kontrola logu- při spuštění pc chrome spouští pochybné weby

N0váček · Příspěvekod **N0váček** » 11 říj 2025 09:37

Dobrý den
Po spuštění pc se mi vždy spustí automaticky google chrome, s odkazem na nějakou pochybnou stránku, defender nic nenašel, tak bych rád požádal o pomoc s odstraněním problému. Děkuji předem.

Log z HJT:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:36:21, on 11.10.2025
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.26100.1882)

Boot mode: Normal

Running processes:
C:\Program Files\XPPen\PenTablet.exe
D:\Program Files (x86)\Steam\steam.exe
C:\Users\david\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: IEToEdge BHO - {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} - C:\Program Files (x86)\Microsoft\Edge\Application\141.0.3537.57\BHO\ie_to_edge_bho.dll
O4 - HKCU\..\Run: [MicrosoftEdgeAutoLaunch_30FCCE2722F4190AAE310221237BB02B] "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start
O4 - HKCU\..\Run: [OneDrive] "C:\Users\david\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [Discord] "C:\Users\david\AppData\Local\Discord\Update.exe" --processStart Discord.exe
O4 - HKCU\..\Run: [Wargaming.net Game Center] "C:\ProgramData\Wargaming.net\GameCenter\wgc.exe" --background
O4 - HKCU\..\Run: [AMDNoiseSuppression] "C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe"
O4 - HKCU\..\Run: [electron.app.LM Studio] C:\Program Files\LM Studio\LM Studio.exe --run-as-service
O4 - HKCU\..\Run: [david] cmd.exe /c start www.rongronger.click
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlansp_c.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD Crash Defender Service - Advanced Micro Devices, Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe
O23 - Service: AMD External Events Utility - AMD - C:\WINDOWS\System32\DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\atiesrxx.exe
O23 - Service: @oem6.inf,%AmdAppCompatSvc.DisplayName%;AMD Application Compatibility Database Service (AmdAppCompatSvc) - Advanced Micro Devices, Inc - C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_0cfc8ba812cdbaa8\AmdAppCompatSvc.exe
O23 - Service: @oem5.inf,%AmdPpkgSvc.DisplayName%;AMD Provisioning Packages Service (AmdPpkgSvc) - Advanced Micro Devices, Inc - C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkgSvc.exe
O23 - Service: Armoury Crate Download Tool (ArmouryCrateDownloadTool) - ASUSTeK Computer Inc. - C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_3662b6ec6533ed67\ArmouryLiveUpdate.exe
O23 - Service: AsusUpdateCheck - Unknown owner - C:\WINDOWS\System32\AsusUpdateCheck.exe (file missing)
O23 - Service: @%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100 (CredentialEnrollmentManagerUserSvc) - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: CredentialEnrollmentManagerUserSvc_85247 - Unknown owner - C:\WINDOWS\system32\CredentialEnrollmentManager.exe (file missing)
O23 - Service: Easy Anti-Cheat (Epic Online Services) (EasyAntiCheat_EOS) - Epic Games, Inc. - C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: NVIDIA FrameView SDK service (FvSvc) - NVIDIA - C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
O23 - Service: @%systemroot%\system32\GameInputSvc.exe,-101 (GameInputSvc) - Unknown owner - C:\WINDOWS\System32\GameInputSvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) (GoogleChromeElevationService) - Google LLC - C:\Program Files\Google\Chrome\Application\141.0.7390.66\elevation_service.exe
O23 - Service: Intern aktualiza n slu ba Google (GoogleUpdaterInternalService142.0.7416.0) (GoogleUpdaterInternalService142.0.7416.0) - Google LLC - C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe
O23 - Service: Aktualiza n slu ba Google (GoogleUpdaterService142.0.7416.0) (GoogleUpdaterService142.0.7416.0) - Google LLC - C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\localkdcsvc.dll,-1 (LocalKdc) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_cc0a63ee9d9b83b2\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: Oculus VR Library Service (OVRLibraryService) - Facebook Technologies, LLC - C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe
O23 - Service: Oculus VR Runtime Service (OVRService) - Facebook Technologies, LLC - C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ReFsDedupSvc.exe,-100 (refsdedupsvc) - Unknown owner - C:\WINDOWS\System32\ReFsDedupSvc.exe (file missing)
O23 - Service: Rockstar Game Library Service (Rockstar Service) - Rockstar Games - D:\Program Files\Rockstar Games\Launcher\RockstarService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Universal Service (RtkAudioUniversalService) - Realtek Semiconductor - C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b0c953b89f2097a9\RtkAudUService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTrap) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SteelSeries GG Update Service Proxy (SteelSeriesGGUpdateServiceProxy) - Unknown owner - C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10121 bytes

Reklama

Příspěvekod **jaro3** » 11 říj 2025 14:22

Tuhle stránku na bitcoiny znáš?

Kód: Vybrat vše

www.rongronger.click

Stáhni si ATF Cleaner
https://www.majorgeeks.com/mg/getmirror ... ner,2.html
Poklepej na ATF Cleaner.exe, klikni na select all, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.
- Pokud používáš jen Google Chrome ,Edge , tak ATF nemusíš použít.

Stáhni si TFC
http://www.geekstogo.com/forum/files/fi ... -oldtimer/
https://www.bleepingcomputer.com/download/tfc/
https://www.majorgeeks.com/files/detail ... eaner.html
https://www.majorgeeks.com/mg/get/temp_ ... ner,1.html

Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni AdwCleaner (by Xplode)
http://www.bleepingcomputer.com/download/adwcleaner/
http://www.adlice.com/downloadprogress/
pro majitele win7 stáhni zde:
https://filehippo.com/download_adwcleaner/ ( nedávej aktualizaci!)

Ulož si ho na svojí plochu . Klikni na „Souhlasím“ k povrzení podmínek.
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Skenování“
Po skenu se objeví log , který se otevře. ( jinak je uložen systémovem disku jako) C:\AdwCleaner\Logs, jeho obsah sem celý vlož.

Stáhni si Malwarebytes' Anti-Malware
https://www.malwarebytes.com/mwb-download/thankyou/

na plochu , nainstaluj a spusť ho
-Pokud není program aktuální , klikni na možnost „Aktualizovat nyní“ či „Opravit nyní“.
- bude nalezena aktualizace a nainstaluje se.
- poté klikni na Spustit skenování
- po proběhnutí skenu se ti objeví hláška vpravo dole, tak klikni na Zobrazit zprávu a vyber Export a vyber Kopírovat do schránky a vlož sem celý log. Nebo klikni na „Textový soubor ( .txt)“ a log si ulož. A vlož sem.
-jinak se log nachází v programu po kliknutí na „Zprávy“ , nebo je uložen zde: C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs

- po té klikni na tlačítko Dokončit, a program zavři křížkem vpravo nahoře.
(zatím nic nemaž!).
Pokud budou problémy , spusť v nouz. režimu.
(Po skončení scanu klikni na vidličku save result a vyber export to TXT. Po chvilce se objeví okno a uložíš si log v txt kam chceš. Pak ho zkopíruj a vlož sem).

N0váček · Příspěvekod **N0váček** » 11 říj 2025 19:18

Tu stránku na bitcony neznám, jinak jsem si všiml, že před spuštěním náhodné stránky po spuštění pc, mi problikne příkazový řádek, takže to vypadá na nějaký script, co po spuštění pc aktivuje zapnutí chrome s odkazem reklamových stránek. Jinak logy:

ADWCleaner:

# -------------------------------
# Malwarebytes AdwCleaner 8.5.0.595
# -------------------------------
# Build: 03-05-2025
# Database: 2024-10-23.4 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-11-2025
# Duration: 00:00:08
# OS: Windows 11 (Build 26100.6584)
# Scanned: 32099
# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Hosts File Entries ] *****

No malicious hosts file entries found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########

Malwarebytes log:

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 10/11/2025
Scan Time: 7:14 PM
Log File: cb5a722c-a6c5-11f0-9ccb-a0ad9f06b149.json

-Software Information-
Version: 5.4.1.215
Components Version: 142.0.5389
Update Package Version: 1.0.103791
License: Trial

-System Information-
OS: Windows 11 (Build 26100.6584)
CPU: x64
File System: NTFS
User: gamer\david

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 191236
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 2 min, 12 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
File system: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)

(end)

Příspěvekod **jaro3** » 11 říj 2025 21:54

Fixni v HJT:
O4 - HKCU\..\Run: [david] cmd.exe /c start www.rongronger.click

Stáhni si Junkware Removal Tool by Thisisu
http://www.bleepingcomputer.com/downloa ... oval-tool/
https://downloads.malwarebytes.com/file/JRT-EOL
na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dlouho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Sophos Virus Removal Tool je praktický softwarový nástroj, který by mohl odstranit infekce, které antivirový program nedetekuje .
Stáhněte si ho zde z některého odkazu:
https://www.majorgeeks.com/mg/getmirror ... ool,1.html
https://www.majorgeeks.com/mg/get/sopho ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,1.html
http://www.majorgeeks.com/mg/getmirror/ ... ool,2.html

Viry mohou zpomalit počítač, nebo se snaží ukrást vaše data, a ani nevíte , že je máte. Co potřebujete, je rychlý a snadný způsob, jak je najít a zbavit se jich, pokud již máte antivirový program v počítači nainstalován , můžete nainstalovat i nástroj Sophos Virus Removal , který identifikuje a vyčistí zbylé infekce, které mohl Váš antivirový program přehlédnout.
K použití Sophos Virus Removal Tool na něj poklepejte a stiskněte tlačítko „Start scanning“ . Pak bude Sophos Virus Removal Tool vyhledávat a odstraňovat viry, které najde. Může být vyžadován restart.
Pokud byly nalezeny viry , tak po skenu klikni na „Details…“ a potom na „View log file“. Zkopíruj celý log a vlož ho sem. Potom zavři „threat detail“ a klikni na „Start cleanup“.
Jinak se log nachází zde:
C:\ProgramData\Sophos\Sophos Virus Removal Tool\Logs

Stáhni si RogueKiller by Adlice Software
http://www.adlice.com/download/roguekiller/
http://www.bleepingcomputer.com/download/roguekiller/
tutorial:
https://www.adlice.com/docs/roguekiller ... /tutorial/
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- - klikni na „Scan“. V novém okně nic neměň a klikni dole na „Start“ ve sloupci „Quick Scan“
- Program skenuje procesy PC. Po proskenování klikni na „Results “ , v dalším okně pak levým t. na „Report“ a vyber : „Text File“ , log nazvi třeba RK a ulož do dokumentů nebo na plochu. Otevři soubor a celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků
Pokud nepůjde uložit log, vyfoť si nákazy z obrazovky a vlož sem.

N0váček · Příspěvekod **N0váček** » 12 říj 2025 23:40

problém zmizel potom co jsem to odstranil v Hijack

každopádně logy JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Enterprise x64
Ran by david (Administrator) on 12.10.2025 at 21:52:19,17
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 0

Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 12.10.2025 at 21:53:14,05
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Log Sohpos:

2025-10-12 19:57:10.633 Sophos Virus Removal Tool version 2.9.0
2025-10-12 19:57:10.633 Copyright (c) 2009-2021 Sophos Limited. All rights reserved.

2025-10-12 19:57:10.633 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.

2025-10-12 19:57:10.633 Windows version 6.2 SP 0.0 build 9200 SM=0x100 PT=0x1 WOW64
2025-10-12 19:57:10.633 Checking for updates...
2025-10-12 19:57:10.639 Update progress: proxy server not available
2025-10-12 19:57:12.869 Update error: failed to read remote metadata (error 4)
[V46381] SU::Handle::readRemoteMetadata + SU::Handle::readRemoteMetadata()
[V75884] SU::Metadata::readRemoteMetadata SU::Metadata::readRemoteMetadata()
[I40394] Downloading customer file from sophos:1:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:1:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.com/update/d/8a/d8 ... 768996.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:2:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:2:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E26245] Error fetching data from http://dci.sophosupd.net/update/d/8a/d8 ... 768996.dat: WinHttpSendRequest (error 12007)
[I26245] No proxy was used.
[I40394] Downloading customer file from sophos:3:1
[V81533] SU::createCachedPackageSource creating cached package source for sophos:3:1: url=SOPHOS
[V81533] SU::createCachedPackageSource creating http_source_specific_data to download customer file
[V81533] SU::createCachedPackageSource creating package source to download customer file
[E75373] Ran out of sophos aliases for this update source
[E35369] Out of update sources
[E99999] Out of sources
2025-10-12 19:57:16.108 Option all = no
2025-10-12 19:57:16.108 Option recurse = yes
2025-10-12 19:57:16.108 Option archive = no
2025-10-12 19:57:16.108 Option service = yes
2025-10-12 19:57:16.108 Option confirm = yes
2025-10-12 19:57:16.108 Option sxl = yes
2025-10-12 19:57:16.109 Option max-data-age = 35
2025-10-12 19:57:16.109 Option vdl-logging = yes
2025-10-12 19:57:16.112 Customer ID: 094260ca9b3af99f9d4a3909fc47a743
2025-10-12 19:57:16.112 Machine ID: cece76fc09dc4f53a333683c9923f49c
2025-10-12 19:57:16.115 Component SVRTcli.exe version 2.9.0
2025-10-12 19:57:16.115 Component control.dll version 2.9.0
2025-10-12 19:57:16.115 Component SVRTservice.exe version 2.9.0
2025-10-12 19:57:16.117 Component engine\osdp.dll version 1.44.1.2510
2025-10-12 19:57:16.119 Component engine\veex.dll version 3.81.0.2510
2025-10-12 19:57:16.119 Component engine\savi.dll version 9.0.23.2510
2025-10-12 19:57:16.146 Component rkdisk.dll version 1.5.33.1
2025-10-12 19:57:16.146 Version info: Product version 2.9.0
2025-10-12 19:57:16.146 Version info: Detection engine 3.81.0
2025-10-12 19:57:16.146 Version info: Detection data 5.82
2025-10-12 19:57:16.146 Version info: Build date 16.02.2021
2025-10-12 19:57:16.146 Version info: Data files added 208
2025-10-12 19:57:16.146 Version info: Last successful update (not yet updated)

