Podle redittu sem naistaloval Java ze scam stranky

Zpráva

číslo · #1 Příspěvek od **číslo** » 26 čer 2025 09:10

Dobry den dneska sem na lokalizace.net stahnul cestinu byl v java scriptu tak sem stahnul Javu z java.com a naistaloval ji. Soubor stale ale nesel otevrit tak sem mrknul na redit a tam lidi pisi ze to je fake site a officialni je https://www.oracle.com pro Java. Tak me zajima jestli sem si nenaistaloval nejaky malware do pc? Prosim o kontrolu logu.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-06-2025
Ran by cislo (administrator) on DAN (ASUS System Product Name) (26-06-2025 10:03:55)
Running from C:\Users\cislo\Desktop\FRST64.exe
Loaded Profiles: cislo
Platform: Microsoft Windows 11 Pro Version 24H2 26100.4351 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.14\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bduserhost.exe <3>
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(Creative Technology Ltd -> Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(explorer.exe ->) (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.) C:\Program Files\Nefarius Software Solutions\Nefarius VirtualPad Driver Runtime\NefariusVirtualPadDriverNotifications.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <11>
(services.exe ->) (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.35\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.30\atkexComSvc.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Creative Technology Ltd -> Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtxSvc32.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MsMpEng.exe
(services.exe ->) (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.) C:\Program Files\Nefarius Software Solutions\Nefarius VirtualPad Driver Runtime\NefariusVirtualPadDriverService.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9425e4c3b1ac1c47\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25052.36.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe\EdgeGameAssist.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2506.1001.20.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.51.3.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.10401.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <5>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NefariusVirtualPadDriverNotifications] => C:\Program Files\Nefarius Software Solutions\Nefarius VirtualPad Driver Runtime\NefariusVirtualPadDriverNotifications.exe [41076632 2025-06-15] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1088840 2025-06-19] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [Creative.SBCommand] => C:\Program Files (x86)\Creative\Sound Blaster Command\Creative.SBCommand.exe [210904 2023-10-06] (Creative Technology Ltd -> Creative Technology Ltd)
HKU\S-1-5-21-4102937750-71725895-2520062571-1001\...\Run: [MicrosoftEdgeAutoLaunch_174EB967AD74D64A5E58FF9EF33D1CCA] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4141624 2025-06-19] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4102937750-71725895-2520062571-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22841736 2025-06-14] (Logitech Inc -> Logitech, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\137.0.7151.120\Installer\chrmstp.exe [2025-06-21] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {B79CBE5A-727C-4937-8411-64FF2EA09733} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2183016 2024-01-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {BD4D9EFB-EE81-4C50-83CF-19E650C7AFB2} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [1467752 2024-01-29] (ASUSTeK COMPUTER INC. -> )
Task: {F2C87F33-AE59-4987-A522-2B848B30FCD3} - System32\Tasks\ASUS\GpuFanHelper => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\GpuFanHelper.exe [4332392 2024-01-08] (ASUSTeK COMPUTER INC. -> TODO: <Company name>)
Task: {1A435391-98FD-4279-97F8-19D80D6C6A3A} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.14\WatchDog.exe [1168792 2025-06-04] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.14\repair
Task: {26123361-693B-4536-8A55-A1E30FE222EC} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7194.0{7B11DA9C-4ABE-4B39-8990-AB937039BE05} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7194.0\updater.exe [6070368 2025-05-22] (Google LLC -> Google LLC)
Task: {92CD65C8-5AD1-4180-94E6-941C7F28C4FF} - System32\Tasks\Microsoft\Windows\Hotpatch\Monitoring => C:\WINDOWS\system32\cmd.exe [376832 2025-06-14] (Microsoft Windows -> Microsoft Corporation) -> /d /c %systemroot%\system32\hpatchmonTask.cmd
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {EFAC6EDC-53DC-41B3-95B1-62164AF998B1} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-4102937750-71725895-2520062571-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [694912 2025-06-25] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {E9EFAEAA-D200-468A-A849-13C065E6BDBD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34944 2025-06-25] (Mozilla Corporation -> Mozilla Foundation)
Task: {8812961D-49C4-4578-B580-35EA400A49F7} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3322400 2025-06-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {677841D6-9591-4D00-AA6D-C89856032929} - System32\Tasks\OneDrive Startup Task-S-1-5-21-4102937750-71725895-2520062571-1001 => C:\Users\cislo\AppData\Local\Microsoft\OneDrive\25.095.0518.0002\OneDriveLauncher.exe [684344 2025-06-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {9784D9C2-6DA0-4844-A861-8E64F08C80EA} - System32\Tasks\Ubisoft\Ubisoft Connect Background Update => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\upc.exe [17327800 2025-06-12] (UBISOFT ENTERTAINMENT INC. -> Ubisoft)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.15.1
Tcpip\..\Interfaces\{ffea86dc-0fa2-4524-a0c2-b3188dfa9d0a}: [DhcpNameServer] 192.168.15.1

Edge:
=======
Edge Profile: C:\Users\cislo\AppData\Local\Microsoft\Edge\User Data\Default [2025-06-26]
Edge Extension: (Bitdefender Anti-tracker) - C:\Users\cislo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dbconhplchnbippmjabbcedokimacfjl [2025-06-18]
Edge Extension: (Dokumenty Google offline) - C:\Users\cislo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-14]
Edge Extension: (Edge relevant text changes) - C:\Users\cislo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-06-14]
Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl]

