Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.01.2024
Ran by nitro (15-01-2024 21:55:15)
Running from C:\Users\nitro\OneDrive\Desktop
Microsoft Windows 11 Home Version 22H2 22621.3007 (X64) (2022-10-06 18:42:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-175739054-1859323861-2923461289-500 - Administrator - Disabled)
D3StinyCZ (S-1-5-21-175739054-1859323861-2923461289-1003 - Limited - Enabled) => C:\Users\D3StinyCZ
DefaultAccount (S-1-5-21-175739054-1859323861-2923461289-503 - Limited - Disabled)
Guest (S-1-5-21-175739054-1859323861-2923461289-501 - Limited - Disabled)
Natálie (S-1-5-21-175739054-1859323861-2923461289-1002 - Limited - Enabled) => C:\Users\Natálie
nitro (S-1-5-21-175739054-1859323861-2923461289-1001 - Administrator - Enabled) => C:\Users\nitro
WDAGUtilityAccount (S-1-5-21-175739054-1859323861-2923461289-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Disabled - Up to date) {26E0861C-6FB9-CEF9-E4F0-531986211ACE}
FW: ESET Firewall (Enabled) {1EDB0739-25D6-CFA1-CFAF-FA2C78F25DB5}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov)
7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.008.20458 - Adobe)
Adobe Reader X (10.1.2) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.2 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AtomSDKInstaller (HKLM-x32\...\AtomSDKInstaller_is1) (Version: 4.5.0.21 - GZ Systems)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
balenaEtcher 1.7.9 (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.7.9 - Balena Inc.)
BMW Group ISTA (HKLM-x32\...\{FD79F009-F13C-4722-A0EC-5F342E584F7D}_is1) (Version: 4.32.15 - BMW AG)
BMW Standard Tools (HKLM-x32\...\{ 70994916-61E9-40D2-A30C-89D2C030017F}_is1) (Version: 2.12.0 - BMW Group)
Canon LBP6200 (HKLM\...\Canon LBP6200) (Version:  - )
Care Center Service (HKLM\...\{AFB52E98-7597-4484-9202-58F0FD3512ED}) (Version: 4.00.3042 - Acer Incorporated)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 11.2.0.2099 - Disc Soft Ltd)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
Eclipse Mosquitto MQTT broker (64 bit) (HKLM-x32\...\Mosquitto64) (Version: 2.0.15 - )
EDIABAS 7.3.0 (HKLM-x32\...\{083933AF-00A2-4CFC-BE59-19DC385E8761}) (Version: 7.3.0 - BMW Group)
Epic Games Launcher (HKLM-x32\...\{FAC47927-1A6A-4C6E-AD7D-E9756794A4BC}) (Version: 1.3.23.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{758842D2-1538-4008-A8E3-66F65A061C52}) (Version: 2.0.33.0 - Epic Games, Inc.)
EseeCloud 3.0.3 (HKLM-x32\...\EseeCloud) (Version: 3.0.3 - My company, Inc.)
ESET Premium Line Encryption (HKLM\...\{764DBB66-954B-498B-A8F0-5674FF309BAC}) (Version: 2.0.0.29 - ESET) Hidden
ESET Security (HKLM\...\{D49B87B7-D6F4-43F9-8CC5-097B0715F6D3}) (Version: 17.0.16.0 - ESET, spol. s r.o.)
File Shredder 2.5 (HKLM\...\File Shredder_is1) (Version:  - Pow Tools)
FlashBrowser version 0.8.1 (HKLM-x32\...\{73E7F6CF-E0C5-42EC-BC35-1AB1A50D7BFF}_is1) (Version: 0.8.1 - AS3)
Folder Password Lock Pro 11.8.0 (HKLM-x32\...\{30AB2FCD-FBF2-4bed-AC6A-13E6A1468621}_is1) (Version: 11.8.0 - ThunderSoft International LLC.)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2023.2.0.21408 - Foxit Software Inc.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 85.0.26.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.217 - Google LLC)
HandBrake 1.5.1 (HKLM-x32\...\HandBrake) (Version: 1.5.1 - )
HU-SERVICE HISTORY MANAGER (HKLM-x32\...\HU-SERVICE HISTORY MANAGER) (Version: 1.000.100 - BlackBOX Sistemi - Automotive)
Java 8 Update 341 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180341F0}) (Version: 8.0.3410.10 - Oracle Corporation)
K-Lite Codec Pack 17.8.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 17.8.0 - KLCP)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{E496AFB7-CB04-46CF-8FBB-5D665BC8811B}) (Version: 3.3.2110.22002 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.6.8.311 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.8.311 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft .NET Host - 6.0.26 (x64) (HKLM\...\{87EBA554-A002-4EF4-A612-4FFD06092B5B}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.26 (x64) (HKLM\...\{D81A418F-966D-4069-B3E8-5EE4843CA862}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.26 (x64) (HKLM\...\{1A02C1B1-05BB-49F7-9DFF-99A66C6877FC}) (Version: 48.104.7000 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.26 (x64) (HKLM-x32\...\{d03cab7b-6d8b-4d83-a714-cba2c8922e2a}) (Version: 6.0.26.33205 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.133 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.133 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Retail - cs-cz) (Version: 16.0.17126.20132 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - en-us (HKLM\...\ProPlus2021Retail - en-us) (Version: 16.0.17126.20132 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.26 (x64) (HKLM\...\{1F0EB53C-BE30-436A-BC54-FA364227A870}) (Version: 48.104.6996 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.26 (x64) (HKLM-x32\...\{b2476903-b8da-4dcc-903f-378730bb4c48}) (Version: 6.0.26.33205 - Microsoft Corporation)
MiniTool Partition Wizard 12.7 DEMO (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: 12.7 - MiniTool Software Limited)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.2.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 115.3.2 (x64 cs)) (Version: 115.3.2 - Mozilla)
NitroSense Service (HKLM\...\{6FC78E80-6385-43D6-8A43-FA80094F1A2E}) (Version: 3.01.3024 - Acer Incorporated)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.5.2 - Notepad++ Team)
novaPDF 8 Printer Driver (HKLM\...\{78348298-772C-42B6-A670-7906495C30BB}) (Version: 8.9.950 - Softland)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 546.29 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 546.29 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17126.20132 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17126.20132 - Microsoft Corporation) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.12.0 - Prolific Technology INC)
PowerToys (Preview) (HKLM\...\{F149828E-8C62-42DE-9BE9-6B2E480E7DE0}) (Version: 0.77.0 - Microsoft Corporation) Hidden
PowerToys (Preview) x64 (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\{ea4522bd-d309-4c47-be94-572b0b7c1a11}) (Version: 0.77.0 - Microsoft Corporation)
PureVPN (HKLM-x32\...\{86673b6e-dbde-4901-95d6-22ad495e7a4a}) (Version: 11.20.0.4 - ) Hidden
PureVPN (HKLM-x32\...\PureVPN) (Version: 11.20.0.4 - GZ Systems)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Roblox Player (HKLM-x32\...\roblox-player-admin) (Version:  - Roblox Corporation)
Roblox Player for Natálie (HKU\S-1-5-21-175739054-1859323861-2923461289-1002\...\roblox-player) (Version:  - Roblox Corporation)
Roblox Studio for nitro (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\roblox-studio) (Version:  - Roblox Corporation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.81.1699 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.3.4 - Rockstar Games)
Scorpion (HKLM-x32\...\{26EA045C-A0C9-48C3-9529-897D8323ED5D}) (Version: 1.00.0004 - RAJFOO)
SD Card Formatter (HKLM-x32\...\{D02212EA-E02A-4521-9036-5367734FC66E}) (Version: 5.0.2 - SD Association)
Signal 6.42.1 (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 6.42.1 - Signal Messenger, LLC)
SolarAssistant (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\24be2a3e0f0d8187b23446cf5d4a724f) (Version: 1.0 - Google\Chrome)
SolarStationMonitor (HKLM-x32\...\{A6AC628F-6084-48D0-9E97-B7460A201921}) (Version: 2.12 - EPEVER)
Speedtest by Ookla (HKLM\...\{18B03B47-804B-425F-A466-8620D0B45D2F}) (Version: 1.10.163.001 - Ookla)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.45.3 - TeamViewer)
Telegram Desktop (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 4.3.3 - Telegram FZ-LLC)
TP-Link PLC Utility (HKLM-x32\...\{88BC1EEA-0E0D-4016-B892-5FE92C01845A}) (Version: 2.3.4751.12 - TP-Link) Hidden
TP-Link PLC Utility (HKLM-x32\...\InstallShield_{88BC1EEA-0E0D-4016-B892-5FE92C01845A}) (Version: 2.3.4751.12 - TP-Link)
uTorrent Web (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\utweb) (Version: 1.4.0 - Rainberry, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
War Thunder Launcher 1.0.3.397 (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version:  - Gaijin Network)
Wargaming.net Game Center (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Wargaming.net Game Center) (Version: 23.6.0.4252 - Wargaming.net)
WFDownloaderApp (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\{wfdownloaderapp}}_is1) (Version: BETA - WFDownloaderApp)
WGCheck_EU (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\1256004191) (Version:  - Wargaming.net)
Windows Driver Package - Exar Corporation (xrusbser) Ports  (08/19/2013 2.0.0.0) (HKLM\...\39C184CB47F8754A33B495FD79FBBFC6EBC198A0) (Version: 08/19/2013 2.0.0.0 - Exar Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
Wondershare Filmora 12(Build 12.3.7.2586) (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Wondershare Filmora 12_is1) (Version:  - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
Wondershare NativePush(Build 1.0.0.7) (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\Wondershare NativePush_is1) (Version:  - )
Wondershare Recoverit(Build 12.0.18.9) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 12.0.18.9 - Wondershare Software Co.,Ltd.)
Wondershare Repairit(Build 5.0.0.30) (HKLM-x32\...\{92A6E5FF-9CF6-47bf-BB78-ABEE552A7DA2}_is1) (Version: 5.0.0.30 - Wondershare Software Co.,Ltd.)
World of Tanks Blitz (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\318164159) (Version:  - Wargaming.net)
World of Tanks EU (HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\2314027414) (Version:  - Wargaming.net)
Wot Numbers (HKLM-x32\...\{7016B49F-0D79-4A1C-B7E4-C31A48A2E34A}) (Version: 1.17.1.0 - Wot Numbers Team)
XENTRY PDF Printer (HKLM\...\{5812F27F-9CDD-4819-9804-83311ED3DDB0}) (Version: 8.9.950 - Softland)
YHP 3035 Gaming Headset 7.1 (HKLM-x32\...\SSS16xxAudioExt) (Version: 3.56.2020.901 - YENKEE)