2025-10-12 20:50:32.571 Could not open C:\hiberfil.sys
2025-10-12 20:50:32.573 Could not open C:\pagefile.sys
2025-10-12 20:58:54.537 Could not open C:\swapfile.sys
2025-10-12 20:58:54.557 Could not open C:\System Volume Information\{37300d14-a67d-11f0-8e8d-efb38796ba00}{3808876b-c176-4e48-b7ae-04046e6cc752}
2025-10-12 20:58:54.557 Could not open C:\System Volume Information\{37300d36-a67d-11f0-8e8d-efb38796ba00}{3808876b-c176-4e48-b7ae-04046e6cc752}
2025-10-12 20:58:54.557 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2025-10-12 20:58:54.557 Could not open C:\System Volume Information\{4175d106-a6c5-11f0-8e8e-c7215f9fe53d}{3808876b-c176-4e48-b7ae-04046e6cc752}
2025-10-12 20:58:54.557 Could not open C:\System Volume Information\{4175d69d-a6c5-11f0-8e8e-c7215f9fe53d}{3808876b-c176-4e48-b7ae-04046e6cc752}
2025-10-12 20:58:54.557 Could not open C:\System Volume Information\{4175d9a8-a6c5-11f0-8e8e-c7215f9fe53d}{3808876b-c176-4e48-b7ae-04046e6cc752}
2025-10-12 20:58:54.557 Could not open C:\System Volume Information\{735e55cb-a376-11f0-8e88-8757754b12d4}{3808876b-c176-4e48-b7ae-04046e6cc752}
2025-10-12 20:59:14.802 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\ActionsMcpHost.exe
2025-10-12 20:59:14.803 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\GameBarElevatedFT_Alias.exe
2025-10-12 20:59:14.803 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\GetHelp.exe
2025-10-12 20:59:14.804 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MediaPlayer.exe
2025-10-12 20:59:14.805 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python.exe
2025-10-12 20:59:14.805 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\python3.exe
2025-10-12 20:59:14.805 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\WindowsPackageManagerServer.exe
2025-10-12 20:59:14.805 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.DesktopAppInstaller_8wekyb3d8bbwe\winget.exe
2025-10-12 20:59:14.806 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.GamingApp_8wekyb3d8bbwe\XboxPcAppAdminServer.exe
2025-10-12 20:59:14.807 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.GamingApp_8wekyb3d8bbwe\XboxPcAppCE.exe
2025-10-12 20:59:14.808 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.GetHelp_8wekyb3d8bbwe\GetHelp.exe
2025-10-12 20:59:14.809 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.OutlookForWindows_8wekyb3d8bbwe\olk.exe
2025-10-12 20:59:14.810 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.Paint_8wekyb3d8bbwe\mspaint.exe
2025-10-12 20:59:14.810 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.Paint_8wekyb3d8bbwe\pbrush.exe
2025-10-12 20:59:14.811 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.PowerAutomateDesktop_8wekyb3d8bbwe\PAD.BrowserNativeMessageHost.exe
2025-10-12 20:59:14.811 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.PowerAutomateDesktop_8wekyb3d8bbwe\PAD.ChildSession.Service.Host.exe
2025-10-12 20:59:14.812 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.ScreenSketch_8wekyb3d8bbwe\SnippingTool.exe
2025-10-12 20:59:14.813 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.WindowsNotepad_8wekyb3d8bbwe\notepad.exe
2025-10-12 20:59:14.814 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.WindowsTerminal_8wekyb3d8bbwe\wt.exe
2025-10-12 20:59:14.815 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.XboxGamingOverlay_8wekyb3d8bbwe\GameBarElevatedFT_Alias.exe
2025-10-12 20:59:14.816 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\Microsoft.ZuneMusic_8wekyb3d8bbwe\MediaPlayer.exe
2025-10-12 20:59:14.818 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\ActionsMcpHost.exe
2025-10-12 20:59:14.818 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MicrosoftWindows.DesktopStickerEditorCentennial.exe
2025-10-12 20:59:14.818 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MicrosoftWindows.DesktopStickerEditorCentennial.exe
2025-10-12 20:59:14.818 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\ms-teams.exe
2025-10-12 20:59:14.818 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\ms-teamsupdate.exe
2025-10-12 20:59:14.818 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\ms-teams_autostarter.exe
2025-10-12 20:59:14.819 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\ms-teams_modulehost_ac.exe
2025-10-12 20:59:14.819 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\mspaint.exe
2025-10-12 20:59:14.820 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MSTeams_8wekyb3d8bbwe\ms-teams.exe
2025-10-12 20:59:14.820 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MSTeams_8wekyb3d8bbwe\ms-teamsupdate.exe
2025-10-12 20:59:14.820 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MSTeams_8wekyb3d8bbwe\ms-teams_autostarter.exe
2025-10-12 20:59:14.821 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\MSTeams_8wekyb3d8bbwe\ms-teams_modulehost_ac.exe
2025-10-12 20:59:14.821 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\notepad.exe
2025-10-12 20:59:14.821 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\olk.exe
2025-10-12 20:59:14.821 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\PAD.BrowserNativeMessageHost.exe
2025-10-12 20:59:14.821 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\PAD.ChildSession.Service.Host.exe
2025-10-12 20:59:14.821 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\pbrush.exe
2025-10-12 20:59:14.821 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\python.exe
2025-10-12 20:59:14.822 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\python3.exe
2025-10-12 20:59:14.822 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\SnippingTool.exe
2025-10-12 20:59:14.822 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\WindowsPackageManagerServer.exe
2025-10-12 20:59:14.822 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\winget.exe
2025-10-12 20:59:14.822 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\wt.exe
2025-10-12 20:59:14.822 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\XboxPcAppAdminServer.exe
2025-10-12 20:59:14.823 Could not open C:\Users\david\AppData\Local\Microsoft\WindowsApps\XboxPcAppCE.exe
2025-10-12 20:59:16.117 Could not open C:\Users\david\AppData\Local\NVIDIA Corporation\NVIDIA Overlay\CefCache\Default\Network\Cookies
2025-10-12 20:59:19.993 Could not open C:\Users\david\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalState\EBWebView\Default\Network\Cookies
2025-10-12 20:59:19.993 Could not open C:\Users\david\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalState\EBWebView\Default\Network\Cookies-journal
2025-10-12 20:59:20.013 Could not open C:\Users\david\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalState\EBWebView\Default\Safe Browsing Network\Safe Browsing Cookies
2025-10-12 21:01:33.533 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2025-10-12 21:01:33.534 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2025-10-12 21:01:47.685 Could not open C:\Windows\System32\config\BBI
2025-10-12 21:01:47.816 Could not open C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\WindowsApps\ActionsMcpHost.exe
2025-10-12 21:01:47.817 Could not open C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\WindowsApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\ActionsMcpHost.exe
2025-10-12 21:01:47.817 Could not open C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\WindowsApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MicrosoftWindows.DesktopStickerEditorCentennial.exe
2025-10-12 21:01:47.817 Could not open C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\WindowsApps\MicrosoftWindows.DesktopStickerEditorCentennial.exe
2025-10-12 21:25:51.987 Error level 0

2025-10-12 21:34:46.352 Scan completed.
2025-10-12 21:34:46.352

------------------------------------------------------------

log Roguekiller:

Program : RogueKillerSVC
Version : 3.4.1.0
x64 : Yes
Program Date : Oct 3 2025
Location : C:\Program Files\RogueKiller\RogueKillerSvc.exe
Premium : No
Company : Adlice Software
Website : https://www.adlice.com/
Operating System : Windows 11 (10.0.26100) 64-bit
64-bit OS : Yes
Startup : 0
WindowsPE : No
User : david
User is Admin : Yes
Date : 2025/10/12 21:38:36
Type : Scan
Aborted : No
Scan Mode : Standard
Duration : 72
Found items : 1
Total scanned : 53558
removed_count : 0
Signatures Version : 20251006_124525
Truesight Driver : Yes
Updates Count : 10
Custom Locations : N/A

************************* Warnings *************************

************************* Updates *************************
WinRAR 7.11 (64-bit) (64-bit), version 7.11.0
[+] Company : Alexander Roshal
[+] Available Version : 7.13
[+] Size : 0
[+] Wow6432 : No
[+] Portable : No
[+] update_location : C:\Program Files\WinRAR

Google Chrome (64-bit), version 141.0.7390.66
[+] Company : Google Inc.
[+] Available Version : 141.0.7390.77
[+] Size : 0
[+] Wow6432 : No
[+] Portable : No
[+] update_location : C:\Program Files\Google\Chrome\Application

kdenlive (64-bit), version 25.08.1
[+] Company : KDE
[+] Available Version : 25.08.2
[+] Size : 126267392
[+] Wow6432 : No
[+] Portable : No

LM Studio 0.3.27 (64-bit), version 0.3.27
[+] Company : LM Studio
[+] Available Version : 0.3.30
[+] Size : 1775286272
[+] Wow6432 : No
[+] Portable : No

Oculus (64-bit), version 1.103.0
[+] Company : Facebook Technologies, LLC
[+] Available Version : 3
[+] Size : 0
[+] Wow6432 : No
[+] Portable : No
[+] update_location : C:\Program Files\Oculus\

Unity Hub 3.14.0 (64-bit), version 3.14.0
[+] Company : Unity Technologies Inc.
[+] Available Version : 3.14.3
[+] Size : 530195456
[+] Wow6432 : No
[+] Portable : No

AMD Install Manager (64-bit), version 25.10.25237.0452
[+] Company : Advanced Micro Devices, Inc.
[+] Available Version : 25.10.25259.1500
[+] Size : 60430336
[+] Wow6432 : No
[+] Portable : No

AMD Chipset Software (32-bit), version 7.06.24.2226
[+] Company : Advanced Micro Devices, Inc.
[+] Available Version : 7.09.23.2230
[+] Size : 15903744
[+] Wow6432 : Yes
[+] Portable : No

Any Video Converter 7.0.3 (32-bit), version 7.0.3
[+] Company : Anvsoft
[+] Available Version : 9.1.4
[+] Size : 0
[+] Wow6432 : Yes
[+] Portable : No

Battlefield 1 (64-bit), version 1.0.0.0
[+] Company : Electronic Arts, Inc.
[+] Available Version : 1.0.57.44284
[+] Size : 0
[+] Wow6432 : No
[+] Portable : No
[+] update_location : D:\Program Files (x86)\Steam\steamapps\common\Battlefield 1

************************* Processes *************************

************************* Modules *************************

************************* Services *************************

************************* Scheduled Tasks *************************

************************* Registry *************************

************************* WMI *************************

************************* Hosts File *************************
is_too_big : No
hosts_file_path : C:\Windows\System32\drivers\etc\hosts

************************* Filesystem *************************
[MalPE.99|Cloud.Generic (Malicious)] (file) TFC.exe -- C:\Users\david\Desktop\TFC.exe -> Found

************************* Web Browsers *************************

************************* Antirootkit *************************

Příspěvekod **jaro3** » 13 říj 2025 14:21

V HJT fixni tuto položku:
O4 - HKCU\..\Run: [david] cmd.exe /c start www.rongronger.click

Vypni antivir i firewall, RogueKiller, Malwarebytes Antimalware, windowsDefender
Stáhni zoek:
ttps://datoid.cz/zhmnlC/zoek-1-exe

Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
-pozor , náběh programu může trvat déle.
Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .
Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log Zkopíruj sem celý obsah toho logu.
Pokud budou problémy , spusť zoek v nouz. režimu.

Stáhni si Zemana AntiMalware Free z tohoto odkazu:
https://www.zemana.com/Download/AntiMal ... .Setup.exe

(posuvník dolu na download)
a ulož si ho na plochu.
Poklepej na tento soubor na ploše a postupuj podle pokynů k instalaci programu.
Přijmi licenci k používání programu EULA , pokud se nabídne.
Pokud je k dispozici aktualizace programu , klepni na tlačítko „Update now“ ( aktualizovat nyní).
Zavři všechny otevřené soubory, složky a prohlížeče
Neměň žádné nastavení. Klikni na „Skenovat nyní“.
Po skenu lze vidět , zda jsou nějaké nákazy. Klikni na „Vykonat“ ( vymazat). Nákazy budou přemístěny do karantény.
Když je skenování dokončeno, klikni vlevo na „zprávy“ a pak na „otevři zprávu“ a zkopíruj sem celý obsah té zprávy.

Při problémech se Zemana:
https://learn.microsoft.com/en-us/answe ... om-loading

N0váček · Příspěvekod **N0váček** » 15 říj 2025 20:53

Log Zoek:

Zoek.exe v5.0.0.2 Updated 03-May-2018(Online Version)
Tool run by david on 15.10.2025 at 20:29:59,28.
Microsoft Windows 11 Pro 10.0.26100 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\david\Desktop\zoek (1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

15.10.2025 20:30:38 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\EA Games deleted successfully
C:\PROGRA~3\SoftwareDistribution deleted successfully
C:\PROGRA~3\ssh deleted successfully
C:\Users\david\AppData\Roaming\Meta Quest Link deleted successfully
C:\Users\david\AppData\Roaming\paradox-launcher-v2 deleted successfully
C:\Users\david\AppData\Local\DBG deleted successfully
C:\Users\david\AppData\Local\PeerDistRepub deleted successfully
C:\Users\david\AppData\Local\remoteview deleted successfully
C:\Users\david\AppData\Local\VirtualStore deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\Users\david\AppData\Roaming\Code deleted
C:\Users\david\AppData\Roaming\LM Studio deleted
C:\Users\david\AppData\Roaming\UnityHub deleted
C:\PROGRA~3\Propagation deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\david\AppData\Local\Unity deleted
C:\Users\david\AppData\Local\cache deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f93a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f93c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f94e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f950.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f952.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f954.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f956.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f958.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f979.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f97b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f97d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f97f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f981.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f983.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f995.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f997.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f999.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f99b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f99d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f99f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f9b0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f9b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f9b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-148c-79f8-13f9b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a692c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a692e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6930.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6932.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6934.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6936.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6948.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a694a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a694c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a694e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a696f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6971.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6973.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6975.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6987.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6989.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a698b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a698d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a698f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6991.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a6993.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a69a5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a69a7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-16ac-6bbc-8a69a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273c7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273c9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273cb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273e1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273e3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273e5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273e7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273e9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273fb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273fd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-3273ff.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327401.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327403.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327405.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327407.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327418.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-32741a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-32741c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-32741e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327420.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327422.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2200-cc8-327424.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049b9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049bb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049bd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049bf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049c1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049d3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049d5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049d7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049db.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049dd.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049df.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049f0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049f2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049f4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049f6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049f8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049fa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b049fc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b04a0e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b04a10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-2650-4ae8-b04a12.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd53e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd540.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd542.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd544.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd546.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd558.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd55a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd55c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd56d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd57f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd581.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd583.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd585.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd587.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd589.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd58b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd58d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd59f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd5a1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd5a3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd5a5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd5a7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd5a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-313c-3ce4-bd5ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151b95.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151b97.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151ba9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151baf.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bb1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bc2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bc4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bc6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bc8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bcc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bde.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151be0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151be2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151be4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151be6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bf8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bfa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bfc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151bfe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151c00.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-3410-4a5c-1151c11.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba5b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba5d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba5f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba61.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba63.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba67.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba79.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba7b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba7d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba7f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba81.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187ba92.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187baa4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187baa6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187baa8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187baaa.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187babc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187babe.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187bac0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187bac2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187bac4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187bad5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-349c-47e4-187bad7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4218.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b421a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b421c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b421e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4220.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4222.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4224.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4226.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4238.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b423a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b423c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b423e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4240.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4242.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4244.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4256.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4258.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b425a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b425c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b425e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4260.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4262.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4273.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-5124-5128-1b4275.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e97275.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e97287.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e97289.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e9728b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e9728d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e9728f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e97291.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e97293.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e97295.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972a7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972af.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972b1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972c8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972ca.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972cc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972e0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-519c-35d0-e972e2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf73d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf73f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf751.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf753.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf755.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf757.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf769.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf76b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf76d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf76f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf771.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf773.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf775.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf777.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf779.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf77b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf79c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf79e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf7a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf7a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf7b3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf7b5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf7b7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-52a0-6290-bf7d9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc10.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc12.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc14.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc16.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc18.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc1a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc2b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc2d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc2f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc31.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc33.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc35.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc47.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc49.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc4b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc4d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc4f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc51.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc53.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc65.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc67.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc69.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc6b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-641c-813c-90cc6d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb69a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb69c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb69e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6b0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6b2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6b4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6b8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6ba.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6bc.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6ce.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6d0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6d2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6d4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6d6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6d8.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6da.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6eb.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6ed.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6ef.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6f1.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6f3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6f5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-6868-608-bb6f7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a149.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a14b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a15d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a15f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a161.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a163.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a165.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a167.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a169.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a17b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a17d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a17f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a181.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a183.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a185.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a187.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a198.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a19a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a19c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a19e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a1a0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a1a2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a1a4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-7508-776c-19a1b6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b2369.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b236b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b236d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b236f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b2371.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b2373.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b2375.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b2377.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b2389.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b238b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b238d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b238f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b2391.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23a3.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23a5.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23a7.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23a9.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23ab.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23ad.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23be.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23c0.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23c2.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23c4.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-764-5a40-3b23c6.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c05.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c17.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c19.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c1b.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c1d.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c1f.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c21.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c32.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c34.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c36.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c38.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c3a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c3c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c4e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c50.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c52.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c54.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c56.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c58.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c5a.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c6c.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c6e.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c70.tmp deleted
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\tw-b58-6a68-482c72.tmp deleted
"C:\Users\david\AppData\Local\kdeglobals" deleted
"C:\Users\david\AppData\Local\kdenlive-layoutsrc" deleted
"C:\Users\david\AppData\Local\kdenliverc" deleted
"C:\DumpStack.log.tmp" not deleted
"C:\Users\david\AppData\Roaming\discord\DIPS" not deleted
"C:\Users\david\AppData\Roaming\discord\DIPS-shm" not deleted
"C:\Users\david\AppData\Roaming\discord\DIPS-wal" not deleted
"C:\Users\david\AppData\Roaming\discord\lockfile" not deleted
"C:\Users\david\AppData\Roaming\discord\SharedStorage" not deleted
"C:\Users\david\AppData\Roaming\discord\SharedStorage-wal" not deleted
"C:\Users\david\AppData\Roaming\discord\logs\discord-webrtc_0" not deleted
"C:\Users\david\AppData\Roaming\discord\logs\discord_krisp.log" not deleted
"C:\Users\david\AppData\Roaming\discord\logs\discord_media_rCURRENT.log" not deleted
"C:\Users\david\AppData\Roaming\discord\logs\Discord_updater_rCURRENT.log" not deleted
"C:\Users\david\AppData\Roaming\discord\logs\discord_utils.log" not deleted
"C:\Users\david\AppData\Roaming\discord\Network\Cookies" not deleted
"C:\Users\david\AppData\Roaming\discord\Network\Cookies-journal" not deleted
"C:\Users\david\AppData\Roaming\discord\Network\Trust Tokens" not deleted
"C:\Users\david\AppData\Roaming\discord\Session Storage\000003.log" not deleted
"C:\Users\david\AppData\Roaming\discord\Session Storage\LOCK" not deleted
"C:\Users\david\AppData\Roaming\discord\Session Storage\LOG" not deleted
"C:\Users\david\AppData\Roaming\discord\Session Storage\MANIFEST-000001" not deleted
"C:\Users\david\AppData\Roaming\discord\Shared Dictionary\db" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\000003.log" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\LOCK" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\LOG" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\MANIFEST-000001" not deleted
"C:\Users\david\AppData\Roaming\discord\WebStorage\QuotaManager" not deleted
"C:\Users\david\AppData\Roaming\discord\WebStorage\QuotaManager-journal" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000005.ldb" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000879.log" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000881.ldb" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000882.ldb" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\LOCK" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\LOG" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\MANIFEST-000001" not deleted
"C:\Users\david\AppData\Roaming\discord\module_data\crashlogs\9_17_2025__7_06_12_PM_GMT_2-0-events.log" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\000003.log" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\LOCK" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\LOG" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\MANIFEST-000001" not deleted
"C:\Users\david\AppData\Roaming\discord" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage" not deleted
"C:\Users\david\AppData\Roaming\discord\logs" not deleted
"C:\Users\david\AppData\Roaming\discord\module_data" not deleted
"C:\Users\david\AppData\Roaming\discord\Network" not deleted
"C:\Users\david\AppData\Roaming\discord\Session Storage" not deleted
"C:\Users\david\AppData\Roaming\discord\Shared Dictionary" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db" not deleted
"C:\Users\david\AppData\Roaming\discord\WebStorage" not deleted
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb" not deleted
"C:\Users\david\AppData\Roaming\discord\module_data\crashlogs" not deleted
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata" not deleted

