﻿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-01-2022
Ran by ZWL (26-01-2022 14:45:31)
Running from C:\Users\ZWL\Downloads
Microsoft Windows 7 Enterprise  Service Pack 1 (X64) (2021-04-29 16:50:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3394924902-1472214841-2261831438-500 - Administrator - Disabled)
Guest (S-1-5-21-3394924902-1472214841-2261831438-501 - Limited - Disabled)
ZWL (S-1-5-21-3394924902-1472214841-2261831438-1000 - Administrator - Enabled) => C:\Users\ZWL

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\...\uTorrent) (Version: 3.5.5.46096 - BitTorrent Inc.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 6.2.3 - philandro Software GmbH)
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.15 - Arduino LLC)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach)
Bullzip PDF Printer 12.2.0.2905 (HKLM\...\Bullzip PDF Printer_is1) (Version: 12.2.0.2905 - Bullzip)
CircuitMaker 2 (HKLM-x32\...\CircuitMaker {110EAB1F-504A-491A-B1AA-38DFBFE08BBC}) (Version: 2.0.3.51 - Altium Limited)
CircuitMaker 2 (HKLM-x32\...\CircuitMaker {20CF5B2D-C204-4256-A831-78A75DB3EB2F}) (Version: 2.0.3.51 - Altium Limited)
Combo Cleaner (HKLM\...\{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.58.0 - RCS LT) Hidden
Combo Cleaner (HKLM-x32\...\InstallShield_{8C9F8853-52F7-46F3-BC78-98001D3FF40C}) (Version: 1.0.58.0 - RCS LT)
Factorio version 1.1.39 (HKLM\...\Factorio_is1) (Version:  - )
FL Studio 20 (HKLM-x32\...\FL Studio 20) (Version:  - Image-Line)
FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version:  - Image-Line)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 54.0.3.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.99 - Google LLC)
GPL Ghostscript Lite 9.27.21 (HKLM\...\GPL Ghostscript Lite_is1) (Version:  - Free Distribution)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.3.34 - Intel Corporation)
loopMIDI (HKLM-x32\...\{6b220f45-42ca-435c-95fd-1764cb849122}) (Version: 1.0.16.27 - Tobias Erichsen)
loopMIDI (HKLM-x32\...\{DF96DB4C-DB0F-4CCF-9769-464BC9EA859F}) (Version: 1.0.16.27 - Tobias Erichsen) Hidden
loopMIDIBlockLegacy (HKLM-x32\...\{AEAF7978-3204-451D-8593-BC53EBDDA31D}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29914 (HKLM-x32\...\{43d1ce82-6f55-4860-a938-20e5deb28b98}) (Version: 14.28.29914.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29325 (HKLM-x32\...\{d7a6435f-ac9a-4af6-8fdc-ca130d13fac9}) (Version: 14.28.29325.2 - Microsoft Corporation)
NVIDIA Ovladač 3D Vision 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.62 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 353.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.62 - NVIDIA Corporation)
OpenOffice 4.1.9 (HKLM-x32\...\{AF1550B8-D3D6-425E-A6C1-F21C157DF754}) (Version: 4.19.9805 - Apache Software Foundation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.92.115.2015 - Realtek)
Renegade X Launcher (Beta) (HKLM-x32\...\{2A287807-4D6B-4D68-A281-401A411791F8}) (Version: 0.8.0.1 - Totem Arts)
rtpMIDIBlockLegacy (HKLM-x32\...\{FD937297-84C3-41A5-B5DF-1FAEEE669D68}) (Version: 9.9.9.9 - Tobias Erichsen) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeighaX 3.09 (HKLM-x32\...\{3D63579F-2398-418B-9227-A852FB201D2D}) (Version: 3.9.0 - Open Design Alliance)
teVirtualMIDI64 (HKLM\...\{2F802731-3731-453E-B30B-4381BEED22AC}) (Version: 1.3.0.43 - Tobias Erichsen) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Unreal Development Kit: 2015-01 (HKLM\...\UDK-55e18655-c63d-4d4c-acad-ac630455bd70) (Version:  - Epic Games, Inc.)
UwAmp (Uninstall) (HKLM-x32\...\UwAmp) (Version:  - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
WickrMe (HKLM\...\{2090C86A-8C74-4A06-9758-CE0EBD9D1A51}) (Version: 5.55.6 - Wickr Inc.)
ZeroTier One (HKLM-x32\...\{3B721AC6-50BD-410C-8E5F-9076234F4C46}) (Version: 1.6.5 - ZeroTier, Inc.) Hidden
ZeroTier One (HKLM-x32\...\ZeroTier One 1.6.5) (Version: 1.6.5 - ZeroTier, Inc.)
ZeroTier One Virtual Network Port (HKLM\...\{4AFE4740-C680-40FE-B6B0-0C15EB0176F1}) (Version: 1.0.0 - ZeroTier) Hidden

