Prosím o kontrolu logu. Divné chování PC. Konkrétně mizející ikon a souborů na ploše. Dále zásadní problém s unikem hesel. Unik hesel jak z klientů např. steam tak i z internetového prohlížeče. PC projeto antivirovým programem.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by ada25 (administrator) on DESKTOP-7QV4VV7 (MSI MS-7850) (21-04-2024 13:10:09)
Running from C:\Users\ada25\OneDrive\Plocha\FRST64.exe
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: "D:\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe <6>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> com.logitech) C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe <2>
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\epmd.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\inet_gethost.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\lib\os_mon-2.7\priv\bin\win32sysinfo.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe <6>
(D:\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\109.0.5097.45\opera_crashreporter.exe
(D:\STEAM\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(explorer.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
(explorer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(explorer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\opera.exe <38>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Driver Booster\Pub\imsctadn.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.062.0326.0002\Microsoft.SharePoint.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nitsusvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\MAX\nimxs.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\PXI\nipxicms.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\UGREEN\WifiAutoInstall\WifiAutoInstallSrv.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(spool\drivers\x64\3\CNAP2LAK.EXE ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABCSWK.EXE
(spool\drivers\x64\3\CNAP2LAK.EXE ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Valve Corp. -> Valve Corporation) D:\STEAM\steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3952720 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [460736 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [NI Device Monitor] => D:\Bin\NI\NI Device Monitor\DeviceMonitor.exe [350392 2022-07-06] (National Instruments Corporation -> National Instruments)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (No File)
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37448168 2024-04-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Steam] => D:\STEAM\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [342816 2021-06-30] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Opera Browser Assistant] => D:\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\WINDOWS\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [181248 2022-12-19] (pdfforge GmbH) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\sweaw.exe: [{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb] -> GOG.com Star Wars Empire at War
HKLM\Software\...\AppCompatFlags\InstalledSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb [2014-12-16]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk [2023-04-02]
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2023-04-02]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2022 Rychlé spuštění.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS 2022 Rychlé spuštění.lnk -> C:\Windows\Installer\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Nástroj pro stahování na pozadí.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS Nástroj pro stahování na pozadí.lnk -> C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BE932A40-B029-4BFA-9A34-EFB732062E1C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {F500350B-4650-41B7-B53E-ABA0F4FB5DE3} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5225408 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {8B80024D-E365-4DAF-BD72-65923AAA8B4E} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [7991232 2024-04-03] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {A75A7F32-BCA4-4DDD-B8D1-B29411233605} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2385856 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {A5CE9DBD-06EA-4E2B-A10A-7C15B7951575} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe [160744 2023-09-13] (IObit CO., LTD -> IObit)
Task: {96CDD2E3-09BA-4CC4-BE82-084AE657371A} - System32\Tasks\Driver Booster SkipUAC (ada25) => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\DriverBooster.exe [8974312 2023-09-13] (IObit CO., LTD -> IObit)
Task: {1FB328C7-429B-4F1E-85E7-385118C3103D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\AutoUpdate.exe [2524648 2023-09-01] (IObit CO., LTD -> IObit)
Task: {91F66314-56E7-4D98-8389-079266DCB0E7} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2020-08-18] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
Task: {218630FD-4E57-46DA-9791-0919E339F61C} - System32\Tasks\iTop Christmas Task (One-Time) => "C:\Program Files (x86)\iTop VPN\Pub\itopxmas.exe" -> C:\Program Files (x86)\iTop VPN\Pub\\/vpn
Task: {310378DF-7965-4BD6-B9EB-C756D99FCBB9} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Users\ada25\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (No File)
Task: {52630604-5973-4D9A-9928-AFCC8E0D103C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D37CD80-5267-4154-B6E5-2FE6C63C43F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D4C306C-29A3-4517-92DB-D7A3B9E601A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B6A6218-EBB3-4D37-98F6-6AA2CDE65EFA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2681923-F313-4EC2-BD4C-1D52D400185F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE6389FF-F339-484F-A016-833FB8262136} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {BF34656D-0A07-435E-94A1-9612022E667D} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {E48533AE-56C6-46A0-A76C-273455E8B3CB} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {76D0119A-90B5-4672-9F0D-70BE0485BA61} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-18] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {711CE0E4-ACDC-4662-B8B9-F984FED067B5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9103DD21-D5C6-497D-B1FD-C199596A096D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {0A7767B6-AD74-4AA9-B866-FD1BDDD502A2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17D41EE8-5497-4F9B-AAE0-BDE08EAC86B7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EA9EA6E3-F7C0-4880-A70C-BE26F0237F7B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9F76FD8F-16E1-4F6A-92B3-13B949D11454} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C032932D-7D7E-4AA2-A8B9-36617F424CE9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {30D465C3-6038-4685-AD22-ED85DCEE01E1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17BE535B-2A86-40B2-BDEB-8C6F8C1CA668} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E488311-1132-406D-898D-7C76766A2D39} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {39427038-6E03-4A11-84B2-1A49AE7781B2} - System32\Tasks\Opera scheduled assistant Autoupdate 1708073729 => D:\Opera\launcher.exe [1581984 2024-04-15] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Opera\assistant" $(Arg0)
Task: {B3FF31CD-F272-42F8-AF5B-ADDA78EECAC4} - System32\Tasks\Opera scheduled Autoupdate 1708073724 => D:\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-11] (Opera Norway AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28928 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [32000 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{7db3175c-54ea-4223-9cfa-2c9e7a93822c}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}\A51607C6564716C6F66796F526: [DhcpNameServer] 192.168.254.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-21]
Edge DownloadDir: Default -> D:\Stažené soubory
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.messenger.com,*"; hxxps://www.messenger.com
Edge Extension: (Dokumenty Google offline) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-20]
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\ada25\AppData\Local\Google\Chrome\User Data\Default [2022-12-19]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Save to Google Drive) - C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi [2024-03-20]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2179105441-594047520-2276817619-1001) OperaStable - "D:\Opera\opera.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [802752 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2348984 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1238456 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9164216 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
S3 CoordinatorServiceHost; D:\Solid\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [79576 2022-03-18] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-07-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncHelper.exe [3512232 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 gpibenumsvc; D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe [29888 2022-10-01] (National Instruments Corporation -> National Instruments Corporation)
S3 JKIUpdate; C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe [1492064 2022-12-19] (James Kring, Inc. -> JKI)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [59648 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [71424 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 mxssvr; D:\Bin\NI\MAX\nimxs.exe [97960 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 NI SystemLink Message Bus; C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe [468992 2022-01-19] () [File not signed]
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [64272 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83208 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [593136 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [340192 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [423160 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [533264 2022-07-06] (National Instruments Corporation -> National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [400608 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [182512 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxicmsvc; D:\Bin\NI\PXI\nipxicms.exe [337104 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [26304 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [881888 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [27328 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [101112 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [64256 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [750328 2021-07-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nitsusvc; C:\WINDOWS\SysWOW64\nitsusvc.exe [21688 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [35504 2022-11-23] (National Instruments Corporation -> )
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\OneDriveUpdaterService.exe [3852200 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19145472 2024-04-17] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-05-05] (SolidWorks) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WifiAutoInstallSrv; C:\Program Files\UGREEN\WifiAutoInstall\WifiAutoInstallSrv.exe [118720 2021-11-29] (Realtek Semiconductor Corp. -> Realtek)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MSSQL$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S4 SQLAgent$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i TEW_SQLEXPRESS [X]
S2 SQLTELEMETRY$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service TEW_SQLEXPRESS [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 108B; C:\WINDOWS\System32\drivers\108B.sys [3822496 2019-01-16] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20528 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [230448 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [379960 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [292920 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84536 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27760 2024-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28728 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [268856 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [548912 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [93752 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69176 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [935992 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [695864 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [201784 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306232 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BattMonDRV; C:\WINDOWS\System32\drivers\BattMonDRV.sys [23728 2017-10-24] (Luculent Systems, LLC -> Luculent Systems, LLC)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrausbbus; C:\WINDOWS\System32\drivers\dtultrausbbus.sys [59344 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [38744 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [25376 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [53592 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [25416 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [25384 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [32352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [25400 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [32344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [25408 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [792352 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2023-01-06] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [150328 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [44904 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [34624 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [25360 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niSynck; C:\WINDOWS\System32\drivers\niSynckl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitsuk; C:\WINDOWS\System32\drivers\nitsukl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [25424 2022-07-07] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S4 RsFx0600; C:\WINDOWS\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7706960 2021-11-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three months (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-04-21 13:10 - 2024-04-21 13:10 - 000048586 _____ C:\Users\ada25\OneDrive\Plocha\FRST.txt
2024-04-21 13:08 - 2024-04-21 13:10 - 000000000 ____D C:\FRST
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
2024-04-21 11:51 - 2024-04-21 11:51 - 000000231 _____ C:\WINDOWS\pxisys.ini
2024-04-21 11:51 - 2024-04-21 11:51 - 000000222 _____ C:\WINDOWS\pxiesys.ini
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Roaming\com.logitech
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Local\flutter_webview_windows
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\ai_overlay_tmp
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ___HD C:\$AV_AVG
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ____D C:\Users\ada25\AppData\Local\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Free.lnk
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\AVG
2024-04-17 20:19 - 2024-04-17 20:18 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-04-17 20:18 - 2024-04-17 20:19 - 000000000 ____D C:\Program Files\AVG
2024-04-17 20:18 - 2024-04-17 20:18 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-04-17 20:18 - 2024-04-17 20:18 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-04-16 22:34 - 2024-04-16 22:34 - 000000202 _____ C:\Users\ada25\OneDrive\Plocha\Workers & Resources Soviet Republic.url
2024-04-16 20:55 - 2024-04-16 20:55 - 000000000 ___HD C:\$WinREAgent
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-10 23:04 - 2024-04-10 23:04 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-09 12:13 - 2024-04-09 12:13 - 000000000 ____D C:\Program Files\UGREEN
2024-04-09 12:13 - 2021-11-29 11:46 - 007706960 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2024-03-31 15:37 - 2024-03-31 15:41 - 003025205 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce1.pdf
2024-03-25 01:18 - 2024-03-25 01:52 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Mount and Blade II Bannerlord
2024-03-25 01:18 - 2024-03-25 01:18 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2024-03-25 01:17 - 2024-03-25 01:17 - 000000927 _____ C:\Users\ada25\OneDrive\Plocha\Mount & Blade II Bannerlord.lnk
2024-03-25 01:17 - 2024-03-25 01:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2024-03-22 14:48 - 2024-03-22 15:26 - 003025214 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce.pdf
2024-03-22 13:34 - 2024-03-22 13:34 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Battle Brothers
2024-03-21 22:51 - 2024-03-21 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle Brothers [GOG.com]
2024-03-21 16:09 - 2024-03-21 16:53 - 000016088 _____ C:\Users\ada25\OneDrive\Plocha\ASA.xlsx
2024-03-21 11:52 - 2024-03-21 11:52 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Rarykos
2024-03-21 11:51 - 2024-03-21 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Falling - Battle Tactics [GOG.com]
2024-03-20 23:13 - 2024-04-17 20:34 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows NT
2024-03-20 23:13 - 2024-03-20 23:13 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Java
2024-03-20 22:40 - 2024-04-18 09:53 - 156762112 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-03-20 22:31 - 2024-03-20 22:40 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2024-03-20 22:14 - 2024-03-20 22:14 - 000000094 _____ C:\Users\ada25\OneDrive\Dokumenty\JTmykIijufzOYVSKE.txt
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ___HD C:\ProgramData\DNTException
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Roaming\public sols
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi
2024-03-20 20:43 - 2024-03-20 20:43 - 000001345 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2024-03-20 20:43 - 2024-03-20 20:43 - 000000000 ____D C:\Users\ada25\AppData\Local\PCHealthCheck
2024-03-20 20:01 - 2024-03-20 20:01 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Ludeon Studios
2024-03-20 19:59 - 2024-03-20 19:59 - 000000000 ____D C:\ProgramData\GOG.com
2024-03-13 05:19 - 2024-04-20 17:33 - 000002738 _____ C:\WINDOWS\system32\Tasks\IObit StpSale (One-Time)
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Timberborn
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Mechanistry
2024-03-12 15:11 - 2024-03-12 15:11 - 000013484 _____ C:\Users\ada25\OneDrive\Plocha\konec.STL
2024-03-12 14:52 - 2024-03-12 14:52 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\tttttt.STL
2024-03-12 14:50 - 2024-03-12 14:52 - 000069328 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.SLDPRT
2024-03-12 14:50 - 2024-03-12 14:50 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.STL
2024-03-12 14:34 - 2024-03-12 14:34 - 000004484 _____ C:\Users\ada25\OneDrive\Plocha\pppp.STL
2024-03-12 14:26 - 2024-03-12 14:26 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcc.STL
2024-03-12 14:25 - 2024-03-12 14:25 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcio.STL
2024-02-22 17:23 - 2024-02-22 16:57 - 000163804 _____ C:\Users\ada25\OneDrive\Plocha\Completed_Data_Series.xlsx
2024-02-22 17:23 - 2024-02-22 12:56 - 000120992 _____ C:\Users\ada25\OneDrive\Plocha\Final_Smoothed_Curves.xlsx
2024-02-22 16:04 - 2024-02-22 16:04 - 000154117 _____ C:\Users\ada25\OneDrive\Plocha\Sešit3.xlsx
2024-02-22 12:36 - 2024-02-22 12:36 - 000141516 _____ C:\Users\ada25\OneDrive\Plocha\Sešit2.xlsx
2024-02-22 11:38 - 2024-02-22 11:38 - 000153783 _____ C:\Users\ada25\OneDrive\Plocha\Sešit1.xlsx
2024-02-16 10:55 - 2024-04-20 17:33 - 000003626 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1708073729
2024-02-16 10:55 - 2024-04-20 17:33 - 000003502 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1708073724
2024-02-16 10:55 - 2024-04-15 18:33 - 000000718 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-03-15 18:05 - 000000718 _____ C:\Users\ada25\OneDrive\Plocha\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-02-16 10:55 - 000000000 ____D C:\Users\ada25\AppData\Local\Opera Software
2024-02-16 10:53 - 2024-02-16 10:53 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Opera Software
2024-02-06 02:23 - 2024-02-06 02:23 - 001449068 _____ C:\Users\ada25\OneDrive\Plocha\Ř-j- - GEUNIR_DL_ (SK).pdf
==================== Three months (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-04-21 13:01 - 2022-12-17 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-21 12:25 - 2022-12-17 15:23 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-21 11:51 - 2023-10-12 18:27 - 000000000 ____D C:\Users\ada25\AppData\Local\LogiOptionsPlus
2024-04-21 11:51 - 2022-12-17 15:16 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-20 17:33 - 2023-10-06 10:33 - 000002750 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (ada25)