==== Orphaned Tasks deleted from Registry ======================

PostponeDeviceSetupToast_S-1-5-21-4194885305-2177530522-3158325244-1001_0 deleted

==== Firefox XPI-files found: ======================

- __MSG_appName__ - C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2509.83.0_x64__8wekyb3d8bbwe\BrowserExtensions\pad_extension_for_firefox-2.55.0.31.xpi

==== Chromium Look ======================

ChatGPT search - david\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejcfepkfckglbgocfkanmcdngdijcgld
Edge relevant text changes - david\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC

==== Reset Google Chrome ======================

C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default\Preferences was reset successfully
C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences was reset successfully
C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default\Web Data will be reset at reboot

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\david\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\david\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2399 folders=637 1154793379 bytes)

==== Empty Temp Folders ======================

C:\Users\david\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\david\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\DumpStack.log.tmp" not deleted
"C:\Users\david\AppData\Roaming\discord\DIPS" not found
"C:\Users\david\AppData\Roaming\discord\DIPS-shm" not found
"C:\Users\david\AppData\Roaming\discord\DIPS-wal" not found
"C:\Users\david\AppData\Roaming\discord\lockfile" not found
"C:\Users\david\AppData\Roaming\discord\SharedStorage" not found
"C:\Users\david\AppData\Roaming\discord\SharedStorage-wal" not found
"C:\Users\david\AppData\Roaming\discord\logs\discord-webrtc_0" not found
"C:\Users\david\AppData\Roaming\discord\logs\discord_krisp.log" not found
"C:\Users\david\AppData\Roaming\discord\logs\discord_media_rCURRENT.log" not found
"C:\Users\david\AppData\Roaming\discord\logs\Discord_updater_rCURRENT.log" not found
"C:\Users\david\AppData\Roaming\discord\logs\discord_utils.log" not found
"C:\Users\david\AppData\Roaming\discord\Network\Cookies" not found
"C:\Users\david\AppData\Roaming\discord\Network\Cookies-journal" not found
"C:\Users\david\AppData\Roaming\discord\Network\Trust Tokens" not found
"C:\Users\david\AppData\Roaming\discord\Session Storage\000003.log" not found
"C:\Users\david\AppData\Roaming\discord\Session Storage\LOCK" not found
"C:\Users\david\AppData\Roaming\discord\Session Storage\LOG" not found
"C:\Users\david\AppData\Roaming\discord\Session Storage\MANIFEST-000001" not found
"C:\Users\david\AppData\Roaming\discord\Shared Dictionary\db" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\000003.log" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\LOCK" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\LOG" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\MANIFEST-000001" not found
"C:\Users\david\AppData\Roaming\discord\WebStorage\QuotaManager" not found
"C:\Users\david\AppData\Roaming\discord\WebStorage\QuotaManager-journal" not found
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000005.ldb" not found
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000879.log" not found
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000881.ldb" not found
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\000882.ldb" not found
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\LOCK" not found
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\LOG" not found
"C:\Users\david\AppData\Roaming\discord\Local Storage\leveldb\MANIFEST-000001" not found
"C:\Users\david\AppData\Roaming\discord\module_data\crashlogs\9_17_2025__7_06_12_PM_GMT_2-0-events.log" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\000003.log" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\LOCK" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\LOG" not found
"C:\Users\david\AppData\Roaming\discord\shared_proto_db\metadata\MANIFEST-000001" not found
"C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default\Web Data" not found
"C:\Users\david\AppData\Roaming\discord" not found

==== EOF on 15.10.2025 at 20:43:23,79 ======================

N0váček · Příspěvekod **N0váček** » 15 říj 2025 21:05

Zemana mi nejde ani skrz ten návod co tam radili to nejde, i když jsem vypnul integritu, tak mi to píše že daný ovladač nelze spustit.

Příspěvekod **jaro3** » 15 říj 2025 23:40

Vypni antivir i firewall.
Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
další odkaz:
http://www.bleepingcomputer.com/downloa ... scan-tool/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

Zítra..

N0váček · Příspěvekod **N0váček** » 17 říj 2025 14:05

Frst log:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-10-2025
Ran by david (administrator) on GAMER (ASUS System Product Name) (17-10-2025 14:02:10)
Running from C:\Users\david\Downloads\FRST64.exe
Loaded Profiles: david
Platform: Microsoft Windows 11 Pro Version 24H2 26100.6899 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Program Files\ASUS\AsusDriverHub\ADU.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusDriverHub\ASUS DriverHub.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Oculus\Support\oculus-remote-desktop\RemoteDesktopCompanion.exe ->) () [File not signed] C:\Program Files\Oculus\Support\oculus-remote-desktop\MQRDCrashpadHandler.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe ->) (Meta Platforms, Inc. -> Meta Platforms Technologies LLC) C:\Program Files\Oculus\Support\oculus-remote-desktop\RemoteDesktopCompanion.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Meta Platforms, Inc. -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
(C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe ->) (Meta Platforms, Inc. -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
(C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe ->) (GN Hearing A/S -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\engine\prism\SteelSeriesPrism.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (GN Hearing A/S -> SteelSeries A/S) C:\Program Files\SteelSeries\GG\apps\engine\SteelSeriesEngine.exe
(C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe ->) (GN Hearing A/S -> SteelSeries ApS) C:\Program Files\SteelSeries\GG\apps\sonar\SteelSeriesSonar.exe
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer_host.exe <5>
(C:\ProgramData\Wargaming.net\GameCenter\wgc.exe ->) (Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wargamingerrormonitor.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(D:\Program Files (x86)\Steam\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Discord Inc. -> Discord Inc.) C:\Users\david\AppData\Local\Discord\app-1.0.9212\Discord.exe <6>
(DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\atieclxx.exe
(explorer.exe ->) (GN Hearing A/S -> SteelSeries A/S) C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <14>
(explorer.exe ->) (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.) C:\Program Files\XPPen\PenTablet.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Program Files (x86)\Steam\steam.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_19.2510.44091.0_x64__8wekyb3d8bbwe\WebViewHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoNotificationUx.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_0cfc8ba812cdbaa8\AmdAppCompatSvc.exe
(services.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc) C:\Windows\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkgSvc.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\atiesrxx.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Windows\System32\AsusUpdateCheck.exe
(services.exe ->) (Meta Platforms, Inc. -> Facebook Technologies, LLC) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_f088ae99b5a2f5fd\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b0c953b89f2097a9\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\AsusDriverHub\ADU.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\microsoft.edge.gameassist_1.0.3456.0_x64__8wekyb3d8bbwe\EdgeGameAssist.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2510.1001.55.0_x64__8wekyb3d8bbwe\XboxGameBarWidgets.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2510.1001.55.0_x64__8wekyb3d8bbwe\XboxPcAppFT.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.140.0.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.325.10021.0_x64__8wekyb3d8bbwe\GameBar.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_7.325.10021.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\AppActions.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Wargaming Group Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_b0c953b89f2097a9\RtkAudUService64.exe [2117592 2024-07-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PenTablet] => C:\Program Files\XPPen\PenTablet.exe [12804072 2025-03-05] (Hanvon Ugee Technology Co., Ltd. -> XPPEN TECHNOLOGY CO.)
HKLM\...\Run: [SteelSeriesGG] => C:\Program Files\SteelSeries\GG\SteelSeriesGG.exe [17703992 2025-10-06] (GN Hearing A/S -> SteelSeries A/S)
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Run: [MicrosoftEdgeAutoLaunch_30FCCE2722F4190AAE310221237BB02B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4265000 2025-10-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Run: [Discord] => C:\Users\david\AppData\Local\Discord\Update.exe [1596344 2025-09-08] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2587896 2025-10-17] (Wargaming Group Limited -> Wargaming.net)
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [164840 2024-06-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3751584 2025-10-12] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Run: [Gaijin.Net Updater] => C:\Users\david\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [3100392 2025-08-20] (GAIJIN NETWORK LTD -> Gaijin)
HKLM\Software\...\AppCompatFlags\Custom\DXMD.exe: [{950d026e-be12-4dc6-988a-b15dcbc1e536}.sdb] -> AMD Application Compatibility Database File
HKLM\Software\...\AppCompatFlags\InstalledSDB\{950d026e-be12-4dc6-988a-b15dcbc1e536}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{950d026e-be12-4dc6-988a-b15dcbc1e536}.sdb [2025-01-02]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\141.0.7390.66\Installer\chrmstp.exe [2025-10-10] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {20EA15DB-FF86-45BB-BE25-20DBFD9BA1E2} - System32\Tasks\AMD Install Manager - Check For Updates => C:\Program Files\AMD\AMDInstallManager\AMDInstallManager.exe [55427856 2025-08-25] (Advanced Micro Devices -> Advanced Micro Devices, Inc.) -> C:\Program Files\AMD\AMDInstallManager\\-CheckForUpdates
Task: {2636AED8-BE1B-4454-B54A-294845D30B23} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1038600 2025-08-25] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {9A713572-1E33-4622-83BB-F33861945E66} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [191248 2025-08-25] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {F9F9E3F3-229A-4B5E-BF65-A1924F66328B} - System32\Tasks\ASUS\AsusDriverHub => C:\Program Files\ASUS\AsusDriverHub\ADU.exe [9944984 2025-06-16] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
Task: {F981AD83-CFED-41C6-B462-CD6CFB3281AA} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem142.0.7416.0{A9B556DA-A86E-4FB7-91FC-7FD5675C40F6} => C:\Program Files (x86)\Google\GoogleUpdater\142.0.7416.0\updater.exe [6863512 2025-09-15] (Google LLC -> Google LLC)
Task: {D7F71573-92B8-4D7D-86CF-3105E615ABF1} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {2C0216E0-D446-4240-995D-BB228E7DB7B1} - System32\Tasks\Microsoft\Windows\UsageAndQualityInsights\UsageAndQualityInsights-MaintenanceTask => C:\Windows\System32\Microsoft.Data.UsageAndQualityInsights.MaintenanceTask.exe [86016 2025-10-15] (Microsoft Windows -> )
Task: {BAC6603D-3FFF-4B3C-8DB5-939882532255} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {62F0DF0B-5669-4087-94A9-AE9B34EC4584} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7C9D6452-3B16-483E-AE2E-CE2C416E4AB5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E8851631-D298-49C4-AA44-40769138D67A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpCmdRun.exe [1778248 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {811608B9-D656-4A94-B171-36645B498560} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1038600 2025-08-25] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {C3D8CECD-8A11-4B38-B467-D9A35F53D0DF} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [828296 2025-09-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {472302DD-80E1-4A14-A0D2-DF7E7C1661CF} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3324528 2025-09-22] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {56BDF8F4-A28A-443D-8310-0D816B707D51} - System32\Tasks\OneDrive Startup Task-S-1-5-21-4194885305-2177530522-3158325244-1001 => C:\Users\david\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDriveLauncher.exe [725864 2025-10-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {100DBAAA-6C11-44B3-A81F-415FCCC64607} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [143632 2025-08-25] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {C84869E9-F66A-4FDC-940F-FFAFD9F6DF8A} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [310032 2025-08-25] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{d5fef854-5b68-4408-b0c7-7a4db9431884}: [DhcpNameServer] 192.168.8.1

Edge:
=======
Edge Profile: C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default [2025-10-17]
Edge Extension: (Dokumenty Google offline) - C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-10-15]
Edge Extension: (Edge relevant text changes) - C:\Users\david\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-10-15]

