FRST poprosim o preventivku... - VIRY.CZ (2024)

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.01.2024
Ran by PC1 (14-01-2024 12:54:26)
Running from C:\Users\PC1\Desktop
Microsoft Windows 10 Home Version 21H2 19044.3086 (X64) (2020-12-20 09:55:41)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3805889190-2908880830-1705731779-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3805889190-2908880830-1705731779-503 - Limited - Disabled)
Guest (S-1-5-21-3805889190-2908880830-1705731779-501 - Limited - Disabled)
PC1 (S-1-5-21-3805889190-2908880830-1705731779-1001 - Administrator - Enabled) => C:\Users\PC1
WDAGUtilityAccount (S-1-5-21-3805889190-2908880830-1705731779-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AC: Valhalla CZ v3.1 (HKLM-x32\...\AC: Valhalla CZ) (Version: 3.1 - Squiee)
ACDSee Photo Studio Ultimate 2024 (HKLM\...\{CC0967A6-A164-4B21-8F6B-B4BBF9CC405B}) (Version: 17.0.2.3593 - ACD Systems International Inc.)
AdGuard (HKLM\...\{6B9CDBED-1E86-40C4-9A05-3D7CBB3D4A50}) (Version: 7.16.4542.0 - Adguard Software Limited) Hidden
AdGuard (HKLM-x32\...\{435f215a-51c6-4fa1-ab23-4b550fb5f0bd}) (Version: 7.16.4542.0 - Adguard Software Limited)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1051-1033-7760-BC15014EA700}) (Version: 23.008.20458 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AIDA64 Extreme v6.33 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.33 - FinalWire Ltd.)
Bandicam (HKLM-x32\...\Bandicam) (Version: 5.4.3.1923 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.02 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.19 - Piriform)
Cheat Engine 7.2 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.1.0.2051 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
Driver Booster 11 (HKLM-x32\...\Driver Booster_is1) (Version: 11.1.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{FEF3A9BA-A962-4469-AD62-04839D4BB847}) (Version: 1.1.298.0 - Epic Games, Inc.)
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.217 - Google LLC)
Hogwarts Legacy CZ version 0.0.0 (HKLM-x32\...\Hogwarts Legacy CZ_is1) (Version: 0.0.0 - )
Hry Google Play beta (HKLM\...\GooglePlayGames) (Version: 23.11.1397.6 - Google LLC)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kingdom Rush - Vengeance (HKLM-x32\...\Kingdom Rush - Vengeance_is1) (Version: - )
Kodi (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\Kodi) (Version: 19.1.0.0 - XBMC Foundation)
Listové obálky 3.0.5 (HKLM-x32\...\Listové obálky 3.0.5) (Version: 3.0.5 - SevTech Technology)
me.fo (HKLM\...\me.fo) (Version: 1.0 - me.fo)
Microsoft .NET Core Host - 3.1.14 (x64) (HKLM\...\{AA5D2A79-FD51-463E-8E46-A7A49E06B2B7}) (Version: 24.120.29915 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.14 (x64) (HKLM\...\{56891BC5-6A4F-4413-8F11-216CCB56C8B7}) (Version: 24.120.29915 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.14 (x64) (HKLM\...\{B6275576-0664-41E9-96A4-EEFB4636A8F1}) (Version: 24.120.29915 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.133 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.121 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Volume - en-us) (Version: 16.0.15629.20156 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Project Professional 2021 - en-us (HKLM\...\ProjectPro2021Volume - en-us) (Version: 16.0.15629.20156 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visio LTSC Professional 2021 - en-us (HKLM\...\VisioPro2021Volume - en-us) (Version: 16.0.15629.20156 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 3.1.14 (x64) (HKLM\...\{454826CD-4B06-4058-B225-536536F9CA93}) (Version: 24.120.29915 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
