Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-12-2023
Ran by mstuk_r6futcn (13-12-2023 22:12:58)
Running from C:\Users\mstuk_r6futcn\OneDrive\Plocha
Microsoft Windows 11 Home Version 23H2 22631.2715 (X64) (2023-11-25 17:42:06)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2773700826-1739663033-2017712385-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2773700826-1739663033-2017712385-503 - Limited - Disabled)
Guest (S-1-5-21-2773700826-1739663033-2017712385-501 - Limited - Disabled)
mstuk_r6futcn (S-1-5-21-2773700826-1739663033-2017712385-1002 - Administrator - Enabled) => C:\Users\mstuk_r6futcn
WDAGUtilityAccount (S-1-5-21-2773700826-1739663033-2017712385-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2773700826-1739663033-2017712385-1002\...\uTorrent) (Version: 3.6.0.46944 - BitTorrent Inc.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20380 - Adobe)
Adobe Illustrator 2022 (HKLM-x32\...\ILST_26_1) (Version: 26.1 - Adobe Inc.)
Adobe Photoshop 2023 (HKLM-x32\...\PHSP_24_2) (Version: 24.2.0.315 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Blackmagic RAW Common Components (HKLM\...\{62A102F5-FBA0-43BB-BFC2-657C07BC0901}) (Version: 3.4 - Blackmagic Design)
Brother MFL-Pro Suite DCP-L2540DN series (HKLM-x32\...\{F8ECC2FD-CE2B-4ED4-BDCC-90D0D34206FD}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.78.1094 - AB Team, d.o.o.)
DaVinci Resolve (HKLM\...\{113268FD-B158-4528-BE86-F82CBF8CE973}) (Version: 18.6.20002 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{D1ACF467-9FB4-45DA-942F-A19452E70A3F}) (Version: 2.0.7.0 - Blackmagic Design)
Dell SupportAssist (HKLM\...\{DB6164FC-CD98-471C-BD5B-5B14CAFA3186}) (Version: 3.14.2.45116 - Dell Inc.)
Discord (HKU\S-1-5-21-2773700826-1739663033-2017712385-1002\...\Discord) (Version: 1.0.9024 - Discord Inc.)
DJI Assistant 2 (Consumer Drones Series) version V2.1.20.8 (HKLM-x32\...\{7369D6A6-CBF3-428F-8C82-3D647630FC9A}_is1) (Version: V2.1.20.8 - DJI)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.71 - Google LLC)
Intel(R) Chipset Device Software (HKLM\...\{00C43022-CFDA-4942-9D3F-04199C91C939}) (Version: 10.1.18121.8164 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{531F2CB2-5A78-49E5-A71B-FFF7C7CDC32C}) (Version: 30.100.2020.7 - Intel Corporation) Hidden
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.2020.7 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{37942a92-9e3f-4d70-9b5c-5955cbc54505}) (Version: 10.1.18121.8164 - Intel(R) Corporation)
KeePass Password Safe 2.55 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.55 - Dominik Reichl)
Kontrola stavu osobního počítače s Windows (HKLM\...\{95548B78-8547-4E91-B0DA-1CBB82150917}) (Version: 3.7.2204.15001 - Microsoft Corporation)
Microsoft .NET Host - 6.0.20 (x64) (HKLM\...\{217B2755-3BAD-486B-9606-CCD0E6CF3BE8}) (Version: 48.83.63169 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.20 (x64) (HKLM\...\{76FA02FF-603F-48BB-9E3F-17ED5DB861E8}) (Version: 48.83.63169 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.20 (x64) (HKLM\...\{6CE8AD8C-E6D5-4BF7-91C3-7F8106A5CD93}) (Version: 48.83.63169 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.20 (x64) (HKLM-x32\...\{403b0cfe-5969-462d-8eb2-aafde344360e}) (Version: 6.0.20.32620 - Microsoft Corporation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.17029.20068 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.61 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.61 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Movavi Video Editor 24 (HKU\S-1-5-21-2773700826-1739663033-2017712385-1002\...\Movavi Video Editor 24) (Version: 24.0.1 - Movavi)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.4.1 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 115.5.1 (x64 cs)) (Version: 115.5.1 - Mozilla)
NVIDIA Ovladač HD audia 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 545.92 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 545.92 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20000 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20068 - Microsoft Corporation) Hidden
OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Pomocník s instalací Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.3630 - Microsoft Corporation)
RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Trezor Suite 23.11.5 (HKLM\...\978be57b-9286-5cd7-a60b-54c81352a986) (Version: 23.11.5 - SatoshiLabs)
Twitch Studio (HKU\S-1-5-21-2773700826-1739663033-2017712385-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372B0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.2.0 - Elaborate Bytes)
XAMPP (HKLM\...\xampp) (Version: 8.2.4-0 - Apache Friends)
Zoner Photo Studio X version 19.2309.2.506 (HKLM\...\{8B016FDB-7E9D-4086-9192-38DF4D03CFA0}_is1) (Version: 19.2309.2.506 - © 2023 ZONER, Inc.)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-11-25] ()
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.14.13.0_x64__htrsf667h5kn2 [2023-12-06] (Dell Inc)
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.0.0.0_x64__8wekyb3d8bbwe [2023-11-25] (Microsoft Corporation)
Killer Control Center -> C:\Program Files\WindowsApps\rivetnetworks.killercontrolcenter_2.4.3337.0_x64__rh07ty8m5nkag [2023-10-31] (Rivet Networks LLC) [Startup Task]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2310.10002.0_x64__8wekyb3d8bbwe [2023-11-27] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-11-26] (Microsoft Corp.)
Microsoft.HEVCVideoExtensions -> C:\Program Files\WindowsApps\Microsoft.HEVCVideoExtensions_2.0.61933.0_x64__8wekyb3d8bbwe [2023-11-25] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-11-25] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.964.0_x64__56jybvy8sckqj [2023-11-25] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.1114.100_x64__8wekyb3d8bbwe [2023-11-25] (Microsoft Corporation)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5237.0_x64__8j3eq9eme6ctt [2023-11-09] (INTEL CORP) [Startup Task]
SimplePanoramaViewer -> C:\Program Files\WindowsApps\2953RTVR.SimplePanoramaViewer_0.8.0.0_x64__kmbk66d57mn3w [2023-12-13] (RTVR)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-09] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0 [2023-12-13] (Spotify AB) [Startup Task]
Thunderbolt™ Control Center -> C:\Program Files\WindowsApps\appup.thunderboltcontrolcenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-10-31] (INTEL CORP)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2348.4.0_x64__cv1g1gvanyjgm [2023-12-13] (WhatsApp Inc.) [Startup Task]
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-11-25] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2773700826-1739663033-2017712385-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2773700826-1739663033-2017712385-1002_Classes\CLSID\{566579db-89b5-49f7-9f3a-fde0cd6af858}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll => No File
ShellIconOverlayIdentifiers: [    OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [    OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-01-11] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-01-11] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-01-11] (Adobe Inc. -> )
ShellIconOverlayIdentifiers-x32: [    OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [    OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-01-11] (Adobe Inc. -> )
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2020-02-23] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvdmig.inf_amd64_466d9badc52d5b13\nvshext.dll [2023-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-01-11] (Adobe Inc. -> )