2024-04-20 17:33 - 2023-10-06 10:33 - 000002572 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2024-04-20 17:33 - 2023-10-06 10:33 - 000002558 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2024-04-20 17:33 - 2023-04-02 17:30 - 000002820 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceCheckTask
2024-04-20 17:33 - 2023-04-02 17:30 - 000002504 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceStartupTask
2024-04-20 17:33 - 2023-04-02 17:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\NI SSP Expiration Reminder
2024-04-20 17:33 - 2022-12-20 22:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-04-20 17:33 - 2022-12-19 15:59 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-20 17:33 - 2022-12-19 15:52 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-20 17:33 - 2022-12-18 02:11 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-17 19:43 - 000002704 _____ C:\WINDOWS\system32\Tasks\iTop Christmas Task (One-Time)
2024-04-20 17:33 - 2022-12-17 19:12 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001
2024-04-20 17:33 - 2022-12-17 15:27 - 000003174 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2024-04-20 17:33 - 2022-12-17 15:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-20 17:33 - 2022-12-17 15:23 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-20 16:12 - 2023-01-06 14:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Word
2024-04-20 16:12 - 2022-12-17 19:10 - 000000000 ____D C:\Users\ada25\AppData\Local\Packages
2024-04-20 15:36 - 2022-12-19 16:01 - 000000000 ____D C:\Users\ada25\AppData\Local\CrashDumps
2024-04-20 03:45 - 2022-12-17 15:23 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-19 12:06 - 2022-12-17 19:10 - 000000000 ____D C:\ProgramData\Packages
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-18 20:18 - 2022-12-19 15:33 - 000000000 ____D C:\Users\ada25\AppData\Local\Steam
2024-04-18 12:11 - 2023-06-06 13:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Kodi
2024-04-18 11:53 - 2022-12-19 16:51 - 000000000 ____D C:\Users\ada25\AppData\Local\Ubisoft Game Launcher
2024-04-18 11:21 - 2022-12-21 23:36 - 000002554 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2024-04-18 10:21 - 2022-12-17 15:30 - 002028514 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-18 10:21 - 2022-12-17 15:18 - 000832810 _____ C:\WINDOWS\system32\perfh005.dat
2024-04-18 10:21 - 2022-12-17 15:18 - 000193246 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-18 10:21 - 2022-12-17 15:15 - 000000000 ____D C:\WINDOWS\INF
2024-04-18 10:15 - 2022-12-20 20:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-18 10:15 - 2022-12-17 19:16 - 000000000 ____D C:\ProgramData\AVG
2024-04-18 10:15 - 2022-12-17 15:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-18 10:15 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-18 09:53 - 2022-12-17 15:12 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-18 02:16 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-04-18 00:48 - 2022-12-19 15:59 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-17 23:42 - 2022-12-25 15:52 - 000000000 ____D C:\Users\ada25\OneDrive\Plocha\Hry
2024-04-17 23:42 - 2022-12-20 20:29 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Teams
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-17 21:47 - 2022-12-17 19:13 - 000000000 ____D C:\Users\ada25\AppData\Local\D3DSCache
2024-04-17 21:45 - 2023-10-12 18:29 - 000000000 ____D C:\Users\ada25\AppData\Local\Deployment
2024-04-17 21:45 - 2022-12-17 19:07 - 000000000 ____D C:\Users\ada25
2024-04-17 20:19 - 2022-12-17 15:16 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-16 22:34 - 2022-12-19 15:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-04-16 11:48 - 2023-01-05 18:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Excel
2024-04-16 07:22 - 2022-12-19 15:44 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 10:08 - 2023-01-12 01:18 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-14 22:00 - 2023-05-05 19:21 - 000000000 ____D C:\Users\ada25\AppData\Local\SolidWorks
2024-04-14 21:59 - 2023-05-05 19:02 - 000000000 ____D C:\Users\ada25\AppData\Roaming\SOLIDWORKS
2024-04-14 19:54 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-12 17:38 - 2022-12-17 15:22 - 001725448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-12 17:37 - 2023-12-13 21:51 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-11 04:49 - 2022-12-17 15:12 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-11 04:47 - 2022-12-17 15:25 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-11 04:47 - 2022-12-15 03:03 - 000416842 __RSH C:\bootmgr
2024-04-10 23:53 - 2022-12-17 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 23:51 - 2022-12-17 19:18 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 23:04 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-10 22:54 - 2022-12-17 15:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-22 14:58 - 2022-12-23 16:51 - 000000000 ____D C:\Users\ada25\AppData\Roaming\utorrent
==================== Files in the root of some directories ========
2023-02-06 17:52 - 2024-01-20 16:07 - 000000000 _____ () C:\Users\ada25\AppData\Local\Temptable.xml
==================== SigCheckExt =========================
2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-01-15 11:23 - 2023-01-15 11:23 - 000060928 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\DAQmxAssistant_nimaglvu.dll
2004-02-23 20:42 - 2004-02-23 20:42 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== BCD ================================
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=C:
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale cs-CZ
inherit {bootloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
nx OptOut
bootmenupolicy Standard
Windows Boot Loader
-------------------
identifier {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale cs-cz
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Resume from Hibernate
---------------------
identifier {94642d77-7e0d-11ed-8928-f8388a7f6391}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostika paměti systému Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Local
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume2
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logů z důvodu problému. Děkuji
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu logů z důvodu problému. Děkuji
- Přílohy
-
- Addition.zip
- (19.36 KiB) Staženo 3 x
-
Rudy
- Site Admin
- Příspěvky: 118289
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-03-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-21-2024
# Duration: 00:00:01
# OS: Windows 10 (Build 19045.4291)
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\Users\ada25\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
Deleted C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER
***** [ Registry ] *****
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5CE9DBD-06EA-4E2B-A10A-7C15B7951575}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1854 octets] - [21/04/2024 13:29:00]
AdwCleaner[S01].txt - [1915 octets] - [21/04/2024 13:30:11]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-03-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-21-2024
# Duration: 00:00:01
# OS: Windows 10 (Build 19045.4291)
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\Users\ada25\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
Deleted C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER
***** [ Registry ] *****
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5CE9DBD-06EA-4E2B-A10A-7C15B7951575}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1854 octets] - [21/04/2024 13:29:00]
AdwCleaner[S01].txt - [1915 octets] - [21/04/2024 13:30:11]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118289
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by ada25 (administrator) on DESKTOP-7QV4VV7 (MSI MS-7850) (21-04-2024 17:45:17)
Running from C:\Users\ada25\OneDrive\Plocha\FRST64.exe
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: "D:\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(audiodg.exe ->) (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> com.logitech) C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe <6>
(D:\Opera\opera.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABCSWK.EXE
(D:\Opera\opera.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(D:\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\109.0.5097.45\opera_crashreporter.exe
(D:\STEAM\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(explorer.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\opera.exe <27>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\steam.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3952720 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [460736 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [NI Device Monitor] => D:\Bin\NI\NI Device Monitor\DeviceMonitor.exe [350392 2022-07-06] (National Instruments Corporation -> National Instruments)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (No File)
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37448168 2024-04-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Steam] => D:\STEAM\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [342816 2021-06-30] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Opera Browser Assistant] => D:\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\WINDOWS\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [181248 2022-12-19] (pdfforge GmbH) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\sweaw.exe: [{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb] -> GOG.com Star Wars Empire at War
HKLM\Software\...\AppCompatFlags\InstalledSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb [2014-12-16]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk [2023-04-02]
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2023-04-02]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2022 Rychlé spuštění.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS 2022 Rychlé spuštění.lnk -> C:\Windows\Installer\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Nástroj pro stahování na pozadí.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS Nástroj pro stahování na pozadí.lnk -> C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BE932A40-B029-4BFA-9A34-EFB732062E1C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {F500350B-4650-41B7-B53E-ABA0F4FB5DE3} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5225408 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {8B80024D-E365-4DAF-BD72-65923AAA8B4E} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [7991232 2024-04-03] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {A75A7F32-BCA4-4DDD-B8D1-B29411233605} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2385856 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {58148A02-0E4A-4E7F-BBF2-94B18C10B72A} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe [160744 2023-09-13] (IObit CO., LTD -> IObit)
Task: {96CDD2E3-09BA-4CC4-BE82-084AE657371A} - System32\Tasks\Driver Booster SkipUAC (ada25) => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\DriverBooster.exe [8974312 2023-09-13] (IObit CO., LTD -> IObit)
Task: {1FB328C7-429B-4F1E-85E7-385118C3103D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\AutoUpdate.exe [2524648 2023-09-01] (IObit CO., LTD -> IObit)
Task: {91F66314-56E7-4D98-8389-079266DCB0E7} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2020-08-18] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
Task: {218630FD-4E57-46DA-9791-0919E339F61C} - System32\Tasks\iTop Christmas Task (One-Time) => "C:\Program Files (x86)\iTop VPN\Pub\itopxmas.exe" -> C:\Program Files (x86)\iTop VPN\Pub\\/vpn
Task: {310378DF-7965-4BD6-B9EB-C756D99FCBB9} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Users\ada25\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (No File)
Task: {52630604-5973-4D9A-9928-AFCC8E0D103C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D37CD80-5267-4154-B6E5-2FE6C63C43F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D4C306C-29A3-4517-92DB-D7A3B9E601A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B6A6218-EBB3-4D37-98F6-6AA2CDE65EFA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2681923-F313-4EC2-BD4C-1D52D400185F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE6389FF-F339-484F-A016-833FB8262136} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {BF34656D-0A07-435E-94A1-9612022E667D} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {E48533AE-56C6-46A0-A76C-273455E8B3CB} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {76D0119A-90B5-4672-9F0D-70BE0485BA61} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-18] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {711CE0E4-ACDC-4662-B8B9-F984FED067B5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9103DD21-D5C6-497D-B1FD-C199596A096D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {0A7767B6-AD74-4AA9-B866-FD1BDDD502A2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17D41EE8-5497-4F9B-AAE0-BDE08EAC86B7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EA9EA6E3-F7C0-4880-A70C-BE26F0237F7B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9F76FD8F-16E1-4F6A-92B3-13B949D11454} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C032932D-7D7E-4AA2-A8B9-36617F424CE9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {30D465C3-6038-4685-AD22-ED85DCEE01E1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17BE535B-2A86-40B2-BDEB-8C6F8C1CA668} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E488311-1132-406D-898D-7C76766A2D39} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {39427038-6E03-4A11-84B2-1A49AE7781B2} - System32\Tasks\Opera scheduled assistant Autoupdate 1708073729 => D:\Opera\launcher.exe [1581984 2024-04-15] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Opera\assistant" $(Arg0)
Task: {B3FF31CD-F272-42F8-AF5B-ADDA78EECAC4} - System32\Tasks\Opera scheduled Autoupdate 1708073724 => D:\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-11] (Opera Norway AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28928 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [32000 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{7db3175c-54ea-4223-9cfa-2c9e7a93822c}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}\A51607C6564716C6F66796F526: [DhcpNameServer] 192.168.254.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-21]
Edge DownloadDir: Default -> D:\Stažené soubory
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.messenger.com,*"; hxxps://www.messenger.com
Edge Extension: (Dokumenty Google offline) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-20]
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\ada25\AppData\Local\Google\Chrome\User Data\Default [2022-12-19]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Save to Google Drive) - C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi [2024-03-20]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2179105441-594047520-2276817619-1001) OperaStable - "D:\Opera\opera.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [802752 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2348984 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1238456 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9164216 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
S3 CoordinatorServiceHost; D:\Solid\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [79576 2022-03-18] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-07-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncHelper.exe [3512232 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 gpibenumsvc; D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe [29888 2022-10-01] (National Instruments Corporation -> National Instruments Corporation)
S3 JKIUpdate; C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe [1492064 2022-12-19] (James Kring, Inc. -> JKI)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [59648 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [71424 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 mxssvr; D:\Bin\NI\MAX\nimxs.exe [97960 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S2 NI SystemLink Message Bus; C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe [468992 2022-01-19] () [File not signed]
S2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [64272 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83208 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [593136 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [340192 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [423160 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [533264 2022-07-06] (National Instruments Corporation -> National Instruments Corporation)
S2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [400608 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [182512 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxicmsvc; D:\Bin\NI\PXI\nipxicms.exe [337104 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [26304 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [881888 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [27328 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [101112 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [64256 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [750328 2021-07-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nitsusvc; C:\WINDOWS\SysWOW64\nitsusvc.exe [21688 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [35504 2022-11-23] (National Instruments Corporation -> )
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\OneDriveUpdaterService.exe [3852200 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19145472 2024-04-17] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-05-05] (SolidWorks) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WifiAutoInstallSrv; C:\Program Files\UGREEN\WifiAutoInstall\WifiAutoInstallSrv.exe [118720 2021-11-29] (Realtek Semiconductor Corp. -> Realtek)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MSSQL$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S4 SQLAgent$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i TEW_SQLEXPRESS [X]
S2 SQLTELEMETRY$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service TEW_SQLEXPRESS [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 108B; C:\WINDOWS\System32\drivers\108B.sys [3822496 2019-01-16] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20528 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [230448 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [379960 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [292920 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84536 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27760 2024-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28728 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [268856 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [548912 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [93752 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69176 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [935992 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [695864 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [201784 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306232 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BattMonDRV; C:\WINDOWS\System32\drivers\BattMonDRV.sys [23728 2017-10-24] (Luculent Systems, LLC -> Luculent Systems, LLC)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrausbbus; C:\WINDOWS\System32\drivers\dtultrausbbus.sys [59344 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [38744 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [25376 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [53592 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [25416 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [25384 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [32352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [25400 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [32344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [25408 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [792352 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2023-01-06] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [150328 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [44904 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [34624 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [25360 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niSynck; C:\WINDOWS\System32\drivers\niSynckl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitsuk; C:\WINDOWS\System32\drivers\nitsukl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [25424 2022-07-07] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S4 RsFx0600; C:\WINDOWS\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7706960 2021-11-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three months (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-04-21 13:42 - 2024-04-21 15:51 - 000002632 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2024-04-21 13:28 - 2024-04-21 13:30 - 000000000 ____D C:\AdwCleaner