NoxPlayer (HKLM-x32\...\Nox) (Version: 7.0.0.8 - Duodian Technology Co. Ltd.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20156 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Outlast (HKLM-x32\...\Outlast_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Outlook (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
PowerPoint (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9071.1 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.83.1767 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.6.9 - Rockstar Games)
Shutdown Timer (HKLM-x32\...\{5E1DDD46-A5AF-4A06-B0FC-9C3E510BE742}) (Version: 1.0.0 - Newton Software Solutions)
Smart Defrag 6 (HKLM-x32\...\Smart Defrag_is1) (Version: 6.7.0 - IObit)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.22.3 - TeamViewer)
Total Commander Extended (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\Total Commander Extended) (Version: 22.2 - BurSoft)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vortex (HKLM\...\57979c68-f490-55b8-8fed-8b017a5af2fe) (Version: 1.3.22 - Black Tree Gaming Ltd.)
Vzum (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\6cfa0c5674100ff8) (Version: 1.0.0.46 - Vzum)
WeatherZero (HKLM-x32\...\WeatherZero) (Version: - Weather Zero)
WeMod (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\WeMod) (Version: 7.1.22 - WeMod)
Windows Kontrola stavu počítača (HKLM\...\{8D6B9DC1-A437-41E0-8DF1-9F37748394AE}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Windows Kontrola stavu počítača (HKLM\...\{DC04D0BB-5702-4932-ACFF-D39065DCB089}) (Version: 3.1.2109.29003 - Microsoft Corporation)
WinRAR 5.80 Final (HKLM-x32\...\WinRAR 5.80 Final) (Version: 5.80 - Crackingpatching.com Team)
WinRAR 6.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH)
Wise Program Uninstaller 2.5.1 (HKLM-x32\...\Wise Program Uninstaller_is1) (Version: 2.5.1 - WiseCleaner.com, Inc.)
Word (HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-01-06] ()
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2023-04-30] (Canon Inc.)
Doplnok mediálneho nástroja pre Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-04-30] (Microsoft Corporation)
Excel -> C:\Program Files\WindowsApps\excel.office.com-4362FB92_1.0.0.0_neutral__2vp2pd36ganw2 [2023-04-30] (excel.office.com)
Excel -> C:\Program Files\WindowsApps\excel.office.com-72EAE3D_1.0.0.1_neutral__2vp2pd36ganw2 [2023-10-15] (excel.office.com)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-12-21] (Microsoft Studios) [MS Ad]
XLSX Viewer Free -> C:\Program Files\WindowsApps\62307pauljohn.XLSXViewerFree_1.1.0.2_x86__7sv5v3m8wq0b2 [2023-04-30] (pauljohn)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{6282d2e9-5906-bbf9-4b71-0c2869c6a835}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001_Classes\CLSID\{6a27a1a9-7be8-1491-04ca-ee68a211c258}\localserver32 -> C:\Program Files\Google\Play Games\current\service\Service.exe (Google LLC -> Google LLC)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [PicaViewCtxMenuShlExt] -> {F3CBBA61-EE3F-4D6D-B1C6-B3474E579936} => C:\Program Files\Common Files\ACD Systems\PicaView\ACDSeePV.dll [2023-09-28] (ACD Systems International Inc. -> ACD Systems International Inc.)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-04-04] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-04-04] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2019-09-12] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\PC1\Desktop\Peter - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi

==================== Loaded Modules (Whitelisted) =============

2012-05-04 01:47 - 2012-05-04 01:47 - 001681408 _____ (/n software inc. - www.nsoftware.com) [File not signed] C:\Program Files\ACD Systems\ACDSee Ultimate\17.0\ipworksssl8.dll
2024-01-04 12:39 - 2015-01-09 08:44 - 000104960 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2024-01-04 12:39 - 2015-01-09 08:46 - 000008192 _____ (CANON INC.) [File not signed] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_SKY.DLL
2024-01-04 12:39 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMN6PPM.DLL
2016-06-14 00:06 - 2016-06-14 00:06 - 000447488 _____ (Newtonsoft) [File not signed] [File is in use] C:\Program Files (x86)\WeatherZero\Newtonsoft.Json.dll
2017-11-01 21:58 - 2017-11-01 21:58 - 001522688 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\AdGuard\x64\SQLite.Interop.dll

==================== Alternate Data Streams (Whitelisted) ========

See Also
Grand Theft Auto V Downloadتحميل الدونلود مانجر Neat Download Manager كامل مفعل مجانًا | برامج نتBiohazard RE:2 / Resident Evil 2 free Download - ElAmigosEdition.comAnong Ginagawa Mo In Ilocano - QnA

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\PC1\Documents\tata.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\PC1\Documents\tata.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\2C50ECBD.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\2C50ECBD.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-11-06] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2020-12-20 10:33 - 2022-02-02 15:31 - 000001367 __RSH C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 license.piriform.com
127.0.0.1 www.license.piriform.com
127.0.0.1 speccy.piriform.com
127.0.0.1 www.speccy.piriform.com
127.0.0.1 recuva.piriform.com
127.0.0.1 www.recuva.piriform.com
127.0.0.1 defraggler.piriform.com
127.0.0.1 www.defraggler.piriform.com
127.0.0.1 ccleaner.piriform.com
127.0.0.1 www.ccleaner.piriform.com
127.0.0.1 license-api.ccleaner.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PC1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 0)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "BitTorrent"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "ut"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "bt"
HKU\S-1-5-21-3805889190-2908880830-1705731779-1001\...\StartupApproved\Run: => "ProtonVPN"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{76479D23-BABB-4B44-8CA5-99040CC858D8}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B8813231-8AC4-4057-A6EB-9F8ED2076275}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{C264E3BA-A0C9-461A-BB44-6FF4D813E63D}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{25674321-2BB6-4356-AB23-C5100729084B}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{BC53F919-759A-4705-BB28-C3C739726D24}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{1D9454E8-FDFC-4A4B-89A9-87E90C5AA454}] => (Allow) E:\Program Files\txgameassistant\appmarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{F80FBF77-6901-481B-A37C-A3C01DADD01C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7A5D25BB-4C86-4BED-9EC9-B19527115BD6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{81680637-CA08-4B3B-BA04-B74773689984}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EB9C9D5E-7D50-49C8-A0F2-6C4DF20A864F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{067876AE-4B1F-4377-9894-02C446E96B37}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{A8D6CCC3-8968-455D-85DF-EBB03F73D892}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{D142A9B5-2F0C-44B4-BED0-F8F07DACB470}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F593AD16-ED6C-4530-89D3-90FA278E847C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{161A6779-F0A4-4190-BAF8-B3EC8B275E88}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4575926B-6A4D-48A7-9802-D730BD3D9D19}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6687BD56-586F-4FE7-836F-22311CE18944}] => (Allow) C:\Users\PC1\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{230EE135-707E-4479-A0B1-DBC9CE4F1932}] => (Allow) C:\Users\PC1\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{80305859-4AD6-4694-BEFB-44F70F84AA5E}E:\downloads\utorrent proň\app\utorrent\utorrent.exe] => (Allow) E:\downloads\utorrent proň\app\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{5EAA7E47-BF4D-4AE4-B62B-700F3DC8B91E}E:\downloads\utorrent proň\app\utorrent\utorrent.exe] => (Allow) E:\downloads\utorrent