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-11-04 08:31 - 2009-02-27 16:38 - 000139264 ____R () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2023-11-04 08:31 - 2019-07-26 08:53 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2023-11-04 08:31 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2023-11-04 08:31 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2023-11-04 08:31 - 2018-04-27 09:16 - 000090112 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll
2023-12-06 11:12 - 2019-07-26 08:54 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2023-11-04 08:31 - 2005-04-22 05:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2023-11-04 08:31 - 2013-06-12 19:06 - 000385024 ____R (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2023-11-04 08:31 - 2010-09-29 17:07 - 000180224 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BroSNMP.dll
2023-11-04 08:31 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll
2023-11-04 08:31 - 2013-10-10 21:55 - 002040320 ____N (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2023-11-04 08:31 - 2013-03-08 07:44 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2023-10-31 23:14 - 2023-11-21 04:22 - 004309504 _____ (Rainberry, Inc.) [File not signed] C:\Users\mstuk_r6futcn\AppData\Roaming\utorrent\bt_datachannel.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-06] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2773700826-1739663033-2017712385-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{4D5A6495-D6C7-4C15-A0C3-DA3D2E6506E0}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\visionstarter3.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\visionstarter3.exe (Shanghai Feilai Information Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{84A0AD2A-A0D9-49B7-9A4D-3A9905C59B0B}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\visionstarter3.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\visionstarter3.exe (Shanghai Feilai Information Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{307E4CE1-BB1A-4779-86D7-DA9D01A923A3}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (Shanghai Feilai Information Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{E09A5765-9F85-4E2B-AE1E-ADA8D3ECF738}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (Shanghai Feilai Information Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{F1DD880F-3FD1-4DF9-AE5D-86FD3B2FA857}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (Shanghai Feilai Information Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{FB3A7DC8-1597-4C8A-BB31-88798CC0D286}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (Shanghai Feilai Information Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{A84380D8-5F17-489F-AD77-6A2DE72C5377}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe => No File
FirewallRules: [TCP Query User{8DCA28E9-8EFB-4EE6-A16C-E3F31B5368FE}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe => No File
FirewallRules: [UDP Query User{33CB272A-E42E-4098-9F6A-A55724C282AC}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe => No File
FirewallRules: [TCP Query User{7A80444E-4A94-4FE5-8738-C79089185217}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe => No File
FirewallRules: [{19DCC9C4-FDD3-4091-B1C8-91A5D3AC3B9A}] => (Allow) D:\SteamLibrary\steamapps\common\Rail Route\Rail Route.exe () [File not signed]
FirewallRules: [{C0C33D87-C006-40F4-969B-D0F3C36D6DA5}] => (Allow) D:\SteamLibrary\steamapps\common\Rail Route\Rail Route.exe () [File not signed]
FirewallRules: [{5B1523CE-005B-40B6-863E-EDC205C17444}] => (Allow) LPort=54925
FirewallRules: [{382F724D-B2E2-41C4-AE7E-1F6E0CFBF6FF}] => (Allow) D:\SteamLibrary\steamapps\common\Rail Route The Story of Jozic\Rail Route.exe () [File not signed]
FirewallRules: [{4564F23B-EE0B-4AC9-984B-F12A34BD6742}] => (Allow) D:\SteamLibrary\steamapps\common\Rail Route The Story of Jozic\Rail Route.exe () [File not signed]
FirewallRules: [{09536694-0282-44DA-9F4F-C9CC023C7D40}] => (Allow) C:\Users\mstuk_r6futcn\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{423819F2-5E29-429F-B9B6-785F743C70E5}] => (Allow) C:\Users\mstuk_r6futcn\AppData\Roaming\uTorrent\uTorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{657C45F7-644A-40EB-A237-B3C928B94EF6}C:\users\mstuk_r6futcn\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\mstuk_r6futcn\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [TCP Query User{BD76FFA4-8EF8-4527-AF81-9A093C981E29}C:\users\mstuk_r6futcn\appdata\roaming\twitch studio\bin\twitchstudioagent.exe] => (Allow) C:\users\mstuk_r6futcn\appdata\roaming\twitch studio\bin\twitchstudioagent.exe (Twitch Interactive, Inc. -> )