2024-04-21 13:27 - 2024-04-21 13:27 - 008790880 _____ (Malwarebytes) C:\Users\ada25\OneDrive\Plocha\adwcleaner.exe
2024-04-21 13:18 - 2024-04-21 13:18 - 000019824 _____ C:\Users\ada25\OneDrive\Plocha\Addition.zip
2024-04-21 13:15 - 2024-04-21 13:15 - 000063481 _____ C:\Users\ada25\OneDrive\Plocha\Shortcut.txt
2024-04-21 13:13 - 2024-04-21 13:15 - 000082043 _____ C:\Users\ada25\OneDrive\Plocha\Addition.txt
2024-04-21 13:10 - 2024-04-21 17:45 - 000044187 _____ C:\Users\ada25\OneDrive\Plocha\FRST.txt
2024-04-21 13:08 - 2024-04-21 17:45 - 000000000 ____D C:\FRST
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
2024-04-21 11:51 - 2024-04-21 11:51 - 000000231 _____ C:\WINDOWS\pxisys.ini
2024-04-21 11:51 - 2024-04-21 11:51 - 000000222 _____ C:\WINDOWS\pxiesys.ini
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Roaming\com.logitech
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Local\flutter_webview_windows
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\ai_overlay_tmp
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ___HD C:\$AV_AVG
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ____D C:\Users\ada25\AppData\Local\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Free.lnk
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\AVG
2024-04-17 20:19 - 2024-04-17 20:18 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-04-17 20:18 - 2024-04-17 20:19 - 000000000 ____D C:\Program Files\AVG
2024-04-17 20:18 - 2024-04-17 20:18 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-04-17 20:18 - 2024-04-17 20:18 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-04-16 22:34 - 2024-04-16 22:34 - 000000202 _____ C:\Users\ada25\OneDrive\Plocha\Workers & Resources Soviet Republic.url
2024-04-16 20:55 - 2024-04-16 20:55 - 000000000 ___HD C:\$WinREAgent
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-10 23:04 - 2024-04-10 23:04 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-09 12:13 - 2024-04-09 12:13 - 000000000 ____D C:\Program Files\UGREEN
2024-04-09 12:13 - 2021-11-29 11:46 - 007706960 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2024-03-31 15:37 - 2024-03-31 15:41 - 003025205 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce1.pdf
2024-03-25 01:18 - 2024-03-25 01:52 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Mount and Blade II Bannerlord
2024-03-25 01:18 - 2024-03-25 01:18 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2024-03-25 01:17 - 2024-03-25 01:17 - 000000927 _____ C:\Users\ada25\OneDrive\Plocha\Mount & Blade II Bannerlord.lnk
2024-03-25 01:17 - 2024-03-25 01:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2024-03-22 14:48 - 2024-03-22 15:26 - 003025214 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce.pdf
2024-03-22 13:34 - 2024-03-22 13:34 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Battle Brothers
2024-03-21 22:51 - 2024-03-21 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle Brothers [GOG.com]
2024-03-21 16:09 - 2024-03-21 16:53 - 000016088 _____ C:\Users\ada25\OneDrive\Plocha\ASA.xlsx
2024-03-21 11:52 - 2024-03-21 11:52 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Rarykos
2024-03-21 11:51 - 2024-03-21 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Falling - Battle Tactics [GOG.com]
2024-03-20 23:13 - 2024-04-17 20:34 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows NT
2024-03-20 23:13 - 2024-03-20 23:13 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Java
2024-03-20 22:40 - 2024-04-18 09:53 - 156762112 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-03-20 22:31 - 2024-03-20 22:40 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2024-03-20 22:14 - 2024-03-20 22:14 - 000000094 _____ C:\Users\ada25\OneDrive\Dokumenty\JTmykIijufzOYVSKE.txt
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ___HD C:\ProgramData\DNTException
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Roaming\public sols
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi
2024-03-20 20:43 - 2024-03-20 20:43 - 000001345 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2024-03-20 20:43 - 2024-03-20 20:43 - 000000000 ____D C:\Users\ada25\AppData\Local\PCHealthCheck
2024-03-20 20:01 - 2024-03-20 20:01 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Ludeon Studios
2024-03-20 19:59 - 2024-03-20 19:59 - 000000000 ____D C:\ProgramData\GOG.com
2024-03-13 05:19 - 2024-04-21 17:44 - 000002738 _____ C:\WINDOWS\system32\Tasks\IObit StpSale (One-Time)
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Timberborn
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Mechanistry
2024-03-12 15:11 - 2024-03-12 15:11 - 000013484 _____ C:\Users\ada25\OneDrive\Plocha\konec.STL
2024-03-12 14:52 - 2024-03-12 14:52 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\tttttt.STL
2024-03-12 14:50 - 2024-03-12 14:52 - 000069328 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.SLDPRT
2024-03-12 14:50 - 2024-03-12 14:50 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.STL
2024-03-12 14:34 - 2024-03-12 14:34 - 000004484 _____ C:\Users\ada25\OneDrive\Plocha\pppp.STL
2024-03-12 14:26 - 2024-03-12 14:26 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcc.STL
2024-03-12 14:25 - 2024-03-12 14:25 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcio.STL
2024-02-22 17:23 - 2024-02-22 16:57 - 000163804 _____ C:\Users\ada25\OneDrive\Plocha\Completed_Data_Series.xlsx
2024-02-22 17:23 - 2024-02-22 12:56 - 000120992 _____ C:\Users\ada25\OneDrive\Plocha\Final_Smoothed_Curves.xlsx
2024-02-22 16:04 - 2024-02-22 16:04 - 000154117 _____ C:\Users\ada25\OneDrive\Plocha\Sešit3.xlsx
2024-02-22 12:36 - 2024-02-22 12:36 - 000141516 _____ C:\Users\ada25\OneDrive\Plocha\Sešit2.xlsx
2024-02-22 11:38 - 2024-02-22 11:38 - 000153783 _____ C:\Users\ada25\OneDrive\Plocha\Sešit1.xlsx
2024-02-16 10:55 - 2024-04-21 17:44 - 000003626 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1708073729
2024-02-16 10:55 - 2024-04-21 17:44 - 000003502 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1708073724
2024-02-16 10:55 - 2024-04-15 18:33 - 000000718 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-03-15 18:05 - 000000718 _____ C:\Users\ada25\OneDrive\Plocha\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-02-16 10:55 - 000000000 ____D C:\Users\ada25\AppData\Local\Opera Software
2024-02-16 10:53 - 2024-02-16 10:53 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Opera Software
2024-02-06 02:23 - 2024-02-06 02:23 - 001449068 _____ C:\Users\ada25\OneDrive\Plocha\Ř-j- - GEUNIR_DL_ (SK).pdf
==================== Three months (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-04-21 17:44 - 2023-10-06 10:33 - 000002750 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (ada25)
2024-04-21 17:44 - 2023-10-06 10:33 - 000002558 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2024-04-21 17:44 - 2023-04-02 17:30 - 000002820 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceCheckTask
2024-04-21 17:44 - 2023-04-02 17:30 - 000002504 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceStartupTask
2024-04-21 17:44 - 2023-04-02 17:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\NI SSP Expiration Reminder
2024-04-21 17:44 - 2022-12-20 22:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-04-21 17:44 - 2022-12-19 15:59 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-21 17:44 - 2022-12-19 15:52 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-21 17:44 - 2022-12-18 02:11 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-17 19:43 - 000002704 _____ C:\WINDOWS\system32\Tasks\iTop Christmas Task (One-Time)
2024-04-21 17:44 - 2022-12-17 19:12 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001
2024-04-21 17:44 - 2022-12-17 15:27 - 000003174 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2024-04-21 17:44 - 2022-12-17 15:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-21 17:44 - 2022-12-17 15:23 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-21 16:51 - 2022-12-17 15:16 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-21 16:37 - 2023-10-12 18:27 - 000000000 ____D C:\Users\ada25\AppData\Local\LogiOptionsPlus
2024-04-21 15:47 - 2022-12-17 15:15 - 000000000 ____D C:\WINDOWS\INF
2024-04-21 15:37 - 2022-12-17 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-21 13:42 - 2022-11-16 16:59 - 000131664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2024-04-21 13:39 - 2022-12-17 19:43 - 000000000 ____D C:\ProgramData\ProductData
2024-04-21 13:30 - 2022-12-17 19:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\IObit
2024-04-21 13:30 - 2022-12-17 19:41 - 000000000 ____D C:\ProgramData\IObit
2024-04-21 13:30 - 2022-12-17 15:23 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-20 16:12 - 2023-01-06 14:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Word
2024-04-20 16:12 - 2022-12-17 19:10 - 000000000 ____D C:\Users\ada25\AppData\Local\Packages
2024-04-20 15:36 - 2022-12-19 16:01 - 000000000 ____D C:\Users\ada25\AppData\Local\CrashDumps
2024-04-20 03:45 - 2022-12-17 15:23 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-19 12:06 - 2022-12-17 19:10 - 000000000 ____D C:\ProgramData\Packages
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-18 20:18 - 2022-12-19 15:33 - 000000000 ____D C:\Users\ada25\AppData\Local\Steam
2024-04-18 12:11 - 2023-06-06 13:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Kodi
2024-04-18 11:53 - 2022-12-19 16:51 - 000000000 ____D C:\Users\ada25\AppData\Local\Ubisoft Game Launcher
2024-04-18 11:21 - 2022-12-21 23:36 - 000002554 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2024-04-18 10:21 - 2022-12-17 15:30 - 002028514 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-18 10:21 - 2022-12-17 15:18 - 000832810 _____ C:\WINDOWS\system32\perfh005.dat
2024-04-18 10:21 - 2022-12-17 15:18 - 000193246 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-18 10:15 - 2022-12-20 20:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-18 10:15 - 2022-12-17 19:16 - 000000000 ____D C:\ProgramData\AVG
2024-04-18 10:15 - 2022-12-17 15:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-18 10:15 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-18 09:53 - 2022-12-17 15:12 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-18 02:16 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-04-18 00:48 - 2022-12-19 15:59 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-17 23:42 - 2022-12-25 15:52 - 000000000 ____D C:\Users\ada25\OneDrive\Plocha\Hry
2024-04-17 23:42 - 2022-12-20 20:29 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Teams
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-17 21:47 - 2022-12-17 19:13 - 000000000 ____D C:\Users\ada25\AppData\Local\D3DSCache
2024-04-17 21:45 - 2023-10-12 18:29 - 000000000 ____D C:\Users\ada25\AppData\Local\Deployment
2024-04-17 21:45 - 2022-12-17 19:07 - 000000000 ____D C:\Users\ada25
2024-04-17 20:19 - 2022-12-17 15:16 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-16 22:34 - 2022-12-19 15:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-04-16 11:48 - 2023-01-05 18:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Excel
2024-04-16 07:22 - 2022-12-19 15:44 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 10:08 - 2023-01-12 01:18 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-14 22:00 - 2023-05-05 19:21 - 000000000 ____D C:\Users\ada25\AppData\Local\SolidWorks
2024-04-14 21:59 - 2023-05-05 19:02 - 000000000 ____D C:\Users\ada25\AppData\Roaming\SOLIDWORKS
2024-04-14 19:54 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-12 17:38 - 2022-12-17 15:22 - 001725448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-12 17:37 - 2023-12-13 21:51 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-11 04:49 - 2022-12-17 15:12 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-11 04:47 - 2022-12-17 15:25 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-11 04:47 - 2022-12-15 03:03 - 000416842 __RSH C:\bootmgr
2024-04-10 23:53 - 2022-12-17 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 23:51 - 2022-12-17 19:18 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 23:04 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-10 22:54 - 2022-12-17 15:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-22 14:58 - 2022-12-23 16:51 - 000000000 ____D C:\Users\ada25\AppData\Roaming\utorrent
==================== Files in the root of some directories ========
2023-02-06 17:52 - 2024-01-20 16:07 - 000000000 _____ () C:\Users\ada25\AppData\Local\Temptable.xml
==================== SigCheckExt =========================
2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-01-15 11:23 - 2023-01-15 11:23 - 000060928 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\DAQmxAssistant_nimaglvu.dll
2004-02-23 20:42 - 2004-02-23 20:42 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== BCD ================================
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=C:
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale cs-CZ
inherit {bootloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
nx OptOut
bootmenupolicy Standard
Windows Boot Loader
-------------------
identifier {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale cs-cz
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Resume from Hibernate
---------------------
identifier {94642d77-7e0d-11ed-8928-f8388a7f6391}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostika paměti systému Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Local
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume2
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by ada25 (21-04-2024 17:47:32)
Running from C:\Users\ada25\OneDrive\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) (2022-12-17 13:26:16)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
ada25 (S-1-5-21-2179105441-594047520-2276817619-1001 - Administrator - Enabled) => C:\Users\ada25
Administrator (S-1-5-21-2179105441-594047520-2276817619-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2179105441-594047520-2276817619-503 - Limited - Disabled)
defaultuser100001 (S-1-5-21-2179105441-594047520-2276817619-1005 - Limited - Enabled)
Guest (S-1-5-21-2179105441-594047520-2276817619-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2179105441-594047520-2276817619-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\uTorrent) (Version: 3.6.0.47016 - BitTorrent Limited)
3DEXPERIENCE Marketplace for SOLIDWORKS (HKLM\...\{0060450C-5B44-424B-BD42-559F2A5D820A}) (Version: 6.31.534 - Dassault Systemes SolidWorks Corp)
7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.002.20687 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Age of the Ring Mod version 7.2 (HKLM-x32\...\AOTR7.2_is1) (Version: 7.2 - AotR staff)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Autodesk Fusion 360 (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.15995 - Autodesk, Inc.)
AVG AntiVirus Free (HKLM\...\AVG Antivirus) (Version: 24.3.8975.1651 - AVG)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa CW1 (02/13/2013 1.0.0.0) (HKLM\...\B10CCB939D59F72AA817B257D84328FC4A1DC752) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK2 (02/13/2013 1.0.0.0) (HKLM\...\E6CFEF5357DD0E2F987E98779FD6603959DA391B) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK3 Multi Material 2.0 upgrade (02/13/2013 1.0.0.0) (HKLM\...\FA562E43945E7D9CAC76A811E49088FF2255A11A) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Prusa i3 Plus MK3 3D printer (02/13/2013 1.0.0.0) (HKLM\...\890B56493F7CACBCA0E70EA8EBFD9A18BC780C34) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - UltiMachine 3D Printer (RAMBo) (02/13/2013 1.0.0.0) (HKLM\...\D77EC126405DC217C7BF7DA6669B51E297D5CF23) (Version: 02/13/2013 1.0.0.0 - UltiMachine)
Battle Brothers - Beasts & Exploration (HKLM-x32\...\1262476412_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Blazing Deserts (HKLM-x32\...\1354029796_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Of Flesh and Faith (HKLM-x32\...\1763378047_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Kraken Banner (HKLM-x32\...\1478596696_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Nordic Banner (HKLM-x32\...\1439127300_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Southern Banner (HKLM-x32\...\1138065447_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Supporter Edition Upgrade (HKLM-x32\...\1353924604_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Warriors of the North (HKLM-x32\...\2092450271_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers (HKLM-x32\...\1590012242_is1) (Version: 1.5.0.14 - GOG.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
Canon LBP6000/LBP6018 (HKLM\...\Canon LBP6000/LBP6018) (Version: - )
Driver Booster 11 (HKLM-x32\...\Driver Booster_is1) (Version: 11.0.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{20235E2B-1E9F-473D-A215-B2467F1F06E3}) (Version: 1.3.51.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
IVI Shared Components Package (32-bit) (HKLM-x32\...\{B21F9C33-EE41-40FD-A9AB-C0857E8039E0}) (Version: 3.0.2828.0 - IVI Foundation) Hidden
IVI Shared Components Package (64-bit) (HKLM\...\{7F1BE37B-5909-4345-8DD9-8115E82276FE}) (Version: 3.0.2828.0 - IVI Foundation) Hidden
Kodi (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Kodi) (Version: 20.1.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{4F81B8ED-D6B5-497F-AAEC-9DECD42CB03D}) (Version: 3.9.2402.14001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.70.551909 - Logitech)
LogiOptionsPlusExcelAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\D52016B639D322F0325F55AC8907516FD53F5818E7B50B28B546FC509A1A3244) (Version: 1.70.1909.0 - Logitech)
LogiOptionsPlusPowerPointAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\C0A659DFDE5A2520D6EF4CD194E81B1E46054910AAE5ED4E27CDE54B31A749FA) (Version: 1.70.1909.0 - Logitech)
LogiOptionsPlusWordAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\5CBD44E2723BB1841697EE65F4F6FB6DBF7D5E594165632D89494C75F6F61A13) (Version: 1.70.1909.0 - Logitech)
Microsoft .NET Host - 6.0.12 (x64) (HKLM\...\{E215AA9E-5DF2-44BC-9D6F-E1A1B0C348FB}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.12 (x64) (HKLM\...\{0712F23C-FBAC-436C-9DDB-125F32D15033}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.12 (x64) (HKLM\...\{1BF67DC1-8BB5-4AF5-BE20-3B53D9532D01}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.17425.20176 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.97 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{787F8536-654C-4DD4-AD3F-22B529F8F339}) (Version: 17.4.0.1 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9AA0AFFA-EDB6-4B66-9FD7-BBC828D88B47}) (Version: 18.2.3.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.062.0326.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Teams classic (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Teams) (Version: 1.6.00.35961 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.09203 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x64) (HKLM\...\{07C0BFE1-3291-409C-B96A-797340719C8F}) (Version: 7.1.10.96 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) English (HKLM\...\{826216B1-0F04-409B-A33E-C6A004AA1097}) (Version: 7.1.10.96 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{C931A1C6-A7BF-3737-874A-818881A37E1B}) (Version: 10.0.60915 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60910 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{ab213ab7-4792-4c6f-a3fa-8485d06c3475}) (Version: 14.0.23829 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 Finalizer (HKLM-x32\...\{F93E37BD-4053-37CA-A7BB-A5B74508006C}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2015 x64 Hosting Support (HKLM\...\{A8C30947-7C1B-3A31-8FD8-CEC6D3357D34}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2015 x86 Hosting Support (HKLM-x32\...\{11A9EF3E-6616-31B1-82BC-1080366FA34D}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM\...\{3E726676-B5F4-48DA-B9F9-78A15B7F8A70}) (Version: 48.51.52100 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM-x32\...\{24b99d74-a81e-4765-aefe-be853ac47482}) (Version: 6.0.12.31928 - Microsoft Corporation)
Mount & Blade II Bannerlord v. 1.5.6.254632 (44130) (HKLM-x32\...\Mount & Blade II Bannerlord_is1) (Version: - )
NI IVI Shared Components Wrapper Bundle (HKLM-x32\...\{734b2eac-d7c4-495e-9b70-3a90140ce563}) (Version: 22.5.0.49164 - National Instruments) Hidden
NI Package Manager (HKLM\...\NI Package Manager) (Version: 23.0.0 - NI)
NI Software (HKLM-x32\...\NI Uninstaller) (Version: 23.0.0 - NI)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.160 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.160 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 536.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.23 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20176 - Microsoft Corporation) Hidden
Opera Stable 109.0.5097.45 (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Opera 109.0.5097.45) (Version: 109.0.5097.45 - Opera Software)
PDFCreator (HKLM\...\{8960FCDD-66D4-4180-A172-1AD0DD1A075A}) (Version: 5.0.3 - pdfforge GmbH)
Prusa3D verze 2.5.0 (HKLM\...\Prusa3D_is1) (Version: 2.5.0 - Prusa Research a.s.)