proň\app\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{BBFD9845-CC66-4908-8904-9D485F3E1D53}E:\games\gtav\gta5.exe] => (Allow) E:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{D4E2F7FD-69A6-4350-8F57-5775E2CFB339}E:\games\gtav\gta5.exe] => (Allow) E:\games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{94BA773D-B0E2-445E-B4CB-539CF4E4E68F}] => (Allow) C:\Users\PC1\Desktop\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{CAD922A9-084C-40CA-AF6C-005346A88CBF}] => (Allow) C:\Users\PC1\Desktop\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{3E4F4325-09B7-4FD3-9DE6-E7DD4A2C78FF}] => (Allow) C:\Users\PC1\Desktop\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{6130ED8F-5403-429D-B165-5C9BA248C43F}] => (Allow) C:\Users\PC1\Desktop\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{D7486B0B-DB21-47E6-8650-720A542C4B04}] => (Allow) C:\Users\PC1\Desktop\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{97E56F57-7765-4CFB-BF3C-E8EF8024511D}] => (Allow) C:\Users\PC1\Desktop\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{EF71EE75-A81A-49E0-940A-37DACFECC122}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7C811459-E796-4592-A4C8-7E9FFB2D2542}] => (Allow) LPort=1688
FirewallRules: [{5B231404-9BAD-4642-9647-17C049181903}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{403A40A6-1402-42D9-8E0B-C526E70DD897}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{C9CF08FC-7AD2-4F48-8088-F19EA7764AB6}] => (Allow) E:\Downloads\Hry\Red Dead Redemption 2 - Ultimate Edition (v1.0.1436.28 + MULTi13)\Red Dead Redemption 2\RDR2.exe (Rockstar Games, Inc. -> Rockstar Games) [File not signed]
FirewallRules: [{29E40350-0986-436B-9682-946E2195CCA2}] => (Allow) E:\Downloads\Hry\Red Dead Redemption 2 - Ultimate Edition (v1.0.1436.28 + MULTi13)\Red Dead Redemption 2\RDR2.exe (Rockstar Games, Inc. -> Rockstar Games) [File not signed]
FirewallRules: [{08F1640E-752A-47DA-B0F3-0A106FB96580}] => (Allow) C:\Total Commander Extended\Soft\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{FDDDA88B-1837-4ABC-9DD2-A3EB015704ED}] => (Allow) C:\Total Commander Extended\Soft\uTorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{BDCCDF2D-A885-4BA4-A86F-76509F8A8D2C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{CC82E76F-7EF8-46DE-8308-2C3AD8459F6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe (Valve Corp. -> )
FirewallRules: [{311E6B11-0EE4-41F0-B12F-4653EF96EA85}] => (Allow) C:\Program Files\Google\Play Games\current\emulator\crosvm.exe (Google LLC -> )
FirewallRules: [{CD180A35-04F6-4F82-891A-0137C7A6FF68}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D62156FB-E620-448D-A72E-BC7429C60FCE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{49428536-7D81-433B-9781-FD84913F023B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E6D37ED1-C568-47F3-B772-856349EE670D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{76FA4947-242C-45B0-894E-EE1B664A64AD}] => (Allow) C:\Program Files\AdGuard\AdguardSvc.exe (Adguard Software Limited -> Adguard Software Limited)
FirewallRules: [{D6B88292-0AE8-4163-B3A5-C279AB158560}] => (Allow) E:\SteamLibrary\steamapps\common\Red Dead Redemption 2\RDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{DAA50178-2626-42D4-AC6A-F11B63E46B60}] => (Allow) E:\SteamLibrary\steamapps\common\Red Dead Redemption 2\RDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{5A136E58-75C3-477B-953E-BB007E2952D6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.121\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{279079E9-0FE1-4789-A589-5E89E415BCD4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{CAC37038-71B2-45A2-B1A6-287F8ABB660A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AE8FD613-FDA8-4F92-8AA8-08203DDA00BD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DB553EDA-5E22-4050-9904-2D4A7D9C04C8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9C2462DD-3DA7-4A3E-9861-7284469F3FB3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [ACDSee Ultimate 2024 TCP] => (Allow) C:\Program Files\ACD Systems\ACDSee Ultimate\17.0\ACDSeeUltimate2024.exe (ACD Systems International Inc. -> ACD Systems International Inc.) [File not signed]
FirewallRules: [ACDSee Ultimate 2024 UDP] => (Allow) C:\Program Files\ACD Systems\ACDSee Ultimate\17.0\ACDSeeUltimate2024.exe (ACD Systems International Inc. -> ACD Systems International Inc.) [File not signed]
FirewallRules: [ACDSee Commander Ultimate 2024 TCP] => (Allow) C:\Program Files\ACD Systems\ACDSee Ultimate\17.0\ACDSeeCommanderUltimate17.exe (ACD Systems International Inc. -> ) [File not signed]
FirewallRules: [ACDSee Commander Ultimate 2024 UDP] => (Allow) C:\Program Files\ACD Systems\ACDSee Ultimate\17.0\ACDSeeCommanderUltimate17.exe (ACD Systems International Inc. -> ) [File not signed]

