F79AAB3A-B8B4-4AC7-94AB-1C4C076C6A89}) (Version: 1.00.000 - )
TMNT The Cowabunga Collection (HKLM-x32\...\TMNT The Cowabunga Collection_is1) (Version: - )
Topaz Video AI (HKLM\...\{E0869EBB-A9EE-4B6B-B32C-AA47B8476FA3}) (Version: 5.3.4 - Topaz Labs LLC)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{B8D93870-98D1-4980-AFCA-E26563CDFB79}) (Version: 8.94.0.0 - Microsoft Corporation)
Ve stínu havrana (HKLM-x32\...\Ve stínu havrana_is1) (Version: - CINEMAX, s.r.o.)
ViGEm Bus Driver (HKLM\...\{869109FC-8D5A-46D0-B619-47D7E4173D93}) (Version: 1.16.115 - Nefarius Software Solutions e.U.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Vzum (HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\6cfa0c5674100ff8) (Version: 1.0.0.47 - Vzum)
Winamp (HKLM-x32\...\Winamp) (Version: 5.8 - Winamp SA)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Yoku's Island Express (HKLM-x32\...\1576137547_is1) (Version: Aug 24 2018, 205911 - GOG.com)
Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos)
ZPS 19 CZ (HKU\S-1-5-21-541797711-3321791765-32256482-500\...\{E83AA227-7862-F115-2E87-46DCA9E3D879}) (Version: v.19.2004.2.262 - 18.08.2020 - libbi)
Packages:
=========
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.23.0_neutral__8xx8rvfyw5nnt [2024-02-14] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-06-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-06-18] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.968.0_x64__56jybvy8sckqj [2025-06-13] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.38.277.0_x64__dt26b99r8h8gj [2023-03-28] (Realtek Semiconductor Corp)
Trio Office: DOCX & XLSX Editor -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.4.9.0_x64__3h5nez1g3qt2c [2025-10-05] (GT Office PDF Studio) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2020}\localserver32 -> C:\Program Files\Adobe\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{0047ADBE-9F73-CAFE-3A65-ACE857BB2021}\localserver32 -> C:\Program Files\Adobe\Elements 2021 Organizer\Elements Auto Creations 2021.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\PCsestava\AppData\Local\Microsoft\OneDrive\25.184.0921.0004\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{930e604a-cc01-4d06-8d7a-5a07914f3afb}\localserver32 -> C:\Program Files\TechSmith\Camtasia 2019\CamtasiaStudio.exe (TechSmith Corporation -> TechSmith Corporation)
CustomCLSID: HKU\S-1-5-21-541797711-3321791765-32256482-1001_Classes\CLSID\{DFF20505-B08F-455B-AD70-4FBD055088E0}\localserver32 -> C:\Program Files (x86)\Google\Chrome\Application\PlatformExperienceHelper\platform_experience_helper.exe (Google LLC -> Google LLC)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Programy\Notepad++\NppShell_06.dll [2020-06-05] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2022-03-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2022-03-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-12-28] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> No File
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2022-03-29] (Florian Heidenreich) [File not signed]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2025-09-11] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\PCsestava\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Webová aplikace Firefoxu\Youtube.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> "-taskbar-tab" "b341d566-8d0f-460d-bb52-b8c7acde4709" "-new-window" "hxxps://www.youtube.com" "-profile" "C:\Users\PCsestava\AppData\Roaming\Mozilla\Firefox\Profiles\4cnw17gd.default-release" "-container" "0"
==================== Loaded Modules (Whitelisted) =============
2025-09-10 05:16 - 2025-09-01 13:35 - 002588672 _____ () [File not signed] \\?\C:\Users\PCsestava\AppData\Roaming\Seznam Browser\node_modules\sbrowser-sqlite3\lib\binding\napi-v6-win32-unknown-ia32\node_sqlite3.node
2018-10-19 00:13 - 2018-10-19 00:13 - 000939008 _____ () [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mod.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000012800 _____ () [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_wasapi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000519680 _____ () [File not signed] C:\Program Files (x86)\Winamp\Shared\lame_enc.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000268288 _____ () [File not signed] C:\Program Files (x86)\Winamp\Shared\libFLAC.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 000355328 _____ () [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\libegl.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 005630464 _____ () [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\libglesv2.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 003535360 _____ () [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\vk_swiftshader.dll
2022-03-29 16:19 - 2022-03-29 16:19 - 000474624 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 157966336 _____ (Seznam.cz) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\nw.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 000824832 _____ (Seznam.cz) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\nw_elf.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 002896384 _____ (The NW.js Community) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\ffmpeg.dll
2025-09-10 05:16 - 2025-08-01 15:58 - 014369792 _____ (The NW.js Community) [File not signed] C:\Users\PCsestava\AppData\Roaming\Seznam Browser\node.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000017408 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Components\ssdp.w6c
2018-10-19 00:13 - 2018-10-19 00:13 - 000338944 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2018-10-19 00:13 - 2018-10-19 00:13 - 000041984 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_crasher.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 001770496 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_ff.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000031232 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_hotkeys.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000323072 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_ml.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000026624 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\gen_tray.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000070144 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_avi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000061440 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_cdda.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000072704 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_dshow.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000051200 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_flac.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000044032 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_flv.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000008192 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_linein.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000112128 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_midi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000041472 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mkv.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000150016 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mp3.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000052224 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_mp4.