PrusaSlicer verze 2.5.0 (HKLM\...\PrusaSlicer_is1) (Version: 2.5.0 - Prusa Research s.r.o.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Rise of the Witch-King 2.02 (HKLM-x32\...\GameReplaysRotWK) (Version: - RotWK 2.02 Team)
SOLIDWORKS 2022 Czech Resources (HKLM\...\{053B4611-AFDF-4C03-BFBB-F8B1A281B70F}) (Version: 30.120.0046 - Název společnosti:) Hidden
SOLIDWORKS 2022 SP02 (HKLM\...\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}) (Version: 30.120.0046 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2022 SP02 (HKLM-x32\...\SolidWorks Installation Manager 20220-40200-1100-100) (Version: 30.2.0.46 - SolidWorks Corporation)
SOLIDWORKS CAM 2022 SP02 (HKLM\...\{46053718-2931-47EA-B678-6DF08370F2D4}) (Version: 30.20.0046 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2022 SP02 (HKLM\...\{809597D9-554F-4EFB-B0EC-B231924636E2}) (Version: 30.20.0037 - Společnost Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader Extreme HD (HKLM-x32\...\GOGPACKSTRONGHOLDCRUSADERHD_is1) (Version: 2.0.0.6 - GOG.com)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
The Lord of the Rings, The Rise of the Witch-king (HKLM-x32\...\{B931FB80-537A-4600-00AD-AC5DEDB6C25B}) (Version: - )
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft)
UGREEN Wireless Adapter (HKLM\...\{B8AA72D1-F1C3-4201-A951-3D89A7D422FF}_is1) (Version: 0.0.5.3 - UGREEN)
Ultimaker Cura 5.2.1 (HKLM-x32\...\Ultimaker Cura 5.2.1-5.2.1) (Version: 5.2.1 - Ultimaker B.V.)
UltiMaker Cura 5.3.0 (HKLM-x32\...\UltiMaker Cura 5.3.0-5.3.0) (Version: 5.3.0 - UltiMaker)
UniPDF 1.3.5 (HKLM-x32\...\UniPDF) (Version: 1.3.5 - UniPDF.com)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
VIPM 2023 (HKLM\...\{5EC9A06B-A771-4059-97A4-9F0FDAB409EB}) (Version: 23.1.2498 - JKI)
VISA Shared Components 5.12.0 (64-Bit) (HKLM\...\{452610CE-4A5B-4CFF-87F3-B6A49E621E5C}) (Version: 5.12.0300 - IVI Foundation) Hidden
VISA Shared Components 5.12.0 (64-Bit) (HKLM-x32\...\VISASharedComponents) (Version: 5.12 - IVI Foundation)
VISA.NET Shared Components 5.11.0 (64-Bit) (HKLM\...\{E518296D-57A9-434B-AB33-9928D9B5E09D}) (Version: 5.11.0301 - IVI Foundation) Hidden
VISA.NET Shared Components 5.11.0 (64-Bit) (HKLM-x32\...\VISANETSharedComponents5.11.0) (Version: 5.11.0301 - IVI Foundation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
VusApp (HKLM\...\{BBA26299-01B6-4BBE-9E0F-FB806C16E5D6}) (Version: 4.7.5 - public sols)
WinRAR 7.00 beta 3 64-bit (HKLM\...\WinRAR archiver) (Version: 7.00.3 - win.rar GmbH)
Winter Falling: Battle Tactics (HKLM-x32\...\1464460947_is1) (Version: 4.67 - GOG.com)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-03-16] ()
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-07-15] (Microsoft Corporation)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-03-26] (Disney)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-02-15] (Microsoft Corporation)
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-03-29] (Microsoft Corporation)
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe [2024-04-19] (Microsoft) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.965.0_x64__56jybvy8sckqj [2024-03-26] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0 [2024-04-15] (Spotify AB) [Startup Task]
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-03-13] (Microsoft Corporation)
YouTube -> C:\Program Files\WindowsApps\www.youtube.com-54E21B02_1.0.0.1_neutral__pd8mbgmqs65xy [2023-10-19] (www.youtube.com)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ada25\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.09203\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{9A872070-0A06-11D1-90B7-00A024CE2744}\localserver32 -> C:\Program Files\National Instruments\LabVIEW 2023\LabVIEW.exe (National Instruments Corporation -> National Instruments Corporation)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\ada25\AppData\Local\Autodesk\webdeploy\production\22e664d43fce268ac9bf1fa1cda69e4a9585c997\NPreview10.dll (Autodesk, Inc. -> )
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\ada25\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2022-10-04] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext32.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-31] (Malwarebytes) [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\nvshext.dll [2023-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext32.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2022-07-15 19:00 - 2022-07-15 19:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-12-17 15:16 - 2022-12-17 15:15 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin\;C:\Program Files\IVI Foundation\VISA\Win64\Bin\;C:\Program Files (x86)\IVI Foundation\IVI\Bin\;C:\Program Files\IVI Foundation\IVI\Bin\;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin;D:\Program Files\dotnet\;C:\Program Files (x86)\National Instruments\Shared\LabVIEW CLI
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ada25\OneDrive\Obrázky\iTop Screen Recorder\Webcam Background\cambg_2.jpg
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.254.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2022 Rychlé spuštění.lnk"
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS Nástroj pro stahování na pozadí.lnk"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service "
HKLM\...\StartupApproved\Run32: => "NI Device Monitor"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "NIRegistrationWizard"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{C40528C0-2C4A-495D-9B7A-1F4F3600C550}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{62202678-34FC-421E-ACC8-2150114AB6E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B04A3537-6780-4496-9EBE-80FE4515BD60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0CC1C911-8400-4FD5-90A4-AC8A7FAB684F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{770CB664-B40E-43FB-A6FE-BA6E882C3125}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{96663BA2-3D67-419C-A7BE-E8A5DF0CC00E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0788EA34-C003-4F6C-BFBD-8C985494D9E4}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F18393B6-8F3D-4D87-AFB3-094BD3515268}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{5343D82C-7BD5-4728-98AE-0FAFFACFC895}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{FB52AF7E-3660-4026-B1C6-AE9A39142879}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{B0B4DBCB-41AF-48F4-A79D-06F2C100B20B}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10F21132-1F2A-4B75-9197-01923D8FB5E8}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{90F9E79E-903B-4AA4-B470-660E86F144F2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F8EC7C40-2F2A-42B6-B411-F8B763D17CD8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{94815BC1-4BEB-434B-A52C-DE0A7C3D83AF}] => (Allow) D:\STEAM\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{8BC19957-71FD-421E-A934-EC8C8CA44233}] => (Allow) D:\STEAM\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{774B1612-0FE2-4A2C-A686-CBE14E25BA3B}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{6D4226A0-46B4-459C-839A-2C561467BE95}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{81ACA261-2BFC-465C-B4B5-1F7F49E2F64A}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{488CB66B-3C3B-455C-B5EB-09213E3D186D}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{325EE286-81E2-428A-B857-26100F8A8A72}C:\users\ada25\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ada25\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [UDP Query User{E7603850-88C7-49D6-81A3-890D1CA6F809}C:\users\ada25\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ada25\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{6E150C1D-8CC9-42E9-A78E-98F1B316F09F}] => (Allow) D:\STEAM\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{EA7B9F33-88D9-4EC3-9F05-09FEB1D5BA9C}] => (Allow) D:\STEAM\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [TCP Query User{7839F4C9-F1D7-438A-8516-9A2A084BB111}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{032BFB60-05C4-4B26-8E7C-C0EA7E0A92F4}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [{83681199-A686-42D4-B1D2-3103CE3D4C7C}] => (Allow) D:\STEAM\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{CE9C8077-4ADD-4E34-BD79-36B09BBF2F3D}] => (Allow) D:\STEAM\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{ECAB1716-6EAC-4E5D-89A6-5BEF9D1D4B7F}] => (Allow) D:\STEAM\steamapps\common\Humankind\Humankind.exe (Amplitude Studios) [File not signed]
FirewallRules: [{9AA3F688-CE1C-4082-A16B-AC09E231A6A4}] => (Allow) D:\STEAM\steamapps\common\Humankind\Humankind.exe (Amplitude Studios) [File not signed]
FirewallRules: [{FE3F8D9C-5134-466B-B654-D8F0DEFCBADA}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) [File not signed]
FirewallRules: [{1E1EFA3F-D352-46E6-93C2-240C52C1C18C}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) [File not signed]
FirewallRules: [{5D4DE6A1-A605-451E-9B3F-A36750F37985}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [{B3ABD7A2-0663-4FBA-9DCA-B6C32382059D}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [{8186F609-7F0B-4324-AB0C-4FB502EB0673}] => (Allow) LPort=8030
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [{B21B34A1-A843-4500-A811-D2F4B0B73D52}] => (Allow) D:\STEAM\steamapps\common\Team Fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [{0EA44D9E-D668-4E06-B0E3-408E2B92FF69}] => (Allow) D:\STEAM\steamapps\common\Team Fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{E58C4C22-A114-40AD-B700-3888E0423DE4}D:\ultimaker cura 5.2.1\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.2.1\ultimaker-cura.exe () [File not signed]
FirewallRules: [UDP Query User{ED900E79-D52B-4532-8EE2-784059D529D7}D:\ultimaker cura 5.2.1\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.2.1\ultimaker-cura.exe () [File not signed]
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{D6BC4D7B-4E04-4CC2-B157-1547FCB26FF3}C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe] => (Block) C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [UDP Query User{03EDC3CB-0C7D-4D1A-BEFB-FA4485548CCD}C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe] => (Block) C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [TCP Query User{F5F587B7-CA24-4FD5-B299-E07BAD4E6546}D:\ultimaker cura 5.3.0\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.3.0\ultimaker-cura.exe () [File not signed]
FirewallRules: [UDP Query User{E8CDC9C4-6AE3-4742-A1B4-0FE9F72C9F13}D:\ultimaker cura 5.3.0\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.3.0\ultimaker-cura.exe () [File not signed]
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{E706E661-4DC4-444E-BB86-DFB06D900366}] => (Block) C:\Program Files (x86)\National Instruments\Shared\Offline Help Viewer\NIOfflineHelpViewer.exe (ZOOMIN SOFTWARE LTD -> Zoomin Ltd.)
FirewallRules: [{8A3BB187-468E-4D84-9792-02A814D0A23C}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{DF58609B-7294-4D7B-8E9A-A4EABA727F0B}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{207645B5-6ED2-4EF0-B147-B41A0A67B6A5}] => (Allow) LPort=15673
FirewallRules: [{A9C2A7E2-75FE-4C61-8B15-6FCD44513AE3}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{C229CA86-D1D2-4089-A45B-2E31E803BAF1}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{4F08CF52-B016-4A68-944C-1304C9C0BE35}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{69AECB60-1A24-4C73-9A83-246304D12819}] => (Allow) C:\Program Files\JKI\VI Package Manager\VI Package Manager.exe (James Kring, Inc. -> JKI)
FirewallRules: [{9B97DD9E-B8EB-4585-9D75-5E41E75F643D}] => (Allow) C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe (James Kring, Inc. -> JKI)
FirewallRules: [{B92D6391-D9FA-4072-8AB0-853229DEC27F}] => (Block) C:\Program Files (x86)\National Instruments\Shared\Offline Help Viewer\NIOfflineHelpViewer.exe (ZOOMIN SOFTWARE LTD -> Zoomin Ltd.)