Chrome:
=======
CHR Profile: C:\Users\david\AppData\Local\Google\Chrome\User Data\Default [2025-10-17]
CHR DownloadDir: C:\Users\david\Desktop
CHR Notifications: Default -> hxxps://www.facebook.com
CHR Extension: (uBlock Origin Lite) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddkjiahejlhfcafbddmgiahcphecmpfh [2025-10-15]
CHR Extension: (ChatGPT) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejcfepkfckglbgocfkanmcdngdijcgld [2025-10-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-10-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\david\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2025-10-15]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AmdAppCompatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_0cfc8ba812cdbaa8\AmdAppCompatSvc.exe [300872 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
R2 AmdPpkgSvc; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkgSvc.exe [518984 2025-05-15] (Advanced Micro Devices -> Advanced Micro Devices, Inc)
S3 ArmouryCrateDownloadTool; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_5d971a52020331ad\ArmouryLiveUpdate.exe [577408 2025-08-19] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 AsusUpdateCheck; C:\WINDOWS\System32\AsusUpdateCheck.exe [1250656 2025-10-15] (ASUSTeK COMPUTER INC. -> )
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [159828216 2025-10-06] (Electronic Arts, Inc. -> Electronic Arts)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [19281056 2025-10-12] (Electronic Arts, Inc. -> Electronic Arts)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [964336 2025-10-05] (EasyAntiCheat Oy -> Epic Games, Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MpDefenderCoreService.exe [2009656 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 midisrv; C:\WINDOWS\system32\midisrv.exe [593920 2025-10-15] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_f088ae99b5a2f5fd\Display.NvContainer\NVDisplay.Container.exe [1275584 2025-10-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OVRLibraryService; C:\Program Files\Oculus\Support\oculus-librarian\OVRLibraryService.exe [58624 2025-10-10] (Meta Platforms, Inc. -> Facebook Technologies, LLC)
R2 OVRService; C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe [435448 2025-10-10] (Meta Platforms, Inc. -> Facebook Technologies, LLC)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1463848 2025-09-25] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [803064 2025-10-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SteelSeriesGGUpdateServiceProxy; C:\Program Files\SteelSeries\GG\SteelSeriesGGUpdateServiceProxy.exe [1587712 2025-03-12] (GN Hearing A/S -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\NisSrv.exe [4414464 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25080.5-0\MsMpEng.exe [282480 2025-09-18] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 wuqisvc; C:\WINDOWS\System32\Microsoft.Data.UsageAndQualityInsights.dll [503808 2025-10-15] (Microsoft Windows -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACSEHIDRemap; C:\WINDOWS\System32\drivers\ACSEHIDRemap.sys [135640 2025-09-02] (WDKTestCert Ken,133462420546156706 -> )
S3 ACSEVirtualBus; C:\WINDOWS\System32\drivers\ACSEVirtualBus.sys [47072 2025-09-02] (WDKTestCert Ken,133462420546156706 -> )
R3 AmdAppCompat; C:\WINDOWS\System32\DriverStore\FileRepository\amdappcompat.inf_amd64_0cfc8ba812cdbaa8\AmdAppCompat.sys [35144 2025-01-02] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_1aafc0a9b0693712\amdfendrmgr.sys [37208 2025-02-06] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33592 2024-09-12] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 AmdPpkg; C:\WINDOWS\System32\DriverStore\FileRepository\amdppkg.inf_amd64_2e5ec3779d1804d1\AmdPpkg.sys [35120 2025-05-15] (Advanced Micro Devices -> Advanced Micro Devices)
R2 AMDRyzenMasterDriverV28; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [61264 2025-08-19] (Advanced Micro Devices -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_d4de13a10f2586d0\amdsafd.sys [112952 2024-06-15] (AMD Test Build -> Advanced Micro Devices)
R3 amduw23g-418637-ef495aee; C:\WINDOWS\System32\DriverStore\FileRepository\u0418637.inf_amd64_4462a7afa694670e\B418564\amdkmdag.sys [101796328 2025-09-01] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [63008 2024-05-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S1 amsdk; C:\WINDOWS\system32\drivers\amsdk.sys [232792 2025-10-15] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [573440 2024-10-05] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [200704 2024-10-05] (Microsoft Corporation) [File not signed]
R3 e2fnexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e2fn.inf_amd64_5882da94cd163e3f\e2fn.sys [1430736 2024-07-03] (Intel Corporation -> Intel Corporation)
R3 hanvonugeemfilter; C:\WINDOWS\System32\drivers\hanvonugeemfilter.sys [9728 2023-07-28] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 ITEUcmCxClient; C:\WINDOWS\System32\drivers\ITEUcmCxClient.sys [79264 2024-07-21] (ITE Tech. Inc. -> ITE Tech. Inc.)
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [333216 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 MTKBTFilterx64; C:\WINDOWS\System32\DriverStore\FileRepository\mtkbtfilter.inf_amd64_641b1d405dd99ee2\mtkbtfilterx.sys [565032 2024-12-18] (Microsoft Windows Hardware Compatibility Publisher -> MediaTek Inc.)
R3 mtkwecx; C:\WINDOWS\System32\DriverStore\FileRepository\mtkwecx.inf_amd64_e0e12a0328b10cec\mtkwecx.sys [2369928 2024-12-18] (MEDIATEK INC. -> MediaTek Inc.)
R3 OCULUSUDSVR; C:\WINDOWS\System32\drivers\OCULUSUD.sys [3867552 2025-09-20] (Microsoft Windows Hardware Compatibility Publisher -> Oculus VR, LLC.)
R3 oculusvad_oculusvad; C:\WINDOWS\System32\drivers\oculusvad.sys [73400 2025-09-20] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 Oculus_ViGEmBus; C:\WINDOWS\System32\drivers\Oculus_ViGEmBus.sys [32856 2025-09-20] (Oculus VR, LLC -> Facebook Inc.)
S3 ROGKB; C:\WINDOWS\System32\DriverStore\FileRepository\rogkb.inf_amd64_06b2ad96a4d5ed32\ROGKB.sys [41904 2025-07-11] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider)
R3 ROGMS; C:\WINDOWS\System32\DriverStore\FileRepository\rogms.inf_amd64_5d971a52020331ad\ROGMS.sys [41456 2025-08-19] (ASUSTeK COMPUTER INC. -> Windows (R) Win 7 DDK provider)
R3 RtkUsbAD_2393; C:\WINDOWS\System32\DriverStore\FileRepository\rtdusbad_asus.inf_amd64_01f0e5c78f4a7f00\RtUsbA64.sys [516960 2024-07-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [43568 2025-09-08] (Microsoft Windows Hardware Compatibility Publisher -> SteelSeries ApS)
R3 SteelSeries_Sonar_VAD; C:\WINDOWS\System32\DriverStore\FileRepository\steelseries-sonar-vad.inf_amd64_4a7a0876e89a4ff8\SteelSeries-Sonar-VAD.sys [95840 2025-05-14] (GN Hearing A/S -> Windows (R) Win 7 DDK provider)
R3 UcmCxRtk; C:\WINDOWS\System32\drivers\UcmCxRtk.sys [89072 2024-09-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20880 2025-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [627104 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [102816 2025-09-18] (Microsoft Windows -> Microsoft Corporation)
R3 XPPenTablet; C:\WINDOWS\System32\drivers\XPPenTablet.sys [10752 2024-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S0 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-10-17 14:02 - 2025-10-17 14:02 - 000025974 _____ C:\Users\david\Downloads\FRST.txt
2025-10-17 14:02 - 2025-10-17 14:02 - 000000000 ____D C:\FRST
2025-10-17 14:00 - 2025-10-17 14:00 - 002442752 _____ (Farbar) C:\Users\david\Downloads\FRST64.exe
2025-10-16 19:32 - 2025-10-16 19:32 - 000000623 _____ C:\Users\david\Desktop\Enlisted.lnk
2025-10-16 19:32 - 2025-10-16 19:32 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Enlisted
2025-10-16 19:32 - 2025-10-16 19:32 - 000000000 ____D C:\Users\david\AppData\Local\Gaijin
2025-10-16 19:32 - 2025-10-16 19:32 - 000000000 ____D C:\ProgramData\Gaijin
2025-10-16 19:31 - 2025-10-16 19:31 - 009894048 _____ (Gaijin Network ) C:\Users\david\Downloads\enlisted_launcher_1.0.3.169-djkqc0iz6.exe
2025-10-16 19:11 - 2025-10-17 13:53 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-10-16 15:30 - 2025-10-16 15:30 - 000000000 ____D C:\Users\david\AppData\Local\AcSdkInsLog
2025-10-16 15:29 - 2025-10-16 15:29 - 000000000 ____D C:\Users\david\AppData\Local\ArmouryLiveUpdate
2025-10-16 15:29 - 2025-10-16 15:29 - 000000000 ____D C:\Users\david\AppData\Local\AcLoader
2025-10-15 22:13 - 2025-10-15 22:13 - 002220432 _____ (Zdenek Svub) C:\Users\david\Downloads\uTorrent221_4K.exe
2025-10-15 21:31 - 2025-10-15 21:31 - 000000000 ____D C:\Users\david\AppData\Roaming\Code
2025-10-15 21:14 - 2025-10-15 21:14 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2025-10-15 21:08 - 2025-10-15 21:08 - 000712016 _____ C:\WINDOWS\system32\perfh005.dat
2025-10-15 21:08 - 2025-10-15 21:08 - 000153230 _____ C:\WINDOWS\system32\perfc005.dat
2025-10-15 20:47 - 2025-10-15 20:59 - 000232792 _____ (Copyright 2018.) C:\WINDOWS\system32\Drivers\amsdk.sys
2025-10-15 20:47 - 2025-10-15 20:59 - 000000000 ____D C:\Users\david\AppData\Local\AMSDK
2025-10-15 20:43 - 2025-10-17 13:51 - 000000000 ____D C:\Users\david\AppData\Roaming\discord
2025-10-15 20:43 - 2025-10-15 20:46 - 000000000 ____D C:\Users\david\AppData\Roaming\LM Studio
2025-10-15 20:43 - 2025-10-15 20:43 - 000000000 ____D C:\Users\david\AppData\Local\VirtualStore
2025-10-15 20:43 - 2025-10-15 20:43 - 000000000 ____D C:\Users\david\AppData\Local\PeerDistRepub
2025-10-15 20:41 - 2014-02-13 23:59 - 000024064 _____ C:\WINDOWS\zoek-delete.exe
2025-10-15 20:29 - 2025-10-15 20:39 - 000000000 ____D C:\zoek_backup
2025-10-15 17:09 - 2025-10-15 17:09 - 000035125 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-10-15 17:09 - 2025-10-15 17:09 - 000035125 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-10-15 13:09 - 2025-10-10 17:01 - 002402656 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-10-15 13:09 - 2025-10-10 17:01 - 002402656 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-10-15 13:09 - 2025-10-10 17:01 - 001908064 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-10-15 13:09 - 2025-10-10 17:01 - 001908064 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-10-15 13:09 - 2025-10-10 17:01 - 001581920 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-10-15 13:09 - 2025-10-10 17:01 - 001581920 _____ C:\WINDOWS\system32\vulkan-1.dll
2025-10-15 13:09 - 2025-10-10 17:01 - 001395552 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-10-15 13:09 - 2025-10-10 17:01 - 001395552 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2025-10-15 13:09 - 2025-10-10 17:01 - 000478400 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2025-10-15 13:09 - 2025-10-10 17:01 - 000374976 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2025-10-15 13:09 - 2025-10-10 16:58 - 001322176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2025-10-15 13:09 - 2025-10-10 16:58 - 000675008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2025-10-15 13:09 - 2025-10-10 16:58 - 000509120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2025-10-15 13:09 - 2025-10-10 16:57 - 026354880 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2025-10-15 13:09 - 2025-10-10 16:57 - 002317504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2025-10-15 13:09 - 2025-10-10 16:57 - 001715904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2025-10-15 13:09 - 2025-10-10 16:57 - 001599680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2025-10-15 13:09 - 2025-10-10 16:57 - 001572544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2025-10-15 13:09 - 2025-10-10 16:57 - 001223360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2025-10-15 13:09 - 2025-10-10 16:57 - 001057472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2025-10-15 13:09 - 2025-10-10 16:57 - 000813248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2025-10-15 13:09 - 2025-10-10 16:56 - 024676032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2025-10-15 13:09 - 2025-10-10 16:56 - 021714112 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2025-10-15 13:09 - 2025-10-10 16:56 - 007683264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2025-10-15 13:09 - 2025-10-10 16:56 - 005469888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2025-10-15 13:09 - 2025-10-10 16:56 - 004175040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2025-10-15 13:09 - 2025-10-10 16:56 - 000468672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2025-10-15 13:09 - 2025-10-10 16:55 - 005918912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2025-10-15 13:09 - 2025-10-10 16:55 - 005625520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2025-10-15 13:09 - 2025-10-10 16:55 - 004924120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2025-10-15 13:09 - 2025-10-10 16:55 - 000853696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2025-10-15 13:09 - 2025-10-10 07:36 - 000148902 _____ C:\WINDOWS\system32\nvinfo.pb
2025-10-14 22:03 - 2025-10-14 22:03 - 000000000 ____D C:\Users\david\AppData\Local\Hogwarts Legacy
2025-10-14 18:32 - 2025-10-14 18:32 - 000000222 _____ C:\Users\david\Desktop\Hogwarts Legacy.url
2025-10-12 23:36 - 2025-10-12 23:36 - 000001151 _____ C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Adlice Protect.lnk
2025-10-12 21:57 - 2025-10-12 21:57 - 000000000 ____D C:\ProgramData\Sophos
2025-10-12 20:43 - 2025-10-12 20:45 - 000000000 ____D C:\Users\david\Documents\Battlefield 1
2025-10-12 20:43 - 2025-10-12 20:43 - 000000000 ____D C:\ProgramData\Electronic Arts
2025-10-12 20:39 - 2025-10-12 20:42 - 000000000 ____D C:\Users\david\AppData\Local\Origin
2025-10-12 20:39 - 2025-10-12 20:39 - 000000000 ____D C:\Users\david\AppData\Local\Link2EA
2025-10-12 20:39 - 2025-10-12 20:39 - 000000000 ____D C:\Users\david\AppData\Local\Electronic Arts
2025-10-12 20:39 - 2025-10-12 20:39 - 000000000 ____D C:\Users\david\AppData\Local\EALaunchHelper
2025-10-12 20:39 - 2025-10-12 20:39 - 000000000 ____D C:\Users\david\AppData\Local\EADesktop
2025-10-12 20:38 - 2025-10-12 21:12 - 000000000 ____D C:\ProgramData\Packer
2025-10-12 20:38 - 2025-10-12 20:38 - 000000000 ____D C:\Users\david\AppData\Roaming\EA
2025-10-12 20:38 - 2025-10-12 20:38 - 000000000 ____D C:\ProgramData\eaanticheat
2025-10-12 20:38 - 2025-10-12 20:38 - 000000000 ____D C:\Program Files\EA
2025-10-12 20:37 - 2025-10-12 20:43 - 000000000 ____D C:\ProgramData\Origin
2025-10-12 20:37 - 2025-10-12 20:42 - 000000000 ____D C:\ProgramData\EA Desktop
2025-10-12 20:37 - 2025-10-12 20:39 - 000002209 _____ C:\Users\Public\Desktop\EA.lnk
2025-10-12 20:37 - 2025-10-12 20:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2025-10-12 20:37 - 2025-10-12 20:37 - 000000000 ____D C:\Users\david\AppData\Roaming\EAAntiCheat.Installer.Tool
2025-10-12 20:37 - 2025-10-12 20:37 - 000000000 ____D C:\Program Files\Electronic Arts
2025-10-12 00:24 - 2025-10-12 00:24 - 000000000 ____D C:\Users\david\AppData\LocalLow\Unfrozen
2025-10-11 13:08 - 2025-10-11 13:08 - 000000000 ____D C:\Users\david\AppData\Roaming\FiraxisLive
2025-10-11 13:08 - 2025-10-11 13:08 - 000000000 ____D C:\Users\david\AppData\Local\Firaxis Games
2025-10-11 13:04 - 2025-10-11 13:04 - 000000223 _____ C:\Users\david\Desktop\Heroes of Might and Magic Olden Era Demo.url
2025-10-11 10:21 - 2025-10-11 10:27 - 000000000 ____D C:\ProgramData\Piriform
2025-10-11 09:02 - 2025-10-11 09:03 - 000388608 _____ (Trend Micro Inc.) C:\Users\david\Desktop\HijackThis.exe
2025-10-11 08:52 - 2025-10-11 19:15 - 000000000 ____D C:\AdwCleaner
2025-10-11 01:26 - 2025-10-11 01:26 - 004488659 _____ C:\Users\david\Desktop\diorama- Hronovský.mp4
2025-10-11 01:01 - 2025-10-11 01:01 - 000000808 _____ C:\Users\david\AppData\Local\recently-used.xbel
2025-10-11 00:53 - 2025-10-11 00:53 - 000005026 _____ C:\Users\david\AppData\Local\user-places.xbel
2025-10-11 00:53 - 2025-10-11 00:53 - 000000000 _____ C:\Users\david\AppData\Local\user-places.xbel.tbcache
2025-10-11 00:51 - 2025-10-11 00:51 - 000000000 ____D C:\Users\david\AppData\Local\stalefiles
2025-10-11 00:50 - 2025-10-11 01:27 - 000000000 ____D C:\Users\david\AppData\Local\State
2025-10-11 00:50 - 2025-10-11 00:55 - 000000000 ____D C:\Users\david\AppData\Local\mime
2025-10-11 00:50 - 2025-10-11 00:50 - 000000000 ____D C:\Users\david\AppData\Local\kdenlive
2025-10-11 00:49 - 2025-10-11 00:55 - 000000000 ____D C:\Users\david\AppData\Roaming\kdenlive
2025-10-11 00:49 - 2025-10-11 00:50 - 000004745 _____ C:\Users\david\AppData\Local\user-places.xbel.bak
2025-10-10 22:04 - 2025-10-10 22:04 - 000000000 ____D C:\Users\david\.cache
2025-10-10 21:31 - 2025-10-10 22:14 - 000000000 ____D C:\Users\david\AppData\Roaming\Anvsoft
2025-10-10 21:31 - 2025-10-10 21:31 - 000001276 _____ C:\Users\david\Desktop\Any Video Converter.lnk
2025-10-10 21:30 - 2025-10-10 21:30 - 000000000 ____D C:\Program Files (x86)\Anvsoft
2025-10-10 21:28 - 2025-10-10 21:29 - 202566096 _____ (Anvsoft) C:\Users\david\Desktop\any-video-converter-8-2-5.exe
2025-10-09 20:46 - 2025-10-09 20:46 - 000001623 _____ C:\Users\david\Desktop\monster girl quest.lnk
2025-10-09 20:45 - 2025-10-09 20:45 - 000000222 _____ C:\Users\david\Desktop\Sid Meier's Civilization VI.url
2025-10-09 00:40 - 2022-04-05 03:28 - 000000000 ____D C:\Users\david\Desktop\Monster.Girl.Quest.Paradox.RPG.v2.41
2025-10-08 22:28 - 2025-10-08 22:28 - 000000000 ____D C:\Program Files (x86)\Microsoft XNA