Packages:
=========
64404Softuna.TotalDiskCleaner -> C:\Program Files\WindowsApps\64404Softuna.TotalDiskCleaner_3.0.2.0_x64__r1b4jsc7ddp3p [2024-01-03] (Total PC Cleaner)
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-01-04] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt [2024-01-14] (INTEL CORP) [Startup Task]
Care Center S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenterS_4.0.3042.0_x64__48frkmn4z8aw4 [2023-01-22] (Acer Incorporated)
Desktop Widget Tools -> C:\Program Files\WindowsApps\LaVitaAppsTOO.DesktopWidgetTools_1.1.8.0_x64__90pdqp8dxt636 [2023-09-19] (La Vita Apps) [Startup Task]
Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.900.374.0_x64__8wekyb3d8bbwe [2024-01-14] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-02-24] (Microsoft Corporation)
DTS:X Ultra -> C:\Program Files\WindowsApps\DTSInc.DTSXUltra_1.12.0.0_x64__t5j2fzbtdg37r [2024-01-03] (DTS, Inc.)
ESET Context Menu -> C:\Program Files\ESET\ESET Security [2024-01-15] (Sparse Package)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2023.531.1.0_x64__8xx8rvfyw5nnt [2024-01-14] (Meta)
Facebook -> C:\Program Files\WindowsApps\www.facebook.com-21913B58_2023.531.1.1_neutral__n468xs7erp6tc [2024-01-14] (www.facebook.com)
GNews -> C:\Program Files\WindowsApps\65465Fetisenko.186926BDE572F_1.7.3.0_x64__806cg6g6fmyng [2022-12-23] (Fetisenko) [MS Ad]
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.21.0_neutral__8xx8rvfyw5nnt [2024-01-14] (Instagram)
Instagram -> C:\Program Files\WindowsApps\www.instagram.com-3D2AAE46_42.0.21.1_neutral__ysfa6mcnwr1rw [2024-01-14] (www.instagram.com)
Killer Control Center -> C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_2.2.3216.0_x64__rh07ty8m5nkag [2023-01-22] (Rivet Networks LLC) [Startup Task]
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_20.2.500.0_x64__4n2hpmxwrvr6p [2023-07-10] (XBMC Foundation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-02-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-02-04] (Microsoft Corporation) [MS Ad]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2311.21003.0_x64__8wekyb3d8bbwe [2024-01-09] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-11-09] (Microsoft Corp.)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-07-18] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-24] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-01-14] (Microsoft Corporation)
MyIPTV Player -> C:\Program Files\WindowsApps\41879VbfnetApps.MyIPTVPlayer_4.8.2.0_x64__7casf8sqhfy78 [2023-11-05] (Vbfnet Apps) [MS Ad]
NitroSense_V31 -> C:\Program Files\WindowsApps\AcerIncorporated.NitroSenseV31_3.1.3024.0_x64__48frkmn4z8aw4 [2023-01-22] (Acer Incorporated)
Notepad++ -> C:\Program Files\Notepad++\contextMenu [2023-09-17] (Notepad++)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-12-07] (NVIDIA Corp.)
PowerToys ImageResizer Context Menu -> C:\Users\nitro\AppData\Local\PowerToys [2024-01-09] (Microsoft)
PowerToys PowerRename Context Menu -> C:\Users\nitro\AppData\Local\PowerToys\WinUI3Apps [2024-01-09] (Microsoft)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.19.234.0_x64__dt26b99r8h8gj [2023-01-28] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2024-01-14] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0 [2023-12-17] (Spotify AB) [Startup Task]
Steam Tile -> C:\Program Files\WindowsApps\43266Element26Software.SteamTile_1.1.2.0_x64__2vng2mrd8a7zg [2022-04-13] (Element26 Software)
Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_4.14.2.0_x64__t4vj0pshhgkwm [2024-01-06] (Telegram Messenger LLP) [Startup Task]
TikTok -> C:\Program Files\WindowsApps\BytedancePte.Ltd.TikTok_1.0.5.0_neutral__6yccndn6064se [2024-01-14] (Bytedance Pte. Ltd.)
Trio Office -> C:\Program Files\WindowsApps\64343GTDocStudio.OfficeDocOpener_3.3.6.0_x86__3h5nez1g3qt2c [2023-11-08] (GT Office PDF Studio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2401.3.0_x64__cv1g1gvanyjgm [2024-01-12] (WhatsApp Inc.) [Startup Task]
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-01-14] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2022-12-23] (win.rar GmbH)
World of Tanks Blitz -> C:\Program Files\WindowsApps\7458BE2C.WorldofTanksBlitz_10.4.336.0_x64__x4tje2y229k00 [2023-12-22] (Wargaming Group Limited)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{0440049F-D1DC-4E46-B27B-98393D79486B}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\WinUI3Apps\PowerToys.PowerRenameExt.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{10144713-1526-46C9-88DA-1FB52807A9FF}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.SvgThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\nitro\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{1a46400f-4c81-802a-c2c1-1e9a687a9340}\localserver32 -> C:\Program Files\HandBrake\HandBrake.exe (HandBrake Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{51B4D7E5-7568-4234-B4BB-47FB3C016A69}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.ImageResizerExt.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{60789D87-9C3C-44AF-B18C-3DE2C2820ED3}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.MarkdownPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{729B72CD-B72E-4FE9-BCBF-E954B33FE699}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.QoiPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{77257004-6F25-4521-B602-50ECC6EC62A6}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.StlThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{84D68575-E186-46AD-B0CB-BAEB45EE29C0}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\WinUI3Apps\PowerToys.FileLocksmithExt.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{A0257634-8812-4CE8-AF11-FA69ACAEAFAE}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.GcodePreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{AD856B15-D25E-4008-AFB7-AFAA55586188}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.QoiThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{bb8b3e1f-d777-4139-00df-572579670034}\localserver32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.PowerLauncher.