Dobrý večer,
prosím o kontrolu logu, z důvodu omezení funkce Windows Defender.
Nejde mi spustit antivirová kontrola, s největší pravděpodobností jsem si stáhl vir.
Mockrát děkuji,
Schuuba
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2025
Ran by Schuuba (administrator) on DESKTOP-6SUP103 (Micro-Star International Co., Ltd. MS-7B22) (12-01-2025 19:52:45)
Running from C:\Users\Schuuba\AppData\Local\Temp\scoped_dir11368_274785210\FRST64.exe
Loaded Profiles: Schuuba
Platform: Microsoft Windows 10 Home Version 22H2 19045.5131 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\Schuuba\AppData\Local\Programs\Opera GX\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Users\Schuuba\AppData\Local\Programs\Opera GX\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Schuuba\AppData\Local\Programs\Opera GX\114.0.5282.233\opera_crashreporter.exe
(C:\Users\Schuuba\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\Schuuba\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe
(explorer.exe ->) (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering, Ltd.) C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Schuuba\AppData\Local\Programs\Opera GX\opera.exe <31>
(services.exe ->) () [File not signed] D:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(services.exe ->) (LogMeIn, Inc. -> LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Softube AB -> ) C:\Program Files\Softube\InstallerDaemon\InstallerService.exe
(services.exe ->) (SteelSeries France SASU -> Nahimic) C:\WINDOWS\System32\NahimicService.exe
(services.exe ->) (Wondershare Technology Group Co.,Ltd -> Wondershare) C:\Users\Schuuba\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe
(SteelSeries France SASU -> A-Volute) C:\WINDOWS\System32\NhNotifSys.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft) C:\Program Files\WindowsApps\microsoft.zunemusic_11.2305.4.0_x64__8wekyb3d8bbwe\Microsoft.Media.Player.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\Focusrite\Drivers\Focusrite Notifier.exe [906840 2023-11-27] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering, Ltd.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [TeamsMachineInstaller] => %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS (No File)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => "C:\Program Files (x86)\Gaming Keyboard\Monitor.exe" (No File)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [7811960 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" (No File)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
HKLM\Software\Policies\...\system: [EnableSmartScreen] 0
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\102.0.2.0\GoogleDriveFS.exe [62767200 2025-01-06] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\102.0.2.0\GoogleDriveFS.exe [62767200 2025-01-06] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [5006864 2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [MicrosoftEdgeAutoLaunch_C80176CB6C1F9FACCB7AB6118B76EC29] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start (No File)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [Discord] => C:\Users\Schuuba\AppData\Local\Discord\Update.exe [1525016 2023-07-06] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\Schuuba\AppData\Local\Microsoft\Teams\Update.exe [2591920 2024-02-18] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\102.0.2.0\GoogleDriveFS.exe [62767200 2025-01-06] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22373784 2024-12-11] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37231056 2023-10-06] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [Opera GX Browser Assistant] => C:\Users\Schuuba\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3323496 2024-07-17] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Run: [AVGBrowserAutoLaunch_CA51343862F8D05C85AA4D3CF7314C79] => "C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --check-run=src=logon --auto-launch-at-startup --profile-directory="Default" (No File)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [5006864 2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\102.0.2.0\GoogleDriveFS.exe [62767200 2025-01-06] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\...\Run: [LGHUB] => C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe [22373784 2024-12-11] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\...\Run: [Opera GX Stable] => C:\Users\Daniel\AppData\Local\Programs\Opera GX\opera.exe [1493400 2024-12-07] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\...\Run: [Opera GX Browser Assistant] => C:\Users\Daniel\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\102.0.2.0\GoogleDriveFS.exe [62767200 2025-01-06] (Google LLC -> Google, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{48F69C39-1356-4A7B-A899-70E3539D4982}] -> "C:\Program Files\AVG\Browser\Application\131.0.27760.140\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.265\Installer\chrmstp.exe [2025-01-10] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{9459C573-B17A-45AE-9F64-1857B5D58CEE}] -> "C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge --channel=stable
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {5D6DC190-2521-46AD-B2E8-7C73D652BBB5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {30D7A136-6638-4819-A36C-AD8736AC5BCE} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [57808 2023-08-02] (HP Inc. -> HP Inc.)