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\54.0.3.0\drivefsext.dll [2022-01-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\54.0.3.0\drivefsext.dll [2022-01-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\54.0.3.0\drivefsext.dll [2022-01-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\54.0.3.0\drivefsext.dll [2022-01-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\54.0.3.0\drivefsext.dll [2022-01-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\54.0.3.0\drivefsext.dll [2022-01-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\54.0.3.0\drivefsext.dll [2022-01-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\ZWL\Desktop\Factorio.lnk -> D:\kiRRow\Factorio_1.1.32\LaunchGame.bat ()
ShortcutWithArgument: C:\Users\ZWL\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --load-extension="C:\ProgramData\Ftpdioy\Ebqagn\88E3F412"
ShortcutWithArgument: C:\Users\ZWL\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --load-extension="C:\ProgramData\Ftpdioy\Ebqagn\88E3F412"

==================== Loaded Modules (Whitelisted) =============

2019-08-25 03:26 - 2019-01-05 04:02 - 000270336 _____ () [File not signed] [File is in use] C:\ProgramData\WindowProc\TvqkbGraphic\rtuco_Segpiery.dll
2021-12-11 09:41 - 2021-10-06 02:30 - 126961152 _____ () [File not signed] D:\kiRRow\apps\Steam\bin\cef\cef.win7x64\libcef.dll
2021-12-11 09:41 - 2021-10-06 02:30 - 000384000 _____ () [File not signed] D:\kiRRow\apps\Steam\bin\cef\cef.win7x64\libegl.dll
2021-12-11 09:41 - 2021-10-06 02:30 - 008006656 _____ () [File not signed] D:\kiRRow\apps\Steam\bin\cef\cef.win7x64\libglesv2.dll
2021-06-21 14:43 - 2021-03-13 21:28 - 000221696 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll
2021-05-14 17:46 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2021-04-29 18:24 - 2021-04-29 18:23 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2021-04-29 18:28 - 2015-07-23 01:47 - 001367048 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2021-12-11 09:41 - 2021-10-06 02:30 - 000983552 _____ (The Chromium Authors) [File not signed] D:\kiRRow\apps\Steam\bin\cef\cef.win7x64\chrome_elf.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Version 8) (Whitelisted) ==========

DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Windows -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3394924902-1472214841-2261831438-1000\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{673BB6F8-13F1-417B-B23B-8AAF60B96E2E}] => (Allow) LPort=9993
FirewallRules: [{726E589F-99A1-4E8B-9D9E-1273A456814D}] => (Allow) LPort=9993
FirewallRules: [{62081F4A-6EBE-4E4F-BE74-34D4545AE081}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [TCP Query User{7883707F-78C2-464F-8732-56C5DBAF3D9F}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe => No File
FirewallRules: [UDP Query User{06A1FBAA-F972-4518-B849-C77FA2ED07D9}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe => No File
FirewallRules: [TCP Query User{5C6A5424-5141-4EA6-857B-90B0D5E04723}C:\uwamp\bin\database\mysql-5.7.11\bin\mysqld.exe] => (Allow) C:\uwamp\bin\database\mysql-5.7.11\bin\mysqld.exe => No File
FirewallRules: [UDP Query User{CDC735AD-9C36-412A-9E67-2468219E57EB}C:\uwamp\bin\database\mysql-5.7.11\bin\mysqld.exe] => (Allow) C:\uwamp\bin\database\mysql-5.7.11\bin\mysqld.exe => No File
FirewallRules: [TCP Query User{5EC49505-9B98-4F93-AA3A-7C2FC2CB8CA9}F:\kirrow\games\csdm\cstrike.exe] => (Allow) F:\kirrow\games\csdm\cstrike.exe (Non Steam Powered) [File not signed]
FirewallRules: [UDP Query User{7B2D3C99-3469-4304-B32F-F812D7CDD726}F:\kirrow\games\csdm\cstrike.exe] => (Allow) F:\kirrow\games\csdm\cstrike.exe (Non Steam Powered) [File not signed]
FirewallRules: [TCP Query User{DDDADC8B-52AF-47B7-9BA3-4DE6FE6B79A2}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{7B0CCDBE-B7FA-4FA6-86C5-41C0F910F4EE}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{9C1EF41D-7F13-44A2-899E-6BE242C9CCB3}C:\users\zwl\desktop\staranovaplocha\arduino-1.8.9\java\bin\javaw.exe] => (Allow) C:\users\zwl\desktop\staranovaplocha\arduino-1.8.9\java\bin\javaw.exe
FirewallRules: [UDP Query User{4911C3EB-585F-4574-82D4-230C2AF70605}C:\users\zwl\desktop\staranovaplocha\arduino-1.8.9\java\bin\javaw.exe] => (Allow) C:\users\zwl\desktop\staranovaplocha\arduino-1.8.9\java\bin\javaw.exe
FirewallRules: [TCP Query User{B08577FE-599F-40E9-ABFE-F0EB3C280F9B}D:\kirrow\apps\arduino\java\bin\javaw.exe] => (Allow) D:\kirrow\apps\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{0ACDA7FD-3451-470D-9F16-E01823968945}D:\kirrow\apps\arduino\java\bin\javaw.exe] => (Allow) D:\kirrow\apps\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{9BB7E6BC-DD0D-49EE-B2BB-AA9B85C91EB9}F:\kirrow\games\assassin's creed brotherhood\acbsp.exe] => (Allow) F:\kirrow\games\assassin's creed brotherhood\acbsp.exe (UBISOFT ENTERTAINMENT INC. -> ) [File not signed]
FirewallRules: [UDP Query User{0764EA98-33F9-42EB-B5D1-C9D84F94CFC9}F:\kirrow\games\assassin's creed brotherhood\acbsp.exe] => (Allow) F:\kirrow\games\assassin's creed brotherhood\acbsp.exe (UBISOFT ENTERTAINMENT INC. -> ) [File not signed]
FirewallRules: [TCP Query User{53C6482F-7AA3-4A09-AA3D-62CA50163ED4}F:\kirrow\games\tom clancy's h.a.w.x\hawx.exe] => (Allow) F:\kirrow\games\tom clancy's h.a.w.x\hawx.exe (Ubisoft Entertainment -> )
FirewallRules: [UDP Query User{9B4E88AA-DE28-4D7A-B33F-9B0C481550EA}F:\kirrow\games\tom clancy's h.a.w.x\hawx.exe] => (Allow) F:\kirrow\games\tom clancy's h.a.w.x\hawx.exe (Ubisoft Entertainment -> )
FirewallRules: [TCP Query User{A300B63C-0BE5-47DF-8828-3716102FA3C5}D:\kirrow\games\renegade x\binaries\win64\udk.exe] => (Allow) D:\kirrow\games\renegade x\binaries\win64\udk.exe (Totem Arts) [File not signed]
FirewallRules: [UDP Query User{AB73FC05-AFE0-4188-9CAC-71913AD613A3}D:\kirrow\games\renegade x\binaries\win64\udk.exe] => (Allow) D:\kirrow\games\renegade x\binaries\win64\udk.exe (Totem Arts) [File not signed]
FirewallRules: [{C450FFC6-B076-42D7-BC7F-9A56C9A8CBBE}] => (Allow) C:\Users\ZWL\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{ECA5911E-4850-4076-8E25-4C287455E26B}] => (Allow) C:\Users\ZWL\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{6B8A2852-7645-4F1A-AFCC-8900D2C295D7}] => (Allow) C:\Users\ZWL\AppData\Local\Programs\Opera\77.0.4054.254\opera.exe => No File
FirewallRules: [TCP Query User{825647F9-54E7-4275-96CB-AF72CDD9EF90}F:\kirrow\games\portal 2 cz\portal2.exe] => (Allow) F:\kirrow\games\portal 2 cz\portal2.exe () [File not signed]