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{D8034CFA-F34B-41FE-AD45-62FCBB52A6DA}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.MonacoPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{DD5CACDA-7C2E-4997-A62A-04A597B58F76}\localserver32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{F2847CBE-CD03-4C83-A359-1A8052C1B9D5}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.GcodeThumbnailProviderCpp.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-175739054-1859323861-2923461289-1001_Classes\CLSID\{FCDD4EED-41AA-492F-8A84-31A1546226E0}\InprocServer32 -> C:\Users\nitro\AppData\Local\PowerToys\PowerToys.SvgPreviewHandlerCpp.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\nitro\AppData\Local\MEGAsync\ShellExtX64.dll [2023-11-20] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\nitro\AppData\Local\MEGAsync\ShellExtX64.dll [2023-11-20] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\nitro\AppData\Local\MEGAsync\ShellExtX64.dll [2023-11-20] (Mega Limited -> )
ShellIconOverlayIdentifiers: [    GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [    GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ESD Shell Icon Overlay Identifier] -> {AF106685-9C86-48AF-8524-8F485C459E17} => C:\Program Files\ESET\ESET Secure Data\esdovrly.dll [2022-08-24] (DESlock Limited -> DESlock Limited)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1-x32: [Gili FileLock Pro] -> {58264032-9730-4ab3-BEA2-A6CE3EEF6080} => C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\GiliFileShell.dll [2022-10-28] () [File not signed]
ContextMenuHandlers1: [Gili soft64] -> {70DB8E3E-05F6-404D-856B-A47C556A53CE} => C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\GiliFileShell64.dll [2023-06-04] () [File not signed]
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\nitro\AppData\Local\MEGAsync\ShellExtX64.dll [2023-11-20] (Mega Limited -> )
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> No File
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> No File
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> No File
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-08-09] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\nitro\AppData\Local\MEGAsync\ShellExtX64.dll [2023-11-20] (Mega Limited -> )
ContextMenuHandlers2: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> No File
ContextMenuHandlers2: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> No File
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> No File
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2023-08-09] (AVB Disc Soft, SIA -> Disc Soft FZE LLC)
ContextMenuHandlers3: [DeleteFiles] -> {736AF091-C361-49B4-A928-87C586130D33} => C:\Program Files\File Shredder\fsshell.dll [2012-04-01] () [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-01-09] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\nitro\AppData\Local\MEGAsync\ShellExtX64.dll [2023-11-20] (Mega Limited -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\nitro\AppData\Local\MEGAsync\ShellExtX64.dll [2023-11-20] (Mega Limited -> )
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.26.0\drivefsext.dll [2023-12-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvaci.inf_amd64_9ebfa3a30e04ccef\nvshext.dll [2023-11-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-12-12] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6-x32: [Gili FileLock Pro] -> {58264032-9730-4ab3-BEA2-A6CE3EEF6080} => C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\GiliFileShell.dll [2022-10-28] () [File not signed]
ContextMenuHandlers6: [Gili soft64] -> {70DB8E3E-05F6-404D-856B-A47C556A53CE} => C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\GiliFileShell64.dll [2023-06-04] () [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-01-09] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> No File
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} =>  -> No File
ContextMenuHandlers2_S-1-5-21-175739054-1859323861-2923461289-1001: [FileLocksmithExt] -> {84D68575-E186-46AD-B0CB-BAEB45EE29C0} => C:\Users\nitro\AppData\Local\PowerToys\WinUI3Apps\PowerToys.FileLocksmithExt.dll [2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3_S-1-5-21-175739054-1859323861-2923461289-1001: [FileLocksmithExt] -> {84D68575-E186-46AD-B0CB-BAEB45EE29C0} => C:\Users\nitro\AppData\Local\PowerToys\WinUI3Apps\PowerToys.FileLocksmithExt.dll [2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers3_S-1-5-21-175739054-1859323861-2923461289-1001: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Users\nitro\AppData\Local\PowerToys\WinUI3Apps\PowerToys.PowerRenameExt.dll [2024-01-05] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5_S-1-5-21-175739054-1859323861-2923461289-1001: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Users\nitro\AppData\Local\PowerToys\WinUI3Apps\PowerToys.PowerRenameExt.dll [2024-01-05] (Microsoft Corporation -> Microsoft Corporation)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\nitro\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_ifkcopihdmfkcpffahjcnbkmcbhckgld\SolarAssistant.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ifkcopihdmfkcpffahjcnbkmcbhckgld
ShortcutWithArgument: C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Hangouts Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=knipolnnllmklapflnccelgolnpehhpl
ShortcutWithArgument: C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Kronymous - Access internet via Tor Network.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=dfdhngcahhplaibahkkjhdklhihbaikl
ShortcutWithArgument: C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\SolarAssistant.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=ifkcopihdmfkcpffahjcnbkmcbhckgld
ShortcutWithArgument: C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Videostream for Google Chromecast™.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=cnciopoikihiagdjbjpnocolokfelagl