Task: {0330E88E-1BEF-4715-A803-1DF012195FD7} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [57808 2023-08-02] (HP Inc. -> HP Inc.)
Task: {9DF10FFD-E728-4CE8-B97B-86C9037F0C55} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {8F5308DF-06E1-46F2-8791-CEB3355024AB} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28707056 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C81B232-BA60-41ED-BC76-8B7936472BB1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222840 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8385A69-75B7-45A0-883F-D5AB6E61011E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [222840 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {64127E9E-17C7-4CC1-AB5B-0D826324566A} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4439384 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {901AC54D-A58E-45AE-9151-28A08620391C} - System32\Tasks\NCH Software\SwitchDowngrade => C:\Program Files (x86)\NCH Software\Switch\switch.exe -downgrade (No File)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => No File
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.1.1 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{047c653c-aa45-40c3-945c-1d4bc72f964e}: [NameServer] 1.1.1.1,8.8.4.4
Tcpip\..\Interfaces\{047c653c-aa45-40c3-945c-1d4bc72f964e}: [DhcpNameServer] 10.0.1.1 8.8.8.8 1.1.1.1
Edge:
=======
Edge Profile: C:\Users\Schuuba\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-11]
Edge Extension: (Dokumenty Google offline) - C:\Users\Schuuba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-26]
Edge Extension: (Edge relevant text changes) - C:\Users\Schuuba\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2025-01-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2025-01-11] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
Chrome:
=======
CHR Profile: C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default [2024-11-25]
CHR Extension: (Překladač Google) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-11-25]
CHR Extension: (BetterTTV) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2024-11-25]
CHR Extension: (Advanced Image Search) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahpmepdjiejandeladmhfpapeagobnp [2023-10-05]
CHR Extension: (buykers | slevové kupony a kódy) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdinoicboceafielngnmjjplncljhj [2024-11-25]
CHR Extension: (Steam Market History Plus) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhcoicbcegmeaoipdjabengnggkciepp [2023-07-29]
CHR Extension: (Startup Sound for Chromebook™) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdbccimagkgnaafahaaeknnkindiiopl [2024-11-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-25]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-11-25]
CHR Extension: (CSFloat Market Checker) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\jjicbefpemnphinccgikpdaagjebbnhg [2024-11-25]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-15]
CHR Extension: (Stahovač videa - stahování videa) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkjjckchdfhjbpckippbnipkdnlidbeb [2024-11-25]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-07-29]
CHR Extension: (Bitwarden - Správce hesel) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nngceckbapebfimnlniiiahkandclblb [2024-11-25]
CHR Extension: (YT-Encrypt) - C:\Users\Schuuba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcihlmcbnllaghbgjddinocpdcpfecbm [2023-10-31]
CHR HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
Opera:
=======
StartMenuInternet: (HKU\S-1-5-21-1996945063-2393557616-2674851489-1002) Opera GXStable - "C:\Users\Schuuba\AppData\Local\Programs\Opera GX\opera.exe"
StartMenuInternet: (HKU\S-1-5-21-1996945063-2393557616-2674851489-1010) Opera GXStable - "C:\Users\Daniel\AppData\Local\Programs\Opera GX\opera.exe"
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13572312 2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
S3 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [16851560 2024-07-17] (Electronic Arts, Inc. -> Electronic Arts)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2023-05-01] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncHelper.exe [3528248 2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