FirewallRules: [{A0A5F258-9BBB-4925-B458-49057F7AD242}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{58062B4E-EC3C-4B2D-849D-316DF961B94F}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{AECB7EE1-FAE2-4153-950A-EFB2D76B963E}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{B36D7398-14B6-48B4-B4A4-07C80C541676}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{F8B67FBE-2229-4661-BCE1-A0F124ECBB6B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CA3ED0CA-9B11-4461-BC99-828B5B777D9E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E0F00251-2FB7-430F-BF3F-BAF83D00A2C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CB343D69-6175-483A-9BD7-B0066E1DF4EF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{62ADF150-5815-4BF2-B8E0-6DF291399EFE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{9E140625-9EE0-4C68-9D7C-376B8B86660C}D:\kodi\kodi.exe] => (Allow) D:\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{8A1C9B68-4B6D-4C30-A85E-4EE52F85F10D}D:\kodi\kodi.exe] => (Allow) D:\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [{4A267393-C0C7-41DC-898C-45B0B090A8E3}] => (Allow) D:\Hry\BME2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{58BC76DA-2DE4-43F0-AB97-38AA087E4CED}] => (Allow) D:\Hry\BME2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{7C72EDBC-F55B-4ACC-B7A6-170DB13E0680}] => (Allow) D:\Hry\BME2\BMEW2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{146B6F63-87FB-47A1-BB51-4089C013AAC3}] => (Allow) D:\Hry\BME2\BMEW2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [TCP Query User{83200BDE-4097-4919-BC96-AA29C0FBA2CD}C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe () [File not signed]
FirewallRules: [UDP Query User{19817975-95DB-4947-BB69-51C4C250AD6D}C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe () [File not signed]
FirewallRules: [{C52CC41F-BCE3-471A-83F0-8C1509B5FFC8}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe (Firaxis Games) [File not signed]
FirewallRules: [{60CAC8F3-BFE5-4CDD-A930-80925A390313}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe (Firaxis Games) [File not signed]
FirewallRules: [{3E6545A5-A228-4147-A573-5EE45E7B5E5E}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [TCP Query User{686CE735-6A97-4A20-A3E3-44063EF91336}C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{4891CFE0-8B22-4DC4-B72C-0A9C0441473D}C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{495D0BF4-735F-475C-93D0-9CEDDDBE1734}] => (Allow) D:\STEAM\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{E0A3243F-D7FF-4007-B5FC-5528C2E4D99F}] => (Allow) D:\STEAM\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{525E4752-7A77-46B2-B96F-DDAEA5476661}] => (Allow) D:\STEAM\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{912CAD33-4E25-42F4-BEB0-B2432D2A16D4}] => (Allow) D:\STEAM\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{8F18F20D-4A42-44C7-9E20-2313FD350C91}] => (Allow) D:\STEAM\steamapps\common\skyrim\skse_steam_boot.exe () [File not signed]
FirewallRules: [{C7E039DE-95C0-404C-A1B8-C00A55011A6A}] => (Allow) D:\STEAM\steamapps\common\skyrim\skse_steam_boot.exe () [File not signed]
FirewallRules: [TCP Query User{2F200DAC-6D95-4C39-9ED6-F3BD0335B3BA}D:\opera\opera.exe] => (Allow) D:\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{1479275E-0EF2-4033-BA11-E51C9A31C53C}D:\opera\opera.exe] => (Allow) D:\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{2049A4AB-3F32-410A-AB44-1BFF1FA425AC}C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe () [File not signed]
FirewallRules: [UDP Query User{2BE97B4D-B23C-4F7A-843E-CD5C600FE89F}C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe () [File not signed]
FirewallRules: [{74D15131-2C8D-487C-B144-7D22ABB3BFC8}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{7C2D3117-6A7E-4310-B2EA-18242BFBBCB1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0325C3AA-F612-4CE9-B672-A7215AE56AFD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{15C2CC8E-8041-4D30-BF78-ABAD143F43A6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{626E4ABD-5146-48BC-ACBD-7CEE9DE01D18}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6C77E69A-BAEA-4671-997A-74F9F595A46C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD6165B2-C2DE-4814-88D3-CBAF9BED385B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0FAE0F09-EAC2-418A-A663-0CB460F1CC82}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D1F41E02-E874-4FB5-A759-B0118397FB2F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CEDCB8E9-65CE-4283-B1B4-3A774BCC7CC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DF40460C-5C4E-4D6D-9498-316D120B84A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B6AD2EC5-4AB0-44B0-A2DD-87F3097AA2B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7302B0F4-E873-43DB-AB7B-DDED70E0B563}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7BA0D63E-186E-4E5E-BB39-79E9321ACFEB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{94A701C1-3B23-4BB8-B62A-6465AD5F0697}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{81BC5FE0-36FF-48FD-BEBE-D4FC06391EC5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DA392895-5AE3-4774-8467-C718C2531431}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8443C64A-A66F-4350-8DEE-0773EABAFEAF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{357BA680-7E32-4C6C-9181-B4F2E437E17F}] => (Allow) D:\STEAM\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [{A0976DF3-635C-4E5E-B0E2-109FCED09DD8}] => (Allow) D:\STEAM\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [{1AB3854E-23DB-4EBA-9AA6-4A97D0EA5B18}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{3F90E7ED-3089-456C-8049-6BE7E8FDC9CB}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{D5DE2EBA-4770-405F-AB78-73215743922C}] => (Allow) C:\Windows\SysWOW64\nitsusvc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{3378E521-E044-43A8-99A0-3594E2EBD7F8}] => (Allow) C:\Windows\SysWOW64\nitsusvc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E7274C66-E16F-43CE-9539-2FC312357ADB}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C26E881-7CFE-4BD4-82F4-68D361C4176D}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
21-04-2024 13:41:10 Driver Booster : USB Camera
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (04/21/2024 05:45:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 19.4.2024.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 13a4
Čas spuštění: 01da9402d52f391c
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\ada25\OneDrive\Plocha\FRST64.exe
ID hlášení: 553eddb0-880d-4793-8eae-74a21786818f
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1953
Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1953
Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: *** 2 potential causes identified (significant only if the same cause consistently appears)
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1954
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1954
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: *** Continuously busy for more than a second
System errors:
=============
Error: (04/21/2024 04:46:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7QV4VV7)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/21/2024 03:52:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7QV4VV7)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Configuration Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Application Web Server byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI System Web Server byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Time Synchronization byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Variable Engine byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Logi Options+ byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Windows Defender:
================
Date: 2024-04-17 20:08:39
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8B9C73E1-1CDB-4E17-8FFA-BB78620F1F2C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-16 07:20:24
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1BED9AA8-3C3C-4720-93E1-6685A7F8EA3E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-14 23:15:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {68333F97-2BF7-4D68-8D2D-802A9E833F95}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-12 03:11:33
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1EB83957-1F3F-4F18-AC71-FA2A1EBF6228}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-11 21:19:17
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe možnost upravit %userprofile%\OneDrive\Dokumenty.
Čas detekce: 2024-04-11T19:19:17.165Z
Uživatel: DESKTOP-7QV4VV7\ada25
Cesta: %userprofile%\OneDrive\Dokumenty
Název procesu: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
Verze bezpečnostních informací: 1.409.193.0
Verze modulu: 1.1.24030.4
Verze produktu: 4.18.24030.9
Event[0]:
Date: 2024-03-20 21:30:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender zjistilo chybu a bylo ukončeno.
ID prohledávání: {EA7EDFCB-D369-4033-AE89-F826D598F669}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Vlastní prohledávání
Uživatel: DESKTOP-7QV4VV7\ada25
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software.
Date: 2024-03-20 21:30:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender zjistilo chybu a bylo ukončeno.
ID prohledávání: {33444359-E36C-4FDF-959A-B03AFF5ECD9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Vlastní prohledávání
Uživatel: DESKTOP-7QV4VV7\ada25
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software.
Date: 2023-12-07 07:33:03
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.1729.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2023-12-07 07:33:03
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.1729.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2023-11-07 17:49:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.134.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===============
Date: 2024-04-21 17:47:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2024-04-21 17:47:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume1\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2024-04-21 17:47:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2024-04-21 17:47:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume1\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V2.9 03/30/2015
Motherboard: MSI B85-G41 PC Mate(MS-7850)
Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Percentage of memory in use: 70%
Total physical RAM: 8120 MB
Available physical RAM: 2370.71 MB
Total Virtual: 18360 MB
Available Virtual: 8562.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:108.26 GB) (Free:5.62 GB) (Model: TS128GSSD370S) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:931.51 GB) (Free:94.17 GB) (Model: Samsung SSD 870 EVO 1TB) NTFS
Drive f: (Nový svazek) (Fixed) (Total:464.43 GB) (Free:430.95 GB) (Model: HGST HTS 725050A7E630 SCSI Disk Device) NTFS
\\?\Volume{ad2ab7c0-eef8-4ca9-a578-551be683b00c}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{9cbce750-4c6d-4838-8573-da65e69465f1}\ () (Fixed) (Total:0.78 GB) (Free:0.31 GB) NTFS
\\?\Volume{29747412-0000-0000-0000-b0101b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.1 GB) NTFS
\\?\Volume{29747412-0000-0000-0000-70311b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.5 GB) NTFS
\\?\Volume{1c94712c-8d33-4322-ab9e-a5eae5cff5c5}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 29747412)
Partition 1: (Active) - (Size=108.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=523 MB) - (Type=27)
Partition 3: (Not Active) - (Size=523 MB) - (Type=27)
Partition 4: (Not Active) - (Size=10 GB) - (Type=0F Extended)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 352FEA05)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 69677AFB)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by ada25 (administrator) on DESKTOP-7QV4VV7 (MSI MS-7850) (21-04-2024 17:45:17)
Running from C:\Users\ada25\OneDrive\Plocha\FRST64.exe
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: "D:\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(audiodg.exe ->) (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> com.logitech) C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe <6>
(D:\Opera\opera.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABCSWK.EXE
(D:\Opera\opera.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(D:\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\109.0.5097.45\opera_crashreporter.exe
(D:\STEAM\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(explorer.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\opera.exe <27>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\steam.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3952720 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [460736 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [NI Device Monitor] => D:\Bin\NI\NI Device Monitor\DeviceMonitor.exe [350392 2022-07-06] (National Instruments Corporation -> National Instruments)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (No File)
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37448168 2024-04-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Steam] => D:\STEAM\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [342816 2021-06-30] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Opera Browser Assistant] => D:\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\WINDOWS\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [181248 2022-12-19] (pdfforge GmbH) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\sweaw.exe: [{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb] -> GOG.com Star Wars Empire at War
HKLM\Software\...\AppCompatFlags\InstalledSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb [2014-12-16]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk [2023-04-02]
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2023-04-02]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2022 Rychlé spuštění.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS 2022 Rychlé spuštění.lnk -> C:\Windows\Installer\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Nástroj pro stahování na pozadí.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS Nástroj pro stahování na pozadí.lnk -> C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BE932A40-B029-4BFA-9A34-EFB732062E1C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {F500350B-4650-41B7-B53E-ABA0F4FB5DE3} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5225408 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {8B80024D-E365-4DAF-BD72-65923AAA8B4E} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [7991232 2024-04-03] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {A75A7F32-BCA4-4DDD-B8D1-B29411233605} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2385856 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {58148A02-0E4A-4E7F-BBF2-94B18C10B72A} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe [160744 2023-09-13] (IObit CO., LTD -> IObit)
Task: {96CDD2E3-09BA-4CC4-BE82-084AE657371A} - System32\Tasks\Driver Booster SkipUAC (ada25) => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\DriverBooster.exe [8974312 2023-09-13] (IObit CO., LTD -> IObit)
Task: {1FB328C7-429B-4F1E-85E7-385118C3103D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\AutoUpdate.exe [2524648 2023-09-01] (IObit CO., LTD -> IObit)
Task: {91F66314-56E7-4D98-8389-079266DCB0E7} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2020-08-18] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
Task: {218630FD-4E57-46DA-9791-0919E339F61C} - System32\Tasks\iTop Christmas Task (One-Time) => "C:\Program Files (x86)\iTop VPN\Pub\itopxmas.exe" -> C:\Program Files (x86)\iTop VPN\Pub\\/vpn
Task: {310378DF-7965-4BD6-B9EB-C756D99FCBB9} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Users\ada25\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (No File)
Task: {52630604-5973-4D9A-9928-AFCC8E0D103C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D37CD80-5267-4154-B6E5-2FE6C63C43F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D4C306C-29A3-4517-92DB-D7A3B9E601A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B6A6218-EBB3-4D37-98F6-6AA2CDE65EFA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2681923-F313-4EC2-BD4C-1D52D400185F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE6389FF-F339-484F-A016-833FB8262136} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {BF34656D-0A07-435E-94A1-9612022E667D} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {E48533AE-56C6-46A0-A76C-273455E8B3CB} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {76D0119A-90B5-4672-9F0D-70BE0485BA61} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-18] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {711CE0E4-ACDC-4662-B8B9-F984FED067B5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9103DD21-D5C6-497D-B1FD-C199596A096D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {0A7767B6-AD74-4AA9-B866-FD1BDDD502A2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17D41EE8-5497-4F9B-AAE0-BDE08EAC86B7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EA9EA6E3-F7C0-4880-A70C-BE26F0237F7B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9F76FD8F-16E1-4F6A-92B3-13B949D11454} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C032932D-7D7E-4AA2-A8B9-36617F424CE9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {30D465C3-6038-4685-AD22-ED85DCEE01E1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17BE535B-2A86-40B2-BDEB-8C6F8C1CA668} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E488311-1132-406D-898D-7C76766A2D39} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {39427038-6E03-4A11-84B2-1A49AE7781B2} - System32\Tasks\Opera scheduled assistant Autoupdate 1708073729 => D:\Opera\launcher.exe [1581984 2024-04-15] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Opera\assistant" $(Arg0)
Task: {B3FF31CD-F272-42F8-AF5B-ADDA78EECAC4} - System32\Tasks\Opera scheduled Autoupdate 1708073724 => D:\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-11] (Opera Norway AS -> Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28928 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [32000 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{7db3175c-54ea-4223-9cfa-2c9e7a93822c}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}\A51607C6564716C6F66796F526: [DhcpNameServer] 192.168.254.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-21]
Edge DownloadDir: Default -> D:\Stažené soubory
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.messenger.com,*"; hxxps://www.messenger.com
Edge Extension: (Dokumenty Google offline) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-20]
FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\ada25\AppData\Local\Google\Chrome\User Data\Default [2022-12-19]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Save to Google Drive) - C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi [2024-03-20]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]
Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2179105441-594047520-2276817619-1001) OperaStable - "D:\Opera\opera.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [802752 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2348984 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1238456 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9164216 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
S3 CoordinatorServiceHost; D:\Solid\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [79576 2022-03-18] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-07-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncHelper.exe [3512232 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 gpibenumsvc; D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe [29888 2022-10-01] (National Instruments Corporation -> National Instruments Corporation)
S3 JKIUpdate; C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe [1492064 2022-12-19] (James Kring, Inc. -> JKI)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [59648 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [71424 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 mxssvr; D:\Bin\NI\MAX\nimxs.exe [97960 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S2 NI SystemLink Message Bus; C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe [468992 2022-01-19] () [File not signed]