FireFox:
========
FF DefaultProfile: t0955u19.default
FF ProfilePath: C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\t0955u19.default [2025-06-14]
FF ProfilePath: C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release [2025-06-26]
FF Session Restore: Mozilla\Firefox\Profiles\hvph7d6v.default-release -> is enabled.
FF Extension: (Blerp - AI TTS, Sound Memes on Streams) - C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release\Extensions\blerp@blerp.com.xpi [2025-06-24]
FF Extension: (BetterTTV) - C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release\Extensions\firefox@betterttv.net.xpi [2025-06-14]
FF Extension: (FrankerFaceZ) - C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release\Extensions\frankerfacez@frankerfacez.com.xpi [2025-06-14]
FF Extension: (uBlock Origin) - C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release\Extensions\uBlock0@raymondhill.net.xpi [2025-06-14]
FF Extension: (Bitwarden - Správce hesel) - C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release\Extensions\{446900e4-71c2-419f-a6a7-df9c091e268b}.xpi [2025-06-14]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2025-06-14]
FF Extension: (Hlídač Shopů) - C:\Users\cislo\AppData\Roaming\Mozilla\Firefox\Profiles\hvph7d6v.default-release\Extensions\{d6f0f975-91a3-4d78-96f7-5f1859ad18b6}.xpi [2025-06-14]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2025-06-17] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2025-06-17] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Users\cislo\AppData\Local\Google\Chrome\User Data\Default [2025-06-15]
CHR HomePage: Default -> hxxp://www.google.com/
CHR Extension: (Překladač Google) - C:\Users\cislo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2025-06-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\cislo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-06-14]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\cislo\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2025-06-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\cislo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-06-14]
CHR Extension: (Bitwarden - Správce hesel) - C:\Users\cislo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2025-06-14]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.30\atkexComSvc.exe [905064 2025-06-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [502120 2025-06-14] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.35\AsusFanControlService.exe [1762664 2025-06-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [845256 2025-06-26] (ASUSTeK Computer Inc. -> )
R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [851640 2025-03-17] (Bitdefender SRL -> Bitdefender)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851704 2025-06-19] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851704 2025-06-19] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2966176 2023-07-20] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [851704 2025-06-19] (Bitdefender SRL -> Bitdefender)
R2 CtxSvc32; C:\WINDOWS\sysWow64\CtxSvc32.exe [167416 2022-12-20] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [959216 2025-06-14] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicGamesUpdater; C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesUpdater.exe [3071392 2025-06-17] (Epic Games Inc. -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [1604512 2025-06-20] (Epic Games Inc. -> Epic Games, Inc.)
S3 hpatchmon; C:\WINDOWS\system32\hpatchmon.dll [173472 2025-06-14] (Microsoft Windows -> Microsoft Corporation)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [16548744 2025-06-14] (Logitech Inc -> Logitech, Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123304 2025-06-06] (The Document Foundation -> The Document Foundation)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MpDefenderCoreService.exe [2071592 2025-06-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NefariusVirtualPadDriverService; C:\Program Files\Nefarius Software Solutions\Nefarius VirtualPad Driver Runtime\NefariusVirtualPadDriverService.exe [13973440 2025-06-15] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9425e4c3b1ac1c47\Display.NvContainer\NVDisplay.Container.exe [1275568 2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [764808 2025-06-04] (Bitdefender SRL -> Bitdefender)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [917472 2025-06-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [295936 2025-06-19] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [851704 2025-06-19] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\NisSrv.exe [4513624 2025-06-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25050.5-0\MsMpEng.exe [278328 2025-06-17] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33592 2024-09-12] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R1 Asusgio3; C:\WINDOWS\system32\drivers\AsIO3.sys [59440 2025-06-14] (ASUSTeK COMPUTER INC. -> Asustek Computer Inc.)
R1 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [7786032 2025-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci4; C:\WINDOWS\system32\DRIVERS\bddci4.sys [971312 2025-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [24568 2023-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R3 bdprivmon; C:\WINDOWS\system32\DRIVERS\bdprivmon.sys [49200 2023-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL)
S3 bduefiscan; C:\WINDOWS\system32\DRIVERS\bduefiscan.sys [42432 2024-07-02] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R3 cpuz157; C:\WINDOWS\temp\cpuz157\cpuz157_x64.sys [43568 2025-06-26] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
R3 CtxHda; C:\WINDOWS\system32\drivers\CtxHda.sys [1227280 2022-12-20] (Creative Technology Ltd -> Creative Technology Ltd)
R3 CtxHdb; C:\WINDOWS\system32\DRIVERS\Ctxhdb.sys [64056 2022-12-20] (Creative Technology Ltd -> Creative Technology Ltd)
R1 Gemma; C:\WINDOWS\System32\DRIVERS\gemma.sys [1791064 2024-11-14] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R2 Ignisv2; C:\WINDOWS\system32\DRIVERS\ignisv2.sys [848472 2025-02-11] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [54752 2025-06-14] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [330112 2025-06-17] (Microsoft Windows -> Microsoft Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44992 2025-06-14] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32200 2025-06-14] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73152 2025-06-14] (Logitech Inc -> Logitech)
R3 MTKBTFilterx64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_cde37df5add40ae6\mtkbtfilterx.sys [539608 2025-06-14] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwlex; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwl6ex.inf_amd64_c798f76dec6a5e79\mtkwl6ex.sys [1724584 2025-06-14] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 nssvpd; C:\WINDOWS\System32\drivers\nssvpd.sys [334976 2025-06-15] (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
S3 PlutonHeci; C:\WINDOWS\System32\DriverStore\FileRepository\pluton-heci.inf_amd64_f74945e2fcb1d3d7\pluton-heci.sys [75168 2025-06-14] (Microsoft Windows -> Microsoft Corporation)
R3 rt25cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt25cx21x64sta.inf_amd64_f1973277e8add794\rt25cx21x64.sys [896448 2025-05-20] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_feec7a9662e785f0\rtcx21x64.sys [539648 2024-03-28] (Microsoft Windows -> Realtek)
S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-06-14] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
R2 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [629184 2023-07-20] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 vlflt; C:\WINDOWS\System32\DRIVERS\vlflt.sys [1438768 2025-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20032 2025-06-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [612768 2025-06-17] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100744 2025-06-17] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-26 10:03 - 2025-06-26 10:04 - 000024736 _____ C:\Users\cislo\Desktop\FRST.txt
2025-06-26 10:03 - 2025-06-26 10:04 - 000000000 ____D C:\FRST
2025-06-26 10:02 - 2025-06-26 10:02 - 002407936 _____ (Farbar) C:\Users\cislo\Desktop\FRST64.exe
2025-06-26 09:51 - 2025-06-26 09:51 - 000000000 ____D C:\Users\cislo\AppData\LocalLow\Oracle
2025-06-26 09:49 - 2025-06-26 09:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2025-06-26 09:27 - 2025-06-26 09:28 - 000000000 ____D C:\Users\cislo\Downloads\CZManagerV3
2025-06-26 09:26 - 2025-06-26 09:26 - 000677108 _____ C:\WINDOWS\system32\perfh005.dat
2025-06-26 09:26 - 2025-06-26 09:26 - 000144960 _____ C:\WINDOWS\system32\perfc005.dat
2025-06-26 09:20 - 2025-06-26 09:21 - 000000000 ____D C:\ProgramData\Oracle
2025-06-26 09:18 - 2025-06-26 09:18 - 000000000 ____D C:\Users\cislo\Downloads\T2IOCWciEh-1714742724
2025-06-26 09:17 - 2025-06-26 09:17 - 000000000 ____D C:\Users\cislo\AppData\LocalLow\Sun
2025-06-26 09:14 - 2025-06-26 09:14 - 000000000 ____D C:\Users\cislo\AppData\Roaming\WinRAR
2025-06-26 09:14 - 2025-06-26 09:14 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-06-26 09:14 - 2025-06-26 09:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-06-26 09:14 - 2025-06-26 09:14 - 000000000 ____D C:\Program Files\WinRAR
2025-06-26 09:01 - 2025-06-26 09:01 - 000000000 ____D C:\ProgramData\Frostbite
2025-06-26 09:00 - 2025-06-26 09:01 - 000000000 ____D C:\Users\cislo\Documents\Dead Space (2023)
2025-06-25 20:50 - 2025-06-25 20:50 - 000000219 _____ C:\Users\cislo\Desktop\Dota 2.url
2025-06-25 20:46 - 2025-06-25 20:55 - 000000223 _____ C:\Users\cislo\Desktop\Dead Space.url
2025-06-25 14:58 - 2025-06-25 14:58 - 001001848 _____ C:\Users\cislo\Downloads\Dani_Box_Mini_manual-1.pdf
2025-06-25 14:56 - 2025-06-25 14:56 - 001001848 _____ C:\Users\cislo\Downloads\Dani_Box_Mini_manual.pdf
2025-06-25 14:05 - 2025-06-25 14:05 - 000000000 ____D C:\Users\cislo\AppData\Roaming\LibreOffice
2025-06-25 14:04 - 2025-06-25 14:04 - 000001181 _____ C:\Users\Public\Desktop\LibreOffice 25.2.lnk
2025-06-25 14:04 - 2025-06-25 14:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice
2025-06-25 14:03 - 2025-06-25 14:03 - 000000000 ____D C:\Program Files\LibreOffice
2025-06-25 13:59 - 2025-06-25 13:59 - 365432832 _____ C:\Users\cislo\Downloads\LibreOffice_25.2.4_Win_x86-64.msi
2025-06-25 11:57 - 2025-06-26 09:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-06-23 14:52 - 2025-06-23 14:52 - 000000234 _____ C:\Users\cislo\Desktop\Prince of Persia The Lost Crown.url
2025-06-23 14:52 - 2025-06-23 14:52 - 000000234 _____ C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prince of Persia The Lost Crown.url
2025-06-23 14:49 - 2025-06-25 14:49 - 000000000 ____D C:\Users\cislo\AppData\Local\Ubisoft Game Launcher
2025-06-23 14:49 - 2025-06-23 14:49 - 000001323 _____ C:\Users\cislo\Desktop\Ubisoft Connect.lnk
2025-06-23 14:49 - 2025-06-23 14:49 - 000000000 ____D C:\WINDOWS\system32\Tasks\Ubisoft
2025-06-23 14:49 - 2025-06-23 14:49 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2025-06-23 14:49 - 2025-06-23 14:49 - 000000000 ____D C:\ProgramData\Ubisoft
2025-06-23 14:49 - 2025-06-23 14:49 - 000000000 ____D C:\Program Files (x86)\Ubisoft
2025-06-23 14:48 - 2025-06-23 14:48 - 239974752 _____ (Ubisoft) C:\Users\cislo\Downloads\UbisoftConnectInstaller.exe