FirewallRules: [{611F0366-A836-467D-A83F-33F48AD8B06D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9FBC49DB-F609-4F44-BAE3-344F11E34659}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{973C4F17-5348-4E33-9593-D34E368FCA28}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1F3F180C-BBF1-4645-BDC2-9371D0DF0A2B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{7C5A657D-55BB-475B-AA1E-9E07A5E62D0B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{130FD4F1-9BAD-444D-A494-3AA9EDCD8A1F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => No File
FirewallRules: [{36BD72FD-6755-4C85-B6C7-7348B911B746}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5B40DC5B-0439-47D8-8CB9-3C2FD1EF8D31}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23285.3703.2471.4627_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2FA40B1F-A6E1-4690-8E4B-207520DEC8E3}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [UDP Query User{D8452CEC-1F25-4381-9EEE-AD549E1D8748}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [File not signed]
FirewallRules: [TCP Query User{2777FAED-A962-43F4-88B0-71F183D03504}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [UDP Query User{AEDDBB72-0FB3-4140-BAAE-738EE68CEA03}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )
FirewallRules: [{AEA4FFC8-33C3-4662-9125-08D975AB53D2}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\119.0.2151.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{5F323164-1961-4EC8-8883-BDABC7D4CBDF}C:\program files\trezor suite\trezor suite.exe] => (Allow) C:\program files\trezor suite\trezor suite.exe (SatoshiLabs, s.r.o. -> SatoshiLabs)
FirewallRules: [UDP Query User{739FEA2A-7948-408E-9504-843B17C84F75}C:\program files\trezor suite\trezor suite.exe] => (Allow) C:\program files\trezor suite\trezor suite.exe (SatoshiLabs, s.r.o. -> SatoshiLabs)
FirewallRules: [{82BF074C-9200-464F-A195-BBC660471A10}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [{D23933F1-857A-4506-AC69-D91AB91EFC04}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4D502D00-9847-499D-A0A8-CFCDFE392922}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{9B07C371-9053-4534-A13E-7C5DFE0F972F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B2EFB7B3-7D44-4996-A8EE-0FC9C94D22C6}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{48155A40-BD7E-46A2-8648-406C392CBF51}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{0CE8F9CA-5D5A-4C66-B93C-DF9D2A8F1A28}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{B77536AC-2DAA-444B-82E8-FD1126088492}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{4311A687-FE43-4AF1-9C79-F8AA069352A1}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [UDP Query User{421D2652-E80A-4395-AA62-7CC6C0E713A2}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) [File not signed]
FirewallRules: [TCP Query User{FD9C9192-8229-41FB-AC1C-F955D81B0D16}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{E1348209-29C2-4883-8EE0-CF4C23C420B3}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{1AFF9746-4389-448C-95EA-1C5C4D86B3D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9C9BAA79-56C3-441C-B636-481FD18F7DC5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{905DA5CC-7FFD-40AF-8CDA-581DE480830D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{318F573C-AE94-4581-893D-8C811F66AB13}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{87A2CC47-37CE-4B59-B111-8DC6E6BCFD2B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4402520C-0A07-4D06-8ED3-E02EC96B0E01}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{448C1945-C3F1-4962-924D-E712C1991EEF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{85E6893B-D66A-4CA4-9B13-CE4B3AEF6DDD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FED8280E-1269-425B-BC11-96C4C8A74374}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4AE03DB6-5EB7-4ACC-86D5-21AB12334DE8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5D55D7B3-462D-415C-83C8-61D85973921B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3EBF775F-73AF-4F33-A772-74F19FAB7DB3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.61\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CFB65A03-42CE-4264-B993-2FE0F0B1337E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0CF5D0F3-08E0-4B95-B5A6-55F8270A6374}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7EB92F5D-B66A-4085-81AD-52B6C87B99AC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D8873EBB-491C-4526-8AFE-9D023FCF9C72}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