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000077824 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_nsv.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000024064 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_swf.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000239104 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_vorbis.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000024064 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_wave.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000100864 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\in_wm.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000031744 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_bookmarks.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000226816 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_devices.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000165376 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_disc.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000057856 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_downloads.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000060928 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_history.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000059904 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_impex.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000329728 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_local.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000139776 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_online.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000111104 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_playlists.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000287232 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_pmp.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000038912 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_rg.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000033792 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_transcode.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000126464 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\ml_wire.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000024576 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_disk.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000053760 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_ds.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000019968 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\out_wave.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000058368 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_android.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000163840 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_ipod.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000020992 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_njb.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000113664 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_p4s.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000053248 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_usb.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000078336 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Plugins\pmp_wifi.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000867328 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\jnetlib.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000212992 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\libmp4v2.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000165376 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\libmpg123.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000260096 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\libsndfile.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000086016 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\nde.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000418304 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\nsutil.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000030208 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\nxlite.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000094208 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\tataki.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000051200 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\Shared\zlib.dll
2018-10-19 00:13 - 2018-10-19 00:13 - 000030208 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\aacdec.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000026112 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\albumart.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000018432 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\bmp.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000034304 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\devices.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000017920 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\dlmgr.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000015360 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\filereader.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000019456 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\gif.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000869888 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\jnetlib.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000156160 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\jpeg.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000027648 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\mp3.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000308224 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\ombrowser.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000091648 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\playlist.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000086528 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\png.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000024064 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\tagz.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000037376 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\timer.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000048128 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\wasabi2.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000088576 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\xml.w5s
2018-10-19 00:13 - 2018-10-19 00:13 - 000017408 _____ (Winamp SA) [File not signed] C:\Program Files (x86)\Winamp\System\xspf.w5s
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_461\bin\ssv.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_461\bin\jp2ssv.dll [2025-06-27] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2025-09-23 18:03 - 000001041 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.0 account.zoner.com
0.0.0.0 www.google-analytics.com
127.0.0.1 telemetry.malwarebytes.com
127.0.0.1 hubble.mb-cosmos.com
127.0.0.1 links.malwarebytes.com
2025-09-22 08:03 - 2025-09-22 08:43 - 000000586 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
127.0.0.1 keystone.mwbsys.com
127.0.0.1 holocron.mwbsys.com
127.0.0.1 telemetry.malwarebytes.com
127.0.0.1 hubble.mb-cosmos.com
127.0.0.1 links.malwarebytes.com
==================== Network ===========================
(Currently there is no automatic fix for this section.)
DNS Servers: 192.168.0.1
Windows Firewall is disabled.