==================== Loaded Modules (Whitelisted) =============

2023-12-30 20:04 - 2023-06-04 15:11 - 000355840 _____ () [File not signed] C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\FolderLockPlugin64.dll
2023-12-30 20:04 - 2023-06-04 15:11 - 000304640 _____ () [File not signed] C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\GiliFileShell64.dll
2023-12-30 20:04 - 2020-08-28 18:03 - 001198080 _____ () [File not signed] C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\KernalUI64.dll
2023-12-25 12:46 - 2012-04-01 00:06 - 002689536 _____ () [File not signed] C:\Program Files\File Shredder\fsshell.dll
2023-12-23 13:10 - 2023-12-23 13:10 - 005855744 _____ (ESET, spol. s r.o. -> ESET) [File not signed] C:\Program Files\ESET\ESET Security\Modules\em045_64\1087\em045_64.dll
2022-07-15 19:00 - 2022-07-15 19:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2022-02-09 23:06 - 2023-12-14 18:00 - 000634880 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\SYSTEM32\gameplatformservices.dll
2022-02-13 00:19 - 2022-02-13 00:19 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2022-02-13 00:19 - 2022-02-13 00:19 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2017-06-06 19:02 - 2017-06-06 19:02 - 000018944 _____ (Softland) [File not signed] C:\WINDOWS\System32\novamn8.dll
2023-12-30 20:04 - 2023-06-28 11:43 - 000841728 _____ (winfilelock) [File not signed] C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\FileLock64.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-175739054-1859323861-2923461289-1001\Software\Classes\regfile:  <==== ATTENTION
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\Software\Classes\.reg:  =>  <==== ATTENTION
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\Software\Classes\.bat:  =>  <==== ATTENTION
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\Software\Classes\.cmd:  =>  <==== ATTENTION