R2 Focusrite Control Server; D:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1297920 2023-12-19] () [File not signed]
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [4920184 2024-03-25] (LogMeIn, Inc. -> LogMeIn Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-08-02] (HP Inc. -> HP Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11744152 2024-12-11] (Logitech Inc -> Logitech, Inc.)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-05-27] (LogMeIn, Inc. -> LogMeIn, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9441760 2025-01-12] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2025-01-12] (Malwarebytes Inc. -> Malwarebytes)
S3 Muse Hub Background Service; C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe [188928 2024-04-28] (Musecy SM Ltd. -> Muse.Service)
R2 NahimicService; C:\WINDOWS\System32\NahimicService.exe [1910704 2024-06-20] (SteelSeries France SASU -> Nahimic)
R2 NativePushService; C:\Users\Schuuba\AppData\Local\Wondershare\Wondershare NativePush\WsNativePushService.exe [594320 2023-02-22] (Wondershare Technology Group Co.,Ltd -> Wondershare)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.232.1118.0003\OneDriveUpdaterService.exe [3873296 2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
R3 PrintNotify; C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll [3865088 2024-12-12] (Microsoft Corporation) [File not signed]
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [6101488 2024-03-23] (Rockstar Games, Inc. -> Rockstar Games)
R2 SoftubeInstallerDaemon; C:\Program Files\Softube\InstallerDaemon\InstallerService.exe [9799992 2023-10-22] (Softube AB -> )
S3 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [763024 2024-10-10] (Oracle America, Inc. -> Oracle and/or its affiliates)
S2 avg; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc [X]
S3 avgm; "C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /medsvc [X]
S3 AVGSecureBrowserElevationService; "C:\Program Files\AVG\Browser\Application\131.0.27760.140\elevation_service.exe" [X]
S2 edgeupdate; "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc [X]
S3 edgeupdatem; "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /medsvc [X]
S2 GameInput Service; "C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe" [X]
S2 MDCoreSvc; "%ProgramData%\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe" [X]
S3 MicrosoftEdgeElevationService; "C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\elevation_service.exe" [X]
S2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -ert
S2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation
S3 Steam Client Service; "C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService [X]
S4 uhssvc; "C:\Program Files\Microsoft Update Health Tools\uhssvc.exe" [X]
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-10-01] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 e1dexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e1d.inf_amd64_e64afe811c7e4662\e1d.sys [607400 2022-02-16] (Intel Corporation -> Intel Corporation)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2025-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 FocusritePCIeSwRoot; C:\WINDOWS\System32\drivers\FocusritePCIeSwRoot.sys [106208 2023-11-27] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUsb; C:\WINDOWS\System32\drivers\FocusriteUsb.sys [170312 2023-11-27] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUsbAudio; C:\WINDOWS\System32\drivers\FocusriteUsbAudio.sys [109896 2023-11-27] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUsbSwRoot; C:\WINDOWS\System32\drivers\FocusriteUsbSwRoot.sys [112968 2023-11-27] (Focusrite Audio Engineering Ltd -> Focusrite Audio Engineering Ltd.)
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-15] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 Hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2019-04-02] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