2025-10-08 22:27 - 2025-10-08 22:27 - 000466456 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2025-10-08 22:27 - 2025-10-08 22:27 - 000444952 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2025-10-08 22:27 - 2025-10-08 22:27 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2025-10-08 22:27 - 2025-10-08 22:27 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2025-10-08 22:27 - 2025-10-08 22:27 - 000000000 ____D C:\Program Files (x86)\OpenAL
2025-10-08 21:21 - 2025-10-08 21:21 - 000000000 ____D C:\Users\david\AppData\Local\Pal
2025-10-08 19:48 - 2025-10-08 19:48 - 000000000 ____D C:\Users\david\AppData\Local\fontconfig
2025-10-07 18:33 - 2025-10-07 18:33 - 000000000 ____D C:\Users\Public\Documents\Steam
2025-10-07 18:31 - 2025-10-07 18:31 - 000001037 _____ C:\Users\Public\Desktop\Crusader Kings III.lnk
2025-10-05 18:32 - 2025-10-06 17:34 - 000000000 ____D C:\Users\david\AppData\Roaming\EasyAntiCheat
2025-10-05 18:32 - 2025-10-05 18:32 - 003391037 _____ (Saber Interactive Inc. ) C:\WINDOWS\unins000.exe
2025-10-05 18:32 - 2025-10-05 18:32 - 000000965 _____ C:\WINDOWS\unins000.dat
2025-10-05 18:32 - 2025-10-05 18:32 - 000000000 ____D C:\Users\david\AppData\Local\Epic Games
2025-10-05 18:32 - 2025-10-05 18:32 - 000000000 ____D C:\ProgramData\Epic
2025-10-05 18:32 - 2025-10-05 18:32 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2025-10-04 21:05 - 2025-10-04 21:05 - 000002489 _____ C:\Users\Public\Desktop\AMD Privacy View.lnk
2025-10-04 21:05 - 2025-10-04 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD
2025-10-04 18:07 - 2025-10-05 18:33 - 000000000 ____D C:\Users\david\AppData\Local\Saber
2025-10-04 17:27 - 2025-10-04 17:27 - 000000223 _____ C:\Users\david\Desktop\Warhammer 40,000 Space Marine 2.url
2025-10-04 14:23 - 2025-10-04 14:23 - 000000000 ____D C:\Users\david\AppData\Roaming\HelloGames
2025-10-04 12:35 - 2025-10-04 12:35 - 000000222 _____ C:\Users\david\Desktop\Foundation.url
2025-10-03 22:22 - 2025-10-03 22:22 - 000000000 ____D C:\Users\david\Documents\Polymorph Games
2025-10-01 22:09 - 2025-10-01 22:09 - 000000000 ____D C:\Users\david\AppData\Local\FLiNGTrainer
2025-10-01 12:47 - 2025-10-01 12:47 - 000000223 _____ C:\Users\david\Desktop\Resident Evil Village.url
2025-10-01 12:19 - 2025-10-01 12:19 - 000000000 ____D C:\Users\david\AppData\LocalLow\AMD
2025-09-28 18:55 - 2025-10-16 19:32 - 000000000 ____D C:\Users\david\Documents\My Games
2025-09-28 18:55 - 2025-09-28 18:55 - 000003740 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskCachedFiles
2025-09-28 17:57 - 2025-09-28 17:57 - 000000223 _____ C:\Users\david\Desktop\Cyberpunk 2077.url
2025-09-27 15:34 - 2025-10-11 00:47 - 000000000 ____D C:\tmp
2025-09-27 10:23 - 2025-10-15 20:43 - 000000000 ____D C:\Users\david\.lmstudio
2025-09-27 10:23 - 2025-09-27 10:23 - 000000024 _____ C:\Users\david\.lmstudio-home-pointer
2025-09-27 10:22 - 2025-10-12 13:43 - 000000000 ____D C:\Users\david\AppData\Local\lm-studio-updater
2025-09-27 10:22 - 2025-09-27 10:22 - 000001922 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LM Studio.lnk
2025-09-27 10:22 - 2025-09-27 10:22 - 000001910 _____ C:\Users\Public\Desktop\LM Studio.lnk
2025-09-27 10:22 - 2025-09-27 10:22 - 000000000 ____D C:\Program Files\LM Studio
2025-09-27 10:11 - 2025-09-27 10:11 - 000000000 ____D C:\Users\david\AppData\Roaming\ollama app.exe
2025-09-27 10:11 - 2025-09-27 10:11 - 000000000 ____D C:\Users\david\.ollama
2025-09-27 09:55 - 2025-09-27 10:04 - 1182359040 _____ (Ollama ) C:\Users\david\Desktop\OllamaSetup.exe
2025-09-27 09:51 - 2025-09-27 09:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\kdenlive
2025-09-27 09:51 - 2025-09-27 09:51 - 000000000 ____D C:\Program Files\kdenlive
2025-09-27 09:46 - 2025-09-27 09:47 - 124235152 _____ C:\Users\david\Desktop\kdenlive-25.08.1_A.exe
2025-09-27 09:45 - 2025-10-11 09:23 - 000000000 ____D C:\Users\david\Desktop\blender projekt
2025-09-26 18:07 - 2025-09-26 18:07 - 000000223 _____ C:\Users\david\Desktop\Borderlands® 4.url
2025-09-26 17:25 - 2025-09-26 17:25 - 000000223 _____ C:\Users\david\Desktop\Manor Lords.url
2025-09-26 17:25 - 2025-09-26 17:25 - 000000000 ____D C:\Users\david\AppData\Local\ManorLords
2025-09-24 21:34 - 2025-10-17 11:51 - 000003122 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2025-09-24 16:59 - 2025-09-24 16:59 - 000000000 ____D C:\Users\david\AppData\LocalLow\ScienartGames
2025-09-24 16:45 - 2025-09-24 16:45 - 000000223 _____ C:\Users\david\Desktop\Ale & Tale Tavern.url
2025-09-24 13:07 - 2025-09-24 13:07 - 000000222 _____ C:\Users\david\Desktop\Hunt Showdown 1896.url
2025-09-23 20:05 - 2025-09-23 20:05 - 000000219 _____ C:\Users\david\Desktop\Team Fortress 2.url
2025-09-23 20:04 - 2025-09-23 20:04 - 000000222 _____ C:\Users\david\Desktop\UBOAT.url
2025-09-23 20:04 - 2025-09-23 20:04 - 000000000 ____D C:\Users\david\AppData\LocalLow\Deep Water Studio
2025-09-23 17:14 - 2025-09-23 17:14 - 000000000 ____D C:\Users\david\AppData\Roaming\SimsNetwork
2025-09-23 17:14 - 2025-09-23 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphics Rules Maker
2025-09-23 17:00 - 2025-09-23 17:00 - 000000000 ____D C:\Users\Public\Documents\EA Games
2025-09-23 16:59 - 2025-09-23 16:59 - 000001229 _____ C:\Users\david\Desktop\The Sims 2.lnk
2025-09-23 16:59 - 2025-09-23 16:59 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Sims 2
2025-09-23 16:59 - 2011-07-28 13:26 - 000000000 ____D C:\Users\david\Documents\EA Games
2025-09-22 22:53 - 2025-10-11 10:33 - 000000000 ____D C:\Users\david\AppData\Roaming\uTorrent
2025-09-22 22:53 - 2025-09-22 22:53 - 000000995 _____ C:\Users\david\Desktop\µTorrent.lnk
2025-09-22 22:53 - 2025-09-22 22:53 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2025-09-22 22:51 - 2025-09-22 22:51 - 000000000 ____D C:\Users\david\AppData\LocalLow\uTorrent.WebView2
2025-09-22 22:51 - 2025-09-22 22:51 - 000000000 ____D C:\Users\david\AppData\Local\BitTorrentHelper
2025-09-22 16:36 - 2025-09-22 16:36 - 000000223 _____ C:\Users\david\Desktop\Battlefield™ 1.url
2025-09-22 13:43 - 2025-09-22 13:43 - 000000222 _____ C:\Users\david\Desktop\The Universim.url
2025-09-21 22:20 - 2025-10-17 11:52 - 000003098 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-09-21 22:20 - 2025-09-21 22:20 - 000004054 _____ C:\WINDOWS\system32\Tasks\AMD Install Manager - Check For Updates
2025-09-21 22:20 - 2025-09-21 22:20 - 000003484 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2025-09-21 22:20 - 2025-09-21 22:20 - 000003152 _____ C:\WINDOWS\system32\Tasks\StartCN
2025-09-21 22:20 - 2025-09-21 22:20 - 000003072 _____ C:\WINDOWS\system32\Tasks\StartDVR
2025-09-21 22:20 - 2025-09-21 22:20 - 000002622 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2025-09-21 22:20 - 2025-09-21 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2025-09-21 22:20 - 2025-09-21 22:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Bug Report Tool
2025-09-21 22:19 - 2025-09-21 22:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMDInstallManager
2025-09-21 22:19 - 2025-08-25 11:18 - 003072064 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2025-09-21 22:17 - 2025-09-01 10:50 - 000631272 _____ C:\WINDOWS\system32\GameManager64.dll
2025-09-21 22:17 - 2025-09-01 10:50 - 000526336 _____ C:\WINDOWS\system32\EEURestart.exe
2025-09-21 22:17 - 2025-09-01 10:50 - 000479208 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2025-09-21 22:17 - 2025-09-01 10:50 - 000190952 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2025-09-21 22:17 - 2025-09-01 10:50 - 000150528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 121146832 _____ C:\WINDOWS\system32\amd_comgr_2.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 103184848 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 005221864 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 005008336 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 002193920 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 001831912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 001831912 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 001748464 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 001423112 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 001329152 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 001184256 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 001068512 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2025-09-21 22:17 - 2025-09-01 10:49 - 000998376 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000801768 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000787944 _____ C:\WINDOWS\system32\hiprt0200064.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000678864 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000610192 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000592336 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000559592 _____ C:\WINDOWS\system32\atieah64.exe
2025-09-21 22:17 - 2025-09-01 10:49 - 000556960 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000554792 _____ C:\WINDOWS\system32\amdmiracast.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000549328 _____ C:\WINDOWS\system32\dgtrayicon.exe
2025-09-21 22:17 - 2025-09-01 10:49 - 000473600 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000471504 _____ C:\WINDOWS\system32\amdlogum.exe
2025-09-21 22:17 - 2025-09-01 10:49 - 000450048 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000422376 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2025-09-21 22:17 - 2025-09-01 10:49 - 000405176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendr.stz
2025-09-21 22:17 - 2025-09-01 10:49 - 000344552 _____ C:\WINDOWS\system32\clinfo.exe
2025-09-21 22:17 - 2025-09-01 10:49 - 000200680 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000177104 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000169288 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000169264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000162424 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000147456 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000145872 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000141288 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000141272 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000140288 _____ C:\WINDOWS\system32\amdxc64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000132864 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000122344 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000116712 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000067280 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdfendrmgr.stz
2025-09-21 22:17 - 2025-09-01 10:49 - 000051688 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2025-09-21 22:17 - 2025-09-01 10:49 - 000048592 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2025-09-21 22:17 - 2025-09-01 10:48 - 017761744 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64_6.dll
2025-09-21 22:17 - 2025-09-01 10:48 - 000179728 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2025-09-21 22:17 - 2025-09-01 10:48 - 000154792 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2025-09-21 22:17 - 2025-09-01 10:20 - 125680512 _____ C:\WINDOWS\system32\amdxc64.so
2025-09-21 22:01 - 2025-10-12 22:20 - 000000000 ____D C:\Users\david\AppData\Local\AMD_Common
2025-09-21 22:01 - 2025-10-04 21:05 - 000000000 ____D C:\Program Files\AMD
2025-09-21 21:37 - 2025-10-07 14:09 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2025-09-21 21:37 - 2025-09-21 21:37 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2025-09-21 21:35 - 2025-10-07 14:04 - 000001159 _____ C:\Users\david\Desktop\MSI Afterburner.lnk
2025-09-21 21:35 - 2025-09-23 15:56 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2025-09-21 21:35 - 2025-09-21 21:35 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2025-09-21 13:42 - 2025-09-21 13:42 - 000000000 ____D C:\Users\david\AppData\Local\Sentry
2025-09-20 20:10 - 2025-09-20 20:10 - 000000223 _____ C:\Users\david\Desktop\R.E.P.O..url
2025-09-20 20:10 - 2025-09-20 20:10 - 000000223 _____ C:\Users\david\Desktop\Ghost Watchers.url
2025-09-20 20:10 - 2025-09-20 20:10 - 000000222 _____ C:\Users\david\Desktop\Phasmophobia.url
2025-09-20 20:10 - 2025-09-20 20:10 - 000000000 ____D C:\Users\david\AppData\LocalLow\semiwork
2025-09-20 20:10 - 2025-09-20 20:10 - 000000000 ____D C:\Users\david\AppData\LocalLow\Kinetic Games
2025-09-20 17:19 - 2025-09-20 17:20 - 000000215 _____ C:\Users\david\Desktop\důležitté pokud ti problikává nějaká aplikace v okně!.txt
2025-09-20 17:09 - 2025-10-08 22:25 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2025-09-20 16:44 - 2025-09-20 16:53 - 000000000 ____D C:\Users\david\Documents\Rockstar Games
2025-09-20 16:44 - 2025-09-20 16:44 - 000000809 _____ C:\Users\david\Desktop\Rockstar Games Launcher.lnk
2025-09-20 16:44 - 2025-09-20 16:44 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2025-09-20 16:43 - 2025-09-20 16:56 - 000000000 ____D C:\Users\david\AppData\Local\Rockstar Games
2025-09-20 16:43 - 2025-09-20 16:43 - 000000000 ____D C:\ProgramData\Rockstar Games
2025-09-20 16:43 - 2025-09-20 16:43 - 000000000 ____D C:\Program Files\Rockstar Games
2025-09-20 16:43 - 2025-09-20 16:43 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2025-09-20 16:27 - 2025-09-20 16:27 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2025-09-20 16:27 - 2025-09-20 16:27 - 000000000 ____D C:\Program Files\Reference Assemblies
2025-09-20 16:27 - 2025-09-20 16:27 - 000000000 ____D C:\Program Files\MSBuild
2025-09-20 16:27 - 2025-09-20 16:27 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2025-09-20 16:27 - 2025-09-20 16:27 - 000000000 ____D C:\Program Files (x86)\MSBuild
2025-09-20 16:26 - 2025-10-13 21:55 - 000000000 ____D C:\Users\david\AppData\Roaming\WeMod
2025-09-20 16:26 - 2025-10-08 19:23 - 000002203 _____ C:\Users\david\Desktop\WeMod.lnk
2025-09-20 16:26 - 2025-10-08 19:23 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WeMod
2025-09-20 16:26 - 2025-10-08 19:23 - 000000000 ____D C:\Users\david\AppData\Local\WeMod
2025-09-20 15:48 - 2025-09-20 15:48 - 000000000 ____D C:\Program Files\Unity
2025-09-20 14:28 - 2025-09-20 14:28 - 000000000 ____D C:\ProgramData\Unknown Worlds
2025-09-20 14:27 - 2025-09-20 14:27 - 000000000 ____D C:\Users\david\AppData\LocalLow\Unknown Worlds
2025-09-20 13:36 - 2025-09-20 13:44 - 000000000 ____D C:\Users\david\Desktop\Nová složka
2025-09-20 13:34 - 2025-09-20 13:34 - 000000000 ____D C:\Program Files\dotnet
2025-09-20 13:18 - 2025-10-15 21:14 - 000000000 ____D C:\Program Files\Unity Hub
2025-09-20 13:18 - 2025-09-20 13:18 - 000000000 ____D C:\Users\david\AppData\Local\unityhub-updater
2025-09-20 11:33 - 2025-09-20 11:33 - 000001404 _____ C:\Users\david\Desktop\Visual Studio Code.lnk
2025-09-20 11:33 - 2025-09-20 11:33 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2025-09-20 11:33 - 2025-09-20 11:33 - 000000000 ____D C:\Users\david\.vscode
2025-09-20 10:35 - 2025-09-20 10:35 - 000000000 ____D C:\Users\david\AppData\Roaming\RenPy
2025-09-20 10:34 - 2025-09-20 10:35 - 000000000 ____D C:\Users\david\Desktop\lewd house překlad
2025-09-20 10:34 - 2025-09-20 10:34 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2025-09-20 10:08 - 2025-10-17 11:51 - 000000000 ____D C:\Users\david\AppData\Roaming\Oculus Remote Desktop
2025-09-20 10:08 - 2025-09-20 10:08 - 000000000 ____D C:\Users\david\AppData\Roaming\Meta Quest Remote Desktop
2025-09-20 10:06 - 2025-10-02 18:50 - 000000000 ____D C:\Users\david\AppData\Roaming\OculusClient
2025-09-20 10:06 - 2025-10-01 12:19 - 000000000 ____D C:\Users\david\AppData\Roaming\Oculus
2025-09-20 10:06 - 2025-09-20 17:18 - 000002079 _____ C:\Users\Public\Desktop\Meta Quest Link.lnk
2025-09-20 10:06 - 2025-09-20 10:06 - 000201216 _____ C:\WINDOWS\system32\Drivers\magicdsfilterQuestPro.dll
2025-09-20 10:06 - 2025-09-20 10:06 - 000201216 _____ C:\WINDOWS\system32\Drivers\magicdsfilterQuest3s.dll
2025-09-20 10:06 - 2025-09-20 10:06 - 000201216 _____ C:\WINDOWS\system32\Drivers\magicdsfilterQuest3.dll
2025-09-20 10:06 - 2025-09-20 10:06 - 000201216 _____ C:\WINDOWS\system32\Drivers\magicdsfilterQuest2.dll
2025-09-20 10:06 - 2025-09-20 10:06 - 000032856 _____ (Facebook Inc.) C:\WINDOWS\system32\Drivers\Oculus_ViGEmBus.sys
2025-09-20 10:06 - 2025-09-20 10:06 - 000000000 ____D C:\ProgramData\Oculus
2025-09-20 10:06 - 2025-09-20 10:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Meta Quest Link
2025-09-20 10:05 - 2025-10-13 13:54 - 000000000 ____D C:\Program Files\Oculus
2025-09-20 09:18 - 2025-10-06 16:27 - 000000000 ____D C:\Users\david\blenderkit_data
2025-09-19 20:14 - 2025-09-19 20:14 - 000000000 ____D C:\Users\david\Documents\Klei
2025-09-19 18:37 - 2025-09-19 18:37 - 000000222 _____ C:\Users\david\Desktop\Don't Starve Together.url
2025-09-19 07:24 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\ruxim
2025-09-19 07:24 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\AccountHealthAssets
2025-09-19 07:24 - 2025-09-19 07:24 - 000000000 ____D C:\inetpub
2025-09-19 01:24 - 2025-09-19 01:24 - 000000223 _____ C:\Users\david\Desktop\Red Dead Redemption 2.url
2025-09-18 21:11 - 2025-09-19 02:34 - 016603247 _____ C:\Users\david\Desktop\kostka0001-0290.mkv
2025-09-18 21:02 - 2025-10-11 19:27 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\MMC