Network Binding:
=============
Ethernet: Intel(R) Ethernet Connection (7) I219-V -> e1d68x64.sys
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA app\NvDLISR
HKU\S-1-5-21-541797711-3321791765-32256482-1001\Control Panel\Desktop\\Wallpaper -> D:\Hudba\Happy Hardcore\Hardcore Underground Wallpaper.png
HKU\S-1-5-21-541797711-3321791765-32256482-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\DesktopSpotlight\Assets\Images\image_2.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)
HKLM\SOFTWARE\Microsoft\Windows Defender\Exclusions\Paths|C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "AdobePSE19AutoAnalyzer"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\StartupApproved\Run: => "247b6221a26d5c5da9074c127870d49f"
HKU\S-1-5-21-541797711-3321791765-32256482-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{88D217AC-F176-4FC4-8DF7-7C0C507836F1}] => (Allow) LPort=8320
FirewallRules: [{27BD47D9-3F42-4FB3-8652-14110868C722}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> )
FirewallRules: [{E0914046-6942-4DB2-9380-70AE098ACDAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGenesisClassics.exe (Sega Europe Limited -> )
FirewallRules: [{59177613-8321-4C23-BFC8-F9393187A0D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe () [File not signed]
FirewallRules: [{2F39F253-D440-4479-8C29-7FDD99F37EE3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sega Classics\SEGAGameRoom.exe () [File not signed]
FirewallRules: [{2F19A06C-0A24-4F12-A9BF-A97A1155447F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kao the Kangaroo Round 2\kao2.exe () [File not signed]
FirewallRules: [{C1A53A5F-6E0B-4C36-8209-689702DAE86B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kao the Kangaroo Round 2\kao2.exe () [File not signed]
FirewallRules: [{D419D61E-F0B4-49FE-A37A-DF28ACFC7685}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7C1F0A0B-1355-468C-B1C7-BEC10D5BD0F9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10CC3C08-240D-4584-B9B2-92F44CC3B2C1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{8F8B711D-6F45-4F07-9317-A65D1B1729A7}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{EFEE42B7-CB3B-4B17-B0D1-9EBB203B15FD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{31F3843D-9D83-4A10-9CA3-18AFE24AE72F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{35E0594A-76C3-4E8D-9EE6-A84446200F92}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{3DF74B40-4B48-4513-9B4D-CABA56DCC473}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{D7C4951F-9D43-4F7D-BA0A-FF8FB0B51E0D}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{9A92D8EF-9F1E-43D9-9C7B-919E395C4FB4}C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\pcsestava\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{FC679213-A562-4E11-85D9-FDA31B25B7B4}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{2BAD92D5-33C4-47E8-902C-8DD032D239DA}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Winamp SA -> Winamp SA)
FirewallRules: [{9B46FB14-EBE1-40A4-85F9-DC6BCAA85C6E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A24A882D-3ACC-4BF6-AB9D-4D4279A3FCA2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EF2018A6-1C6B-452C-9EFB-647873D0D896}] => (Allow) C:\Program Files (x86)\Apowersoft\Beecut\BeeCut.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{0B05807A-E9B1-465D-A010-A5E30E5FC07E}] => (Allow) C:\Program Files (x86)\Apowersoft\Beecut\BeeCut.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{A9F7CF72-A576-44A2-BCE5-BEDCDF65B3FA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AC316C9F-EB6F-4070-86D8-8FCA433D22C2}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{40934705-668E-4698-ACBC-EF7EAC762750}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/20/2025 04:16:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NVIDIA App.exe, verze: 128.4.13.14, časové razítko: 0x68d18345
Název chybujícího modulu: libcef.dll, verze: 128.4.13.0, časové razítko: 0x66df642d
Kód výjimky: 0x80000003
Posun chyby: 0x0000000001696be9
ID chybujícího procesu: 0x1744
Čas spuštění chybující aplikace: 0x01dc41cc11f6e7ea
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\libcef.dll
ID zprávy: e9ef662e-182b-40f6-9b82-8073c6048d95
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 04:15:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NVIDIA App.exe, verze: 128.4.13.14, časové razítko: 0x68d18345
Název chybujícího modulu: libcef.dll, verze: 128.4.13.0, časové razítko: 0x66df642d
Kód výjimky: 0x80000003
Posun chyby: 0x0000000001696be9
ID chybujícího procesu: 0x21f8
Čas spuštění chybující aplikace: 0x01dc41cc0ef7da9a
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\libcef.dll
ID zprávy: b4662b87-64de-4d69-84dc-2853ad873f7f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 04:15:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: NVIDIA App.exe, verze: 128.4.13.14, časové razítko: 0x68d18345
Název chybujícího modulu: libcef.dll, verze: 128.4.13.0, časové razítko: 0x66df642d
Kód výjimky: 0x80000003
Posun chyby: 0x0000000001696be9
ID chybujícího procesu: 0x2b9c
Čas spuštění chybující aplikace: 0x01dc41cbf955c03e
Cesta k chybující aplikaci: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\libcef.dll
ID zprávy: eb3a333b-631b-4d2a-8c17-f016107aa8ce
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 04:15:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: setup.exe_NVIDIA Install Application, verze: 2.1002.438.0, časové razítko: 0x68ac0eab