S3 HidHide; C:\WINDOWS\System32\drivers\HidHide.sys [66584 2022-06-27] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2024-09-18] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-10-24] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2024-09-18] (Logitech Inc -> Logitech)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [232024 2025-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2025-01-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\DRIVERS\farflt.sys [201280 2025-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [80448 2025-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2025-01-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [189776 2025-01-12] (Malwarebytes Inc. -> Malwarebytes)
R3 Nahimic_Mirroring; C:\WINDOWS\System32\drivers\Nahimic_Mirroring.sys [85616 2021-08-13] (A-Volute -> Windows (R) Win 7 DDK provider)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [246200 2024-10-10] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [256520 2024-10-10] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1051944 2024-10-10] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [195560 2024-10-10] (Oracle America, Inc. -> Oracle and/or its affiliates)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
U4 MsSecFlt; no ImagePath
U4 Sense; no ImagePath
U4 SgrmAgent; no ImagePath
U4 SgrmBroker; no ImagePath
U4 WdBoot; no ImagePath
U4 WdFilter; no ImagePath
U4 WdNisDrv; no ImagePath
U4 WdNisSvc; no ImagePath
U2 WinDefend; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-12 19:52 - 2025-01-12 19:53 - 000000000 ____D C:\FRST
2025-01-12 19:52 - 2025-01-12 19:52 - 002403328 _____ (Farbar) C:\Users\Schuuba\Desktop\FRST64.exe
2025-01-12 19:32 - 2025-01-12 19:32 - 000189776 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2025-01-12 19:32 - 2025-01-12 19:32 - 000000000 ____D C:\Users\Schuuba\AppData\LocalLow\IGDump
2025-01-12 11:15 - 2025-01-12 19:47 - 000000000 ____D C:\Users\Schuuba\AppData\Local\Malwarebytes
2025-01-12 11:15 - 2025-01-12 11:15 - 000002053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2025-01-12 11:15 - 2025-01-12 11:15 - 000002041 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2025-01-12 11:14 - 2025-01-12 11:14 - 002833136 _____ (Malwarebytes) C:\Users\Schuuba\Desktop\MBSetup.exe
2025-01-12 11:14 - 2025-01-12 11:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2025-01-12 11:14 - 2025-01-12 11:14 - 000000000 ____D C:\Program Files\Malwarebytes
2025-01-11 23:31 - 2025-01-11 23:31 - 000000599 _____ C:\Users\Schuuba\Desktop\List.txt
2025-01-11 23:31 - 2018-05-22 15:21 - 000000379 _____ C:\Users\Schuuba\Desktop\gpedit-enabler.bat
2025-01-11 23:30 - 2025-01-11 23:30 - 000876101 _____ C:\Users\Schuuba\Downloads\add_gpedit_msc.zip
2025-01-11 23:30 - 2025-01-11 23:30 - 000707354 _____ C:\WINDOWS\unins001.exe
2025-01-11 23:30 - 2025-01-11 23:30 - 000001540 _____ C:\WINDOWS\unins001.dat
2025-01-11 23:30 - 2025-01-11 23:30 - 000000000 ____D C:\WINDOWS\SysWOW64\GPBAK
2025-01-11 23:30 - 2008-04-14 02:11 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2025-01-11 23:30 - 2001-08-23 13:00 - 000034871 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2025-01-11 23:09 - 2025-01-11 23:10 - 000008377 _____ C:\Users\Schuuba\Desktop\Windows Registry Editor Version 5.0.REG
2025-01-11 22:56 - 2025-01-11 22:57 - 000008369 _____ C:\Users\Schuuba\Desktop\defenable.reg
2025-01-11 22:55 - 2025-01-12 19:31 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2025-01-11 22:51 - 2025-01-11 23:39 - 000000000 ____D C:\WINDOWS\pss
2025-01-11 22:21 - 2025-01-11 23:11 - 000000000 ____D C:\Users\Schuuba\AppData\Local\D3DSCache
2025-01-11 22:15 - 2025-01-11 22:15 - 000254224 _____ (Gen Digital Inc.) C:\Users\Schuuba\Downloads\3cc0836d-69ed-4a18-bb43-a8eab4fd8ce3.tmp
2025-01-11 21:52 - 2025-01-11 22:11 - 000000000 ____D C:\$Windows.~BT
2025-01-11 21:52 - 2025-01-11 22:08 - 000000000 ___HD C:\$SysReset
2025-01-11 17:37 - 2025-01-11 17:37 - 000000000 ____D C:\Users\Schuuba\Desktop\Mafia_II_Čeština
2025-01-11 17:37 - 2024-06-14 07:11 - 386667480 _____ C:\Users\Schuuba\Desktop\Mafia_II_Čeština.rar
2025-01-11 17:34 - 2025-01-11 21:41 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2025-01-11 17:34 - 2025-01-11 17:34 - 000000915 _____ C:\Users\Schuuba\Desktop\launcher – zástupce.lnk
2025-01-11 17:30 - 2025-01-11 17:30 - 000000000 ____D C:\Users\Daniel\AppData\Local\AVG
2025-01-11 16:58 - 2025-01-11 16:58 - 000000000 ___HD C:\$AV_AVG