13-12-2023 21:10:18 Windows Zálohování

==================== Faulty Device Manager Devices ============

Name: Waves Audio Effects Component
Description: Waves Audio Effects Component
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Goodix Fingerprint Device 
Description: Goodix Fingerprint Device 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Intel(R) Wireless Bluetooth(R)
Description: Intel(R) Wireless Bluetooth(R)
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Intel Corporation
Service: BTHUSB
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: ========================

Application errors:
==================
Error: (12/08/2023 05:18:35 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\torrent\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Crack\Crack\Resolve.exe se nezdařilo.
Závislé sestavení SMDK-VC140-x64-4_21_0,language="&#x2a;",processorArchitecture="Amd64",type="win32",version="4.21.0.159" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/08/2023 05:18:35 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\torrent\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Crack\Crack\Resolve.exe se nezdařilo.
Závislé sestavení SMDK-VC140-x64-4_21_0,language="&#x2a;",processorArchitecture="Amd64",type="win32",version="4.21.0.159" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/08/2023 05:18:35 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\torrent\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Crack\Crack\Resolve.exe se nezdařilo.
Závislé sestavení SMDK-VC140-x64-4_21_0,language="&#x2a;",processorArchitecture="Amd64",type="win32",version="4.21.0.159" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/08/2023 05:14:52 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro D:\torrent\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Blackmagic Design DaVinci Resolve Studio 18.6.2.0002 (x64) + Crack\Crack\Crack\Resolve.exe se nezdařilo.
Závislé sestavení SMDK-VC140-x64-4_21_0,language="&#x2a;",processorArchitecture="Amd64",type="win32",version="4.21.0.159" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (12/07/2023 10:57:13 AM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 2.2.32.0 programu Omsi.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.

Error: (12/06/2023 07:51:22 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (11/30/2023 12:15:39 PM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-PJ2RDEG)
Description: Název chybující aplikace: Zps.exe, verze: 19.2309.2.506, časové razítko: 0x654e5677
Název chybujícího modulu: ntdll.dll, verze: 10.0.22621.2506, časové razítko: 0xbced4b82
Kód výjimky: 0xc0000374
Posun chyby: 0x000000000010c7a9
ID chybujícího procesu: 0x0x5ab0
Čas spuštění chybující aplikace: 0x0x1da237dd06cf9c3
Cesta k chybující aplikaci: C:\Program Files\Zoner\ZPS X\binary\Program64\Zps.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: ee57bb96-ba25-4249-a415-6706578b6c85
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (11/28/2023 12:15:53 PM) (Source: MariaDB) (EventID: 100) (User: )
Description: InnoDB: Your database may be corrupt or you may have copied the InnoDB tablespace but not the InnoDB log files. Please refer to https://mariadb.com/kb/en/library/innodb-recovery-modes/ for information about forcing recovery.