2025-06-23 13:32 - 2025-06-23 13:32 - 000000000 ____D C:\Users\cislo\Desktop\bazos
2025-06-23 09:35 - 2025-06-23 09:35 - 000104681 _____ C:\Users\cislo\Downloads\[SkT]Animal_Kingdom_-_1._serie_(CZ)[WEB-DL][1080p]_=_CSFD_77_.torrent
2025-06-23 09:35 - 2025-06-23 09:35 - 000034502 _____ C:\Users\cislo\Downloads\[SkT]Rick_a_Morty___Rick_and_Morty_-_S08E04_1080p_(CZ_EN)_=_CSFD_90_.torrent
2025-06-23 09:30 - 2025-06-23 09:30 - 000041949 _____ C:\Users\cislo\Downloads\[SkT]Rick_a_Morty___Rick_and_Morty_-_S08E02_1080p_(CZ_EN)_=_CSFD_90_.torrent
2025-06-23 09:29 - 2025-06-23 09:29 - 000032261 _____ C:\Users\cislo\Downloads\[SkT]Rick_a_Morty___Rick_and_Morty_-_S08E03_1080p_(CZ_EN)_=_CSFD_90_.torrent
2025-06-23 09:26 - 2025-06-23 09:26 - 000034285 _____ C:\Users\cislo\Downloads\[SkT]Rick_a_Morty___Rick_and_Morty_-_S08E01 E05_1080p_(CZ_EN)_=_CSFD_90_.torrent
2025-06-22 14:19 - 2025-06-24 17:07 - 000000000 ____D C:\Users\cislo\Desktop\overeni
2025-06-21 21:48 - 2025-06-21 21:48 - 000028168 _____ C:\Users\cislo\Downloads\[SkT]_Dokonalá_loupež_2___Den_of_Thieves_2__Pantera_(2025)(CZ)[1080p]_=_CSFD_59_.torrent
2025-06-21 18:13 - 2025-06-21 18:14 - 000000164 _____ C:\Users\cislo\Desktop\kenny.txt
2025-06-21 17:03 - 2025-06-21 17:10 - 000000015 _____ C:\Users\cislo\Desktop\schuzky.txt
2025-06-21 14:03 - 2025-06-24 21:34 - 000000000 ____D C:\Users\cislo\AppData\Roaming\discord
2025-06-21 14:03 - 2025-06-24 20:47 - 000000000 ____D C:\Users\cislo\AppData\Local\Discord
2025-06-21 14:03 - 2025-06-24 20:46 - 000002243 _____ C:\Users\cislo\Desktop\Discord.lnk
2025-06-21 14:03 - 2025-06-21 14:03 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2025-06-21 14:03 - 2025-06-21 14:03 - 000000000 ____D C:\Users\cislo\AppData\Local\SquirrelTemp
2025-06-21 14:02 - 2025-06-21 14:03 - 120279992 _____ (Discord Inc.) C:\Users\cislo\Downloads\DiscordSetup.exe
2025-06-21 13:45 - 2025-06-25 14:29 - 000000000 ____D C:\Users\cislo\Desktop\internet
2025-06-19 10:47 - 2025-06-19 10:47 - 000000000 ____D C:\Users\Public\Documents\Steam
2025-06-19 10:47 - 2025-06-19 10:47 - 000000000 ____D C:\Users\cislo\AppData\Local\Nikoderiko
2025-06-17 23:32 - 2025-06-17 23:32 - 000665212 _____ C:\ProgramData\cl.1750195835.bdinstall.v2.bin
2025-06-17 23:32 - 2025-06-17 23:32 - 000133372 _____ C:\ProgramData\cl.kit.1750195834.bdinstall.v2.bin
2025-06-17 23:31 - 2025-06-17 23:31 - 000002413 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk
2025-06-17 23:31 - 2025-06-17 23:31 - 000002334 _____ C:\Users\Public\Desktop\Bitdefender.lnk
2025-06-17 23:31 - 2025-06-17 23:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2025-06-17 23:30 - 2025-06-17 23:30 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Bitdefender
2025-06-17 23:30 - 2025-06-17 23:30 - 000000000 ____D C:\Program Files\Common Files\Bitdefender
2025-06-17 23:06 - 2025-06-17 23:06 - 000108475 _____ C:\Users\cislo\Downloads\[SkT]City_of_God__The_Fight_Rages_On___Cidade_de_Deus__A_Luta_Não_Para_1._serie_(CZ_POR)[1080p][WEB-DL]_=_CSFD_71_.torrent
2025-06-17 23:04 - 2025-06-17 23:04 - 000228066 _____ C:\Users\cislo\Downloads\[SkT]City_of_God__The_Fight_Rages_On___Cidade_de_Deus__A_Luta_Não_Para_1._serie_(2024)(CZ_EN)[2160p][WEB-DL][HEVC]_=_CSFD_71_.torrent
2025-06-17 20:12 - 2025-06-17 23:30 - 000000000 ____D C:\Program Files\Bitdefender
2025-06-17 20:12 - 2025-06-17 20:12 - 000003842 _____ C:\WINDOWS\system32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2025-06-17 20:10 - 2025-06-17 20:10 - 018986904 _____ C:\Users\cislo\Downloads\bitdefender_windows_0ad861ba-27b7-4ea8-a44b-a09c9395e0c3.exe
2025-06-17 20:10 - 2025-06-17 20:10 - 000179000 _____ C:\ProgramData\agent.1750183823.bdinstall.v2.bin
2025-06-17 20:10 - 2025-06-17 20:10 - 000000000 ____D C:\Program Files\Bitdefender Agent
2025-06-17 17:55 - 2025-06-17 17:57 - 000000000 ____D C:\Users\cislo\AppData\Roaming\AVG
2025-06-17 17:55 - 2025-06-17 17:57 - 000000000 ____D C:\Users\cislo\AppData\Local\AVG
2025-06-17 17:54 - 2025-06-17 17:58 - 000000000 ____D C:\ProgramData\AVG
2025-06-17 12:48 - 2025-06-20 22:08 - 000000000 ____D C:\Users\cislo\Desktop\sc
2025-06-16 21:36 - 2025-06-21 18:29 - 000000000 ____D C:\Users\cislo\Desktop\troll
2025-06-16 21:16 - 2025-06-16 21:16 - 000065966 _____ C:\Users\cislo\Downloads\Výplatní_páska_Haase_Dan_200416_květen_2025.pdf
2025-06-16 19:19 - 2025-06-16 19:19 - 000000000 ____D C:\Users\cislo\AppData\Local\GingerBread
2025-06-16 18:40 - 2025-06-19 19:31 - 000000000 ____D C:\Users\cislo\Desktop\jidlo
2025-06-16 17:39 - 2025-06-16 17:39 - 000033660 _____ C:\Users\cislo\Downloads\1625822189.pdf
2025-06-15 22:25 - 2025-06-15 22:25 - 000008355 _____ C:\Users\cislo\Downloads\LEGO Builder's Journey [FitGirl Repack].torrent
2025-06-15 22:18 - 2025-06-15 22:18 - 000013480 _____ C:\Users\cislo\Downloads\[SkT]Temny_pripad-Nocna_krajina___True_Detective-Night_Country_S04_(CZ)[WebRip][1080p][HEVC]_=_CSFD_59_.torrent
2025-06-15 20:06 - 2025-06-15 20:06 - 076976296 _____ (Sony Interactive Entertainment Inc.) C:\Users\cislo\Downloads\PlayStationAccessoriesInstaller.exe
2025-06-15 20:06 - 2025-06-15 20:06 - 000002157 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PlayStation® Accessories.lnk
2025-06-15 20:06 - 2025-06-15 20:06 - 000002151 _____ C:\Users\Public\Desktop\PlayStation® Accessories.lnk
2025-06-15 20:06 - 2025-06-15 20:06 - 000000000 ____D C:\Users\cislo\AppData\Local\Sony Corporation
2025-06-15 20:06 - 2025-06-15 20:06 - 000000000 ____D C:\Program Files\Sony
2025-06-15 19:57 - 2025-06-26 09:19 - 000001580 _____ C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NefariusVirtualPadDriverNotifications.lnk
2025-06-15 19:57 - 2025-06-15 19:57 - 000000000 ____D C:\Users\cislo\AppData\Local\ToastNotificationManagerCompat
2025-06-15 19:57 - 2025-06-15 19:57 - 000000000 ____D C:\Users\cislo\AppData\Local\Nefarius Software Solutions
2025-06-15 19:57 - 2025-06-15 19:56 - 000272800 _____ (Nefarius Software Solutions e.U.) C:\WINDOWS\system32\NefariusVirtualPadRuntime.dll
2025-06-15 19:56 - 2025-06-15 19:56 - 000334976 _____ (Nefarius Software Solutions e.U.) C:\WINDOWS\system32\Drivers\nssvpd.sys
2025-06-15 19:56 - 2025-06-15 19:56 - 000000000 ____D C:\Program Files\Nefarius Software Solutions
2025-06-15 19:56 - 2025-06-15 19:56 - 000000000 ____D C:\Program Files\dotnet
2025-06-15 19:56 - 2025-06-15 19:56 - 000000000 ____D C:\Program Files (x86)\dotnet
2025-06-15 19:55 - 2025-06-15 19:55 - 000000000 ____D C:\Users\cislo\AppData\Local\DSX
2025-06-15 19:34 - 2025-06-15 19:34 - 000000000 ____D C:\Users\cislo\AppData\LocalLow\WayForward Technologies
2025-06-15 16:06 - 2025-06-23 10:25 - 000000000 ____D C:\Users\cislo\AppData\Local\BitTorrentHelper
2025-06-15 16:05 - 2025-06-23 13:48 - 000000000 ____D C:\Users\cislo\AppData\Roaming\utorrent
2025-06-15 16:05 - 2025-06-15 16:05 - 000000896 _____ C:\Users\cislo\Desktop\µTorrent.lnk
2025-06-15 16:05 - 2025-06-15 16:05 - 000000876 _____ C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2025-06-15 16:05 - 2025-06-15 16:05 - 000000000 ____D C:\Users\cislo\AppData\LocalLow\uTorrent.WebView2
2025-06-15 12:13 - 2025-06-15 12:13 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Electronic Arts
2025-06-15 12:09 - 2025-06-15 12:09 - 000450468 _____ C:\Users\cislo\Downloads\SplitFiction_V0.4.rar
2025-06-15 12:09 - 2025-06-15 12:09 - 000000000 ____D C:\Users\cislo\Downloads\SplitFiction_V0.4
2025-06-15 11:53 - 2025-06-15 11:53 - 000000000 ____D C:\Users\cislo\AppData\Local\PeerDistRepub
2025-06-15 11:05 - 2025-06-15 16:03 - 000000000 ____D C:\Users\cislo\AppData\Roaming\qBittorrent
2025-06-15 11:05 - 2025-06-15 11:05 - 000000000 ____D C:\Users\cislo\AppData\Local\qBittorrent
2025-06-15 11:04 - 2025-06-15 11:05 - 041318799 _____ (The qBittorrent project) C:\Users\cislo\Downloads\qbittorrent_5.1.0_x64_setup.exe
2025-06-15 11:03 - 2025-06-15 11:03 - 000094861 _____ C:\Users\cislo\Downloads\[SkT]Smrt_v_patách___Shoot_to_Kill_(1988)(CZ_EN)[1080p]_=_CSFD_70_.torrent
2025-06-14 22:31 - 2025-06-14 22:31 - 003284968 _____ (WiseCleaner.com ) C:\Users\cislo\Downloads\WASSetup_2.0.8.109.exe
2025-06-14 22:31 - 2025-06-14 22:31 - 000001289 _____ C:\Users\Public\Desktop\Wise Auto Shutdown.lnk
2025-06-14 22:31 - 2025-06-14 22:31 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Wise Auto Shutdown
2025-06-14 22:31 - 2025-06-14 22:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Auto Shutdown
2025-06-14 22:31 - 2025-06-14 22:31 - 000000000 ____D C:\Program Files (x86)\Wise
2025-06-14 18:41 - 2025-06-14 18:41 - 000000000 ____D C:\Program Files (x86)\Realtek
2025-06-14 18:25 - 2025-06-14 18:58 - 000000000 ____D C:\Users\cislo\Downloads\bt a wifi
2025-06-14 18:23 - 2025-06-14 18:23 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\MMC
2025-06-14 16:33 - 2025-06-14 16:27 - 000054752 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2025-06-14 16:28 - 2025-06-14 16:31 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2025-06-14 16:28 - 2025-06-14 16:31 - 000000000 ____D C:\Program Files (x86)\ASUS
2025-06-14 16:28 - 2025-06-14 16:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2025-06-14 16:28 - 2025-06-14 16:27 - 000524648 _____ (Asustek Computer Inc.) C:\WINDOWS\system32\AsIO3.dll
2025-06-14 16:28 - 2025-06-14 16:27 - 000430440 _____ (Asustek Computer Inc.) C:\WINDOWS\SysWOW64\AsIO3.dll
2025-06-14 16:28 - 2025-06-14 16:27 - 000059440 _____ (Asustek Computer Inc.) C:\WINDOWS\system32\Drivers\AsIO3.sys
2025-06-14 16:27 - 2025-06-14 16:27 - 000000000 ____D C:\Users\cislo\Downloads\AISuite3_PPSU_SystemInformation_EzUpdate_v3.03.36
2025-06-14 16:25 - 2025-06-14 16:25 - 000000000 ____D C:\Users\cislo\AppData\Roaming\AMD
2025-06-14 16:25 - 2025-06-14 16:25 - 000000000 ____D C:\Users\cislo\AppData\Local\setup
2025-06-14 16:25 - 2025-06-14 16:25 - 000000000 ____D C:\Program Files (x86)\AMD
2025-06-14 16:24 - 2025-06-14 16:26 - 000000000 ____D C:\AMD
2025-06-14 16:24 - 2025-06-14 16:25 - 186682600 _____ C:\Users\cislo\Downloads\AISuite3_PPSU_SystemInformation_EzUpdate_v3.03.36.zip
2025-06-14 16:24 - 2025-06-14 16:24 - 000000000 ____D C:\Users\cislo\AppData\Local\AMD_Common
2025-06-14 16:24 - 2025-06-14 16:24 - 000000000 ____D C:\Program Files\AMD
2025-06-14 16:23 - 2025-06-14 16:24 - 043622680 _____ (Advanced Micro Devices, Inc.) C:\Users\cislo\Downloads\amd-software-adrenalin-edition-25.6.1-minimalsetup-250602_web.exe
2025-06-14 16:19 - 2025-06-14 16:19 - 000000000 ___SH C:\Users\Public\Shared Files
2025-06-14 16:12 - 2025-06-14 16:12 - 000000000 ____D C:\Users\cislo\AppData\Roaming\NVIDIA
2025-06-14 16:11 - 2025-06-25 11:39 - 000000000 ____D C:\Users\cislo\AppData\Roaming\EasyAntiCheat
2025-06-14 16:11 - 2025-06-14 16:11 - 000000000 ____D C:\Users\cislo\AppData\Local\FortniteGame
2025-06-14 16:11 - 2025-06-14 16:11 - 000000000 ____D C:\Users\cislo\AppData\Local\CrashReportClient
2025-06-14 16:11 - 2025-06-14 16:11 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2025-06-14 16:06 - 2025-06-14 16:06 - 000000347 _____ C:\Users\cislo\Desktop\Fortnite.url
2025-06-14 15:54 - 2025-06-14 15:54 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Daum
2025-06-14 15:53 - 2025-06-15 17:43 - 000000000 ____D C:\Users\cislo\AppData\Roaming\PotPlayerMini64
2025-06-14 15:53 - 2025-06-14 23:41 - 000001018 _____ C:\Users\Public\Desktop\PotPlayer 64 bit.lnk