S2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [64272 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83208 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [593136 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [340192 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [423160 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [533264 2022-07-06] (National Instruments Corporation -> National Instruments Corporation)
S2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [400608 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [182512 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxicmsvc; D:\Bin\NI\PXI\nipxicms.exe [337104 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [26304 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [881888 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [27328 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [101112 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [64256 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [750328 2021-07-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nitsusvc; C:\WINDOWS\SysWOW64\nitsusvc.exe [21688 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [35504 2022-11-23] (National Instruments Corporation -> )
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\OneDriveUpdaterService.exe [3852200 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19145472 2024-04-17] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-05-05] (SolidWorks) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WifiAutoInstallSrv; C:\Program Files\UGREEN\WifiAutoInstall\WifiAutoInstallSrv.exe [118720 2021-11-29] (Realtek Semiconductor Corp. -> Realtek)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MSSQL$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S4 SQLAgent$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i TEW_SQLEXPRESS [X]
S2 SQLTELEMETRY$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service TEW_SQLEXPRESS [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 108B; C:\WINDOWS\System32\drivers\108B.sys [3822496 2019-01-16] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20528 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [230448 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [379960 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [292920 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84536 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27760 2024-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28728 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [268856 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [548912 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [93752 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69176 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [935992 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [695864 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [201784 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306232 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BattMonDRV; C:\WINDOWS\System32\drivers\BattMonDRV.sys [23728 2017-10-24] (Luculent Systems, LLC -> Luculent Systems, LLC)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrausbbus; C:\WINDOWS\System32\drivers\dtultrausbbus.sys [59344 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [38744 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [25376 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [53592 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [25416 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [25384 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [32352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [25400 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [32344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [25408 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [792352 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2023-01-06] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [150328 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [44904 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [34624 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [25360 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niSynck; C:\WINDOWS\System32\drivers\niSynckl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitsuk; C:\WINDOWS\System32\drivers\nitsukl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [25424 2022-07-07] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S4 RsFx0600; C:\WINDOWS\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7706960 2021-11-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Three months (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-04-21 13:42 - 2024-04-21 15:51 - 000002632 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2024-04-21 13:28 - 2024-04-21 13:30 - 000000000 ____D C:\AdwCleaner
2024-04-21 13:27 - 2024-04-21 13:27 - 008790880 _____ (Malwarebytes) C:\Users\ada25\OneDrive\Plocha\adwcleaner.exe
2024-04-21 13:18 - 2024-04-21 13:18 - 000019824 _____ C:\Users\ada25\OneDrive\Plocha\Addition.zip
2024-04-21 13:15 - 2024-04-21 13:15 - 000063481 _____ C:\Users\ada25\OneDrive\Plocha\Shortcut.txt
2024-04-21 13:13 - 2024-04-21 13:15 - 000082043 _____ C:\Users\ada25\OneDrive\Plocha\Addition.txt
2024-04-21 13:10 - 2024-04-21 17:45 - 000044187 _____ C:\Users\ada25\OneDrive\Plocha\FRST.txt
2024-04-21 13:08 - 2024-04-21 17:45 - 000000000 ____D C:\FRST
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
2024-04-21 11:51 - 2024-04-21 11:51 - 000000231 _____ C:\WINDOWS\pxisys.ini
2024-04-21 11:51 - 2024-04-21 11:51 - 000000222 _____ C:\WINDOWS\pxiesys.ini
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Roaming\com.logitech
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Local\flutter_webview_windows
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\ai_overlay_tmp
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ___HD C:\$AV_AVG
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ____D C:\Users\ada25\AppData\Local\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Free.lnk
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\AVG
2024-04-17 20:19 - 2024-04-17 20:18 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-04-17 20:18 - 2024-04-17 20:19 - 000000000 ____D C:\Program Files\AVG
2024-04-17 20:18 - 2024-04-17 20:18 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-04-17 20:18 - 2024-04-17 20:18 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-04-16 22:34 - 2024-04-16 22:34 - 000000202 _____ C:\Users\ada25\OneDrive\Plocha\Workers & Resources Soviet Republic.url
2024-04-16 20:55 - 2024-04-16 20:55 - 000000000 ___HD C:\$WinREAgent
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-10 23:04 - 2024-04-10 23:04 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-09 12:13 - 2024-04-09 12:13 - 000000000 ____D C:\Program Files\UGREEN
2024-04-09 12:13 - 2021-11-29 11:46 - 007706960 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2024-03-31 15:37 - 2024-03-31 15:41 - 003025205 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce1.pdf
2024-03-25 01:18 - 2024-03-25 01:52 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Mount and Blade II Bannerlord
2024-03-25 01:18 - 2024-03-25 01:18 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2024-03-25 01:17 - 2024-03-25 01:17 - 000000927 _____ C:\Users\ada25\OneDrive\Plocha\Mount & Blade II Bannerlord.lnk
2024-03-25 01:17 - 2024-03-25 01:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2024-03-22 14:48 - 2024-03-22 15:26 - 003025214 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce.pdf
2024-03-22 13:34 - 2024-03-22 13:34 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Battle Brothers
2024-03-21 22:51 - 2024-03-21 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle Brothers [GOG.com]
2024-03-21 16:09 - 2024-03-21 16:53 - 000016088 _____ C:\Users\ada25\OneDrive\Plocha\ASA.xlsx
2024-03-21 11:52 - 2024-03-21 11:52 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Rarykos
2024-03-21 11:51 - 2024-03-21 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Falling - Battle Tactics [GOG.com]
2024-03-20 23:13 - 2024-04-17 20:34 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows NT
2024-03-20 23:13 - 2024-03-20 23:13 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Java
2024-03-20 22:40 - 2024-04-18 09:53 - 156762112 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-03-20 22:31 - 2024-03-20 22:40 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2024-03-20 22:14 - 2024-03-20 22:14 - 000000094 _____ C:\Users\ada25\OneDrive\Dokumenty\JTmykIijufzOYVSKE.txt
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ___HD C:\ProgramData\DNTException
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Roaming\public sols
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi
2024-03-20 20:43 - 2024-03-20 20:43 - 000001345 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2024-03-20 20:43 - 2024-03-20 20:43 - 000000000 ____D C:\Users\ada25\AppData\Local\PCHealthCheck
2024-03-20 20:01 - 2024-03-20 20:01 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Ludeon Studios
2024-03-20 19:59 - 2024-03-20 19:59 - 000000000 ____D C:\ProgramData\GOG.com
2024-03-13 05:19 - 2024-04-21 17:44 - 000002738 _____ C:\WINDOWS\system32\Tasks\IObit StpSale (One-Time)
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Timberborn
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Mechanistry
2024-03-12 15:11 - 2024-03-12 15:11 - 000013484 _____ C:\Users\ada25\OneDrive\Plocha\konec.STL
2024-03-12 14:52 - 2024-03-12 14:52 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\tttttt.STL
2024-03-12 14:50 - 2024-03-12 14:52 - 000069328 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.SLDPRT
2024-03-12 14:50 - 2024-03-12 14:50 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.STL
2024-03-12 14:34 - 2024-03-12 14:34 - 000004484 _____ C:\Users\ada25\OneDrive\Plocha\pppp.STL
2024-03-12 14:26 - 2024-03-12 14:26 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcc.STL
2024-03-12 14:25 - 2024-03-12 14:25 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcio.STL
2024-02-22 17:23 - 2024-02-22 16:57 - 000163804 _____ C:\Users\ada25\OneDrive\Plocha\Completed_Data_Series.xlsx
2024-02-22 17:23 - 2024-02-22 12:56 - 000120992 _____ C:\Users\ada25\OneDrive\Plocha\Final_Smoothed_Curves.xlsx
2024-02-22 16:04 - 2024-02-22 16:04 - 000154117 _____ C:\Users\ada25\OneDrive\Plocha\Sešit3.xlsx
2024-02-22 12:36 - 2024-02-22 12:36 - 000141516 _____ C:\Users\ada25\OneDrive\Plocha\Sešit2.xlsx
2024-02-22 11:38 - 2024-02-22 11:38 - 000153783 _____ C:\Users\ada25\OneDrive\Plocha\Sešit1.xlsx
2024-02-16 10:55 - 2024-04-21 17:44 - 000003626 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1708073729
2024-02-16 10:55 - 2024-04-21 17:44 - 000003502 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1708073724
2024-02-16 10:55 - 2024-04-15 18:33 - 000000718 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-03-15 18:05 - 000000718 _____ C:\Users\ada25\OneDrive\Plocha\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-02-16 10:55 - 000000000 ____D C:\Users\ada25\AppData\Local\Opera Software
2024-02-16 10:53 - 2024-02-16 10:53 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Opera Software
2024-02-06 02:23 - 2024-02-06 02:23 - 001449068 _____ C:\Users\ada25\OneDrive\Plocha\Ř-j- - GEUNIR_DL_ (SK).pdf
==================== Three months (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-04-21 17:44 - 2023-10-06 10:33 - 000002750 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (ada25)
2024-04-21 17:44 - 2023-10-06 10:33 - 000002558 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2024-04-21 17:44 - 2023-04-02 17:30 - 000002820 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceCheckTask
2024-04-21 17:44 - 2023-04-02 17:30 - 000002504 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceStartupTask
2024-04-21 17:44 - 2023-04-02 17:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\NI SSP Expiration Reminder
2024-04-21 17:44 - 2022-12-20 22:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-04-21 17:44 - 2022-12-19 15:59 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-21 17:44 - 2022-12-19 15:52 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-21 17:44 - 2022-12-18 02:11 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-17 19:43 - 000002704 _____ C:\WINDOWS\system32\Tasks\iTop Christmas Task (One-Time)
2024-04-21 17:44 - 2022-12-17 19:12 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001
2024-04-21 17:44 - 2022-12-17 15:27 - 000003174 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2024-04-21 17:44 - 2022-12-17 15:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-21 17:44 - 2022-12-17 15:23 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-21 16:51 - 2022-12-17 15:16 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-21 16:37 - 2023-10-12 18:27 - 000000000 ____D C:\Users\ada25\AppData\Local\LogiOptionsPlus
2024-04-21 15:47 - 2022-12-17 15:15 - 000000000 ____D C:\WINDOWS\INF
2024-04-21 15:37 - 2022-12-17 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-21 13:42 - 2022-11-16 16:59 - 000131664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2024-04-21 13:39 - 2022-12-17 19:43 - 000000000 ____D C:\ProgramData\ProductData
2024-04-21 13:30 - 2022-12-17 19:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\IObit
2024-04-21 13:30 - 2022-12-17 19:41 - 000000000 ____D C:\ProgramData\IObit
2024-04-21 13:30 - 2022-12-17 15:23 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-20 16:12 - 2023-01-06 14:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Word
2024-04-20 16:12 - 2022-12-17 19:10 - 000000000 ____D C:\Users\ada25\AppData\Local\Packages
2024-04-20 15:36 - 2022-12-19 16:01 - 000000000 ____D C:\Users\ada25\AppData\Local\CrashDumps
2024-04-20 03:45 - 2022-12-17 15:23 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-19 12:06 - 2022-12-17 19:10 - 000000000 ____D C:\ProgramData\Packages
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-18 20:18 - 2022-12-19 15:33 - 000000000 ____D C:\Users\ada25\AppData\Local\Steam
2024-04-18 12:11 - 2023-06-06 13:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Kodi
2024-04-18 11:53 - 2022-12-19 16:51 - 000000000 ____D C:\Users\ada25\AppData\Local\Ubisoft Game Launcher
2024-04-18 11:21 - 2022-12-21 23:36 - 000002554 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2024-04-18 10:21 - 2022-12-17 15:30 - 002028514 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-18 10:21 - 2022-12-17 15:18 - 000832810 _____ C:\WINDOWS\system32\perfh005.dat
2024-04-18 10:21 - 2022-12-17 15:18 - 000193246 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-18 10:15 - 2022-12-20 20:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-18 10:15 - 2022-12-17 19:16 - 000000000 ____D C:\ProgramData\AVG
2024-04-18 10:15 - 2022-12-17 15:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-18 10:15 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-18 09:53 - 2022-12-17 15:12 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-18 02:16 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-04-18 00:48 - 2022-12-19 15:59 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-17 23:42 - 2022-12-25 15:52 - 000000000 ____D C:\Users\ada25\OneDrive\Plocha\Hry
2024-04-17 23:42 - 2022-12-20 20:29 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Teams
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-17 21:47 - 2022-12-17 19:13 - 000000000 ____D C:\Users\ada25\AppData\Local\D3DSCache
2024-04-17 21:45 - 2023-10-12 18:29 - 000000000 ____D C:\Users\ada25\AppData\Local\Deployment
2024-04-17 21:45 - 2022-12-17 19:07 - 000000000 ____D C:\Users\ada25
2024-04-17 20:19 - 2022-12-17 15:16 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-16 22:34 - 2022-12-19 15:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-04-16 11:48 - 2023-01-05 18:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Excel
2024-04-16 07:22 - 2022-12-19 15:44 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 10:08 - 2023-01-12 01:18 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-14 22:00 - 2023-05-05 19:21 - 000000000 ____D C:\Users\ada25\AppData\Local\SolidWorks
2024-04-14 21:59 - 2023-05-05 19:02 - 000000000 ____D C:\Users\ada25\AppData\Roaming\SOLIDWORKS
2024-04-14 19:54 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-12 17:38 - 2022-12-17 15:22 - 001725448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-12 17:37 - 2023-12-13 21:51 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-11 04:49 - 2022-12-17 15:12 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-11 04:47 - 2022-12-17 15:25 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-11 04:47 - 2022-12-15 03:03 - 000416842 __RSH C:\bootmgr
2024-04-10 23:53 - 2022-12-17 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 23:51 - 2022-12-17 19:18 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 23:04 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-10 22:54 - 2022-12-17 15:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-22 14:58 - 2022-12-23 16:51 - 000000000 ____D C:\Users\ada25\AppData\Roaming\utorrent
==================== Files in the root of some directories ========
2023-02-06 17:52 - 2024-01-20 16:07 - 000000000 _____ () C:\Users\ada25\AppData\Local\Temptable.xml
==================== SigCheckExt =========================
2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-01-15 11:23 - 2023-01-15 11:23 - 000060928 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\DAQmxAssistant_nimaglvu.dll
2004-02-23 20:42 - 2004-02-23 20:42 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== BCD ================================
Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=C:
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale cs-CZ
inherit {bootloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
nx OptOut
bootmenupolicy Standard
Windows Boot Loader
-------------------
identifier {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale cs-cz
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Resume from Hibernate
---------------------
identifier {94642d77-7e0d-11ed-8928-f8388a7f6391}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows Memory Tester
---------------------
identifier {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostika paměti systému Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes
EMS Settings
------------
identifier {emssettings}
bootems No
Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Local
RAM Defects
-----------
identifier {badmemory}
Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}
Device options
--------------
identifier {9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume2
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by ada25 (21-04-2024 17:47:32)
Running from C:\Users\ada25\OneDrive\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) (2022-12-17 13:26:16)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
ada25 (S-1-5-21-2179105441-594047520-2276817619-1001 - Administrator - Enabled) => C:\Users\ada25
Administrator (S-1-5-21-2179105441-594047520-2276817619-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2179105441-594047520-2276817619-503 - Limited - Disabled)
defaultuser100001 (S-1-5-21-2179105441-594047520-2276817619-1005 - Limited - Enabled)
Guest (S-1-5-21-2179105441-594047520-2276817619-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2179105441-594047520-2276817619-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\uTorrent) (Version: 3.6.0.47016 - BitTorrent Limited)
3DEXPERIENCE Marketplace for SOLIDWORKS (HKLM\...\{0060450C-5B44-424B-BD42-559F2A5D820A}) (Version: 6.31.534 - Dassault Systemes SolidWorks Corp)
7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.002.20687 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Age of the Ring Mod version 7.2 (HKLM-x32\...\AOTR7.2_is1) (Version: 7.2 - AotR staff)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Autodesk Fusion 360 (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.15995 - Autodesk, Inc.)