System errors:
=============
Error: (12/13/2023 09:42:31 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (12/13/2023 09:41:11 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume14 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.

Error: (12/13/2023 09:41:11 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume14 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.

Error: (12/13/2023 09:41:09 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume13 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.

Error: (12/13/2023 09:34:45 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9MV0B5HZVK9Z-Microsoft.GamingApp.

Error: (12/13/2023 09:06:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-PJ2RDEG)
Description: Server {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/13/2023 09:04:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby: 
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (12/13/2023 09:04:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).


Windows Defender:
================
Date: 2023-12-13 21:26:49
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0E7A43F1-307C-4AEE-9DDC-67DD60C12E95}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM 

Date: 2023-12-09 10:31:14
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:MSIL/AsyncRat.CCCL!MTB&threatid=2147892763&enterprise=0
Název: Trojan:MSIL/AsyncRat.CCCL!MTB
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif.pif.pif; regkey:_HKCU@S-1-5-21-2773700826-1739663033-2017712385-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Win; regkey:_HKCU@S-1-5-21-2773700826-1739663033-2017712385-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Win.pif; regkey:_HKCU@S-1-5-21-2773700826-1739663033-2017712385-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\Win.pif.pif; regkey:_HKCU@S-1-5-21-2773700826-1739663033-2017712385-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN\\
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-PJ2RDEG\mstuk_r6futcn
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.403.143.0, AS: 1.403.143.0, NIS: 1.403.143.0
Verze modulu: AM: 1.1.23110.2, NIS: 1.1.23110.2 

Date: 2023-12-09 10:30:52
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:MSIL/AsyncRat.CCCL!MTB&threatid=2147892763&enterprise=0
Název: Trojan:MSIL/AsyncRat.CCCL!MTB
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif.pif.pif
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-PJ2RDEG\mstuk_r6futcn
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.403.143.0, AS: 1.403.143.0, NIS: 1.403.143.0
Verze modulu: AM: 1.1.23110.2, NIS: 1.1.23110.2 

Date: 2023-12-09 10:30:52
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:MSIL/AsyncRat.CCCL!MTB&threatid=2147892763&enterprise=0
Název: Trojan:MSIL/AsyncRat.CCCL!MTB
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif.pif
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-PJ2RDEG\mstuk_r6futcn
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.403.143.0, AS: 1.403.143.0, NIS: 1.403.143.0
Verze modulu: AM: 1.1.23110.2, NIS: 1.1.23110.2 

Date: 2023-12-09 10:30:52
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:MSIL/AsyncRat.CCCL!MTB&threatid=2147892763&enterprise=0
Název: Trojan:MSIL/AsyncRat.CCCL!MTB
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif; file:_C:\Users\mstuk_r6futcn\OneDrive\Dokumenty\Win.pif.pif.pif.pif.pif.pif
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-PJ2RDEG\mstuk_r6futcn
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.403.143.0, AS: 1.403.143.0, NIS: 1.403.143.0
Verze modulu: AM: 1.1.23110.2, NIS: 1.1.23110.2 
﻿
CodeIntegrity:
===============
Date: 2023-11-27 12:37:39
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. 


==================== Memory info =========================== 

BIOS: Dell Inc. 1.21.0 04/15/2022
Motherboard: Dell Inc. 0FDMYT
Processor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Percentage of memory in use: 70%
Total physical RAM: 16204.49 MB
Available physical RAM: 4741.22 MB
Total Virtual: 19532.49 MB
Available Virtual: 5581.32 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.62 GB) (Free:123.8 GB) (Model: CX2-8B256-Q11 NVMe LITEON 256GB) NTFS
Drive d: (D) (Fixed) (Total:931.5 GB) (Free:744.72 GB) (Model: ST1000LM024 HN-M101MBB) NTFS

\\?\Volume{fc43c9c4-138e-4c90-be41-3d2a6899d9e8}\ () (Fixed) (Total:0.74 GB) (Free:0.05 GB) NTFS
\\?\Volume{4c925fc5-a569-4893-b065-1c18989cbb81}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 238.5 GB) (Disk ID: D956A848)

Partition: GPT.

==================== End of Addition.txt =======================