2025-06-14 15:53 - 2025-06-14 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PotPlayer
2025-06-14 15:53 - 2025-06-14 15:53 - 000000000 ____D C:\Program Files\DAUM
2025-06-14 15:48 - 2025-06-15 12:13 - 000000000 ____D C:\Users\cislo\AppData\Local\SplitFiction
2025-06-14 15:48 - 2025-06-14 15:48 - 000000000 ____D C:\Users\cislo\AppData\LocalLow\Coffee Stain Publishing
2025-06-14 15:48 - 2025-06-14 15:48 - 000000000 ____D C:\Users\cislo\AppData\Local\SpeedLimitGame
2025-06-14 15:47 - 2025-06-14 15:47 - 000000223 _____ C:\Users\cislo\Desktop\Sackboy™ A Big Adventure.url
2025-06-14 15:47 - 2025-06-14 15:47 - 000000223 _____ C:\Users\cislo\Desktop\Contra Operation Galuga.url
2025-06-14 15:46 - 2025-06-14 15:46 - 000000223 _____ C:\Users\cislo\Desktop\STAR WARS Jedi Survivor™.url
2025-06-14 15:46 - 2025-06-14 15:46 - 000000223 _____ C:\Users\cislo\Desktop\Split Fiction.url
2025-06-14 15:46 - 2025-06-14 15:46 - 000000223 _____ C:\Users\cislo\Desktop\Speed Limit.url
2025-06-14 15:45 - 2025-06-14 15:45 - 000000223 _____ C:\Users\cislo\Desktop\Crash Bandicoot™ 4 It’s About Time.url
2025-06-14 15:45 - 2025-06-14 15:45 - 000000222 _____ C:\Users\cislo\Desktop\Huntdown.url
2025-06-14 15:45 - 2025-06-14 15:45 - 000000219 _____ C:\Users\cislo\Desktop\Counter-Strike 2.url
2025-06-14 15:45 - 2025-06-14 15:45 - 000000000 ____D C:\Users\cislo\AppData\Local\CrashBandicoot4
2025-06-14 15:44 - 2025-06-25 20:55 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-06-14 15:44 - 2025-06-14 15:44 - 000000223 _____ C:\Users\cislo\Desktop\DSX.url
2025-06-14 15:40 - 2025-06-14 15:40 - 000006856 _____ C:\Users\cislo\Downloads\rtings-icc-profile.icm
2025-06-14 15:03 - 2025-06-14 15:03 - 000000318 _____ C:\WINDOWS\system32\httpproxy.json
2025-06-14 15:03 - 2025-06-14 15:03 - 000000027 _____ C:\WINDOWS\system32\ctc.json
2025-06-14 14:49 - 2025-06-14 14:49 - 000000000 ____D C:\ProgramData\Gemma
2025-06-14 14:49 - 2025-06-14 14:49 - 000000000 ____D C:\ProgramData\Atc
2025-06-14 14:49 - 2025-06-14 14:49 - 000000000 ____D C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4
2025-06-14 14:48 - 2025-06-17 23:48 - 000000000 ____D C:\ProgramData\Bitdefender
2025-06-14 14:48 - 2025-06-14 14:52 - 000000000 ____D C:\ProgramData\BDLogging
2025-06-14 14:48 - 2025-06-14 14:48 - 000000000 ____D C:\WINDOWS\system32\elambkup
2025-06-14 14:48 - 2025-06-14 14:48 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Bitdefender Security App
2025-06-14 14:44 - 2025-06-14 14:44 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2025-06-14 14:26 - 2025-06-14 14:26 - 000000000 ____D C:\Users\cislo\AppData\Local\Backup
2025-06-14 13:56 - 2025-06-14 18:57 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-06-14 11:43 - 2025-06-17 23:34 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2025-06-14 11:43 - 2025-06-14 11:43 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2025-06-14 11:43 - 2025-06-14 11:43 - 000001043 _____ C:\Users\Public\Desktop\Thunderbird.lnk
2025-06-14 11:43 - 2025-06-14 11:43 - 000000000 ____D C:\Users\cislo\AppData\Roaming\thunderbird
2025-06-14 11:43 - 2025-06-14 11:43 - 000000000 ____D C:\Users\cislo\AppData\Local\thunderbird
2025-06-14 11:42 - 2025-06-14 11:42 - 073806240 _____ (Mozilla) C:\Users\cislo\Downloads\Thunderbird Setup 139.0.2.exe
2025-06-14 11:29 - 2025-06-14 11:31 - 145010064 _____ (Creative Technology Ltd. ) C:\Users\cislo\Downloads\AECMDMasterInstaller_3.4.92.00.exe
2025-06-14 11:17 - 2025-06-14 11:17 - 000000000 ____D C:\Program Files\Hry
2025-06-14 11:10 - 2025-06-26 09:19 - 000000000 ____D C:\Users\cislo\AppData\Local\LGHUB
2025-06-14 11:10 - 2025-06-15 16:33 - 000000000 ____D C:\Users\cislo\AppData\Roaming\lghub
2025-06-14 11:10 - 2025-06-15 16:33 - 000000000 ____D C:\Users\cislo\AppData\Roaming\G HUB
2025-06-14 11:10 - 2025-06-14 11:10 - 000073152 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_xlcore.sys
2025-06-14 11:10 - 2025-06-14 11:10 - 000044992 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_bus_enum.sys
2025-06-14 11:10 - 2025-06-14 11:10 - 000032200 _____ (Logitech) C:\WINDOWS\system32\Drivers\logi_joy_vir_hid.sys
2025-06-14 11:10 - 2025-06-14 11:10 - 000000928 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2025-06-14 11:10 - 2025-06-14 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2025-06-14 11:10 - 2025-06-14 11:10 - 000000000 ____D C:\ProgramData\Logishrd
2025-06-14 11:10 - 2025-06-14 11:10 - 000000000 ____D C:\Program Files\Logitech
2025-06-14 11:10 - 2025-06-14 11:10 - 000000000 ____D C:\Program Files\Logi
2025-06-14 11:10 - 2025-06-14 11:10 - 000000000 ____D C:\Program Files\LGHUB
2025-06-14 11:09 - 2025-06-14 11:10 - 000000000 ____D C:\ProgramData\LGHUB
2025-06-14 11:08 - 2025-06-14 11:08 - 058887048 _____ (Logitech, Inc.) C:\Users\cislo\Downloads\lghub_installer.exe
2025-06-14 11:08 - 2025-06-14 11:08 - 000000000 ____D C:\Users\cislo\AppData\Local\Sentry
2025-06-14 10:51 - 2022-12-20 09:02 - 001933696 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\CtxRFX32.dll
2025-06-14 10:45 - 2025-06-14 10:45 - 000000000 ____D C:\Users\Public\Documents\Creative
2025-06-14 10:45 - 2025-06-14 10:45 - 000000000 ____D C:\Users\cislo\AppData\Local\Creative_Technology_Ltd
2025-06-14 10:45 - 2025-06-14 10:45 - 000000000 ____D C:\Users\cislo\AppData\Local\Creative
2025-06-14 10:43 - 2025-06-14 18:41 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2025-06-14 10:43 - 2025-06-14 10:57 - 000001364 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sound Blaster Command.lnk
2025-06-14 10:43 - 2025-06-14 10:57 - 000001352 _____ C:\Users\Public\Desktop\Sound Blaster Command.lnk
2025-06-14 10:43 - 2025-06-14 10:51 - 000000079 ___RH C:\WINDOWS\ctfile.rfc
2025-06-14 10:43 - 2025-06-14 10:43 - 000466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2025-06-14 10:43 - 2025-06-14 10:43 - 000445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2025-06-14 10:43 - 2025-06-14 10:43 - 000123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2025-06-14 10:43 - 2025-06-14 10:43 - 000109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2025-06-14 10:43 - 2025-06-14 10:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2025-06-14 10:43 - 2025-06-14 10:43 - 000000000 ____D C:\ProgramData\Creative
2025-06-14 10:43 - 2025-06-14 10:43 - 000000000 ____D C:\Program Files (x86)\Creative
2025-06-14 10:43 - 2020-09-07 18:07 - 000009741 _____ C:\WINDOWS\system32\CTOPT352.cat
2025-06-14 10:43 - 2020-09-07 18:07 - 000009645 _____ C:\WINDOWS\SysWOW64\CTOPT352.cat
2025-06-14 10:43 - 2020-09-07 18:07 - 000009213 _____ C:\WINDOWS\system32\CTOPT399.cat
2025-06-14 10:43 - 2020-09-07 18:07 - 000009117 _____ C:\WINDOWS\SysWOW64\CTOPT399.cat
2025-06-14 10:43 - 2020-09-07 11:42 - 000184320 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTOPT352.dll
2025-06-14 10:43 - 2020-09-07 11:42 - 000167424 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT352.dll
2025-06-14 10:43 - 2020-09-07 11:41 - 000079872 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTOPT399.dll
2025-06-14 10:43 - 2020-09-07 11:40 - 000088576 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTOPT399.dll
2025-06-14 10:43 - 2019-05-14 10:00 - 001942528 ____N (Creative) C:\WINDOWS\SysWOW64\Sens_oal.dll
2025-06-14 10:43 - 2008-12-22 20:13 - 000061440 _____ (Creative Technology Ltd) C:\WINDOWS\SysWOW64\CTChkAud.dll
2025-06-14 10:43 - 2008-12-22 20:13 - 000049664 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTChkAud.dll
2025-06-14 10:38 - 2025-06-18 14:52 - 000000000 ____D C:\Users\cislo\AppData\Local\UnrealEngine
2025-06-14 10:38 - 2025-06-14 10:38 - 000000000 ____D C:\Users\cislo\AppData\Local\UnrealEngineLauncher
2025-06-14 10:38 - 2025-06-14 10:38 - 000000000 ____D C:\Users\cislo\AppData\Local\EpicGamesLauncher
2025-06-14 10:33 - 2025-06-16 19:19 - 000000000 ____D C:\Users\cislo\AppData\Local\Epic Games
2025-06-14 10:33 - 2025-06-14 11:15 - 000000000 ____D C:\Users\cislo\AppData\Local\Steam
2025-06-14 10:33 - 2025-06-14 10:39 - 000000000 ____D C:\ProgramData\Epic
2025-06-14 10:33 - 2025-06-14 10:38 - 000000000 ____D C:\Program Files (x86)\Epic Games
2025-06-14 10:33 - 2025-06-14 10:33 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2025-06-14 10:33 - 2025-06-14 10:33 - 000001258 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2025-06-14 10:33 - 2025-06-14 10:33 - 000000000 ____D C:\Users\cislo\AppData\Local\NVIDIA
2025-06-14 10:32 - 2025-06-26 09:59 - 000000000 ____D C:\Program Files (x86)\Steam
2025-06-14 10:32 - 2025-06-14 10:32 - 000001032 _____ C:\Users\Public\Desktop\Steam.lnk
2025-06-14 10:32 - 2025-06-14 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2025-06-14 10:31 - 2025-06-14 10:32 - 185708544 _____ C:\Users\cislo\Downloads\EpicInstaller-18.5.0.msi
2025-06-14 10:30 - 2025-06-14 10:30 - 002380800 _____ C:\Users\cislo\Downloads\SteamSetup.exe
2025-06-14 10:26 - 2025-06-14 10:26 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2025-06-14 10:26 - 2025-06-14 09:29 - 000000000 ___DC C:\WINDOWS\Panther
2025-06-14 10:24 - 2025-06-22 13:29 - 000003834 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-06-14 10:24 - 2025-06-22 13:29 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-06-14 10:24 - 2025-06-18 15:17 - 000000000 ____D C:\ProgramData\Package Cache
2025-06-14 10:24 - 2025-06-14 16:12 - 000000000 ____D C:\Users\cislo\AppData\Local\NVIDIA Corporation
2025-06-14 10:24 - 2025-06-14 11:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-06-14 10:24 - 2025-06-14 10:24 - 000000000 ____D C:\Users\cislo\AppData\Local\CEF
2025-06-14 10:24 - 2025-06-14 10:24 - 000000000 ____D C:\Users\cislo\ansel
2025-06-14 10:24 - 2025-06-13 13:40 - 003175968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2025-06-14 10:24 - 2025-06-13 13:40 - 002522144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2025-06-14 10:24 - 2025-06-13 13:40 - 000271392 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2025-06-14 10:24 - 2025-06-13 13:40 - 000245792 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2025-06-14 10:24 - 2025-06-13 13:18 - 000180760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2025-06-14 10:24 - 2025-06-13 13:18 - 000159768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2025-06-14 10:23 - 2025-06-14 10:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2025-06-14 10:22 - 2024-11-26 09:17 - 000059928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2025-06-14 10:21 - 2024-12-04 20:05 - 002060664 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-06-14 10:21 - 2024-12-04 20:05 - 002060664 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-06-14 10:21 - 2024-12-04 20:05 - 001600376 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-06-14 10:21 - 2024-12-04 20:05 - 001600376 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-06-14 10:21 - 2024-12-04 20:05 - 001452432 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-06-14 10:21 - 2024-12-04 20:05 - 001452432 _____ C:\WINDOWS\system32\vulkan-1.dll