N0váček · Příspěvekod **N0váček** » 17 říj 2025 14:05

2025-09-18 19:58 - 2025-09-18 19:59 - 000000000 ____D C:\Users\david\Desktop\material blender
2025-09-18 19:54 - 2025-09-18 19:54 - 000581249 _____ C:\Users\david\Documents\kostka.blend
2025-09-18 19:54 - 2025-09-18 19:54 - 000077233 _____ C:\WINDOWS\SysWOW64\ctac.json
2025-09-18 19:54 - 2025-09-18 19:54 - 000077233 _____ C:\WINDOWS\system32\ctac.json
2025-09-18 19:54 - 2025-09-18 19:54 - 000001681 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2025-09-18 19:53 - 2025-09-18 19:54 - 087635337 _____ C:\Users\david\Desktop\brown_mud_leaves_01_4k.blend.zip
2025-09-18 19:53 - 2025-09-18 19:54 - 075334150 _____ C:\Users\david\Desktop\mixed_brick_wall_4k.blend.zip
2025-09-18 19:34 - 2025-09-18 19:51 - 2273267983 _____ C:\Users\david\Desktop\2025-09-13 12-30-19.mp4
2025-09-18 19:04 - 2025-09-28 18:55 - 000000000 ____D C:\Users\david\AppData\Local\UnrealEngine
2025-09-18 15:04 - 2025-10-15 21:05 - 000000000 ____D C:\Users\david\AppData\Roaming\steelseries-gg-client
2025-09-18 15:03 - 2025-09-18 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2025-09-18 15:03 - 2025-09-18 15:03 - 000000000 ____D C:\Program Files\SteelSeries
2025-09-18 13:06 - 2025-09-25 12:41 - 000000000 ____D C:\ProgramData\SteelSeries
2025-09-18 12:27 - 2025-09-18 12:27 - 000000000 ____D C:\WINDOWS\system32\SteelSeries
2025-09-18 12:13 - 2025-09-18 12:13 - 000000000 ____D C:\Users\david\AppData\Local\Backup
2025-09-17 23:16 - 2025-10-15 20:52 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-09-17 21:41 - 2025-10-07 18:33 - 000000000 ____D C:\Users\david\Documents\Paradox Interactive
2025-09-17 21:41 - 2025-09-17 21:41 - 000002579 _____ C:\Users\david\Desktop\Paradox Launcher v2.lnk
2025-09-17 21:41 - 2025-09-17 21:41 - 000000000 ____D C:\Users\david\AppData\Roaming\PLITCH
2025-09-17 21:41 - 2025-09-17 21:41 - 000000000 ____D C:\Users\david\AppData\Roaming\Paradox Interactive
2025-09-17 21:41 - 2025-09-17 21:41 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paradox Interactive
2025-09-17 21:41 - 2025-09-17 21:41 - 000000000 ____D C:\Users\david\AppData\Local\User Name
2025-09-17 21:41 - 2025-09-17 21:41 - 000000000 ____D C:\Users\david\AppData\Local\Paradox Interactive
2025-09-17 21:39 - 2025-10-07 19:31 - 000001236 _____ C:\Users\david\Desktop\PLITCH.lnk
2025-09-17 21:39 - 2025-10-07 19:31 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PLITCH
2025-09-17 21:39 - 2025-09-17 21:39 - 000000223 _____ C:\Users\david\Desktop\RoboCop Rogue City.url
2025-09-17 21:39 - 2025-09-17 21:39 - 000000000 ____D C:\Users\david\AppData\Local\RoboCop
2025-09-17 20:25 - 2025-09-17 20:26 - 000000375 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2025-09-17 20:04 - 2025-09-17 20:04 - 000000000 ____D C:\ProgramData\CPUID Software
2025-09-17 20:03 - 2025-09-17 20:03 - 000000975 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2025-09-17 20:03 - 2025-09-17 20:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2025-09-17 20:03 - 2025-09-17 20:03 - 000000000 ____D C:\Program Files\CPUID
2025-09-17 20:02 - 2025-09-17 20:02 - 000000000 ____D C:\ProgramData\AMD
2025-09-17 19:54 - 2025-09-20 16:43 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2025-09-17 19:54 - 2025-09-17 20:02 - 000000000 ____D C:\ProgramData\UWP
2025-09-17 19:53 - 2025-09-17 19:53 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2025-09-17 19:53 - 2025-09-17 19:53 - 000000000 ____D C:\Program Files (x86)\Realtek
2025-09-17 19:53 - 2018-12-03 14:59 - 000223072 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RUAudExD.DLL
2025-09-17 19:52 - 2025-09-22 12:52 - 000001657 _____ C:\Users\david\Desktop\World_of_Warships.lnk
2025-09-17 19:52 - 2025-09-17 19:52 - 000000000 ____D C:\Games
2025-09-17 19:48 - 2025-09-17 19:52 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2025-09-17 19:48 - 2025-09-17 19:48 - 000001892 _____ C:\Users\david\Desktop\Game Center.lnk
2025-09-17 19:48 - 2025-09-17 19:48 - 000000000 ____D C:\Users\david\AppData\Roaming\Wargaming.net
2025-09-17 19:45 - 2025-09-17 19:46 - 003003144 _____ (CPUID, Inc. ) C:\Users\david\Desktop\hwmonitor_1.59.exe
2025-09-17 19:41 - 2025-09-17 19:41 - 000000000 ____D C:\ProgramData\Wargaming.net
2025-09-17 19:40 - 2025-10-04 21:05 - 000000000 ____D C:\AMD
2025-09-17 19:40 - 2025-09-17 19:40 - 000000222 _____ C:\Users\david\Desktop\Hearts of Iron IV.url
2025-09-17 19:40 - 2025-09-17 19:40 - 000000000 ____D C:\Users\david\AppData\Roaming\AMD
2025-09-17 19:40 - 2025-09-17 19:40 - 000000000 ____D C:\Program Files (x86)\AMD
2025-09-17 19:39 - 2025-10-17 11:51 - 000000000 ____D C:\Users\david\AppData\Local\Oculus
2025-09-17 19:38 - 2025-09-17 19:39 - 004774136 _____ (Facebook Technologies, LLC) C:\Users\david\Desktop\OculusSetup.exe
2025-09-17 19:19 - 2025-10-15 20:30 - 000000000 ____D C:\Users\david\AppData\Local\CrashDumps
2025-09-17 19:17 - 2025-09-17 18:23 - 000000000 ____D C:\WINDOWS\Panther
2025-09-17 19:15 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-09-17 19:15 - 2025-10-15 20:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-09-17 19:15 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-09-17 19:15 - 2025-09-17 19:15 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\sysprep
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\MailContactsCalendarSync
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\0409
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\winrm
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\WCN
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\slmgr
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\MailContactsCalendarSync
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\mde
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\cs
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\0409
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\Setup
2025-09-17 19:15 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\DigitalLocker
2025-09-17 19:14 - 2025-10-17 13:58 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-09-17 19:14 - 2025-10-17 13:53 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-09-17 19:14 - 2025-10-17 12:20 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-09-17 19:14 - 2025-10-16 23:16 - 000000000 ___HD C:\Program Files\WindowsApps
2025-09-17 19:14 - 2025-10-16 15:29 - 000000000 ____D C:\WINDOWS\INF
2025-09-17 19:14 - 2025-10-15 21:14 - 000000000 ___RD C:\Program Files (x86)
2025-09-17 19:14 - 2025-10-15 21:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-09-17 19:14 - 2025-10-15 21:12 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-09-17 19:14 - 2025-10-15 21:01 - 000000000 ____D C:\WINDOWS\ServiceState
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\UUS
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\SystemResources
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\setup
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\Provisioning
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\BrowserCore
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-09-17 19:14 - 2025-10-15 20:53 - 000000000 ____D C:\ProgramData\USOPrivate
2025-09-17 19:14 - 2025-10-15 20:51 - 000000000 ____D C:\WINDOWS\system32\config\TxR
2025-09-17 19:14 - 2025-09-28 18:59 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2025-09-17 19:14 - 2025-09-22 12:33 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2025-09-17 19:14 - 2025-09-20 16:27 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2025-09-17 19:14 - 2025-09-20 16:27 - 000000000 ____D C:\WINDOWS\system32\MUI
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ___SD C:\WINDOWS\system32\F12
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ___RD C:\Program Files\Windows Defender
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\SystemApps
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\Com
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\WINDOWS\InboxApps
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\Program Files\Common Files\System
2025-09-17 19:14 - 2025-09-19 07:24 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-09-17 19:14 - 2025-09-17 21:41 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-09-17 19:14 - 2025-09-17 19:17 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ___SD C:\WINDOWS\system32\dsc
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\te-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\or-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\km-KH
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\is-IS
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\id-ID
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\be-BY
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\as-IN
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\am-ET
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\OCR
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\IME
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\Help
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\WINDOWS\Globalization
2025-09-17 19:14 - 2025-09-17 19:15 - 000000000 ____D C:\Program Files (x86)\Windows NT
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 __SHD C:\Program Files\Windows Sidebar
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 __RSD C:\WINDOWS\Media
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 __RHD C:\Users\Public\Libraries
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\Nui
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\lxss
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\system32\Nui
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\system32\lxss
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\system32\Configuration
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\system32\AppV
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___RD C:\WINDOWS\Offline Web Pages
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ___HD C:\WINDOWS\LanguageOverlayCache
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\WUModels
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Web
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\WaaS
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Vss
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\tracing
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\TAPI
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\SMI
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\ShellExperiences
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\ras
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\NDF
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Msdtc
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Ipmi
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\InputMethod
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\icsxml
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicyUsers
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\downlevel
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Bthprops
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AppLocker
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\winevt
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\WebThreatDefSvc
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\ras
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\ProximityToast
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\PointOfService
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\Pbr
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\Ipmi
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\InputMethod
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\IME
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\icsxml
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\ias
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\GroupPolicyUsers
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\DriverState
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\downlevel
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\config\RegBack
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\config\Journal
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\Bthprops
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\System
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SKB
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\schemas
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\SchCache
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\security
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Resources
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\rescache
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\RemotePackages
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Registration
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\PLA
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Performance
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\ModemLogs
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\L2Schemas
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\InputMethod
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\IdentityCRL
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\GameBarPresenceWriter
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Cursors
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Containers
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\Branding
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Spelling
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\ProgramData\USOShared
2025-09-17 19:14 - 2025-09-17 19:14 - 000000000 ____D C:\Program Files\ModifiableWindowsApps
2025-09-17 19:14 - 2025-09-17 19:13 - 000017635 _____ C:\WINDOWS\system32\Drivers\etc\services
2025-09-17 19:14 - 2025-09-17 19:13 - 000003103 _____ C:\WINDOWS\SysWOW64\mmc.exe.config
2025-09-17 19:14 - 2025-09-17 19:13 - 000003103 _____ C:\WINDOWS\system32\mmc.exe.config
2025-09-17 19:14 - 2025-09-17 19:13 - 000001358 _____ C:\WINDOWS\system32\Drivers\etc\protocol
2025-09-17 19:14 - 2025-09-17 19:13 - 000000858 _____ C:\WINDOWS\system32\DefaultQuestions.json
2025-09-17 19:14 - 2025-09-17 19:13 - 000000407 _____ C:\WINDOWS\system32\Drivers\etc\networks
2025-09-17 19:14 - 2025-09-17 19:07 - 000000000 ____D C:\WINDOWS\system32\config\systemprofile