==================== Internet Explorer (Whitelisted) ==========

BHO: FLockObj Class -> {34EDF7FD-FD9B-420F-A701-CC2C081FB26C} -> C:\Program Files (x86)\ThunderSoft\Folder Password Lock Pro\FolderLockPlugin64.dll [2023-06-04] () [File not signed]
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\ssv.dll [2023-09-12] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_341\bin\jp2ssv.dll [2023-09-12] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-10] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\sharepoint.com -> hxxps://maiergroup-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2024-01-11 20:12 - 000000868 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 telemetry.malwarebytes.com

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;c:\ediabas\bin;C:\Program Files\dotnet\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\EDIABAS\BIN\
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\nitro\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-175739054-1859323861-2923461289-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-21-175739054-1859323861-2923461289-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: ACCSvc => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AtomService => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: DtsApo4Service => 2
MSCONFIG\Services: EaseUS UPDATE SERVICE => 2
MSCONFIG\Services: esifsvc => 2
MSCONFIG\Services: FvSvc => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: igccservice => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: IntelAudioService => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: Killer Analytics Service => 2
MSCONFIG\Services: Killer Network Service => 2
MSCONFIG\Services: Killer Wifi Optimization Service => 3
MSCONFIG\Services: KNDBWM => 3
MSCONFIG\Services: NvContainerLocalSystem => 2
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: PSSvc => 3
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: WMIRegistrationService => 2
MSCONFIG\Services: xTendSoftAPService => 2
MSCONFIG\Services: xTendUtilityService => 2
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\StartupApproved\Run: => "Gaijin.Net Updater"
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\StartupApproved\Run: => "AvastBrowserAutoLaunch_D033826DDFF990BF69FBF9EC34F90E15"
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-175739054-1859323861-2923461289-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{05A7EC36-8ABF-45C3-B7D0-B1679E476FEB}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{1BE59CB3-47F7-460B-9C87-92B84A59EAB7}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{59F84713-541A-4880-8230-1AF23FEAC640}C:\users\nitro\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\nitro\appdata\roaming\utorrent web\utweb.exe => No File
FirewallRules: [UDP Query User{BC94A217-9E01-41B6-B434-BA4637851687}C:\users\nitro\appdata\roaming\utorrent web\utweb.exe] => (Allow) C:\users\nitro\appdata\roaming\utorrent web\utweb.exe => No File
FirewallRules: [TCP Query User{9FBE816A-E3B1-490B-A7F5-E30D18312ADD}C:\ediabas\bin\ifhsrv32.exe] => (Allow) C:\ediabas\bin\ifhsrv32.exe () [File not signed]
FirewallRules: [UDP Query User{5D3024CA-69E9-43FD-80A7-FFAA837A08EC}C:\ediabas\bin\ifhsrv32.exe] => (Allow) C:\ediabas\bin\ifhsrv32.exe () [File not signed]
FirewallRules: [{DCB0137F-00F7-42CF-87A7-C305290C9807}] => (Block) C:\ediabas\bin\ifhsrv32.exe () [File not signed]
FirewallRules: [{B253265E-E6F7-4757-8CC1-F378C268FC0F}] => (Block) C:\ediabas\bin\ifhsrv32.exe () [File not signed]
FirewallRules: [TCP Query User{DDE5B7E7-2B42-40AE-8EAE-4FA18CF33E05}C:\users\nitro\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Allow) C:\users\nitro\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{2414964C-AC51-4006-B4B3-66DD852847A2}C:\users\nitro\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Allow) C:\users\nitro\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [TCP Query User{227454AE-0201-477C-B5A9-619DADF8E440}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{5725CEDC-E785-4539-839B-1F7AED4C4080}C:\games\world_of_tanks_eu\win64\worldoftanks.exe] => (Allow) C:\games\world_of_tanks_eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{EF46204F-EA7B-4E0C-AE2C-A1302A24261F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{51ACD635-CC6B-45E8-916E-C66FB06DCAC3}] => (Allow) C:\Users\nitro\OneDrive\Desktop\Woj-Car Remote Coding.exe (ispiexpert.com) [File not signed]
FirewallRules: [{284EC69C-A21C-45A6-A773-61414F63C64B}] => (Allow) LPort=57209
FirewallRules: [{C9910949-AE90-4681-BEDA-C1403AAD03A1}] => (Allow) LPort=57210
FirewallRules: [{D7EE5A44-9C44-4B90-AD5A-C19E66B401F5}] => (Allow) LPort=57211
FirewallRules: [{61B296FB-9D77-42DA-8104-C7AF1C6C4F9D}] => (Allow) LPort=57212
FirewallRules: [{4EE4C859-AED5-4901-B705-DC85572478F2}] => (Allow) LPort=57213
FirewallRules: [{02CCBE87-5423-4DE4-B475-6A2918FFF4B6}] => (Allow) LPort=57214
FirewallRules: [{92893B50-334F-4E8A-956C-A9BC43B63DFF}] => (Allow) LPort=57215
FirewallRules: [{7AF38564-B46B-4A5C-BCDA-DCC1B555D2C6}] => (Allow) LPort=57216
FirewallRules: [{3EAC56DF-CDB8-4A4E-A1C2-A4E7BAC51AFD}] => (Allow) LPort=57217
FirewallRules: [{1B0AE890-3A64-4E60-96AC-E67186DAA180}] => (Allow) LPort=57218
FirewallRules: [{6E88A99D-91D2-40D0-B437-A4CBCEA52C3D}] => (Allow) LPort=57209
FirewallRules: [{B60118AA-5FC4-4BAB-87FF-8C2549D4590D}] => (Allow) LPort=57210
FirewallRules: [{5AF420ED-D598-4F66-A433-8BBA7B8983EE}] => (Allow) LPort=57211
FirewallRules: [{51190BCB-84FF-4492-982A-BEB40983B7F0}] => (Allow) LPort=57212
FirewallRules: [{526BDA15-D506-459F-AFA7-3DC5CB956768}] => (Allow) LPort=57213
FirewallRules: [{9999FD19-1F0C-4B18-8246-1C47C76B9F78}] => (Allow) LPort=57214