2025-06-14 10:21 - 2024-12-04 20:05 - 001301880 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-06-14 10:21 - 2024-12-04 20:05 - 001301880 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2025-06-14 10:21 - 2024-12-04 20:05 - 000478384 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2025-06-14 10:21 - 2024-12-04 20:05 - 000374432 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2025-06-14 10:21 - 2024-12-04 20:02 - 001114792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2025-06-14 10:21 - 2024-12-04 20:02 - 000670352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2025-06-14 10:21 - 2024-12-04 20:02 - 000505504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2025-06-14 10:21 - 2024-12-04 20:01 - 025450120 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2025-06-14 10:21 - 2024-12-04 20:01 - 001554608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2025-06-14 10:21 - 2024-12-04 20:01 - 001208992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2025-06-14 10:21 - 2024-12-04 20:01 - 000863888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2025-06-14 10:21 - 2024-12-04 20:00 - 016811696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2025-06-14 10:21 - 2024-12-04 20:00 - 002185360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2025-06-14 10:21 - 2024-12-04 20:00 - 001634464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2025-06-14 10:21 - 2024-12-04 20:00 - 001042072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2025-06-14 10:21 - 2024-12-04 20:00 - 000801432 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2025-06-14 10:21 - 2024-12-04 20:00 - 000462480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2025-06-14 10:21 - 2024-12-04 19:59 - 017736840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2025-06-14 10:21 - 2024-12-04 19:59 - 006953104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2025-06-14 10:21 - 2024-12-04 19:59 - 005909664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2025-06-14 10:21 - 2024-12-04 19:59 - 005435544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2025-06-14 10:21 - 2024-12-04 19:59 - 003807888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2025-06-14 10:21 - 2024-12-04 19:59 - 000853680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2025-06-14 10:21 - 2024-12-04 19:58 - 007158560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2025-06-14 10:21 - 2024-12-04 19:58 - 006236264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2025-06-14 10:21 - 2024-12-04 03:11 - 000132703 _____ C:\WINDOWS\system32\nvinfo.pb
2025-06-14 10:20 - 2025-06-14 10:20 - 000000000 ____D C:\Users\cislo\AppData\Local\OneDrive
2025-06-14 10:17 - 2025-06-14 10:17 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets
2025-06-14 10:17 - 2025-06-14 10:17 - 000000000 ____D C:\inetpub
2025-06-14 10:11 - 2025-06-25 08:09 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-06-14 10:09 - 2025-06-14 10:09 - 000070484 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-06-14 10:09 - 2025-06-14 10:09 - 000070484 _____ C:\WINDOWS\system32\ctac.json
2025-06-14 10:09 - 2025-06-14 10:09 - 000033224 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-06-14 10:09 - 2025-06-14 10:09 - 000033224 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-06-14 10:09 - 2025-06-14 10:09 - 000001555 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2025-06-14 09:47 - 2025-06-26 10:04 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-06-14 09:47 - 2025-06-26 09:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-06-14 09:47 - 2025-06-26 07:27 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-06-14 09:47 - 2025-06-14 11:43 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Mozilla
2025-06-14 09:47 - 2025-06-14 09:47 - 000002048 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox — anonymní prohlížení.lnk
2025-06-14 09:47 - 2025-06-14 09:47 - 000001061 _____ C:\Users\Public\Desktop\Firefox.lnk
2025-06-14 09:47 - 2025-06-14 09:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-06-14 09:47 - 2025-06-14 09:47 - 000000000 ____D C:\Users\cislo\AppData\Local\Mozilla
2025-06-14 09:47 - 2025-06-14 09:47 - 000000000 ____D C:\Users\cislo\AppData\Local\Google
2025-06-14 09:46 - 2025-06-21 12:52 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-06-14 09:46 - 2025-06-21 12:52 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-06-14 09:46 - 2025-06-14 09:46 - 011332480 _____ (Google LLC) C:\Users\cislo\Downloads\ChromeSetup.exe
2025-06-14 09:46 - 2025-06-14 09:46 - 000382328 _____ (Mozilla) C:\Users\cislo\Downloads\Firefox Installer.exe
2025-06-14 09:46 - 2025-06-14 09:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2025-06-14 09:46 - 2025-06-14 09:46 - 000000000 ____D C:\Program Files\Google
2025-06-14 09:46 - 2025-06-14 09:46 - 000000000 ____D C:\Program Files (x86)\Google
2025-06-14 09:45 - 2025-06-14 14:26 - 000000000 ___RD C:\Users\cislo\OneDrive
2025-06-14 09:45 - 2025-06-14 09:45 - 000003584 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4102937750-71725895-2520062571-1001
2025-06-14 09:45 - 2025-06-14 09:45 - 000003564 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-4102937750-71725895-2520062571-1001
2025-06-14 09:45 - 2025-06-14 09:45 - 000003352 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4102937750-71725895-2520062571-1001
2025-06-14 09:45 - 2025-06-14 09:45 - 000002377 _____ C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-06-14 09:45 - 2025-06-14 09:45 - 000000000 ___HD C:\OneDriveTemp
2025-06-14 09:45 - 2025-06-14 09:45 - 000000000 ____D C:\Users\cislo\AppData\Local\Publishers
2025-06-14 09:45 - 2025-06-14 09:45 - 000000000 ____D C:\Users\cislo\AppData\Local\Comms
2025-06-14 09:45 - 2025-06-14 09:45 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2025-06-14 09:44 - 2025-06-26 09:14 - 000000000 ____D C:\Users\cislo\AppData\Local\Packages
2025-06-14 09:44 - 2025-06-26 09:01 - 000000000 ____D C:\Users\cislo\AppData\Local\D3DSCache
2025-06-14 09:44 - 2025-06-15 22:46 - 000000000 ____D C:\Users\cislo\AppData\Local\PlaceholderTileLogoFolder
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 ___SD C:\Users\cislo\AppData\Roaming\Microsoft\Crypto
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Vault
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Network
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Adobe
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 ____D C:\Users\cislo\AppData\LocalLow\NVIDIA
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 ____D C:\Users\cislo\AppData\Local\VirtualStore
2025-06-14 09:44 - 2025-06-14 09:44 - 000000000 ____D C:\Users\cislo\AppData\Local\ConnectedDevicesPlatform
2025-06-14 09:42 - 2025-06-15 07:25 - 000000000 ____D C:\Users\cislo
2025-06-14 09:42 - 2025-06-14 11:10 - 000000000 ___SD C:\Users\cislo\AppData\Roaming\Microsoft\Credentials
2025-06-14 09:42 - 2025-06-14 10:19 - 000000000 ___SD C:\Users\cislo\AppData\Roaming\Microsoft\Protect
2025-06-14 09:42 - 2025-06-14 10:02 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Spelling
2025-06-14 09:42 - 2025-06-14 09:44 - 000000000 ____D C:\Users\cislo\AppData\Roaming\Microsoft\Windows
2025-06-14 09:42 - 2025-06-14 09:42 - 000000020 ___SH C:\Users\cislo\ntuser.ini
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Šablony
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Soubory cookie
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Poslední
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Okolní tiskárny
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Okolní síť
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Nabídka Start
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Dokumenty
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Documents\Obrázky
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Documents\Hudba
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Documents\Filmy
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\Data aplikací
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 _SHDL C:\Users\cislo\AppData\Local\Data aplikací
2025-06-14 09:42 - 2025-06-14 09:42 - 000000000 ___SD C:\Users\cislo\AppData\Roaming\Microsoft\SystemCertificates
2025-06-14 09:36 - 2025-06-26 09:26 - 001603790 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-06-14 09:36 - 2025-06-14 10:24 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2025-06-14 09:35 - 2025-06-26 09:19 - 000000000 ____D C:\ProgramData\NVIDIA
2025-06-14 09:35 - 2025-06-14 16:11 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2025-06-14 09:35 - 2024-09-16 01:24 - 000131656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2025-06-14 09:33 - 2025-06-14 10:51 - 000000000 ____D C:\Users\Public\Creative
2025-06-14 09:31 - 2025-06-14 09:44 - 000338040 _____ () C:\WINDOWS\system32\AsusDownLoadLicense.exe
2025-06-14 09:29 - 2025-06-26 09:14 - 000000000 ____D C:\ProgramData\Packages
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Public\Documents\Obrázky
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Public\Documents\Hudba
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Public\Documents\Filmy
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Šablony
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Soubory cookie
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Poslední
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Okolní tiskárny
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Okolní síť
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Nabídka Start
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Dokumenty
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Documents\Obrázky
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Documents\Hudba
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Documents\Filmy
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\Data aplikací
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\ProgramData\Šablony
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\ProgramData\Plocha
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\ProgramData\Dokumenty
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\ProgramData\Data aplikací
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 _SHDL C:\Documents and Settings
2025-06-14 09:29 - 2025-06-14 09:29 - 000000000 ____D C:\WINDOWS\CSC
2025-06-14 09:27 - 2025-06-26 09:19 - 000003942 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-06-14 09:27 - 2025-06-26 09:19 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-06-14 09:27 - 2025-06-22 00:34 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-06-14 09:27 - 2025-06-17 07:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-06-14 09:27 - 2025-06-14 16:33 - 000000000 ____D C:\ProgramData\ASUS
2025-06-14 09:27 - 2025-06-14 09:29 - 000003716 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{62D841D0-025D-4227-84B1-AE12921E4163}
2025-06-14 09:27 - 2025-06-14 09:29 - 000003590 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{BD6B7376-4D8E-4116-97D4-FCE5A924717E}
2025-06-14 09:27 - 2025-06-14 09:27 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2025-06-14 09:27 - 2025-06-14 09:27 - 000000000 ____D C:\WINDOWS\system32\config\BFS
2025-06-14 09:26 - 2025-06-26 09:19 - 000901328 _____ () C:\WINDOWS\system32\wpbbin.exe
2025-06-14 09:26 - 2025-06-26 09:19 - 000845256 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2025-06-14 09:26 - 2025-06-26 09:19 - 000454496 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-06-14 09:26 - 2025-06-26 09:19 - 000012288 ___SH C:\DumpStack.log.tmp
2025-06-14 09:26 - 2025-06-26 07:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-06-14 09:26 - 2025-06-14 09:26 - 000000000 ____D C:\WINDOWS\ServiceProfiles