AVG AntiVirus Free (HKLM\...\AVG Antivirus) (Version: 24.3.8975.1651 - AVG)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa CW1 (02/13/2013 1.0.0.0) (HKLM\...\B10CCB939D59F72AA817B257D84328FC4A1DC752) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK2 (02/13/2013 1.0.0.0) (HKLM\...\E6CFEF5357DD0E2F987E98779FD6603959DA391B) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK3 Multi Material 2.0 upgrade (02/13/2013 1.0.0.0) (HKLM\...\FA562E43945E7D9CAC76A811E49088FF2255A11A) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Prusa i3 Plus MK3 3D printer (02/13/2013 1.0.0.0) (HKLM\...\890B56493F7CACBCA0E70EA8EBFD9A18BC780C34) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - UltiMachine 3D Printer (RAMBo) (02/13/2013 1.0.0.0) (HKLM\...\D77EC126405DC217C7BF7DA6669B51E297D5CF23) (Version: 02/13/2013 1.0.0.0 - UltiMachine)
Battle Brothers - Beasts & Exploration (HKLM-x32\...\1262476412_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Blazing Deserts (HKLM-x32\...\1354029796_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Of Flesh and Faith (HKLM-x32\...\1763378047_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Kraken Banner (HKLM-x32\...\1478596696_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Nordic Banner (HKLM-x32\...\1439127300_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Southern Banner (HKLM-x32\...\1138065447_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Supporter Edition Upgrade (HKLM-x32\...\1353924604_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Warriors of the North (HKLM-x32\...\2092450271_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers (HKLM-x32\...\1590012242_is1) (Version: 1.5.0.14 - GOG.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
Canon LBP6000/LBP6018 (HKLM\...\Canon LBP6000/LBP6018) (Version: - )
Driver Booster 11 (HKLM-x32\...\Driver Booster_is1) (Version: 11.0.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{20235E2B-1E9F-473D-A215-B2467F1F06E3}) (Version: 1.3.51.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
IVI Shared Components Package (32-bit) (HKLM-x32\...\{B21F9C33-EE41-40FD-A9AB-C0857E8039E0}) (Version: 3.0.2828.0 - IVI Foundation) Hidden
IVI Shared Components Package (64-bit) (HKLM\...\{7F1BE37B-5909-4345-8DD9-8115E82276FE}) (Version: 3.0.2828.0 - IVI Foundation) Hidden
Kodi (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Kodi) (Version: 20.1.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{4F81B8ED-D6B5-497F-AAEC-9DECD42CB03D}) (Version: 3.9.2402.14001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.70.551909 - Logitech)
LogiOptionsPlusExcelAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\D52016B639D322F0325F55AC8907516FD53F5818E7B50B28B546FC509A1A3244) (Version: 1.70.1909.0 - Logitech)
LogiOptionsPlusPowerPointAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\C0A659DFDE5A2520D6EF4CD194E81B1E46054910AAE5ED4E27CDE54B31A749FA) (Version: 1.70.1909.0 - Logitech)
LogiOptionsPlusWordAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\5CBD44E2723BB1841697EE65F4F6FB6DBF7D5E594165632D89494C75F6F61A13) (Version: 1.70.1909.0 - Logitech)
Microsoft .NET Host - 6.0.12 (x64) (HKLM\...\{E215AA9E-5DF2-44BC-9D6F-E1A1B0C348FB}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.12 (x64) (HKLM\...\{0712F23C-FBAC-436C-9DDB-125F32D15033}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.12 (x64) (HKLM\...\{1BF67DC1-8BB5-4AF5-BE20-3B53D9532D01}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.17425.20176 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.97 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{787F8536-654C-4DD4-AD3F-22B529F8F339}) (Version: 17.4.0.1 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9AA0AFFA-EDB6-4B66-9FD7-BBC828D88B47}) (Version: 18.2.3.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.062.0326.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Teams classic (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Teams) (Version: 1.6.00.35961 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.09203 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x64) (HKLM\...\{07C0BFE1-3291-409C-B96A-797340719C8F}) (Version: 7.1.10.96 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) English (HKLM\...\{826216B1-0F04-409B-A33E-C6A004AA1097}) (Version: 7.1.10.96 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{C931A1C6-A7BF-3737-874A-818881A37E1B}) (Version: 10.0.60915 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60910 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{ab213ab7-4792-4c6f-a3fa-8485d06c3475}) (Version: 14.0.23829 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 Finalizer (HKLM-x32\...\{F93E37BD-4053-37CA-A7BB-A5B74508006C}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2015 x64 Hosting Support (HKLM\...\{A8C30947-7C1B-3A31-8FD8-CEC6D3357D34}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2015 x86 Hosting Support (HKLM-x32\...\{11A9EF3E-6616-31B1-82BC-1080366FA34D}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM\...\{3E726676-B5F4-48DA-B9F9-78A15B7F8A70}) (Version: 48.51.52100 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM-x32\...\{24b99d74-a81e-4765-aefe-be853ac47482}) (Version: 6.0.12.31928 - Microsoft Corporation)
Mount & Blade II Bannerlord v. 1.5.6.254632 (44130) (HKLM-x32\...\Mount & Blade II Bannerlord_is1) (Version: - )
NI IVI Shared Components Wrapper Bundle (HKLM-x32\...\{734b2eac-d7c4-495e-9b70-3a90140ce563}) (Version: 22.5.0.49164 - National Instruments) Hidden
NI Package Manager (HKLM\...\NI Package Manager) (Version: 23.0.0 - NI)
NI Software (HKLM-x32\...\NI Uninstaller) (Version: 23.0.0 - NI)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.160 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.160 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 536.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.23 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20176 - Microsoft Corporation) Hidden
Opera Stable 109.0.5097.45 (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Opera 109.0.5097.45) (Version: 109.0.5097.45 - Opera Software)
PDFCreator (HKLM\...\{8960FCDD-66D4-4180-A172-1AD0DD1A075A}) (Version: 5.0.3 - pdfforge GmbH)
Prusa3D verze 2.5.0 (HKLM\...\Prusa3D_is1) (Version: 2.5.0 - Prusa Research a.s.)
PrusaSlicer verze 2.5.0 (HKLM\...\PrusaSlicer_is1) (Version: 2.5.0 - Prusa Research s.r.o.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Rise of the Witch-King 2.02 (HKLM-x32\...\GameReplaysRotWK) (Version: - RotWK 2.02 Team)
SOLIDWORKS 2022 Czech Resources (HKLM\...\{053B4611-AFDF-4C03-BFBB-F8B1A281B70F}) (Version: 30.120.0046 - Název společnosti:) Hidden
SOLIDWORKS 2022 SP02 (HKLM\...\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}) (Version: 30.120.0046 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2022 SP02 (HKLM-x32\...\SolidWorks Installation Manager 20220-40200-1100-100) (Version: 30.2.0.46 - SolidWorks Corporation)
SOLIDWORKS CAM 2022 SP02 (HKLM\...\{46053718-2931-47EA-B678-6DF08370F2D4}) (Version: 30.20.0046 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2022 SP02 (HKLM\...\{809597D9-554F-4EFB-B0EC-B231924636E2}) (Version: 30.20.0037 - Společnost Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader Extreme HD (HKLM-x32\...\GOGPACKSTRONGHOLDCRUSADERHD_is1) (Version: 2.0.0.6 - GOG.com)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
The Lord of the Rings, The Rise of the Witch-king (HKLM-x32\...\{B931FB80-537A-4600-00AD-AC5DEDB6C25B}) (Version: - )
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft)
UGREEN Wireless Adapter (HKLM\...\{B8AA72D1-F1C3-4201-A951-3D89A7D422FF}_is1) (Version: 0.0.5.3 - UGREEN)
Ultimaker Cura 5.2.1 (HKLM-x32\...\Ultimaker Cura 5.2.1-5.2.1) (Version: 5.2.1 - Ultimaker B.V.)
UltiMaker Cura 5.3.0 (HKLM-x32\...\UltiMaker Cura 5.3.0-5.3.0) (Version: 5.3.0 - UltiMaker)
UniPDF 1.3.5 (HKLM-x32\...\UniPDF) (Version: 1.3.5 - UniPDF.com)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
VIPM 2023 (HKLM\...\{5EC9A06B-A771-4059-97A4-9F0FDAB409EB}) (Version: 23.1.2498 - JKI)
VISA Shared Components 5.12.0 (64-Bit) (HKLM\...\{452610CE-4A5B-4CFF-87F3-B6A49E621E5C}) (Version: 5.12.0300 - IVI Foundation) Hidden
VISA Shared Components 5.12.0 (64-Bit) (HKLM-x32\...\VISASharedComponents) (Version: 5.12 - IVI Foundation)
VISA.NET Shared Components 5.11.0 (64-Bit) (HKLM\...\{E518296D-57A9-434B-AB33-9928D9B5E09D}) (Version: 5.11.0301 - IVI Foundation) Hidden
VISA.NET Shared Components 5.11.0 (64-Bit) (HKLM-x32\...\VISANETSharedComponents5.11.0) (Version: 5.11.0301 - IVI Foundation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
VusApp (HKLM\...\{BBA26299-01B6-4BBE-9E0F-FB806C16E5D6}) (Version: 4.7.5 - public sols)
WinRAR 7.00 beta 3 64-bit (HKLM\...\WinRAR archiver) (Version: 7.00.3 - win.rar GmbH)
Winter Falling: Battle Tactics (HKLM-x32\...\1464460947_is1) (Version: 4.67 - GOG.com)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-03-16] ()
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-07-15] (Microsoft Corporation)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-03-26] (Disney)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-02-15] (Microsoft Corporation)
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-03-29] (Microsoft Corporation)
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe [2024-04-19] (Microsoft) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.965.0_x64__56jybvy8sckqj [2024-03-26] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0 [2024-04-15] (Spotify AB) [Startup Task]
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-03-13] (Microsoft Corporation)
YouTube -> C:\Program Files\WindowsApps\www.youtube.com-54E21B02_1.0.0.1_neutral__pd8mbgmqs65xy [2023-10-19] (www.youtube.com)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ada25\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.09203\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{9A872070-0A06-11D1-90B7-00A024CE2744}\localserver32 -> C:\Program Files\National Instruments\LabVIEW 2023\LabVIEW.exe (National Instruments Corporation -> National Instruments Corporation)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\ada25\AppData\Local\Autodesk\webdeploy\production\22e664d43fce268ac9bf1fa1cda69e4a9585c997\NPreview10.dll (Autodesk, Inc. -> )
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\ada25\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2022-10-04] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext32.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-31] (Malwarebytes) [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\nvshext.dll [2023-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext32.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2022-07-15 19:00 - 2022-07-15 19:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-12-17 15:16 - 2022-12-17 15:15 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin\;C:\Program Files\IVI Foundation\VISA\Win64\Bin\;C:\Program Files (x86)\IVI Foundation\IVI\Bin\;C:\Program Files\IVI Foundation\IVI\Bin\;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin;D:\Program Files\dotnet\;C:\Program Files (x86)\National Instruments\Shared\LabVIEW CLI
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ada25\OneDrive\Obrázky\iTop Screen Recorder\Webcam Background\cambg_2.jpg
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.254.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2022 Rychlé spuštění.lnk"
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS Nástroj pro stahování na pozadí.lnk"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service "
HKLM\...\StartupApproved\Run32: => "NI Device Monitor"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "NIRegistrationWizard"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{C40528C0-2C4A-495D-9B7A-1F4F3600C550}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{62202678-34FC-421E-ACC8-2150114AB6E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B04A3537-6780-4496-9EBE-80FE4515BD60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0CC1C911-8400-4FD5-90A4-AC8A7FAB684F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{770CB664-B40E-43FB-A6FE-BA6E882C3125}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{96663BA2-3D67-419C-A7BE-E8A5DF0CC00E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0788EA34-C003-4F6C-BFBD-8C985494D9E4}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F18393B6-8F3D-4D87-AFB3-094BD3515268}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{5343D82C-7BD5-4728-98AE-0FAFFACFC895}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{FB52AF7E-3660-4026-B1C6-AE9A39142879}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{B0B4DBCB-41AF-48F4-A79D-06F2C100B20B}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10F21132-1F2A-4B75-9197-01923D8FB5E8}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{90F9E79E-903B-4AA4-B470-660E86F144F2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F8EC7C40-2F2A-42B6-B411-F8B763D17CD8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{94815BC1-4BEB-434B-A52C-DE0A7C3D83AF}] => (Allow) D:\STEAM\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{8BC19957-71FD-421E-A934-EC8C8CA44233}] => (Allow) D:\STEAM\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{774B1612-0FE2-4A2C-A686-CBE14E25BA3B}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{6D4226A0-46B4-459C-839A-2C561467BE95}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{81ACA261-2BFC-465C-B4B5-1F7F49E2F64A}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{488CB66B-3C3B-455C-B5EB-09213E3D186D}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{325EE286-81E2-428A-B857-26100F8A8A72}C:\users\ada25\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ada25\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [UDP Query User{E7603850-88C7-49D6-81A3-890D1CA6F809}C:\users\ada25\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ada25\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{6E150C1D-8CC9-42E9-A78E-98F1B316F09F}] => (Allow) D:\STEAM\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{EA7B9F33-88D9-4EC3-9F05-09FEB1D5BA9C}] => (Allow) D:\STEAM\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [TCP Query User{7839F4C9-F1D7-438A-8516-9A2A084BB111}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{032BFB60-05C4-4B26-8E7C-C0EA7E0A92F4}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [{83681199-A686-42D4-B1D2-3103CE3D4C7C}] => (Allow) D:\STEAM\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{CE9C8077-4ADD-4E34-BD79-36B09BBF2F3D}] => (Allow) D:\STEAM\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{ECAB1716-6EAC-4E5D-89A6-5BEF9D1D4B7F}] => (Allow) D:\STEAM\steamapps\common\Humankind\Humankind.exe (Amplitude Studios) [File not signed]
FirewallRules: [{9AA3F688-CE1C-4082-A16B-AC09E231A6A4}] => (Allow) D:\STEAM\steamapps\common\Humankind\Humankind.exe (Amplitude Studios) [File not signed]
FirewallRules: [{FE3F8D9C-5134-466B-B654-D8F0DEFCBADA}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) [File not signed]
FirewallRules: [{1E1EFA3F-D352-46E6-93C2-240C52C1C18C}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) [File not signed]
FirewallRules: [{5D4DE6A1-A605-451E-9B3F-A36750F37985}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [{B3ABD7A2-0663-4FBA-9DCA-B6C32382059D}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [{8186F609-7F0B-4324-AB0C-4FB502EB0673}] => (Allow) LPort=8030
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [{B21B34A1-A843-4500-A811-D2F4B0B73D52}] => (Allow) D:\STEAM\steamapps\common\Team Fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [{0EA44D9E-D668-4E06-B0E3-408E2B92FF69}] => (Allow) D:\STEAM\steamapps\common\Team Fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{E58C4C22-A114-40AD-B700-3888E0423DE4}D:\ultimaker cura 5.2.1\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.2.1\ultimaker-cura.exe () [File not signed]
FirewallRules: [UDP Query User{ED900E79-D52B-4532-8EE2-784059D529D7}D:\ultimaker cura 5.2.1\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.2.1\ultimaker-cura.exe () [File not signed]
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{D6BC4D7B-4E04-4CC2-B157-1547FCB26FF3}C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe] => (Block) C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [UDP Query User{03EDC3CB-0C7D-4D1A-BEFB-FA4485548CCD}C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe] => (Block) C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [TCP Query User{F5F587B7-CA24-4FD5-B299-E07BAD4E6546}D:\ultimaker cura 5.3.0\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.3.0\ultimaker-cura.exe () [File not signed]
FirewallRules: [UDP Query User{E8CDC9C4-6AE3-4742-A1B4-0FE9F72C9F13}D:\ultimaker cura 5.3.0\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.3.0\ultimaker-cura.exe () [File not signed]
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{E706E661-4DC4-444E-BB86-DFB06D900366}] => (Block) C:\Program Files (x86)\National Instruments\Shared\Offline Help Viewer\NIOfflineHelpViewer.exe (ZOOMIN SOFTWARE LTD -> Zoomin Ltd.)