==================== Restore Points =========================

27-12-2023 10:36:55 Driver Booster : Radeon RX 570 Series
03-01-2024 09:55:28 Windows Update
11-01-2024 19:18:10 Scheduled Checkpoint
13-01-2024 16:52:55 Installed ACDSee Photo Studio Ultimate 2024.

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (01/14/2024 12:52:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: CHXSmartScreen.exe, verzia: 10.0.19041.423, časová značka: 0x0431d1e3
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.19041.3086, časová značka: 0xe1ac3f79
Kód výnimky: 0x8000ffff
Odstup chyby: 0x000000000012d8b2
Identifikácia chybujúceho procesu: 0x22b0
Čas spustenia chybujúcej aplikácie: 0x01da46e02d03168e
Cesta chybujúcej aplikácie: C:\WINDOWS\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\KERNELBASE.dll
Identifikácia hlásenia: 2872def6-43fc-4e8e-a359-8a11a8b4967e
Celé meno chybujúceho balíka: Microsoft.Windows.Apprep.ChxApp_1000.19041.1023.0_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: App

Error: (01/14/2024 07:24:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: wwahost.exe, verzia: 10.0.19041.1865, časová značka: 0x5bdabcce
Názov chybujúceho modulu: KERNELBASE.dll, verzia: 10.0.19041.3086, časová značka: 0xe1ac3f79
Kód výnimky: 0x8000ffff
Odstup chyby: 0x000000000012d8b2
Identifikácia chybujúceho procesu: 0x3bcc
Čas spustenia chybujúcej aplikácie: 0x01da46b25d87ea84
Cesta chybujúcej aplikácie: C:\WINDOWS\system32\wwahost.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\KERNELBASE.dll
Identifikácia hlásenia: 5ced77a7-1dcd-4421-b869-92430cb5a522
Celé meno chybujúceho balíka: Microsoft.Windows.CloudExperienceHost_10.0.19041.1266_neutral_neutral_cw5n1h2txyewy
Identifikácia chybujúcej aplikácie vzhľadom na balík: App

Error: (01/13/2024 08:04:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Launcher.exe_unknown, verzia: 0.0.0.0, časová značka: 0x658f866f
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.19041.789, časová značka: 0x2bd748bf
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007286e
Identifikácia chybujúceho procesu: 0x260c
Čas spustenia chybujúcej aplikácie: 0x01da465341b7f56b
Cesta chybujúcej aplikácie: C:\Users\PC1\Desktop\Launcher.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: 90712e1e-94d1-4b48-ba1b-e01f31b6036c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (01/13/2024 08:03:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Launcher.exe_unknown, verzia: 0.0.0.0, časová značka: 0x658f866f
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.19041.789, časová značka: 0x2bd748bf
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007286e
Identifikácia chybujúceho procesu: 0x2d3c
Čas spustenia chybujúcej aplikácie: 0x01da464bae1a2ee8
Cesta chybujúcej aplikácie: C:\Users\PC1\Desktop\Launcher.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: bddecd95-958b-4695-a0b0-7830c0246550
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (01/13/2024 06:52:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program cs2.exe version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.

Process ID: 34ac

Start Time: 01da463aa6f266c0

Termination Time: 4294967295

Application Path: C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\game\bin\win64\cs2.exe

Report Id: 65d3d4b9-be5d-43e0-88ef-b78045cd35f7

Faulting package full name:

Faulting package-relative application ID:

Hang type: Top level window is idle

Error: (01/13/2024 05:08:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: Launcher.exe_unknown, verzia: 0.0.0.0, časová značka: 0x658f866f
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.19041.789, časová značka: 0x2bd748bf
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000007286e
Identifikácia chybujúceho procesu: 0x510
Čas spustenia chybujúcej aplikácie: 0x01da462c5792b731
Cesta chybujúcej aplikácie: C:\Users\PC1\Desktop\Launcher.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: f12ff121-72b2-4e0f-945d-5cc1c93bfb52
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (01/13/2024 03:44:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: EpicGamesLauncher.exe, verzia: 15.19.1.0, časová značka: 0x658350df
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.19041.3086, časová značka: 0x6349a4f2
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000000000063576
Identifikácia chybujúceho procesu: 0x152c
Čas spustenia chybujúcej aplikácie: 0x01da462efe808be0
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: e7316e3d-3727-43e4-8bab-4c11a06e2403
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (01/13/2024 03:44:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: GTA5.exe, verzia: 1.0.3095.0, časová značka: 0x657373d8
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.19041.3086, časová značka: 0x6349a4f2
Kód výnimky: 0xc0000409
Odstup chyby: 0x00000000000c47f6
Identifikácia chybujúceho procesu: 0x2a6c
Čas spustenia chybujúcej aplikácie: 0x01da462c76250636
Cesta chybujúcej aplikácie: E:\Games\GTAV\GTA5.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 7c29ff9c-9a51-4a22-a494-55a5766034cc
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

System errors:
=============
Error: (01/13/2024 10:18:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} did not register with DCOM within the required timeout.