FirewallRules: [{54512F8F-587F-47D5-89E2-FA61A510D110}] => (Allow) LPort=57215
FirewallRules: [{39856B24-FF77-48D1-817C-FC6AD95512D3}] => (Allow) LPort=57216
FirewallRules: [{F3455EDF-03BF-49C8-B63B-87AF69BBE50C}] => (Allow) LPort=57217
FirewallRules: [{70E40216-AD62-4BC3-B912-2B84F54BEC82}] => (Allow) LPort=57218
FirewallRules: [{8FC25C67-D16D-4A0D-A265-160A4E695CDB}] => (Allow) LPort=23007
FirewallRules: [{3FE2ECB5-4A13-49F3-BAE6-A2F3FF287B33}] => (Allow) LPort=23008
FirewallRules: [{E9EB899E-02B8-40AB-A1B6-BE2C3B567B6D}] => (Allow) LPort=33009
FirewallRules: [{7BA1ECCD-5308-4169-84EA-D1D3161671FB}] => (Allow) LPort=33010
FirewallRules: [{4F009134-9F9F-4556-83F1-B32FB467E33B}] => (Allow) LPort=33011
FirewallRules: [{9E555360-D646-499B-8C3F-5BD05307543E}] => (Allow) LPort=43012
FirewallRules: [{B2A983E9-F9B2-47DB-9562-C1A325C88952}] => (Allow) LPort=43013
FirewallRules: [{FD79F78C-115F-49D1-BAC6-E7A8D372674A}] => (Allow) LPort=53014
FirewallRules: [{84BAF2D9-9E11-42E5-9539-E921A562E2BB}] => (Allow) LPort=53015
FirewallRules: [{4144609C-FD14-400C-B3D2-4A3EDDBB850E}] => (Allow) LPort=53016
FirewallRules: [{02E680EE-B945-454B-A6F3-DFCE1A3B8183}] => (Allow) LPort=23007
FirewallRules: [{8AA59F52-D297-4953-B76D-791D838FA71A}] => (Allow) LPort=23008
FirewallRules: [{90BC49D0-1018-49D1-AABA-1723FEE4445A}] => (Allow) LPort=33009
FirewallRules: [{D79737E9-E767-4781-8777-7D0FE8EB3EF6}] => (Allow) LPort=33010
FirewallRules: [{E160F88A-16DD-4AA4-BDBB-04C32B1E6DB7}] => (Allow) LPort=33011
FirewallRules: [{36751C28-0A83-462F-8C29-7F2E8A3A1DD4}] => (Allow) LPort=43012
FirewallRules: [{CE60FFC8-B6A6-4B31-B0E0-1A184ACD6A4E}] => (Allow) LPort=43013
FirewallRules: [{E7A57151-1E11-4213-A178-75EA1BD83EC3}] => (Allow) LPort=53014
FirewallRules: [{44130700-726E-4C5E-A15B-EB56478203B3}] => (Allow) LPort=53015
FirewallRules: [{09D5FD54-F5B5-4BD2-A58B-CC728883AE43}] => (Allow) LPort=53016
FirewallRules: [{C84EFB4E-CB3E-4116-AE65-4FA9E549665F}] => (Allow) LPort=50053
FirewallRules: [{342494BE-79C7-476D-AEB4-CDE04154846D}] => (Allow) LPort=50053
FirewallRules: [{C42A4137-227D-43A7-B500-491D8B1EC84C}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B043C9E5-14C3-4DB1-A45F-134B46975975}] => (Allow) C:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{3B880639-84C8-4DAD-ABD3-8A5D7D05D1AC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{40A14187-80D2-4DA9-ABC4-421186AAEDBD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{C3B1DCFE-623D-4DBE-B120-1175D3789F5E}C:\program files (x86)\gz systems\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\gz systems\purevpn\purevpn.exe (GZ Systems Limited -> GZ Systems)
FirewallRules: [UDP Query User{4ECA1C73-F3A5-4FBC-8930-AEA4D6FDA4FF}C:\program files (x86)\gz systems\purevpn\purevpn.exe] => (Allow) C:\program files (x86)\gz systems\purevpn\purevpn.exe (GZ Systems Limited -> GZ Systems)
FirewallRules: [TCP Query User{BB40C922-FCE3-490C-9BAA-DCC2544CE711}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [UDP Query User{24B4FCBC-604A-48B9-8A94-75E1B4105AAD}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming Group Limited -> Wargaming.net)
FirewallRules: [{172ADE0B-2478-409C-AB0D-E7D24AA34E72}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9FC7D699-C4ED-403B-8093-977AE85E6B28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C7309531-284E-4F52-B012-FF335F93BE42}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{57FCD8CD-7E07-40E1-93D6-E2D804B3F2B8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5B10DE86-6C26-4491-9425-D3036B3F16EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{904C02AF-3BC4-43F6-AA5B-C0B350F938EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7848D05D-9A92-4CC2-972A-A1DA31012F89}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6FFCD6F9-9017-485E-A991-20F879D954AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D868C370-6ACF-4911-B2A5-00CA5B3474C6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6EA596A3-4410-4B94-B927-D97CCF6AB2B6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A83520D6-1897-408E-A4D3-F670DE6844BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{28A40138-B2D5-434C-A8D1-78BC3DE7B1F3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{75CE803E-7563-46A0-97AA-089F0A1D2318}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{523044CE-AEA5-49ED-8CF3-29427305D87C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FEBF5B44-4701-4489-B1FA-5A0CF3186213}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5B94934B-B2FE-45A2-8BEA-FE0727C6B4FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{952CD0DF-CA10-4D8B-A6EC-92245D550717}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1D36F0D6-F063-4EEE-9C9B-498ABE0ACD84}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9BD09EF1-ED0F-4A11-9FC0-838B38F80FBD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{45ACCEEC-AB64-4DAC-AE16-CB5A488A93E8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.110.3218.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A0CA2F3F-D8C7-40FB-B290-9DC496DDBC31}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23335.205.2559.726_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{48943C5E-461C-498A-8DC2-63C23A34EB52}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23335.205.2559.726_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{493511E0-A100-4F34-9BEA-3A0586A9947E}] => (Allow) C:\Users\nitro\AppData\Local\PowerToys\PowerToys.MouseWithoutBorders.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{50254938-1A13-4095-A021-7020F39F0485}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B7A2AC65-74B7-4DF8-AC1F-E52E27BA1376}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.133\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