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-06-26 09:49 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-06-26 09:48 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-06-26 09:39 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-06-26 09:26 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-06-26 09:19 - 2024-04-01 09:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-06-26 09:14 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-06-23 07:01 - 2024-04-01 09:21 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2025-06-17 17:55 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-06-14 18:45 - 2024-07-28 22:34 - 000578456 _____ (MediaTek Inc.) C:\WINDOWS\system32\mtkihvx.dll
2025-06-14 16:18 - 2024-04-01 09:26 - 000000000 __SHD C:\Users\Public\Libraries
2025-06-14 14:43 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files\Windows Defender
2025-06-14 14:06 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-06-14 14:00 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\appcompat
2025-06-14 10:26 - 2024-04-01 09:26 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2025-06-14 10:17 - 2024-04-01 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2025-06-14 10:17 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-06-14 10:17 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-06-14 10:17 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-06-14 10:17 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-06-14 10:17 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Com
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-06-14 10:17 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-06-14 10:17 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing
2025-06-14 10:16 - 2024-04-01 09:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2025-06-14 09:56 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc
2025-06-14 09:34 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-06-14 09:29 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-06-14 09:29 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\spool
2025-06-14 09:29 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-06-14 09:29 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Windows NT
2025-06-14 09:26 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2025
Ran by cislo (26-06-2025 10:05:13)
Running from C:\Users\cislo\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.4351 (X64) (2025-06-14 07:29:24)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4102937750-71725895-2520062571-500 - Administrator - Disabled)
cislo (S-1-5-21-4102937750-71725895-2520062571-1001 - Administrator - Enabled) => C:\Users\cislo
DefaultAccount (S-1-5-21-4102937750-71725895-2520062571-503 - Limited - Disabled)
Guest (S-1-5-21-4102937750-71725895-2520062571-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4102937750-71725895-2520062571-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Enabled - Up to date) {0F59B032-EA77-E3A8-2382-74A4346E5522}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {37623117-A018-E2F0-08DD-DD91CABD1259}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-4102937750-71725895-2520062571-1001\...\uTorrent) (Version: 3.6.0.47178 - BitTorrent Limited)
AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.03.36 - ASUSTeK Computer Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.134 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 7.04.09.545 - Advanced Micro Devices, Inc.)
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.9 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.39.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{187898e5-7a9e-459f-a0ad-f2344c6f7f39}) (Version: 7.04.09.545 - Advanced Micro Devices, Inc.) Hidden
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.1.1.14 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 27.0.50.256 - Bitdefender)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.45 - Creative Technology Limited)
Discord (HKU\S-1-5-21-4102937750-71725895-2520062571-1001\...\Discord) (Version: 1.0.9196 - Discord Inc.)
Dolby Digital Live Pack version 4.02.00 (HKLM-x32\...\DDLMaster_is1) (Version: 4.02.00 - Creative Technology Ltd.)
DTS Connect Pack version 2.02.00 (HKLM-x32\...\DTSMaster_is1) (Version: 2.02.00 - Creative Technology Ltd.)
Epic Games Launcher (HKLM-x32\...\{4F5818BB-3B93-45DD-9290-325F0EF4A0A6}) (Version: 1.3.142.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{88FE81B2-A29B-4500-926C-D9F798539574}) (Version: 3.0.1 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 137.0.7151.120 - Google LLC)
Host OpenAL (HKLM-x32\...\Host OpenAL) (Version: 2.03 - Creative Technology Limited)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 25.2.4.3 (HKLM\...\{E67DBA3B-4C2A-44AC-BC4D-86EA56550BB3}) (Version: 25.2.4.3 - The Document Foundation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2025.4.719084 - Logitech)
Microsoft .NET 8.0.12 - Windows Server Hosting (HKLM-x32\...\{218673b6-7337-4d49-bc41-b4ccb7e34802}) (Version: 8.0.12.24603 - Microsoft Corporation)
Microsoft .NET Host - 8.0.12 (x64) (HKLM\...\{C4C6E39D-48AE-426C-960C-46ED3447DDEB}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.12 (x86) (HKLM-x32\...\{874D52B8-B1F4-4D04-8249-8AC6E698CCF5}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.12 (x64) (HKLM\...\{C9C872D5-3CA9-4E0E-AF90-1B85325F9243}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.12 (x86) (HKLM-x32\...\{9EC250F3-BC02-4B35-8395-E03A02CD9255}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.12 (x64) (HKLM\...\{1E606649-7E56-452F-8AC4-495C70D1E341}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.12 (x86) (HKLM-x32\...\{272C9AEF-D02F-4955-8C11-D9F9198A58EC}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.12 Hosting Bundle Options (HKLM-x32\...\{8C069910-4E69-349B-8840-56F774C92B87}) (Version: 8.0.12.24603 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.12 Shared Framework (x64) (HKLM\...\{2B76FF3A-309D-3050-9C41-C98FB593258D}) (Version: 8.0.12.24603 - Microsoft Corporation) Hidden
Microsoft ASP.NET Core 8.0.12 Shared Framework (x86) (HKLM-x32\...\{0770B9E3-CA2C-37B8-AD77-7336654A2466}) (Version: 8.0.12.24603 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 137.0.3296.93 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 137.0.3296.93 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-4102937750-71725895-2520062571-1001\...\OneDriveSetup.exe) (Version: 25.095.0518.0002 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.12 (x64) (HKLM\...\{71CD19D6-C448-4B5D-9A38-018741753290}) (Version: 64.48.26178 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.12 (x64) (HKLM-x32\...\{aafaa0cc-b975-4ffa-ba33-8690e64683c4}) (Version: 8.0.12.34404 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 140.0 (x64 cs)) (Version: 140.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 139.0.2 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 139.0.2 (x64 cs)) (Version: 139.0.2 - Mozilla)
Nefarius VirtualPad Driver Runtime (HKLM\...\Nefarius VirtualPad Driver Runtime) (Version: 2.0.0.0 - Nefarius Software Solutions e.U.)
NVIDIA App 11.0.4.159 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.4.159 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.10920.35420203 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10920.35420203 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 566.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 566.36 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
PlayStation® Accessories (HKLM\...\{A27B17B9-90C8-4B07-83C6-1303FC186B6B}) (Version: 2.2.0.3 - Sony Interactive Entertainment Inc.)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 25.05.14.0 - Kakao Corp.)
Prince of Persia The Lost Crown (HKLM-x32\...\Uplay Install 6145) (Version: - Ubisoft)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.3.0 - Advanced Micro Devices, Inc.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 11.25.20.2025 - Realtek)
Sound Blaster AE-Series Driver (HKLM-x32\...\AESeries_is1) (Version: 1.0.01.06 - Creative Technology Ltd.)
Sound Blaster Command version 3.5.10.00 (HKLM-x32\...\Sound Blaster Command_is1) (Version: 3.5.10.00 - Creative Technology Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 165.0.12744 - Ubisoft)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Wise Auto Shutdown (HKLM-x32\...\Wise Auto Shutdown_is1) (Version: 2.0.8 - Lespeed Technology Co., Ltd)