2025-01-11 16:58 - 2025-01-11 16:58 - 000000000 ____D C:\Users\Schuuba\AppData\Local\SKIDROW
2025-01-11 16:58 - 2025-01-11 16:58 - 000000000 ____D C:\Users\Schuuba\AppData\Local\2K Games
2025-01-11 16:57 - 2025-01-11 23:13 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\AVG
2025-01-11 16:57 - 2025-01-11 23:13 - 000000000 ____D C:\Users\Schuuba\AppData\Local\AVG
2025-01-11 16:57 - 2025-01-11 16:57 - 000002362 _____ C:\Users\Public\Desktop\AVG Secure Browser.lnk
2025-01-11 16:56 - 2025-01-11 16:56 - 000000000 ____D C:\Users\Schuuba\Desktop\Mafia II čeština 100% funkční - deadman93
2025-01-11 16:55 - 2025-01-12 11:15 - 000000000 ____D C:\WINDOWS\ELAMBKUP
2025-01-11 16:54 - 2025-01-11 23:14 - 000000000 ____D C:\ProgramData\AVG
2025-01-11 16:54 - 2025-01-11 16:54 - 000254224 _____ (Gen Digital Inc.) C:\Users\Schuuba\Desktop\avg_antivirus_free_setup.exe
2025-01-11 16:16 - 2025-01-11 16:16 - 000000270 __RSH C:\ProgramData\ntuser.pol
2025-01-11 16:14 - 2025-01-11 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mafia II
2025-01-11 15:59 - 2011-07-07 20:51 - 001789801 _____ (2K Games ) C:\Users\Schuuba\Desktop\setup.exe
2025-01-11 15:59 - 2011-07-07 17:16 - 538418619 _____ C:\Users\Schuuba\Desktop\Setup-2.bin
2025-01-11 15:56 - 2025-01-11 16:58 - 000000000 ____D C:\Users\Schuuba\AppData\Local\Updates
2025-01-11 15:56 - 2025-01-11 15:56 - 000014544 _____ (OpenLibSys.org) C:\WINDOWS\system32\WinRing0x64.sys
2025-01-11 15:55 - 2025-01-11 15:55 - 001207319 _____ C:\WINDOWS\unins000.exe
2025-01-11 15:55 - 2025-01-11 15:55 - 000010836 _____ C:\WINDOWS\unins000.dat
2025-01-11 15:55 - 2025-01-11 15:55 - 000001396 _____ C:\AiOLog.txt
2025-01-11 15:55 - 2025-01-11 15:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2025-01-11 15:55 - 2017-04-01 20:44 - 003450616 _____ (Red Hat) C:\WINDOWS\system32\cygwin1.dll
2025-01-11 15:55 - 2017-01-26 07:25 - 001265664 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libeay32.dll
2025-01-11 15:55 - 2017-01-26 07:25 - 000274944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\ssleay32.dll
2025-01-11 15:55 - 2017-01-26 07:25 - 000274944 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\WINDOWS\system32\libssl32.dll
2025-01-11 15:55 - 2015-07-10 11:51 - 000456008 _____ (AutoIt Team) C:\WINDOWS\system32\autoitx3.dll
2025-01-11 15:55 - 2014-01-31 03:14 - 001055676 _____ (Free Software Foundation) C:\WINDOWS\system32\libiconv2.dll
2025-01-11 15:55 - 2014-01-25 14:30 - 000131072 _____ (Sereby Corporation) C:\WINDOWS\system32\AiORuntimes.dll
2025-01-11 15:55 - 2012-06-14 15:36 - 000107520 _____ C:\WINDOWS\system32\zlib1.dll
2025-01-11 15:55 - 2012-04-03 17:11 - 000138752 _____ C:\WINDOWS\system32\libpng15.dll
2025-01-11 15:55 - 2011-10-12 04:09 - 004033440 _____ (Intel Corporation) C:\WINDOWS\system32\libmmd.dll
2025-01-11 15:55 - 2011-10-01 09:16 - 000445016 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2025-01-11 15:55 - 2011-10-01 09:16 - 000109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\openal32.dll
2025-01-11 15:55 - 2011-01-12 14:36 - 001054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71u.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71DEU.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71ITA.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71FRA.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71ESP.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71ENU.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71KOR.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71JPN.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71CHT.dll
2025-01-11 15:55 - 2011-01-12 14:25 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71CHS.dll
2025-01-11 15:55 - 2011-01-12 14:19 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2025-01-11 15:55 - 2011-01-12 13:53 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl71.dll
2025-01-11 15:55 - 2008-08-26 07:40 - 000162304 _____ C:\WINDOWS\system32\libpng13.dll
2025-01-11 15:55 - 2007-02-01 23:13 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp71.dll
2025-01-11 15:55 - 2007-02-01 20:11 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr71.dll