11-01-2024 19:31:22 Windows Update
14-01-2024 09:51:35 Installed TP-Link PLC Utility

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/15/2024 09:34:26 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-J5U6QGF)
Description: C:\Users\nitro\AppData\Local\Publishers\8wekyb3d8bbwe\TeamsSharedConfigMicrosoftTeams_8wekyb3d8bbwe-2147024894

Error: (01/15/2024 09:34:16 PM) (Source: SideBySide) (EventID: 74) (User: )
Description: Selhalo generování kontextu aktivace pro: C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe. Chyba v souboru manifestu nebo zásad C:\Program Files (x86)\GOG Galaxy\CHROME_ELF.DLL na řádku 2.
Prvek requestedPrivileges není v manifestu součásti povolen.

Error: (01/15/2024 09:32:15 PM) (Source: SideBySide) (EventID: 74) (User: )
Description: Selhalo generování kontextu aktivace pro: C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe. Chyba v souboru manifestu nebo zásad C:\Program Files (x86)\GOG Galaxy\CHROME_ELF.DLL na řádku 2.
Prvek requestedPrivileges není v manifestu součásti povolen.

Error: (01/15/2024 08:16:35 PM) (Source: SideBySide) (EventID: 74) (User: )
Description: Selhalo generování kontextu aktivace pro: C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe. Chyba v souboru manifestu nebo zásad C:\Program Files (x86)\GOG Galaxy\CHROME_ELF.DLL na řádku 2.
Prvek requestedPrivileges není v manifestu součásti povolen.

Error: (01/15/2024 08:16:35 PM) (Source: SideBySide) (EventID: 74) (User: )
Description: Selhalo generování kontextu aktivace pro: C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe. Chyba v souboru manifestu nebo zásad C:\Program Files (x86)\GOG Galaxy\CHROME_ELF.DLL na řádku 2.
Prvek requestedPrivileges není v manifestu součásti povolen.

Error: (01/14/2024 07:11:51 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-J5U6QGF)
Description: C:\Users\nitro\AppData\Local\Publishers\8wekyb3d8bbwe\TeamsSharedConfigMicrosoftTeams_8wekyb3d8bbwe-2147024894

Error: (01/14/2024 03:32:39 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-J5U6QGF)
Description: C:\Users\nitro\AppData\Local\Publishers\8wekyb3d8bbwe\TeamsSharedConfigMicrosoftTeams_8wekyb3d8bbwe-2147024894

Error: (01/14/2024 03:31:18 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: DESKTOP-J5U6QGF)
Description: C:\Users\nitro\AppData\Local\Publishers\8wekyb3d8bbwe\TeamsSharedConfigMicrosoftTeams_8wekyb3d8bbwe-2147024894


System errors:
=============
Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba FileSyncHelper byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Content Protection HECI Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Killer Wifi Optimization Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba xTendUtilityService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Mosquitto Broker byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Wondershare Native Push Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/15/2024 09:38:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Killer Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2022-10-17 21:59:44
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe; file:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe; file:_C:\Users\nitro\OneDrive\Dokumenty\utweb_installer.exe; webfile:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe|https://download-new.utorrent.com/endpoint/btweb/os/windows/track/stable|pid:2016,ProcessStart:133105102705386276; webfile:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe|https://download-hr.utorrent.com/track/stable/endpoint/utorrent/os/windows|pid:13412,ProcessStart:133105102453084563; webfile:_C:\Users\nitro\OneDrive\Dokumenty\utweb_installer.exe|https://download-new.utorrent.com/endpoint/utweb/track/stable/os/win|pid:17716,ProcessStart:133105103826735809
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-J5U6QGF\nitro
Název procesu: C:\Program Files\Microsoft OneDrive\OneDrive.exe
Verze bezpečnostních informací: AV: 1.377.379.0, AS: 1.377.379.0, NIS: 1.377.379.0
Verze modulu: AM: 1.1.19700.3, NIS: 1.1.19700.3 