Packages:
=========
Akce kliknutím (náhled) -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CoreAI_cw5n1h2txyewy [2025-06-14] (Microsoft Windows)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.54792954.Filons_cw5n1h2txyewy [2025-06-14] (Microsoft Windows)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.56978801.Voiess_cw5n1h2txyewy [2025-06-14] (Microsoft Windows)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.57058570.Speion_cw5n1h2txyewy [2025-06-14] (Microsoft Windows)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.57074914.Livtop_cw5n1h2txyewy [2025-06-14] (Microsoft Windows)
Bitdefender CL Contextual Menu -> C:\Program Files\Bitdefender\Bitdefender Security App [2025-06-26] (Bitdefender)
Hawaiian Vacation -> C:\Program Files\WindowsApps\Microsoft.HawaiianVacation_1.0.0.0_neutral__8wekyb3d8bbwe [2025-06-15] (Microsoft Corporation)
Islands in the Sun -> C:\Program Files\WindowsApps\Microsoft.IslandsintheSun_1.0.0.0_neutral__8wekyb3d8bbwe [2025-06-15] (Microsoft Corporation)
Lakeside Vistas -> C:\Program Files\WindowsApps\Microsoft.LakesideVistas_1.0.0.0_neutral__8wekyb3d8bbwe [2025-06-15] (Microsoft Corporation)
Microsoft.Edge.GameAssist -> C:\Program Files\WindowsApps\Microsoft.Edge.GameAssist_1.0.3336.0_x64__8wekyb3d8bbwe [2025-06-14] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.51.3.0_x64__8wekyb3d8bbwe [2025-06-24] (Microsoft Corporation)
Mountain Dwellings -> C:\Program Files\WindowsApps\Microsoft.MountainDwellings_1.0.0.0_neutral__8wekyb3d8bbwe [2025-06-15] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.968.0_x64__56jybvy8sckqj [2025-06-14] (NVIDIA Corp.)
WinRAR -> C:\Program Files\WinRAR [2025-06-26] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4102937750-71725895-2520062571-1001_Classes\CLSID\{a107e1ba-8245-4dff-2dc2-b9cd46b693d0}\localserver32 -> C:\Program Files (x86)\Steam\steamapps\common\DSX\Main_v3_Beta\DSX.exe (Mohammed Sharawi -> )
CustomCLSID: HKU\S-1-5-21-4102937750-71725895-2520062571-1001_Classes\CLSID\{c0f42af5-855f-f8f2-3cc9-c23f54cf00ec}\localserver32 -> C:\Program Files\Nefarius Software Solutions\Nefarius VirtualPad Driver Runtime\NefariusVirtualPadDriverNotifications.exe (Nefarius Software Solutions e.U. -> Nefarius Software Solutions e.U.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9425e4c3b1ac1c47\nvshext.dll [2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2025-06-14 10:43 - 2020-08-24 07:52 - 000158208 _____ (Creative Lab Pte Ltd.) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\ClplLEDController.dll
2025-06-14 10:43 - 2020-03-05 05:08 - 000565248 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\CTAudEp.dll
2025-06-14 10:43 - 2020-07-21 08:49 - 002087424 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\CTCDC.dll
2025-06-14 10:43 - 2020-08-24 07:52 - 001830912 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\CTDrvLedMgr.dll
2025-06-14 10:43 - 2021-07-21 01:26 - 000124416 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\CTHID.dll
2025-06-14 10:43 - 2021-07-21 01:26 - 000587776 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\CTHIDRpA.dll
2025-06-14 10:43 - 2018-10-23 01:25 - 000098304 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\CTIntrfu.dll
2025-06-14 10:43 - 2018-08-16 03:33 - 001878528 _____ (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\MalLgcy.dll
2025-06-14 10:43 - 2023-10-05 09:41 - 000153088 _____ (Creative Technology Ltd.) [File not signed] [File is in use] C:\Program Files (x86)\Creative\Sound Blaster Command\Platform\Creative.Platform.PropStore.dll
2025-06-14 10:24 - 2025-06-22 13:29 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\cislo\Downloads\DiscordSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\cislo\Downloads\PlayStationAccessoriesInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\cislo\Downloads\WASSetup_2.0.8.109.exe:BDU [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4070]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2024-04-01 09:26 - 2024-04-01 09:24 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.15.1
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek Gaming 2.5GbE Family Controller -> rt25cx21x64.sys
Wi-Fi: MediaTek Wi-Fi 6 MT7921 Wireless LAN Card -> mtkwl6ex.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4102937750-71725895-2520062571-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\cislo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-4102937750-71725895-2520062571-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_174EB967AD74D64A5E58FF9EF33D1CCA"
HKU\S-1-5-21-4102937750-71725895-2520062571-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{F1C8E42A-48DA-4EB5-BFB5-0AB93DF76B72}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E29B3CD5-8ABB-40CF-BD38-64CE8038D0CC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{882A236C-D73C-4D6A-8AA2-44773603B374}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3AA18E5F-4B9B-4C5F-BC84-C199C8E3128E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25122.1415.3698.6812_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5E623967-31FC-41FF-905A-48F1DE4245C9}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{F3C9EB0C-C804-4A16-8215-73531BBCC773}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{6071C3A8-BBDC-4BA1-8CB0-C8D95B41EF47}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{04DD4A16-94C3-4E76-A9A7-4B569D39ED25}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{051F4CE9-32E2-4115-BC3A-FBF2D9EC028D}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{86668265-4E3C-4218-81CE-95EEDBF2CEC0}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{651CDF1B-1541-4641-88C6-8B71ECEB5F29}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{17E639BB-CCE7-4969-AC14-F2C159AF726D}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\WindowsBackupClient.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{E6CB6626-4831-4C40-9AC3-5A11B00FF6C8}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{88C29460-FF71-4733-95BA-94A75FF3517A}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{D591953F-D9C8-41EC-9918-F483561FBCF8}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{75379900-9DD1-41D1-A4B2-3332444B2E7C}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{5975BE0A-2A5C-4306-A291-7784D70974F6}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{C94BE1B8-B6AD-4A51-9A07-9DB6E348A427}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{936E7120-8E2F-4C44-A251-15700219B8FE}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{59B5A71C-D87C-47F0-A3C0-7A4947C30ED8}] => (Allow) C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy\OobeHostApp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{5A887597-5214-4A69-BAEA-3BF43BBBC52B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{40DCD209-5EEF-4A26-8F78-5160764E1EDC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DF84AF51-79AB-433D-98CA-DA929F3B403A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B08E4920-266A-4F87-9ED8-489115F186A4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{D32CAF92-7563-4DA8-9142-D175970E35C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DSX\DSX.exe (Mohammed Sharawi -> DSX_Launcher)
FirewallRules: [{D3C42A08-71E1-4018-8788-40BB7B514896}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DSX\DSX.exe (Mohammed Sharawi -> DSX_Launcher)
FirewallRules: [{6260D078-764F-4C7F-95D9-EBF08587D398}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Huntdown\Huntdown.exe () [File not signed]
FirewallRules: [{365EA5AF-6D36-4474-98A4-5F7DDB5EBCAF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Huntdown\Huntdown.exe () [File not signed]
FirewallRules: [{07710741-CD16-4A91-85CD-5E73EB978E51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Speed Limit\SpeedLimitGame.exe (Gamechuck) [File not signed]
FirewallRules: [{BE0371D9-9A73-4ECB-B9E0-7CA6382EED0E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Speed Limit\SpeedLimitGame.exe (Gamechuck) [File not signed]
FirewallRules: [{288A52F4-F9D0-4D94-931B-BFE7EFB7D483}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Speed Limit\KM\SpeedLimitKM.exe (Gamechuck) [File not signed]
FirewallRules: [{AE2E4EEF-7277-4D12-AE05-1D1C1719D25D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Speed Limit\KM\SpeedLimitKM.exe (Gamechuck) [File not signed]
FirewallRules: [{749F55AB-E36F-458D-B84C-3BC38F97B802}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Contra Operation Galuga\ContraOG.exe () [File not signed]
FirewallRules: [{24FB7AAB-038F-46A5-9EC0-C872C783D746}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Contra Operation Galuga\ContraOG.exe () [File not signed]
FirewallRules: [{6EE03D36-3CEA-4DB8-B3A4-5D5DA5FBF78E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crash Bandicoot 4\Lava\Binaries\Win64\CrashBandicoot4.exe (Activision Publishing Inc -> Activision Publishing)
FirewallRules: [{53ADDFE4-D648-42D5-9EF8-63CEE77BA3B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Crash Bandicoot 4\Lava\Binaries\Win64\CrashBandicoot4.exe (Activision Publishing Inc -> Activision Publishing)
FirewallRules: [{925825CD-48AB-46A1-AD9C-B762E8ED4F6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sackboy\GingerBread\Binaries\Win64\Launcher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{736E05CD-F92D-49F9-A227-562CFAEC82FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sackboy\GingerBread\Binaries\Win64\Launcher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{A3A7D756-0C22-46C7-A211-F103CC426860}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{37C59E43-A6CA-45B7-BC13-2F3A6BE8F6F4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Split Fiction\Split\Binaries\Win64\SplitFiction.exe (Hazelight Studios AB -> Hazelight Studios)
FirewallRules: [{E7BC289B-2147-46C0-A88C-01195B9ED3B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{A302715F-3F78-42F9-B921-9B639BE9AA31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{63EA6FC7-D21A-441C-A4C6-17A9F831C090}] => (Allow) C:\Users\cislo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{02A50A5E-2D42-45E8-B9D7-8EF0352F0EDE}] => (Allow) C:\Users\cislo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{EFF887F4-C7D4-46A1-A3C7-8B8205319710}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\137.0.3296.93\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9903DA68-9723-47A0-95AD-B860977D1F05}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{26F8FA35-CD91-44F5-8795-8293547F15A2}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space (2023)\Dead Space.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{58A08A7E-CCCB-4E76-99BE-0F6A7DC841C8}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Space (2023)\Dead Space.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{82F8E60C-4D62-4000-8B25-A057DA536968}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )
FirewallRules: [{38513ADC-F433-498B-8C17-59648C2ECB93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve Corp. -> )