FirewallRules: [UDP Query User{417A2B85-27D2-4879-B48D-F06AADECC039}F:\kirrow\games\portal 2 cz\portal2.exe] => (Allow) F:\kirrow\games\portal 2 cz\portal2.exe () [File not signed]
FirewallRules: [TCP Query User{F9F6DD2B-5524-43E7-B365-8B63C42A820F}F:\kirrow\games\beat hazard ultra\beathazard.exe] => (Allow) F:\kirrow\games\beat hazard ultra\beathazard.exe () [File not signed]
FirewallRules: [UDP Query User{C09286A9-D086-4EBD-8A50-B310870CE94E}F:\kirrow\games\beat hazard ultra\beathazard.exe] => (Allow) F:\kirrow\games\beat hazard ultra\beathazard.exe () [File not signed]
FirewallRules: [TCP Query User{9EDD0C55-1907-4063-94E7-2A665AC55B35}F:\kirrow\games\defcon 1.6\defcon.exe] => (Allow) F:\kirrow\games\defcon 1.6\defcon.exe (Introversion Software) [File not signed]
FirewallRules: [UDP Query User{E3B5D4A9-5BDC-4B49-BCBF-BCABC0F283DA}F:\kirrow\games\defcon 1.6\defcon.exe] => (Allow) F:\kirrow\games\defcon 1.6\defcon.exe (Introversion Software) [File not signed]
FirewallRules: [{C5007D72-C174-4F4D-A6E2-9B622D01DB17}] => (Allow) D:\kiRRow\games\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{E6AB6DD9-EB50-46A6-A385-F9DFDABBC97E}] => (Allow) D:\kiRRow\games\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{9CB08841-DD89-4B06-8C45-67DDEBF0E0C7}] => (Allow) D:\kiRRow\games\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{C5379B33-3FB4-4A07-A48B-C21407A3919C}] => (Allow) D:\kiRRow\games\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [TCP Query User{E75DC0E1-C288-4B2E-9C7A-0919DC0736E3}D:\kirrow\apps\altium\circuitmaker.exe] => (Allow) D:\kirrow\apps\altium\circuitmaker.exe => No File
FirewallRules: [UDP Query User{77101757-FBC2-413D-ACF9-9C57BB3D6B62}D:\kirrow\apps\altium\circuitmaker.exe] => (Allow) D:\kirrow\apps\altium\circuitmaker.exe => No File
FirewallRules: [TCP Query User{40E4EA2E-1FB5-4C1D-A4ED-12143DD8B175}D:\kirrow\apps\altium\cm2\circuitmaker.exe] => (Allow) D:\kirrow\apps\altium\cm2\circuitmaker.exe (Altium LLC -> )
FirewallRules: [UDP Query User{C6AB9949-E265-4DE0-AF19-961DFDC62C2E}D:\kirrow\apps\altium\cm2\circuitmaker.exe] => (Allow) D:\kirrow\apps\altium\cm2\circuitmaker.exe (Altium LLC -> )
FirewallRules: [{DAB688BD-A7E0-479D-B8DE-386971E9E820}] => (Allow) D:\kiRRow\apps\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{4A3AD909-9767-441E-8BA7-F139DE9DA482}] => (Allow) D:\kiRRow\apps\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{EF6321A3-A3EA-44BE-A680-D36A013A9382}F:\kirrow\games\deadisland\deadislandgame_x86_rwdi.exe] => (Allow) F:\kirrow\games\deadisland\deadislandgame_x86_rwdi.exe (Techland) [File not signed]
FirewallRules: [UDP Query User{3DA2F417-DAA9-4BE4-A0A4-705486FFE72F}F:\kirrow\games\deadisland\deadislandgame_x86_rwdi.exe] => (Allow) F:\kirrow\games\deadisland\deadislandgame_x86_rwdi.exe (Techland) [File not signed]
FirewallRules: [{1E551097-830C-4C73-821E-83DBE331C5D9}] => (Allow) D:\kiRRow\apps\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{552158F1-98C6-40E6-9D9D-A8892E0B5114}] => (Allow) D:\kiRRow\apps\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EFBE5AC4-934A-46EB-A6C4-A2B14276A27B}] => (Allow) D:\kiRRow\apps\Steam\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{4DE5172B-EB62-4A4E-9F8A-9A6DB5A65C5A}] => (Allow) D:\kiRRow\apps\Steam\steamapps\common\Factorio\bin\x64\factorio.exe (Wube Software) [File not signed]
FirewallRules: [{5718F770-66AD-42A2-93DB-2577110115EA}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{38EE2B68-B872-4AF9-95E0-D130DE81B59E}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{53765FBA-3444-4414-B367-75E7BEA7BB9A}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{187C2D60-0591-47F8-BA75-986A9482863D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{9BA90303-0896-4634-8280-02094D25D36C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{7AE0F6D5-F509-4DBC-8A03-DCEB03E9DE26}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{AA8437D1-BA94-450B-A8A1-ED439BB8EE3C}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [{A49E13DA-2EFA-42E1-AF24-568C25C66938}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )
FirewallRules: [{CBA74ED5-FF6B-465E-8B90-94D8E9237112}] => (Allow) C:\ProgramData\ZeroTier\One\zerotier-one_x64.exe (ZeroTier, Inc. -> )