Date: 2022-10-17 21:59:43
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe; file:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe; file:_C:\Users\nitro\OneDrive\Dokumenty\utweb_installer.exe; webfile:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe|https://download-new.utorrent.com/endpoint/btweb/os/windows/track/stable|pid:2016,ProcessStart:133105102705386276; webfile:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe|https://download-hr.utorrent.com/track/stable/endpoint/utorrent/os/windows|pid:13412,ProcessStart:133105102453084563; webfile:_C:\Users\nitro\OneDrive\Dokumenty\utweb_installer.exe|https://download-new.utorrent.com/endpoint/utweb/track/stable/os/win|pid:17716,ProcessStart:133105103826735809
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-J5U6QGF\nitro
Název procesu: C:\Program Files\Google\Chrome\Application\chrome.exe
Verze bezpečnostních informací: AV: 1.377.379.0, AS: 1.377.379.0, NIS: 1.377.379.0
Verze modulu: AM: 1.1.19700.3, NIS: 1.1.19700.3 

Date: 2022-10-17 21:59:03
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Misleading:Win32/Lodi&threatid=240849&enterprise=0
Název: Misleading:Win32/Lodi
Závažnost: Vysoké
Kategorie: Software placený zobrazováním reklamy
Cesta: file:_C:\Users\nitro\OneDrive\Dokumenty\WebTorrentSetup-v0.24.0.exe; webfile:_C:\Users\nitro\OneDrive\Dokumenty\WebTorrentSetup-v0.24.0.exe|https://objects.githubusercontent.com/github-production-release-asset-2e65be/35015575/6a8ebd00-e9a0-11ea-8aed-12e8c650a1b8?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A4.18.2209.7F202210174.18.2209.7Fus-east-14.18.2209.7Fs34.18.2209.7Faws4_request&X-Amz-Date=20221017T195852Z&X-Amz-Expires=300&X-Amz-Signature=ee81bc73267ec6a523c38aa3ea1c4ae8c32df75e89c8d8de67c366ad583c0306&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=35015575&response-content-disposition=attachment{5F57D976-3F83-4297-B6CC-C928EF6E99E3}BDESKTOP-J5U6QGF\nitrofilename{5F57D976-3F83-4297-B6CC-C928EF6E99E3}DWebTorrentSetup-v0.24.0.exe&response-content-type=application4.18.2209.7Foctet-stream|pid:20312,ProcessStart:133105103393917098
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-J5U6QGF\nitro
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.377.379.0, AS: 1.377.379.0, NIS: 1.377.379.0
Verze modulu: AM: 1.1.19700.3, NIS: 1.1.19700.3 

Date: 2022-10-17 21:57:52
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe; file:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe; webfile:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe|https://download-new.utorrent.com/endpoint/btweb/os/windows/track/stable|pid:2016,ProcessStart:133105102705386276; webfile:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe|https://download-hr.utorrent.com/track/stable/endpoint/utorrent/os/windows|pid:13412,ProcessStart:133105102453084563
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-J5U6QGF\nitro
Název procesu: C:\Program Files\Google\Chrome\Application\chrome.exe
Verze bezpečnostních informací: AV: 1.377.379.0, AS: 1.377.379.0, NIS: 1.377.379.0
Verze modulu: AM: 1.1.19700.3, NIS: 1.1.19700.3 

Date: 2022-10-17 21:57:52
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/uTorrent_BundleInstaller&threatid=311958&enterprise=0
Název: PUABundler:Win32/uTorrent_BundleInstaller
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe; file:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe; webfile:_C:\Users\nitro\OneDrive\Dokumenty\btweb_installer.exe|https://download-new.utorrent.com/endpoint/btweb/os/windows/track/stable|pid:2016,ProcessStart:133105102705386276; webfile:_C:\Users\nitro\OneDrive\Dokumenty\uTorrent.exe|https://download-hr.utorrent.com/track/stable/endpoint/utorrent/os/windows|pid:13412,ProcessStart:133105102453084563
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: DESKTOP-J5U6QGF\nitro
Název procesu: C:\Program Files\Microsoft OneDrive\OneDrive.exe
Verze bezpečnostních informací: AV: 1.377.379.0, AS: 1.377.379.0, NIS: 1.377.379.0
Verze modulu: AM: 1.1.19700.3, NIS: 1.1.19700.3 
﻿Event[0]

Date: 2023-08-28 00:11:13
Description: 
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.393.737.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.23060.1005
Kód chyby: 0x8024001e
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.  

CodeIntegrity:
===============
Date: 2024-01-15 21:55:42
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. 

Date: 2024-01-15 21:53:53
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume5\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements. 


==================== Memory info =========================== 

BIOS: Insyde Corp. V2.06 08/19/2021
Motherboard: CML Stonic_CMS
Processor: Intel(R) Core(TM) i5-10300H CPU @ 2.50GHz
Percentage of memory in use: 41%
Total physical RAM: 16215.05 MB
Available physical RAM: 9479.91 MB
Total Virtual: 45911.05 MB
Available Virtual: 37569.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:475.98 GB) (Free:106.6 GB) (Model: NVMe WDC PC SN530 SDB) NTFS
Drive d: (Samsung 2TB) (Fixed) (Total:1863 GB) (Free:1751.18 GB) (Model: Samsung SSD 870 QVO 2TB) NTFS
Drive g: () (Fixed) (Total:0 GB) (Free:0 GB) (Model: Samsung SSD 870 QVO 2TB) 

\\?\Volume{93dfd12e-79f4-4ff3-b67d-3d6fde794d74}\ () (Fixed) (Total:0.84 GB) (Free:0.04 GB) NTFS
\\?\Volume{8374959f-76b4-4ec4-8c32-676466d54049}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 476.9 GB) (Disk ID: AB7D5302)

Partition: GPT.

==================== End of Addition.txt =======================