2025-01-11 15:55 - 2007-01-30 23:04 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr70.dll
2025-01-11 15:55 - 2006-08-26 01:28 - 001017344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70u.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70ITA.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70FRA.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70ESP.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70DEU.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70ENU.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70KOR.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70JPN.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70CHT.dll
2025-01-11 15:55 - 2006-08-26 01:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70CHS.dll
2025-01-11 15:55 - 2006-08-26 01:07 - 001024000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70.dll
2025-01-11 15:55 - 2006-08-26 00:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\atl70.dll
2025-01-11 15:55 - 2005-05-06 14:52 - 000103424 _____ (GNU <www.gnu.org>) C:\WINDOWS\system32\libintl3.dll
2025-01-11 15:55 - 2005-01-20 20:25 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvci70.dll
2025-01-11 15:55 - 2002-01-05 06:40 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp70.dll
2025-01-11 15:55 - 1996-01-12 04:00 - 000722192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vb40032.dll
2025-01-11 15:53 - 2025-01-11 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2025-01-11 15:53 - 2025-01-11 15:53 - 000114344 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2025-01-11 15:53 - 2025-01-11 15:53 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Sun
2025-01-10 20:58 - 2025-01-10 20:58 - 000135400 _____ C:\Users\Daniel\Downloads\Der deutsche Realismus-studenti.pdf
2025-01-10 20:57 - 2025-01-10 20:57 - 000106593 _____ C:\Users\Daniel\Downloads\Deutsche Romantik.pdf
2025-01-09 22:03 - 2025-01-09 22:03 - 005534526 _____ C:\Users\Schuuba\Downloads\Způsob komunikace PON (2).pptx
2025-01-09 22:03 - 2025-01-09 22:03 - 004900119 _____ C:\Users\Schuuba\Downloads\TWDM PON (2).pptx
2025-01-09 21:25 - 2025-01-09 09:28 - 554936556 _____ C:\Users\Schuuba\Desktop\RenderNumeroJenda.mp4
2025-01-07 20:01 - 2025-01-07 20:01 - 013460336 _____ C:\Users\Schuuba\Downloads\Firecircle.zip
2025-01-07 19:54 - 2019-12-25 22:41 - 014551916 _____ C:\Users\Schuuba\Desktop\Heavy4950_64.dll
2025-01-07 19:53 - 2025-01-07 19:53 - 026809049 _____ C:\Users\Schuuba\Downloads\Heavy4950.zip
2025-01-07 19:51 - 2025-01-07 19:51 - 001177312 _____ C:\Users\Schuuba\Downloads\Poulin_Le456_v1_1b.zip
2025-01-07 19:51 - 2011-09-01 17:43 - 001545728 _____ C:\Users\Schuuba\Desktop\Poulin_Le456_v1_1b.dll
2025-01-07 18:40 - 2025-01-07 18:40 - 005536204 _____ C:\Users\Schuuba\Downloads\York Audio MES 212 V30 Limited v1.01.zip
2025-01-07 10:20 - 2025-01-07 10:20 - 038162056 _____ C:\Users\Daniel\Downloads\Brno - seminář.pptx
2025-01-06 10:23 - 2025-01-06 10:23 - 000202979 _____ C:\Users\Daniel\Downloads\Lit.statnice.zip
2025-01-06 09:49 - 2025-01-06 09:50 - 000050799 _____ C:\Users\Daniel\Downloads\Seminář I.pdf
2025-01-05 19:23 - 2025-01-05 19:24 - 375717695 _____ C:\Users\Schuuba\Downloads\20250105_141120 (1).mp4
2025-01-05 19:22 - 2025-01-05 19:25 - 243840521 _____ C:\Users\Schuuba\Downloads\20250105_141120.mp4
2025-01-03 11:33 - 2025-01-03 11:33 - 032988895 _____ C:\Users\Schuuba\Downloads\Video.mov
2024-12-30 11:01 - 2024-12-30 11:01 - 001503745 _____ C:\Users\Schuuba\Downloads\valka_mix.mp3.asd
2024-12-28 12:42 - 2024-12-28 12:42 - 000017116 _____ C:\Users\Schuuba\Downloads\Band Tone IR - Death - Empty Words - Symbolic.zip
2024-12-26 20:35 - 2024-12-26 20:35 - 000098939 _____ C:\Users\Schuuba\Downloads\Maturitní práce (1).dotx
2024-12-26 20:35 - 2024-12-26 20:35 - 000098939 _____ C:\Users\Schuuba\Desktop\Maturitní práce (1).dotx
2024-12-26 12:06 - 2024-12-26 12:06 - 000000797 _____ C:\Users\Schuuba\Desktop\Fortin NTS Suite (x64).lnk
2024-12-26 10:53 - 2024-12-26 10:53 - 001924148 _____ C:\Users\Schuuba\Downloads\2006-citroen-berlingo-multispace-uk (1).pdf
2024-12-25 23:49 - 2024-12-25 23:49 - 005905888 _____ C:\Users\Schuuba\Downloads\destroy - neškodný joe (demo) (1).m4a
2024-12-22 22:13 - 2024-12-22 22:13 - 000036176 _____ C:\Users\Daniel\Downloads\zápisník-absence-a-známek.xlsx