Název chybujícího modulu: NVI2.DLL, verze: 2.1002.438.0, časové razítko: 0x68ac0f64
Kód výjimky: 0xc0000409
Posun chyby: 0x003697b2
ID chybujícího procesu: 0x2350
Čas spuštění chybující aplikace: 0x01dc41cbe60bfe60
Cesta k chybující aplikaci: C:\ProgramData\NVIDIA Corporation\NVIDIA App\UpdateFramework\ota-artifacts\nvapp\post-processing\963172263307e6561c56bde24bc732c8\setup.exe
Cesta k chybujícímu modulu: C:\Program Files\NVIDIA Corporation\Installer2\CoreTemp.{2C2F9B31-C92C-445E-97F3-F43CD7D88E50}\NVI2.DLL
ID zprávy: 8b7fa7ae-2c4a-46d6-984b-5bc3806c1a9b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 03:58:46 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: )
Description: Nepodařilo se naplánovat restartování služby Ochrana softwaru na 2125-09-26T13:58:46Z. Kód chyby: 0x80070070
Error: (10/20/2025 10:07:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ekrn.exe, verze: 10.56.11.0, časové razítko: 0x68b980cf
Název chybujícího modulu: ekrn.exe, verze: 10.56.11.0, časové razítko: 0x68b980cf
Kód výjimky: 0xc00000fd
Posun chyby: 0x00000000002eb037
ID chybujícího procesu: 0x78c
Čas spuštění chybující aplikace: 0x01dc4155b06ceac0
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Security\ekrn.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Security\ekrn.exe
ID zprávy: 2502bbfe-43a2-43db-b0ff-a01d07efe693
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2025 10:07:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: bad_module_info, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc00000fd
Posun chyby: 0x00007fff554bb27b
ID chybujícího procesu: 0x28b0
Čas spuštění chybující aplikace: 0x01dc418610af2609
Cesta k chybující aplikaci: bad_module_info
Cesta k chybujícímu modulu: unknown
ID zprávy: d9eb922e-ff11-450f-9a18-649690a9eefb
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/19/2025 09:22:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 3.1.3.26837, časové razítko: 0x4f5934c0
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.6157, časové razítko: 0xe5a43d8e
Kód výjimky: 0xc000041d
Posun chyby: 0x00005e17
ID chybujícího procesu: 0x7dc
Čas spuštění chybující aplikace: 0x01dc3e5d4addf423
Cesta k chybující aplikaci: C:\Users\PCsestava\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 09997a5d-83cd-4fc1-a80f-7a136d182897
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/21/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/21/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/21/2025 05:27:30 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/21/2025 05:27:30 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/20/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/20/2025 02:13:40 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (10/20/2025 10:08:07 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ESET Firewall Helper byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2025 10:08:07 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba ESET Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Windows Defender:
================
Date: 2025-10-19 19:55:00
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{F073CE4C-5FAF-4A7B-96FC-F134F2901DE6}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-18 20:08:54
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{1F2467E5-A71B-4181-A1DA-32B575D66100}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-17 20:21:41
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{23C033CC-6B92-41DB-99CA-FC636035586F}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-16 20:01:46
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{8044DFDA-9FD8-4219-AE5F-4F690BCA478F}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Date: 2025-10-16 02:40:59
Description:
Antivirová ochrana v programu Microsoft Defender šĉàŋ ђåŝ ъėëп şţǿрρєđ ъεƒõŕė ςόмφℓеŧιοл.%ñ %ŧЅċǻⁿ ĨĎ:%ъ{BB7F77E8-77BF-413A-8645-9AF04A40267F}%и %ţŠ¢åή Ŧγρэ:%ьAntimalwarový program%ñ %τŜčдⁿ Рâŕǻмет℮гş:%ъRychlé prohledávání%л %тŮŝέя:%ъNT AUTHORITY\SYSTEM%ⁿ %ţŞťορ Ŗèǻśõп:%вŠĉђэδџŀêđ śĉąŋ щªѕ ŝќïрρęđ ъęćâџŝĕ ţħĕ ℓάšť ѕµ¢¢ëšśƒùļ ѕсǻπ ẃāš ẅīтђĭń τћз ļàśť 7 δαýŝ
Event[0]:
Date: 2025-10-19 23:59:04
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-10-14 12:29:47
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-09-29 14:58:35
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-09-24 05:03:52
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2025-09-23 10:54:32
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
CodeIntegrity:
===============
Date: 2025-10-21 16:37:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
Date: 2025-10-21 14:38:01
Description:
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume6\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.70 08/13/2019
Motherboard: Micro-Star International Co., Ltd. Z390-A PRO (MS-7B98)
Processor: Intel(R) Core(TM) i7-9700K CPU @ 3.60GHz
Percentage of memory in use: 63%
Total physical RAM: 16318.47 MB
Available physical RAM: 5965.71 MB
Total Virtual: 21633.7 MB
Available Virtual: 4577.29 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.13 GB) (Free:5.34 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
Drive d: () (Fixed) (Total:1863 GB) (Free:4.97 GB) (Model: ST2000DM008-2FR102) NTFS
\\?\Volume{8bb453a5-caae-4d35-9788-0c2e0ef949a0}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{e353d6e1-332a-4b60-a3bc-a71a0008a825}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================