==================== Restore Points =========================

22-06-2025 10:25:26 Naplánovaný kontrolní bod
25-06-2025 11:26:47 Windows Update
25-06-2025 11:26:54 Windows Update
26-06-2025 09:42:59 Removed Java 8 Update 451 (64-bit)
26-06-2025 09:48:45 Installed Java(TM) SE Development Kit 24.0.1 (64-bit)
26-06-2025 09:49:31 Removed Java(TM) SE Development Kit 24.0.1 (64-bit)

==================== Faulty Device Manager Devices ============
Name: NVIDIA High Definition Audio
Description: NVIDIA High Definition Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: NVIDIA
Service: NVHDA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: ========================

Application errors:
==================
Error: (06/26/2025 07:27:29 AM) (Source: Firefox Default Browser Agent) (EventID: 5) (User: )
Description: Event-ID 5

Error: (06/25/2025 02:19:31 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 11.2503.16.0 programu Notepad.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.

Error: (06/18/2025 03:17:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač..

Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (06/17/2025 07:49:14 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (06/17/2025 05:57:07 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/17/2025 05:57:07 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/17/2025 05:57:07 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/17/2025 05:57:07 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

System errors:
=============
Error: (06/26/2025 09:18:57 AM) (Source: DCOM) (EventID: 10010) (User: DAN)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/26/2025 04:25:10 AM) (Source: DCOM) (EventID: 10010) (User: DAN)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/25/2025 01:06:41 AM) (Source: DCOM) (EventID: 10010) (User: DAN)
Description: Server {740FE937-01F7-4482-AA62-C83F0AD3D6D0} se v daném časovém limitu neregistroval u služby DCOM.

Error: (06/24/2025 10:39:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9PC1H9VN18CM-Microsoft.StartExperiencesApp.

Error: (06/24/2025 10:39:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (06/24/2025 10:39:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.

Error: (06/24/2025 10:39:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9PC1H9VN18CM-Microsoft.StartExperiencesApp.

Error: (06/24/2025 10:39:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Windows Defender:
================
Date: 2025-06-17 18:11:31
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: TrojanSpy:Win32/Pasuom!rfn
Závažnost: Vážné
Kategorie: Trojský monitorovací software
Cesta: file:_C:\Users\cislo\Downloads\utorrent_installer.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: Dan\cislo
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.431.76.0, AS: 1.431.76.0, NIS: 1.431.76.0
Verze modulu: AM: 1.1.25050.6, NIS: 1.1.25050.6

CodeIntegrity:
===============
Date: 2025-06-26 09:51:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender Security\bdamsi\dlls_267059357120000000\antimalware_provider64.dll that did not meet the Windows signing level requirements.

Date: 2025-06-26 09:31:14
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender Security\bdamsi\dlls_267059357120000000\antimalware_provider64.dll that did not meet the Windows signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 3611 09/30/2024
Motherboard: ASUSTeK COMPUTER INC. TUF GAMING B550-PLUS WIFI II
Processor: AMD Ryzen 7 5700X3D 8-Core Processor
Percentage of memory in use: 29%
Total physical RAM: 32675.84 MB
Available physical RAM: 23190.21 MB
Total Virtual: 34723.84 MB
Available Virtual: 23939.41 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.77 GB) (Free:341.91 GB) (Model: Samsung SSD 980 PRO 1TB) NTFS
Drive d: () (Fixed) (Total:223.57 GB) (Free:34.77 GB) (Model: CT240BX200SSD1) NTFS
Drive e: () (Fixed) (Total:465.76 GB) (Free:59.28 GB) (Model: Samsung SSD 980 500GB) NTFS

\\?\Volume{336b13a5-e89b-460d-8eb7-deb5e2575a14}\ () (Fixed) (Total:0.63 GB) (Free:0.07 GB) NTFS
\\?\Volume{a7afa982-abb2-42ad-92ef-72d5e511ad4a}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 1E87112C)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 58F7D0A2)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: E2614BDC)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#2 Příspěvek od **Rudy** » 26 čer 2025 12:02

Zdravím!
Nejprve spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

číslo · #3 Příspěvek od **číslo** » 26 čer 2025 12:18

udelal sem to, dal sem scan, nic to nenaslo asi. Adware zkousel uz pred hodinou mate ho tu doporuceny, ale udelal sem scan projistotu znovu. Tady je posledni log.

# -------------------------------
# Malwarebytes AdwCleaner 8.5.1.601
# -------------------------------
# Build: 03-26-2025
# Database: 2025-04-04.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-26-2025
# Duration: 00:00:04
# OS: Windows 11 (Build 26100.4351)
# Scanned: 32102
# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

# -------------------------------
# Malwarebytes AdwCleaner 8.5.1.601
# -------------------------------
# Build: 03-26-2025
# Database: 2025-04-04.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-26-2025
# Duration: 00:00:00
# OS: Windows 11 (Build 26100.4351)
# Cleaned: 0
# Failed: 0

***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.

*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1422 octets] - [26/06/2025 11:56:57]
AdwCleaner[S01].txt - [1483 octets] - [26/06/2025 13:10:24]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

číslo · #4 Příspěvek od **číslo** » 26 čer 2025 12:21

Ale ten test bezel asi jen 4 vteriny, to ma byt tak kratke? Jinak sem projel pc i bitdefendrem co pouzivam a nic to nenaslo.

#5 Příspěvek od **Rudy** » 26 čer 2025 12:54

Test bere jen ty položky, které se skrývají. Takže může to být OK. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2025-06-17] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2025-06-17] <==== ATTENTION
R3 cpuz157; C:\WINDOWS\temp\cpuz157\cpuz157_x64.sys [43568 2025-06-26] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
AlternateDataStreams: C:\Users\cislo\Downloads\DiscordSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\cislo\Downloads\PlayStationAccessoriesInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\cislo\Downloads\WASSetup_2.0.8.109.exe:BDU [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4070]
C:\Users\cislo\Downloads\utorrent_installer.exe

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

číslo · #6 Příspěvek od **číslo** » 26 čer 2025 13:28

Fix result of Farbar Recovery Scan Tool (x64) Version: 25-06-2025
Ran by cislo (26-06-2025 14:24:38) Run:1
Running from C:\Users\cislo\Desktop
Loaded Profiles: cislo
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2025-06-17] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2025-06-17] <==== ATTENTION
R3 cpuz157; C:\WINDOWS\temp\cpuz157\cpuz157_x64.sys [43568 2025-06-26] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ATTENTION
C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4
C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
AlternateDataStreams: C:\Users\cislo\Downloads\DiscordSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\cislo\Downloads\PlayStationAccessoriesInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\cislo\Downloads\WASSetup_2.0.8.109.exe:BDU [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [4070]
C:\Users\cislo\Downloads\utorrent_installer.exe

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js => moved successfully
C:\Program Files\mozilla firefox\bd_config.cfg => moved successfully
cpuz157 => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\cpuz157 => removed successfully
cpuz157 => service removed successfully

"C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4" Folder move:

C:\ProgramData\48C4687D-9760-4F5B-BAB3-60351B0841E4 => moved successfully
Could not move "C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2" => Scheduled to move on reboot.
C:\Users\cislo\Downloads\DiscordSetup.exe => ":BDU" ADS removed successfully
C:\Users\cislo\Downloads\PlayStationAccessoriesInstaller.exe => ":BDU" ADS removed successfully
C:\Users\cislo\Downloads\WASSetup_2.0.8.109.exe => ":BDU" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
"C:\Users\cislo\Downloads\utorrent_installer.exe" => not found

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1048576 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20128388 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 627236749 B
Windows/system/drivers => 5560401 B
Edge => 0 B
Chrome => 62449753 B
Firefox => 1197870087 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 99542 B
NetworkService => 114700 B
cislo => 47309852 B

RecycleBin => 0 B
EmptyTemp: => 1.8 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 26-06-2025 14:25:55)

C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2 => Could not move

==== End of Fixlog 14:25:55 ====

#7 Příspěvek od **Rudy** » 26 čer 2025 13:47

Smazáno, log je již OK. Nějaké zbytky po čemsi tam byly, ale netoxické. Jinak jen zbytečnosti

číslo · #8 Příspěvek od **číslo** » 26 čer 2025 13:48

okej dekuji, o vyplate poslu nejaky drobak. Vzdycky mi tu poradite. Diky moc.

#9 Příspěvek od **Rudy** » 26 čer 2025 18:06

Rádo se stalo!

VIRY.CZ

Podle redittu sem naistaloval Java ze scam stranky

Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky

Re: Podle redittu sem naistaloval Java ze scam stranky