==================== Restore Points =========================

17-01-2022 18:13:41 Windows Update
18-01-2022 09:50:43 Instalační služba modulů systému Windows
25-01-2022 19:14:13 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============

Name: Sériový port sběrnice PCI
Description: Sériový port sběrnice PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Sériový port sběrnice PCI
Description: Sériový port sběrnice PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Paralelní port sběrnice PCI
Description: Paralelní port sběrnice PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Periferní zařízení Bluetooth
Description: Periferní zařízení Bluetooth
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Řadič jednoduché komunikace pro sběrnici PCI
Description: Řadič jednoduché komunikace pro sběrnici PCI
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/17/2022 07:14:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (01/17/2022 07:14:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (01/17/2022 07:14:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (01/17/2022 07:14:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (01/17/2022 07:14:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (01/17/2022 07:14:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (01/17/2022 07:14:36 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.

Error: (01/17/2022 07:14:36 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Selhala extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Došlo k chybě: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.
.


System errors:
=============
Error: (01/26/2022 02:48:14 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {BB6DF56B-CACE-11DC-9992-0019B93A3A84} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/26/2022 09:37:50 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo: 
cdrom

Error: (01/26/2022 09:37:50 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby ComboCleaner.WinService bylo dosaženo časového limitu (30000 ms).

Error: (01/26/2022 09:37:20 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby ComboCleaner.Guard bylo dosaženo časového limitu (30000 ms).

Error: (01/25/2022 02:02:09 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo: 
cdrom

Error: (01/25/2022 02:02:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby ComboCleaner.WinService bylo dosaženo časového limitu (30000 ms).

Error: (01/25/2022 02:01:38 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby ComboCleaner.Guard bylo dosaženo časového limitu (30000 ms).

Error: (01/24/2022 09:54:08 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo: 
cdrom


==================== Memory info =========================== 

BIOS: Dell Inc. A03 04/14/2014
Motherboard: Dell Inc. 040DDP
Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Percentage of memory in use: 83%
Total physical RAM: 8144.77 MB
Available physical RAM: 1378.39 MB
Total Virtual: 16287.73 MB
Available Virtual: 5983.74 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.35 GB) (Free:151.58 GB) NTFS
Drive d: (Data) (Fixed) (Total:3725.9 GB) (Free:2781.31 GB) NTFS
Drive e: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive f: () (Fixed) (Total:931.41 GB) (Free:72.41 GB) NTFS
Drive g: () (Removable) (Total:3.73 GB) (Free:3.73 GB) FAT32
Drive h: (Google Drive) (Fixed) (Total:15 GB) (Free:15 GB) FAT32


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 3726 GB) (Disk ID: D0C9C5F6)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 3FE56F3E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==========================================================
Disk: 3 (Size: 3.7 GB) (Disk ID: 6FC720B2)
Partition 1: (Active) - (Size=3.7 GB) - (Type=0B)

==================== End of Addition.txt =======================