FirewallRules: [{8A3BB187-468E-4D84-9792-02A814D0A23C}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{DF58609B-7294-4D7B-8E9A-A4EABA727F0B}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{207645B5-6ED2-4EF0-B147-B41A0A67B6A5}] => (Allow) LPort=15673
FirewallRules: [{A9C2A7E2-75FE-4C61-8B15-6FCD44513AE3}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{C229CA86-D1D2-4089-A45B-2E31E803BAF1}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{4F08CF52-B016-4A68-944C-1304C9C0BE35}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{69AECB60-1A24-4C73-9A83-246304D12819}] => (Allow) C:\Program Files\JKI\VI Package Manager\VI Package Manager.exe (James Kring, Inc. -> JKI)
FirewallRules: [{9B97DD9E-B8EB-4585-9D75-5E41E75F643D}] => (Allow) C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe (James Kring, Inc. -> JKI)
FirewallRules: [{B92D6391-D9FA-4072-8AB0-853229DEC27F}] => (Block) C:\Program Files (x86)\National Instruments\Shared\Offline Help Viewer\NIOfflineHelpViewer.exe (ZOOMIN SOFTWARE LTD -> Zoomin Ltd.)
FirewallRules: [{A0A5F258-9BBB-4925-B458-49057F7AD242}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{58062B4E-EC3C-4B2D-849D-316DF961B94F}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{AECB7EE1-FAE2-4153-950A-EFB2D76B963E}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{B36D7398-14B6-48B4-B4A4-07C80C541676}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{F8B67FBE-2229-4661-BCE1-A0F124ECBB6B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CA3ED0CA-9B11-4461-BC99-828B5B777D9E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E0F00251-2FB7-430F-BF3F-BAF83D00A2C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CB343D69-6175-483A-9BD7-B0066E1DF4EF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{62ADF150-5815-4BF2-B8E0-6DF291399EFE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{9E140625-9EE0-4C68-9D7C-376B8B86660C}D:\kodi\kodi.exe] => (Allow) D:\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{8A1C9B68-4B6D-4C30-A85E-4EE52F85F10D}D:\kodi\kodi.exe] => (Allow) D:\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [{4A267393-C0C7-41DC-898C-45B0B090A8E3}] => (Allow) D:\Hry\BME2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{58BC76DA-2DE4-43F0-AB97-38AA087E4CED}] => (Allow) D:\Hry\BME2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{7C72EDBC-F55B-4ACC-B7A6-170DB13E0680}] => (Allow) D:\Hry\BME2\BMEW2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{146B6F63-87FB-47A1-BB51-4089C013AAC3}] => (Allow) D:\Hry\BME2\BMEW2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [TCP Query User{83200BDE-4097-4919-BC96-AA29C0FBA2CD}C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe () [File not signed]
FirewallRules: [UDP Query User{19817975-95DB-4947-BB69-51C4C250AD6D}C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe () [File not signed]
FirewallRules: [{C52CC41F-BCE3-471A-83F0-8C1509B5FFC8}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe (Firaxis Games) [File not signed]
FirewallRules: [{60CAC8F3-BFE5-4CDD-A930-80925A390313}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe (Firaxis Games) [File not signed]
FirewallRules: [{3E6545A5-A228-4147-A573-5EE45E7B5E5E}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [TCP Query User{686CE735-6A97-4A20-A3E3-44063EF91336}C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{4891CFE0-8B22-4DC4-B72C-0A9C0441473D}C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{495D0BF4-735F-475C-93D0-9CEDDDBE1734}] => (Allow) D:\STEAM\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{E0A3243F-D7FF-4007-B5FC-5528C2E4D99F}] => (Allow) D:\STEAM\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{525E4752-7A77-46B2-B96F-DDAEA5476661}] => (Allow) D:\STEAM\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{912CAD33-4E25-42F4-BEB0-B2432D2A16D4}] => (Allow) D:\STEAM\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{8F18F20D-4A42-44C7-9E20-2313FD350C91}] => (Allow) D:\STEAM\steamapps\common\skyrim\skse_steam_boot.exe () [File not signed]
FirewallRules: [{C7E039DE-95C0-404C-A1B8-C00A55011A6A}] => (Allow) D:\STEAM\steamapps\common\skyrim\skse_steam_boot.exe () [File not signed]
FirewallRules: [TCP Query User{2F200DAC-6D95-4C39-9ED6-F3BD0335B3BA}D:\opera\opera.exe] => (Allow) D:\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{1479275E-0EF2-4033-BA11-E51C9A31C53C}D:\opera\opera.exe] => (Allow) D:\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{2049A4AB-3F32-410A-AB44-1BFF1FA425AC}C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe () [File not signed]
FirewallRules: [UDP Query User{2BE97B4D-B23C-4F7A-843E-CD5C600FE89F}C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe () [File not signed]
FirewallRules: [{74D15131-2C8D-487C-B144-7D22ABB3BFC8}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{7C2D3117-6A7E-4310-B2EA-18242BFBBCB1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0325C3AA-F612-4CE9-B672-A7215AE56AFD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{15C2CC8E-8041-4D30-BF78-ABAD143F43A6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{626E4ABD-5146-48BC-ACBD-7CEE9DE01D18}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6C77E69A-BAEA-4671-997A-74F9F595A46C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD6165B2-C2DE-4814-88D3-CBAF9BED385B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0FAE0F09-EAC2-418A-A663-0CB460F1CC82}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D1F41E02-E874-4FB5-A759-B0118397FB2F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CEDCB8E9-65CE-4283-B1B4-3A774BCC7CC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DF40460C-5C4E-4D6D-9498-316D120B84A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B6AD2EC5-4AB0-44B0-A2DD-87F3097AA2B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7302B0F4-E873-43DB-AB7B-DDED70E0B563}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7BA0D63E-186E-4E5E-BB39-79E9321ACFEB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{94A701C1-3B23-4BB8-B62A-6465AD5F0697}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{81BC5FE0-36FF-48FD-BEBE-D4FC06391EC5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DA392895-5AE3-4774-8467-C718C2531431}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8443C64A-A66F-4350-8DEE-0773EABAFEAF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{357BA680-7E32-4C6C-9181-B4F2E437E17F}] => (Allow) D:\STEAM\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [{A0976DF3-635C-4E5E-B0E2-109FCED09DD8}] => (Allow) D:\STEAM\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [{1AB3854E-23DB-4EBA-9AA6-4A97D0EA5B18}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{3F90E7ED-3089-456C-8049-6BE7E8FDC9CB}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{D5DE2EBA-4770-405F-AB78-73215743922C}] => (Allow) C:\Windows\SysWOW64\nitsusvc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{3378E521-E044-43A8-99A0-3594E2EBD7F8}] => (Allow) C:\Windows\SysWOW64\nitsusvc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E7274C66-E16F-43CE-9539-2FC312357ADB}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C26E881-7CFE-4BD4-82F4-68D361C4176D}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
21-04-2024 13:41:10 Driver Booster : USB Camera
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (04/21/2024 05:45:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 19.4.2024.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 13a4
Čas spuštění: 01da9402d52f391c
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Users\ada25\OneDrive\Plocha\FRST64.exe
ID hlášení: 553eddb0-880d-4793-8eae-74a21786818f
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Top level window is idle
Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1953
Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1953
Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: *** 2 potential causes identified (significant only if the same cause consistently appears)
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1954
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1954
Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: *** Continuously busy for more than a second
System errors:
=============
Error: (04/21/2024 04:46:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7QV4VV7)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/21/2024 03:52:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7QV4VV7)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Configuration Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Application Web Server byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI System Web Server byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Time Synchronization byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Variable Engine byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Logi Options+ byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Windows Defender:
================
Date: 2024-04-17 20:08:39
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8B9C73E1-1CDB-4E17-8FFA-BB78620F1F2C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-16 07:20:24
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1BED9AA8-3C3C-4720-93E1-6685A7F8EA3E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-14 23:15:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {68333F97-2BF7-4D68-8D2D-802A9E833F95}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-12 03:11:33
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1EB83957-1F3F-4F18-AC71-FA2A1EBF6228}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2024-04-11 21:19:17
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe možnost upravit %userprofile%\OneDrive\Dokumenty.
Čas detekce: 2024-04-11T19:19:17.165Z
Uživatel: DESKTOP-7QV4VV7\ada25
Cesta: %userprofile%\OneDrive\Dokumenty
Název procesu: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
Verze bezpečnostních informací: 1.409.193.0
Verze modulu: 1.1.24030.4
Verze produktu: 4.18.24030.9
Event[0]:
Date: 2024-03-20 21:30:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender zjistilo chybu a bylo ukončeno.
ID prohledávání: {EA7EDFCB-D369-4033-AE89-F826D598F669}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Vlastní prohledávání
Uživatel: DESKTOP-7QV4VV7\ada25
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software.
Date: 2024-03-20 21:30:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender zjistilo chybu a bylo ukončeno.
ID prohledávání: {33444359-E36C-4FDF-959A-B03AFF5ECD9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Vlastní prohledávání
Uživatel: DESKTOP-7QV4VV7\ada25
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software.
Date: 2023-12-07 07:33:03
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.1729.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2023-12-07 07:33:03
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.1729.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2023-11-07 17:49:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.134.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.
CodeIntegrity:
===============
Date: 2024-04-21 17:47:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2024-04-21 17:47:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume1\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2024-04-21 17:47:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2024-04-21 17:47:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume1\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V2.9 03/30/2015
Motherboard: MSI B85-G41 PC Mate(MS-7850)
Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Percentage of memory in use: 70%
Total physical RAM: 8120 MB
Available physical RAM: 2370.71 MB
Total Virtual: 18360 MB
Available Virtual: 8562.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:108.26 GB) (Free:5.62 GB) (Model: TS128GSSD370S) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:931.51 GB) (Free:94.17 GB) (Model: Samsung SSD 870 EVO 1TB) NTFS
Drive f: (Nový svazek) (Fixed) (Total:464.43 GB) (Free:430.95 GB) (Model: HGST HTS 725050A7E630 SCSI Disk Device) NTFS
\\?\Volume{ad2ab7c0-eef8-4ca9-a578-551be683b00c}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{9cbce750-4c6d-4838-8573-da65e69465f1}\ () (Fixed) (Total:0.78 GB) (Free:0.31 GB) NTFS
\\?\Volume{29747412-0000-0000-0000-b0101b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.1 GB) NTFS
\\?\Volume{29747412-0000-0000-0000-70311b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.5 GB) NTFS
\\?\Volume{1c94712c-8d33-4322-ab9e-a5eae5cff5c5}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 29747412)
Partition 1: (Active) - (Size=108.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=523 MB) - (Type=27)
Partition 3: (Not Active) - (Size=523 MB) - (Type=27)
Partition 4: (Not Active) - (Size=10 GB) - (Type=0F Extended)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 352FEA05)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 69677AFB)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118289
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\ada25\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
Fix result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by ada25 (22-04-2024 06:05:11) Run:1
Running from C:\Users\ada25\OneDrive\Plocha
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\!BCILauncher" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f163a51-f658-11ee-98ea-f44efce3160f} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8606BBC2-3906-4090-A2D3-2F42B66BCBF9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8606BBC2-3906-4090-A2D3-2F42B66BCBF9}" => removed successfully
C:\WINDOWS\System32\Tasks\IObit StpSale (One-Time) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IObit StpSale (One-Time)" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{995F0CCF-4E0B-4DDB-815A-848BE1937020}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{915C1B94-E901-42FA-9586-8460FBA2D4AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EFA35400-28E5-4420-B13B-12E627EF5236}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}" => removed successfully
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7B013346-4014-4D81-94DB-5B43CB09530C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14102B01-7502-476A-8AA7-5CE9E7E0172A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96FF7EE5-2E87-4375-930A-F6475869FD7E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FE793E28-0B5F-407A-8E62-4A541B19A9B2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{64885087-0088-46F2-B316-E71259D4A76B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D58A11B5-DDC9-478F-B51F-A9648336CD13}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{199FDDF2-D080-4D27-B569-34A6CF0A142D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 128078427 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 215148537 B
Windows/system/drivers => 64633949 B
Edge => 0 B
Chrome => 5981590 B
Firefox => 0 B
Opera => 28248530 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1305419 B
systemprofile32 => 1305798 B
LocalService => 1415652 B
NetworkService => 1674450 B
ada25 => 217607197 B
niroco => 217607197 B
SQLTELEMETRY$TEW_SQLEXPRESS => 217607197 B
lkClassAds => 217607197 B
NINetworkDiscovery => 217607197 B
niLXIDiscovery => 217607197 B
RecycleBin => 0 B
EmptyTemp: => 1.6 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 06:05:50 ====
Ran by ada25 (22-04-2024 06:05:11) Run:1
Running from C:\Users\ada25\OneDrive\Plocha
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\!BCILauncher" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f163a51-f658-11ee-98ea-f44efce3160f} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8606BBC2-3906-4090-A2D3-2F42B66BCBF9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8606BBC2-3906-4090-A2D3-2F42B66BCBF9}" => removed successfully
C:\WINDOWS\System32\Tasks\IObit StpSale (One-Time) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IObit StpSale (One-Time)" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{995F0CCF-4E0B-4DDB-815A-848BE1937020}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{915C1B94-E901-42FA-9586-8460FBA2D4AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EFA35400-28E5-4420-B13B-12E627EF5236}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}" => removed successfully
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7B013346-4014-4D81-94DB-5B43CB09530C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14102B01-7502-476A-8AA7-5CE9E7E0172A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96FF7EE5-2E87-4375-930A-F6475869FD7E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FE793E28-0B5F-407A-8E62-4A541B19A9B2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{64885087-0088-46F2-B316-E71259D4A76B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D58A11B5-DDC9-478F-B51F-A9648336CD13}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{199FDDF2-D080-4D27-B569-34A6CF0A142D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 128078427 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 215148537 B
Windows/system/drivers => 64633949 B
Edge => 0 B
Chrome => 5981590 B
Firefox => 0 B
Opera => 28248530 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1305419 B
systemprofile32 => 1305798 B
LocalService => 1415652 B
NetworkService => 1674450 B
ada25 => 217607197 B
niroco => 217607197 B
SQLTELEMETRY$TEW_SQLEXPRESS => 217607197 B
lkClassAds => 217607197 B
NINetworkDiscovery => 217607197 B
niLXIDiscovery => 217607197 B
RecycleBin => 0 B
EmptyTemp: => 1.6 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 06:05:50 ====
-
Rudy
- Site Admin
- Příspěvky: 118289
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
Problém s ikonami jsem již nezaznamenal. Co se týče uniku hesel nemůžu momentálně říct jestli je tento problém vyřešen, toto zjistím nejspíše s větším odstupem času. Zatím děkuji
-
Rudy
- Site Admin
- Příspěvky: 118289
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logů z důvodu problému. Děkuji
OK. Únik hesel nemusí být spojen se zavirováním PC. Existují i jiné metodi. Zatím nemáte zač a případně se ozvěte. 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?