2025-09-17 19:14 - 2025-09-17 18:36 - 000000000 ____D C:\WINDOWS\appcompat
2025-09-17 19:14 - 2025-09-17 18:31 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2025-09-17 19:14 - 2025-09-17 18:23 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-09-17 19:14 - 2025-09-17 18:23 - 000000000 ____D C:\WINDOWS\system32\spool
2025-09-17 19:14 - 2025-09-17 18:23 - 000000000 ____D C:\WINDOWS\CSC
2025-09-17 19:14 - 2025-09-17 18:23 - 000000000 ____D C:\Program Files\Windows NT
2025-09-17 19:13 - 2025-10-15 21:00 - 099876864 _____ C:\WINDOWS\system32\config\SOFTWARE
2025-09-17 19:13 - 2025-10-15 21:00 - 018874368 _____ C:\WINDOWS\system32\config\SYSTEM
2025-09-17 19:13 - 2025-10-15 21:00 - 000786432 _____ C:\WINDOWS\system32\config\DEFAULT
2025-09-17 19:13 - 2025-10-15 21:00 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-09-17 19:13 - 2025-10-15 21:00 - 000131072 _____ C:\WINDOWS\system32\config\SAM
2025-09-17 19:13 - 2025-10-15 21:00 - 000065536 _____ C:\WINDOWS\system32\config\SECURITY
2025-09-17 19:13 - 2025-10-15 20:53 - 000000000 ____D C:\WINDOWS\servicing
2025-09-17 19:13 - 2025-09-17 23:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2025-09-17 19:13 - 2025-09-17 19:14 - 000000000 ____D C:\WINDOWS\system32\SMI
2025-09-17 19:12 - 2025-09-17 19:19 - 000000000 ___HD C:\$SysReset
2025-09-17 19:11 - 2025-09-17 19:11 - 000000223 _____ C:\Users\david\Desktop\Stronghold Crusader Definitive Edition.url
2025-09-17 19:11 - 2025-09-17 19:11 - 000000000 ____D C:\Users\david\AppData\LocalLow\Firefly Studios
2025-09-17 19:10 - 2025-09-17 19:10 - 000000000 ____D C:\Users\david\AppData\Roaming\Blender Foundation
2025-09-17 19:10 - 2025-09-17 19:10 - 000000000 ____D C:\Users\david\AppData\Local\Blender Foundation
2025-09-17 19:10 - 2025-09-17 19:10 - 000000000 ____D C:\Users\david\.thumbnails
2025-09-17 19:07 - 2025-09-17 19:07 - 000000000 ____D C:\Users\david\AppData\Roaming\NVIDIA
2025-09-17 19:06 - 2025-10-17 13:49 - 000000000 ____D C:\Users\david\AppData\Local\Discord
2025-09-17 19:06 - 2025-10-16 13:58 - 000002247 _____ C:\Users\david\Desktop\Discord.lnk
2025-09-17 19:06 - 2025-10-08 19:23 - 000000000 ____D C:\Users\david\AppData\Local\SquirrelTemp
2025-09-17 19:06 - 2025-09-17 19:06 - 000001232 _____ C:\Users\david\Desktop\Blender 4.5.lnk
2025-09-17 19:06 - 2025-09-17 19:06 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2025-09-17 19:06 - 2025-09-17 19:06 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2025-09-17 19:06 - 2025-09-17 19:06 - 000000000 ____D C:\Program Files\Blender Foundation
2025-09-17 19:05 - 2025-09-17 20:02 - 000000000 ____D C:\Users\david\AppData\Roaming\XPPen
2025-09-17 19:05 - 2025-09-17 19:05 - 000000833 _____ C:\Users\Public\Desktop\Pentablet.lnk
2025-09-17 19:05 - 2025-09-17 19:05 - 000000000 ____D C:\Users\david\AppData\Roaming\WinRAR
2025-09-17 19:05 - 2025-09-17 19:05 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pentablet
2025-09-17 19:05 - 2025-09-17 19:05 - 000000000 ____D C:\Program Files\XPPen
2025-09-17 19:05 - 2023-09-19 17:03 - 000146944 _____ (TODO: <公司名>) C:\WINDOWS\system32\WinTab32.dll
2025-09-17 19:05 - 2023-09-19 17:03 - 000126464 _____ (TODO: <公司名>) C:\WINDOWS\SysWOW64\WinTab32.dll
2025-09-17 19:04 - 2025-09-17 19:04 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-09-17 19:04 - 2025-09-17 19:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2025-09-17 19:04 - 2025-09-17 19:04 - 000000000 ____D C:\Program Files\WinRAR
2025-09-17 19:00 - 2025-09-17 19:00 - 000000000 ____D C:\Users\david\AppData\Local\openvr
2025-09-17 19:00 - 2025-09-06 02:17 - 000126056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2025-09-17 18:48 - 2025-09-17 18:48 - 000000000 ____D C:\Users\david\ansel
2025-09-17 18:47 - 2025-10-01 12:07 - 000003834 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-09-17 18:47 - 2025-10-01 12:07 - 000001434 _____ C:\Users\Public\Desktop\NVIDIA App.lnk
2025-09-17 18:47 - 2025-10-01 12:07 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-09-17 18:47 - 2025-09-22 19:30 - 001310832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2025-09-17 18:47 - 2025-09-22 19:30 - 001115248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2025-09-17 18:47 - 2025-09-22 19:30 - 000288368 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2025-09-17 18:47 - 2025-09-22 19:30 - 000263280 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2025-09-17 18:47 - 2025-09-22 19:05 - 000180760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2025-09-17 18:47 - 2025-09-22 19:05 - 000159768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2025-09-17 18:47 - 2025-09-17 18:52 - 000000000 ____D C:\Users\david\AppData\Local\NVIDIA Corporation
2025-09-17 18:47 - 2025-09-17 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-09-17 18:45 - 2025-09-17 18:47 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2025-09-17 18:40 - 2025-10-10 20:05 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-09-17 18:40 - 2025-10-10 20:05 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-09-17 18:40 - 2025-09-28 18:55 - 000000000 ____D C:\Users\david\AppData\Local\Steam
2025-09-17 18:40 - 2025-09-17 18:40 - 000000000 ____D C:\Users\david\AppData\Local\Google
2025-09-17 18:40 - 2025-09-17 18:40 - 000000000 ____D C:\Users\david\AppData\Local\CEF
2025-09-17 18:40 - 2025-09-17 18:40 - 000000000 ____D C:\Program Files\Google
2025-09-17 18:38 - 2025-10-14 14:21 - 000003576 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-4194885305-2177530522-3158325244-1001
2025-09-17 18:38 - 2025-09-17 18:38 - 000000436 _____ C:\Users\david\Desktop\Tento počítač – zástupce.lnk
2025-09-17 18:38 - 2025-09-17 18:38 - 000000000 ___HD C:\OneDriveTemp
2025-09-17 18:38 - 2025-09-17 18:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2025-09-17 18:38 - 2025-09-17 18:38 - 000000000 ____D C:\Program Files (x86)\Google
2025-09-17 18:36 - 2025-10-17 11:52 - 000000000 ___RD C:\Users\david\OneDrive
2025-09-17 18:36 - 2025-10-16 15:30 - 000000000 ____D C:\Program Files (x86)\ASUS
2025-09-17 18:36 - 2025-10-14 14:21 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-4194885305-2177530522-3158325244-1001
2025-09-17 18:36 - 2025-10-14 14:21 - 000003360 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4194885305-2177530522-3158325244-1001
2025-09-17 18:36 - 2025-10-14 14:21 - 000002383 _____ C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-09-17 18:36 - 2025-09-17 22:02 - 000000000 ____D C:\Users\david\AppData\Local\PlaceholderTileLogoFolder
2025-09-17 18:36 - 2025-09-17 18:36 - 001243488 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\AsusDownloadAgent.exe
2025-09-17 18:36 - 2025-09-17 18:36 - 000378376 _____ C:\WINDOWS\system32\syncas.dll
2025-09-17 18:36 - 2025-09-17 18:36 - 000001188 _____ C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\ASUS DriverHub.lnk
2025-09-17 18:36 - 2025-09-17 18:36 - 000001164 _____ C:\Users\david\Desktop\ASUS DriverHub.lnk
2025-09-17 18:36 - 2025-09-17 18:36 - 000000000 ____D C:\WINDOWS\system32\Tasks\ASUS
2025-09-17 18:36 - 2025-09-17 18:36 - 000000000 ____D C:\Users\david\AppData\Local\ToastNotificationManagerCompat
2025-09-17 18:36 - 2025-09-17 18:36 - 000000000 ____D C:\Users\david\AppData\Local\Publishers
2025-09-17 18:36 - 2025-09-17 18:36 - 000000000 ____D C:\Users\david\AppData\Local\Comms
2025-09-17 18:36 - 2025-09-17 18:36 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2025-09-17 18:36 - 2025-09-17 18:36 - 000000000 ____D C:\Program Files\ASUS
2025-09-17 18:36 - 2025-09-17 18:36 - 000000000 _____ C:\WINDOWS\system32\Drivers\1043_ASUSTeK_System Product Name.alu
2025-09-17 18:35 - 2025-10-16 23:13 - 000000000 ____D C:\Users\david\AppData\Local\D3DSCache
2025-09-17 18:35 - 2025-10-11 10:32 - 000000000 ____D C:\Users\david\AppData\Local\Packages
2025-09-17 18:35 - 2025-10-10 12:15 - 000000000 ____D C:\Users\david\AppData\Local\NVIDIA
2025-09-17 18:35 - 2025-09-21 22:20 - 000000000 ____D C:\Users\david\AppData\Local\AMD
2025-09-17 18:35 - 2025-09-17 19:05 - 000000000 ____D C:\Users\david\AppData\Roaming\Adobe
2025-09-17 18:35 - 2025-09-17 18:36 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-09-17 18:35 - 2025-09-17 18:35 - 000000000 ___SD C:\Users\david\AppData\Roaming\Microsoft\Crypto
2025-09-17 18:35 - 2025-09-17 18:35 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Vault
2025-09-17 18:35 - 2025-09-17 18:35 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Network
2025-09-17 18:35 - 2025-09-17 18:35 - 000000000 ____D C:\Users\david\AppData\LocalLow\NVIDIA
2025-09-17 18:35 - 2025-09-17 18:35 - 000000000 ____D C:\Users\david\AppData\Local\ConnectedDevicesPlatform
2025-09-17 18:34 - 2025-09-17 18:34 - 000000000 ___SD C:\Users\david\AppData\Roaming\Microsoft\SystemCertificates
2025-09-17 18:33 - 2025-10-15 21:08 - 001693332 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-09-17 18:33 - 2025-10-13 21:55 - 000000000 ____D C:\Users\david
2025-09-17 18:33 - 2025-09-27 10:13 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Windows
2025-09-17 18:33 - 2025-09-17 18:42 - 000000000 ____D C:\Users\david\AppData\Roaming\Microsoft\Spelling
2025-09-17 18:33 - 2025-09-17 18:33 - 000000020 ___SH C:\Users\david\ntuser.ini
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Šablony
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Soubory cookie
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Poslední
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Okolní tiskárny
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Okolní síť
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Nabídka Start
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Dokumenty
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Documents\Obrázky
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Documents\Hudba
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Documents\Filmy
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\Data aplikací
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 SHDJL C:\Users\david\AppData\Local\Data aplikací
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 ___SD C:\Users\david\AppData\Roaming\Microsoft\Protect
2025-09-17 18:33 - 2025-09-17 18:33 - 000000000 ___SD C:\Users\david\AppData\Roaming\Microsoft\Credentials
2025-09-17 18:31 - 2025-10-13 13:54 - 000003716 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{47FF5EB2-1D3B-41A7-9973-7EBC271CDD41}
2025-09-17 18:31 - 2025-10-13 13:54 - 000003590 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{998C220D-0460-40CC-A085-8524C50F20DF}
2025-09-17 18:26 - 2025-09-17 18:36 - 000376680 _____ () C:\WINDOWS\system32\AsusDownLoadLicense.exe
2025-09-17 18:23 - 2025-10-15 21:01 - 000003796 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-09-17 18:23 - 2025-10-15 21:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-09-17 18:23 - 2025-10-11 10:32 - 000000000 ____D C:\ProgramData\Packages
2025-09-17 18:23 - 2025-09-18 12:35 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Public\Documents\Obrázky
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Public\Documents\Hudba
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Public\Documents\Filmy
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Šablony
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Soubory cookie
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Poslední
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Okolní tiskárny
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Okolní síť
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Nabídka Start
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Dokumenty
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Documents\Obrázky
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Documents\Hudba
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Documents\Filmy
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\Data aplikací
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default\AppData\Local\Data aplikací
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\Default User
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Users\All Users
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\ProgramData\Šablony
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\ProgramData\Plocha
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\ProgramData\Nabídka Start
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\ProgramData\Dokumenty
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\ProgramData\Data aplikací
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 SHDJL C:\Documents and Settings
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\NV
2025-09-17 18:23 - 2025-09-17 18:23 - 000000000 ____D C:\WINDOWS\system32\NV
2025-09-17 18:20 - 2025-10-17 01:32 - 000000000 ____D C:\ProgramData\NVIDIA
2025-09-17 18:20 - 2025-10-16 15:30 - 000000000 ____D C:\ProgramData\ASUS
2025-09-17 18:20 - 2025-10-15 21:01 - 001430792 _____ () C:\WINDOWS\system32\wpbbin.exe
2025-09-17 18:20 - 2025-10-15 21:01 - 001311840 _____ () C:\WINDOWS\system32\WPBTBin.exe
2025-09-17 18:20 - 2025-10-15 21:01 - 001250656 _____ C:\WINDOWS\system32\AsusUpdateCheck.exe
2025-09-17 18:20 - 2025-10-15 21:01 - 000050240 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\WPBTBin_PreventBitlocker.exe
2025-09-17 18:20 - 2025-10-15 21:01 - 000012288 ___SH C:\DumpStack.log.tmp
2025-09-17 18:20 - 2025-10-15 21:01 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-09-17 18:20 - 2025-10-15 20:55 - 000299304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-09-17 18:20 - 2025-10-15 19:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-09-17 18:20 - 2025-10-11 19:43 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-09-17 18:20 - 2025-10-11 19:43 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-09-17 18:20 - 2025-09-20 10:06 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2025-09-17 18:20 - 2025-09-17 22:01 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2025-09-17 18:20 - 2025-09-17 18:23 - 000000000 ____D C:\WINDOWS\system32\AMD
2025-09-17 18:20 - 2025-09-17 18:20 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2025-09-17 18:20 - 2025-09-17 18:20 - 000000000 ____D C:\WINDOWS\system32\config\BFS