Error: (01/13/2024 06:52:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.

Error: (01/13/2024 06:52:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.

Error: (01/13/2024 06:52:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.

Error: (01/13/2024 06:52:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.

Error: (01/13/2024 06:52:32 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {38E441FB-3D16-422F-8750-B2DACEC5CEFC} did not register with DCOM within the required timeout.

Error: (01/13/2024 06:52:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} did not register with DCOM within the required timeout.

Error: (01/13/2024 06:52:31 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NORVJE6)
Description: The server Microsoft.AAD.BrokerPlugin_1000.19041.1023.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider did not register with DCOM within the required timeout.

Windows Defender:
================
Date: 2024-01-07 11:13:15
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-01-06 11:15:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2024-01-05 14:11:11
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-12-29 10:52:28
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan

Date: 2023-12-27 11:05:09
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:

Date: 2023-12-24 13:53:54
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.403.1028.0
Update Source: Microsoft Update Server
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.23110.2
Error code: 0x80240438
Error description: Počas vyhľadávania aktualizácií sa vyskytol neočakávaný problém. Informácie o inštalácii aktualizácií a riešení problémov s aktualizáciami nájdete v Pomoci a technickej podpore.

Date: 2023-04-30 17:12:45
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: The system cannot find the path specified.
Security intelligence Version: 0.0.0.0;0.0.0.0
Engine Version: 0.0.0.0

CodeIntegrity:
===============
Date: 2024-01-14 12:51:26
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.

Date: 2024-01-14 12:45:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpDefenderCoreService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 2.L0 01/22/2019
Motherboard: MSI B350M GAMING PRO (MS-7A39)
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 26%
Total physical RAM: 16335.13 MB
Available physical RAM: 12016.35 MB
Total Virtual: 24015.13 MB
Available Virtual: 16505.36 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.07 GB) (Free:47.43 GB) (Model: WDC WDS240G2G0B-00EPW0) NTFS
Drive e: (DATA) (Fixed) (Total:931.51 GB) (Free:242.68 GB) (Model: WDC WD10EZEX-08WN4A0) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{33d4e0ca-0000-0000-0000-90c437000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: D0D77719)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 223.6 GB) (Disk ID: 33D4E0CA)
Partition 1: (Not Active) - (Size=223.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=517 MB) - (Type=27)

==================== End of Addition.txt =======================

FRST poprosim o preventivku... - VIRY.CZ (2024)
Top Articles
Best Day Trading Platforms for April 2024 | The Motley Fool
Robinhood Support
Television Archive News Search Service
Letter to Myrna Melgar, member of the SF Board of Supervisors (Indybay)
UChicago Prof. Shirley Meng’s Laboratory for Energy Storage and Conversion creates world’s first anode-free sodium solid-state battery – a breakthrough in inexpensive, clean, fast-charging batteries
Shirley Temple - Death, Movies & Career
Cities of Sigmar - Scourgerunner Chariot - grundiert • EUR 34,99
Total War: WARHAMMER III - Patch 5.1.0 - Total War: Warhammer
Grisly Details Emerge In King Von Autopsy Report
King Von Autopsy Reveals Shocking Details
Peter Pan - Shadow Finder #54 Preise | Lorcana Ursula's Return
Nyc To Zanzibar Google Flights
Latest Posts
Low Risk Options Strategy - Option Samurai Blog
Top Reasons Forex Traders Fail
Article information

Author: Twana Towne Ret

Last Updated:

Views: 5617

Rating: 4.3 / 5 (44 voted)

Reviews: 83% of readers found this page helpful

Author information

Name: Twana Towne Ret

Birthday: 1994-03-19

Address: Apt. 990 97439 Corwin Motorway, Port Eliseoburgh, NM 99144-2618

Phone: +5958753152963

Job: National Specialist

Hobby: Kayaking, Photography, Skydiving, Embroidery, Leather crafting, Orienteering, Cooking

Introduction: My name is Twana Towne Ret, I am a famous, talented, joyous, perfect, powerful, inquisitive, lovely person who loves writing and wants to share my knowledge and understanding with you.