2024-12-19 06:38 - 2024-12-19 06:38 - 020271473 _____ C:\Users\Schuuba\Downloads\IMG_1953.mp4
2024-12-19 06:38 - 2024-12-19 06:38 - 015024068 _____ C:\Users\Schuuba\Downloads\IMG_1957.mp4
2024-12-18 20:31 - 2024-12-18 20:32 - 044250990 _____ C:\Users\Schuuba\Downloads\IMG_1947.mp4
2024-12-18 20:30 - 2024-12-18 20:31 - 024260569 _____ C:\Users\Schuuba\Downloads\IMG_1952.mp4
2024-12-18 20:30 - 2024-12-18 20:31 - 017649838 _____ C:\Users\Schuuba\Downloads\IMG_1951.mp4
2024-12-18 20:30 - 2024-12-18 20:30 - 025446634 _____ C:\Users\Schuuba\Downloads\IMG_1950.mp4
2024-12-18 20:30 - 2024-12-18 20:30 - 022507305 _____ C:\Users\Schuuba\Downloads\IMG_1949.mp4
2024-12-18 20:30 - 2024-12-18 20:30 - 019388482 _____ C:\Users\Schuuba\Downloads\IMG_1948.mp4
2024-12-17 21:47 - 2024-12-17 21:47 - 000000008 _____ C:\Users\Schuuba\Documents\natka_fav.txt
2024-12-17 20:32 - 2024-12-17 20:32 - 000098939 _____ C:\Users\Schuuba\Downloads\Maturitní práce.dotx
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-12 19:47 - 2023-07-29 10:21 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-12 19:38 - 2023-07-29 10:23 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2025-01-12 19:38 - 2023-07-29 10:23 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2025-01-12 19:38 - 2023-07-29 10:20 - 000000000 ____D C:\WINDOWS\INF
2025-01-12 19:38 - 2023-07-29 09:39 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-12 19:32 - 2023-08-24 18:53 - 000000000 ____D C:\Users\Schuuba\AppData\Local\LGHUB
2025-01-12 19:32 - 2023-07-29 09:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-12 19:32 - 2023-07-29 09:29 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-12 19:32 - 2021-02-13 17:52 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-12 19:31 - 2023-07-29 10:18 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2025-01-12 19:04 - 2023-07-29 09:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-01-12 11:06 - 2023-08-11 21:13 - 000000000 ____D C:\Users\Schuuba\AppData\Local\CrashDumps
2025-01-12 10:48 - 2023-07-29 10:18 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-01-11 23:45 - 2023-07-29 10:41 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2025-01-11 23:45 - 2023-07-29 10:41 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-01-11 23:31 - 2024-05-14 20:56 - 000780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2025-01-11 23:31 - 2023-11-14 20:53 - 000207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2025-01-11 23:31 - 2023-11-14 20:53 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2025-01-11 23:31 - 2023-11-14 20:53 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2025-01-11 23:30 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2025-01-11 23:10 - 2023-12-30 11:29 - 000000000 ____D C:\ProgramData\PACE
2025-01-11 23:02 - 2023-08-01 09:49 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-01-11 22:48 - 2023-07-29 09:41 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\MMC
2025-01-11 22:18 - 2023-08-06 10:41 - 000000000 ____D C:\Users\Schuuba\AppData\Local\LogMeIn Hamachi
2025-01-11 22:11 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\system32\winevt
2025-01-11 22:09 - 2024-11-29 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Groove Agent SE 5
2025-01-11 22:09 - 2024-11-29 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg HALion Sonic
2025-01-11 22:09 - 2024-11-29 12:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Cubase LE AI Elements 13
2025-01-11 22:09 - 2024-11-29 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Activation Manager
2025-01-11 22:09 - 2024-11-29 11:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steinberg Library Manager
2025-01-11 22:09 - 2024-09-20 13:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NeuralAmpModeler
2025-01-11 22:09 - 2024-07-22 08:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2025-01-11 22:09 - 2024-06-09 19:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winaero Tweaker
2025-01-11 22:09 - 2024-04-28 20:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MuseScore 4
2025-01-11 22:09 - 2024-04-19 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2025-01-11 22:09 - 2024-01-02 17:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FabFilter