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-09-20 16:27 - 2024-10-05 02:08 - 001175072 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2025-09-20 16:27 - 2024-10-05 02:08 - 000780720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

==================== Files in the root of some directories ========

2025-10-11 01:01 - 2025-10-11 01:01 - 000000808 _____ () C:\Users\david\AppData\Local\recently-used.xbel
2025-10-11 00:53 - 2025-10-11 00:53 - 000005026 _____ () C:\Users\david\AppData\Local\user-places.xbel
2025-10-11 00:49 - 2025-10-11 00:50 - 000004745 _____ () C:\Users\david\AppData\Local\user-places.xbel.bak
2025-10-11 00:53 - 2025-10-11 00:53 - 000000000 _____ () C:\Users\david\AppData\Local\user-places.xbel.tbcache

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================|

N0váček · Příspěvekod **N0váček** » 17 říj 2025 14:34

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-10-2025
Ran by david (17-10-2025 14:03:18)
Running from C:\Users\david\Downloads
Microsoft Windows 11 Pro Version 24H2 26100.6899 (X64) (2025-09-17 16:23:30)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-4194885305-2177530522-3158325244-500 - Administrator - Disabled)
david (S-1-5-21-4194885305-2177530522-3158325244-1001 - Administrator - Enabled) => C:\Users\david
DefaultAccount (S-1-5-21-4194885305-2177530522-3158325244-503 - Limited - Disabled)
Guest (S-1-5-21-4194885305-2177530522-3158325244-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4194885305-2177530522-3158325244-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AMD Application Compatibility Database Driver (HKLM-x32\...\{7466773D-AE4B-48F6-8E12-D64B555C1BEA}) (Version: 1.0.0.3 - Advanced Micro Devices, Inc.) Hidden
AMD Application Compatibility Database File (HKLM\...\{950d026e-be12-4dc6-988a-b15dcbc1e536}.sdb) (Version: - )
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.134 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 7.06.24.2226 - Advanced Micro Devices, Inc.)
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.126 - Advanced Micro Devices, Inc.) Hidden
AMD Install Manager (HKLM\...\{7501C7B0-AE93-47E9-AC57-757BA2EFCDA1}) (Version: 25.10.25237.0452 - Advanced Micro Devices, Inc.)
AMD PPM Provisioning File Driver (HKLM-x32\...\{3665A5DE-D07C-46D7-9207-713E8E9FEF32}) (Version: 8.0.0.53 - Advanced Micro Devices, Inc.) Hidden
AMD Privacy View (HKLM\...\{D8E24EA6-807B-48D0-86D6-A9C5E74B8F2C}) (Version: 1.02.0001 - Eyeware Tech SA)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.39.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 25.9.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{39215ab4-d0e3-42bf-841b-fc5b04cda78d}) (Version: 7.06.24.2226 - Advanced Micro Devices, Inc.) Hidden
Any Video Converter 7.0.3 (HKLM-x32\...\Any Video Converter) (Version: 7.0.3 - Anvsoft)
ASUS DriverHub (HKLM\...\{A8761B4B-A179-4469-99B7-FDFA94E551F9}) (Version: 1.0.6.10 - ASUS)
Blender (HKLM\...\{D15FF2AE-BB05-416C-ADB4-8151F687C348}) (Version: 4.5.3 - Blender Foundation)
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CertsUpdater version 1.5 (HKLM-x32\...\{90DE7E86-6F5A-4125-9EC5-D95093C80093}_is1) (Version: 1.5 - Saber Interactive Inc.)
CPUID HWMonitor 1.59 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.59 - CPUID, Inc.)
Crusader Kings III: Royal Edition (HKLM-x32\...\Crusader Kings III: Royal Edition_is1) (Version: 1.17.0.1 - )
Discord (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Discord) (Version: 1.0.9208 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.566.0.6079 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{a5316e04-4f57-44b2-bc29-c4e58fa0fea1}) (Version: 13.566.0.6079 - Electronic Arts)
Enlisted Launcher 1.0.3.169 (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\{5fcad5a5-d0d8-4edf-a5ba-040b397eac31}}_is1) (Version: - Gaijin Network)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 141.0.7390.66 - Google LLC)
Graphics Rules Maker (HKLM-x32\...\Graphics Rules Maker) (Version: 2.3.0 - SimsNetwork.com)
kdenlive (HKLM-x32\...\kdenlive) (Version: 25.08.1 - KDE e.V.)
LM Studio 0.3.27 (HKLM\...\c6dbe996-22a9-5998-b542-7abe33da3b83) (Version: 0.3.27 - LM Studio)
Microsoft .NET Host - 8.0.20 (x64) (HKLM\...\{E8562B28-F84C-45AA-AE65-E31D1068377F}) (Version: 64.80.39230 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.20 (x64) (HKLM\...\{BB4BB73D-8784-40A3-9888-9BD29EC1B023}) (Version: 64.80.39230 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.20 (x64) (HKLM\...\{402EB961-5AED-472A-B785-B5AE9EF71286}) (Version: 64.80.39230 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 141.0.3537.71 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 141.0.3537.71 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\OneDriveSetup.exe) (Version: 25.179.0914.0003 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.44.35211 (HKLM-x32\...\{d8bbe9f9-7c5b-42c6-b715-9ee898a2e515}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.44.35211 (HKLM-x32\...\{0b5169e3-39da-4313-808e-1f9c0407f3bf}) (Version: 14.44.35211.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.44.35211 (HKLM\...\{86AB2CC9-08BD-4643-B0F9-F82D006D72FF}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.44.35211 (HKLM\...\{43B0D101-A022-48F4-9D04-BA404CEB1D53}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.44.35211 (HKLM-x32\...\{C18FB403-1E88-43C8-AD8A-CED50F23DE8B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.44.35211 (HKLM-x32\...\{922480B5-CAEB-4B1B-AAA4-9716EFDCE26B}) (Version: 14.44.35211 - Microsoft Corporation) Hidden
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.104.1 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.20 (x64) (HKLM\...\{D330A645-92DF-4389-8324-B82FE3561498}) (Version: 64.80.39251 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.20 (x64) (HKLM-x32\...\{e033dc24-62c0-4f2c-928e-99122efab19d}) (Version: 8.0.20.35221 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MSI Afterburner 4.6.6 (HKLM-x32\...\Afterburner) (Version: 4.6.6 - MSI Co., LTD)
NVIDIA App 11.0.5.266 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.5.266 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.5.11504.36206172 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.11504.36206172 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.5.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.5.0 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 581.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 581.57 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Oculus (HKLM\...\Oculus) (Version: 1.103.0 - Facebook Technologies, LLC)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Paradox Launcher v2 (HKLM\...\{BCBAAF27-1C19-48A5-8DEF-258E46D93FE0}) (Version: 2.4.0 - Paradox Interactive)
Pentablet (HKLM\...\{5DAB8C1A-6D8E-467D-BE62-AC13087AA950}_is1) (Version: 4.0.8.250305 - XPPen Technology)
PLITCH 2.16.1 (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\{3248AA2D-83C9-4761-AEA0-D2F64D6517C3}_is1) (Version: 2.16.1 - MegaDev GmbH)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.3.0 - Advanced Micro Devices, Inc.) Hidden
Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.2393 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.3.7 (HKLM-x32\...\RTSS) (Version: 7.3.7 - Unwinder)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.104.2632 - Rockstar Games)
Rockstar Games SDK (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.4.0.118 - Rockstar Games)
RyzenMasterSDK (HKLM\...\{DB7685B5-332E-4398-8030-A7F608DD5B77}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
SteelSeries GG 96.0.0 (HKLM\...\SteelSeries GG) (Version: 96.0.0 - SteelSeries ApS)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-2) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\Wargaming.net Game Center) (Version: 25.5.1.491 - Wargaming.net)
WeMod (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\WeMod) (Version: 11.6.0 - WeMod)
WinRAR 7.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.11.0 - win.rar GmbH)
World_of_Warships (HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\1527964767) (Version: - Wargaming.net)

Packages:
=========
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2025-09-21] (Advanced Micro Devices Inc.)
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.58683691.InpApp_cw5n1h2txyewy [2025-10-15] (Microsoft Windows)
LG Monitor App Installer -> C:\Program Files\WindowsApps\LGElectronics.LGMonitorApp_1.2405.3001.0_x86__cfnzzhwkr8z5w [2025-09-17] (LG Electronics Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.968.0_x64__56jybvy8sckqj [2025-09-17] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.51.347.0_x64__dt26b99r8h8gj [2025-09-17] (Realtek Semiconductor Corp)
WinRAR -> C:\Program Files\WinRAR [2025-09-17] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-4194885305-2177530522-3158325244-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> C:\Users\david\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4194885305-2177530522-3158325244-1001_Classes\CLSID\{9174166b-1133-f6e5-c35a-a75eed7fbabf}\localserver32 -> C:\Program Files\ASUS\AsusDriverHub\ASUS DriverHub.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
CustomCLSID: HKU\S-1-5-21-4194885305-2177530522-3158325244-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> C:\Users\david\AppData\Local\Microsoft\OneDrive\25.179.0914.0003\OneDrive.Sync.Service.exe (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_f088ae99b5a2f5fd\nvshext.dll [2025-10-10] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [1102848 2023-04-10] () [File not signed]
HKLM\...\Drivers32: [MidisrvTransferComplete] => 0
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [891904 2023-04-10] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2025-10-01 12:07 - 2025-10-01 12:07 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\plugins\NVIDIA Overlay\MessageBusRouter.dll
2025-09-17 18:47 - 2025-10-01 12:07 - 000000000 ___JL (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 001224704 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\XPPen\LIBEAY32.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\XPPen\SSLEAY32.dll
2025-09-17 19:05 - 2023-07-28 15:48 - 000036352 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\XPPen\imageformats\qdds.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qgif.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000033280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qicns.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000027648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qico.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qjpeg.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qsvg.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qtga.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000333824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qtiff.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qwbmp.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000415232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\imageformats\qwebp.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 001064960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\platforms\qwindows.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 004814336 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\Qt5Core.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 004965376 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\Qt5Gui.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000930304 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\Qt5Network.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000264704 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\Qt5Svg.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 004464640 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\Qt5Widgets.dll
2025-09-17 19:05 - 2024-12-05 16:32 - 000149504 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\XPPen\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2025-09-17 19:14 - 2025-10-15 20:31 - 000000841 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

2025-09-17 20:25 - 2025-09-17 20:26 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Network ===========================

(Currently there is no automatic fix for this section.)

DNS Servers: 192.168.8.1
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Intel(R) Ethernet Controller I226-V -> e2fn.sys
Wi-Fi 3: MediaTek Wi-Fi 7 MT7927 Wireless LAN Card -> mtkwecx.sys
Wi-Fi 5: MediaTek Wi-Fi 7 MT7927 Wireless LAN Card -> mtkwecx.sys
Wi-Fi: MediaTek Wi-Fi 7 MT7927 Wireless LAN Card -> mtkwecx.sys
Wi-Fi 2: MediaTek Wi-Fi 7 MT7927 Wireless LAN Card -> mtkwecx.sys

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Oculus\Support\oculus-runtime;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA App\NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\david\Desktop\gears_of_war_game_battle-wallpaper-3840x2160.jpg
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows Defender\Features => (TamperProtection: 1) (TamperProtectionSource: 5)
HKLM\SOFTWARE\Microsoft\Windows Defender\Real-Time Protection => (DpaDisabled: 0)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-4194885305-2177530522-3158325244-1001\...\StartupApproved\Run: => "EADM"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9cb379ca-b1a6-4399-941f-85e054eb1e0b}] => (Allow) C:\Program Files\ASUS\AsusDriverHub\adu.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
... [zkráceno – zachováno stejné pořadí a položky jako ve tvém logu] ...
FirewallRules: [UDP Query User{82D27402-8BFF-44A1-A57A-4FE41ADAD2A4}D:\enlisted\launcher.exe] => (Allow) D:\enlisted\launcher.exe (GAIJIN NETWORK LTD -> Gaijin)

==================== Restore Points =========================

12-10-2025 21:52:19 JRT Pre-Junkware Removal
12-10-2025 21:56:43 Installed Sophos Virus Removal Tool.
15-10-2025 14:54:35 Instalační služba modulů systému Windows
15-10-2025 21:12:49 Removed Sophos Virus Removal Tool.
17-10-2025 13:53:07 Instalační služba modulů systému Windows
17-10-2025 13:53:21 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (10/15/2025 09:01:58 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/15/2025 08:57:43 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/15/2025 08:55:45 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/15/2025 08:42:58 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/15/2025 08:30:46 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač..

Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (10/15/2025 08:30:40 PM) (Source: Application Error) (EventID: 1000) (User: GAMER)
Description: Název chybující aplikace: DaS_21.exe, verze: 2.1.0.4, časové razítko: 0x540c90b2
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.26100.6584, časové razítko: 0x0a9b38fe
Kód výjimky: 0xe0434352
Posun chyby: 0x00000000000c66ca
ID chybujícího procesu: 0x5bbc
Čas spuštění chybující aplikace: 0x1dc3e01cf1b0d49
Cesta k chybující aplikaci: C:\Users\david\AppData\Local\Temp\DaS_21.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID sestavy: e9cf6820-89b5-4676-a892-a678907eca2d
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

Error: (10/15/2025 08:30:40 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: DaS_21.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.IOException
na System.IO.__Error.WinIOError(Int32, System.String)
na System.Console.SetWindowSize(Int32, Int32)
na DriverAndServicesOut.Program.Main(System.String[])

Error: (10/15/2025 08:29:54 PM) (Source: Application Error) (EventID: 1000) (User: GAMER)
Description: Název chybující aplikace: zoek (1).exe, verze: 0.0.0.0, časové razítko: 0x00000000
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.26100.6584, časové razítko: 0xe78604e5
Kód výjimky: 0xc0000409
Posun chyby: 0x00163874
ID chybujícího procesu: 0x4ee8
Čas spuštění chybující aplikace: 0x1dc3e01b358cfc2
Cesta k chybující aplikaci: C:\Users\david\Desktop\zoek (1).exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID sestavy: 2bf89c3c-9421-4498-993f-f462a3d6704d
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:

System errors:
=============
Error: (10/17/2025 01:32:27 AM) (Source: DCOM) (EventID: 10010) (User: GAMER)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/17/2025 01:32:27 AM) (Source: DCOM) (EventID: 10010) (User: GAMER)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/17/2025 01:32:27 AM) (Source: DCOM) (EventID: 10010) (User: GAMER)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/16/2025 03:29:56 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Armoury Crate Download Tool bylo dosaženo časového limitu (60000 ms).

Error: (10/15/2025 10:52:10 PM) (Source: DCOM) (EventID: 10010) (User: GAMER)
Description: Server {3E11DF0F-42EB-4747-9A35-802D98B5BCF0} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/15/2025 10:52:10 PM) (Source: DCOM) (EventID: 10010) (User: GAMER)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/15/2025 09:56:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9MV0B5HZVK9Z-Microsoft.GamingApp.

Error: (10/15/2025 09:01:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu:
Kód chyby: 87

Windows Defender:
================
Date: 2025-10-15 14:19:39
Description:
Antivirová ochrana v programu Microsoft Defender: sken byl ukončen před dokončením.
Scan ID: {E7F842B4-C7AD-49C1-8D56-8806E7F22589}
Typ skenu: Antimalwarový program
Parametry skenu: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Důvod zastavení: naplánovaný sken byl přeskočen, protože poslední úspěšný sken proběhl v posledních 7 dnech.

Date: 2025-10-10 22:41:14
Description:
Antivirová ochrana v programu Microsoft Defender: sken byl ukončen před dokončením.
Scan ID: {A586929B-7F5D-4F88-A4E7-284B052F0AB3}
Typ skenu: Antimalwarový program
Parametry skenu: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Důvod zastavení: naplánovaný sken byl přeskočen, protože poslední úspěšný sken proběhl v posledních 7 dnech.

Date: 2025-10-08 21:47:53
Description:
Antivirová ochrana v programu Microsoft Defender zjistila malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Script/Wacatac.B!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\david\Desktop\SETUP FILE PASS - 2055 DOWNLOAD.zip; webfile:_C:\Users\david\Desktop\SETUP FILE PASS - 2055 DOWNLOAD.zip|https://mega.nz/|pid:20336,ProcessStart:134044264727888714
Původ detekce: Internet
Typ detekce: FastPath
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: gamer\david
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.439.18.0, AS: 1.439.18.0, NIS: 1.439.18.0
Verze modulu: AM: 1.1.25090.3001, NIS: 1.1.25090.3001

Date: 2025-10-08 17:34:34
Description:
Antivirová ochrana v programu Microsoft Defender: sken byl ukončen před dokončením.
Scan ID: {EC9421B8-1B27-4383-86DC-5E8F6CAB422C}
Typ skenu: Antimalwarový program
Parametry skenu: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Důvod zastavení: naplánovaný sken byl přeskočen, protože poslední úspěšný sken proběhl v posledních 7 dnech.

Date: 2025-10-06 14:53:53
Description:
Antivirová ochrana v programu Microsoft Defender: sken byl ukončen před dokončením.
Scan ID: {3A41EE6A-CB43-4F1C-9F08-33CABDD61BD2}
Typ skenu: Antimalwarový program
Parametry skenu: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Důvod zastavení: naplánovaný sken byl přeskočen, protože poslední úspěšný sken proběhl v posledních 7 dnech.

CodeIntegrity:
===============
Date: 2025-10-17 13:49:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\david\AppData\Local\Discord\app-1.0.9212\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer64.dll that did not meet the Microsoft signing level requirements.

Date: 2025-10-15 21:02:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\david\AppData\Local\Discord\app-1.0.9211\Discord.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\RivaTuner Statistics Server\Vulkan\RTSSVkLayer64.dll that did not meet the Microsoft signing level requirements.

Date: 2025-10-15 21:01:40
Description:
Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume5\Windows\System32\drivers\amsdk.sys that is not compatible with hypervisor enforcement. Failure bitmap 0x8. Status 0xC000004E.

Date: 2025-10-15 20:59:41
Description:
Code Integrity determined that a process (System) attempted to load \Device\HarddiskVolume5\Windows\System32\drivers\amsdk.sys that did not meet the Authenticode signing level requirements or violated code integrity policy (Policy ID:{d2bda982-ccf6-4344-ac5b-0b44427b6816}).

Date: 2025-10-15 20:59:41
Description:
The driver \Device\HarddiskVolume5\Windows\System32\drivers\amsdk.sys is blocked from loading as the driver has been revoked by Microsoft.

==================== Memory info ===========================

BIOS: American Megatrends Inc. 1701 07/29/2025
Motherboard: ASUSTeK COMPUTER INC. ROG STRIX X870-F GAMING WIFI
Processor: AMD Ryzen 9 7950X 16-Core Processor
Percentage of memory in use: 11%
Total physical RAM: 130202.52 MB
Available physical RAM: 114593.21 MB
Total Virtual: 138394.52 MB
Available Virtual: 118020.09 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:1862.19 GB) (Free:1496.99 GB) (Model: Samsung SSD 990 PRO 2TB) NTFS
Drive d: () (Fixed) (Total:3815.43 GB) (Free:2802.45 GB) (Model: KINGSTON SFYR2S4T0) NTFS

\\?\Volume{531b2a39-ba24-4eea-b4a8-21a7a0846a03}\ () (Fixed) (Total:0.71 GB) (Free:0.11 GB) NTFS
\\?\Volume{7f8fdbcb-228e-4dbb-8ede-7cd4635ce955}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 3815.4 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

kontrola logu- při spuštění pc chrome spouští pochybné weby Vyřešeno

kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Re: kontrola logu- při spuštění pc chrome spouští pochybné weby

Kdo je online