2025-01-11 22:09 - 2023-12-24 14:12 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2025-01-11 22:09 - 2023-12-17 12:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER (x64)
2025-01-11 22:09 - 2023-11-15 21:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TLauncher
2025-01-11 22:09 - 2023-11-03 21:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2025-01-11 22:09 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2025-01-11 22:09 - 2023-07-29 09:32 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Crypto
2025-01-11 22:09 - 2023-07-29 09:32 - 000000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Crypto
2025-01-11 22:09 - 2023-07-29 09:30 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Windows
2025-01-11 22:09 - 2023-07-29 09:30 - 000000000 ____D C:\Users\Schuuba
2025-01-11 22:09 - 2023-07-29 09:30 - 000000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows
2025-01-11 22:09 - 2023-07-29 09:30 - 000000000 ____D C:\Users\Daniel
2025-01-11 22:09 - 2023-05-28 16:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stellarium
2025-01-11 22:09 - 2023-05-09 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IK Multimedia
2025-01-11 22:09 - 2023-04-28 23:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProtonVPN
2025-01-11 22:09 - 2023-03-14 16:23 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prusa3D
2025-01-11 22:09 - 2023-02-12 19:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KiCad 6.0
2025-01-11 22:09 - 2022-12-06 19:53 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2025-01-11 22:09 - 2022-12-06 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2025-01-11 22:09 - 2022-11-09 17:48 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2025-01-11 22:09 - 2022-10-30 10:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2025-01-11 22:09 - 2022-10-26 20:59 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2025-01-11 22:09 - 2022-10-26 16:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2025-01-11 22:09 - 2022-10-24 15:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2025-01-11 22:09 - 2022-10-24 14:55 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-01-11 22:04 - 2022-10-24 14:43 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-01-11 22:01 - 2023-07-29 10:21 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2025-01-11 21:49 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-01-11 17:03 - 2023-07-29 09:38 - 000000000 ____D C:\Users\Schuuba\AppData\Local\Packages
2025-01-11 16:57 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-01-11 16:55 - 2023-10-28 12:50 - 000000000 ____D C:\Users\Schuuba\AppData\Local\ElevatedDiagnostics
2025-01-11 16:45 - 2023-07-29 10:21 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2025-01-11 16:44 - 2023-11-01 21:05 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\foobar2000
2025-01-11 16:34 - 2023-07-29 09:28 - 000438968 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-01-11 16:32 - 2024-07-11 21:29 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ___RD C:\WINDOWS\PrintDialog
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\SystemResources
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\system32\setup
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-01-11 16:32 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-01-11 16:25 - 2023-07-29 09:38 - 000000000 ____D C:\ProgramData\Packages
2025-01-11 16:24 - 2023-07-29 10:21 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-11 16:16 - 2023-09-21 12:29 - 000000000 ____D C:\Users\Daniel\AppData\Local\LGHUB
2025-01-11 16:16 - 2023-07-29 10:21 - 000000000 ____D C:\Program Files\Windows Defender
2025-01-11 16:00 - 2023-11-08 21:19 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2025-01-11 15:59 - 2021-02-20 13:22 - 000000000 ____D C:\temp
2025-01-11 15:55 - 2023-07-29 10:21 - 000000000 ____D C:\WINDOWS\System
2025-01-11 15:54 - 2023-08-05 10:47 - 000000000 ____D C:\Program Files\Java
2025-01-11 15:54 - 2023-07-29 09:48 - 000000000 ____D C:\ProgramData\Package Cache
2025-01-10 20:40 - 2023-07-29 13:10 - 000000000 ____D C:\Users\Daniel\AppData\Local\Packages
2025-01-10 20:29 - 2023-08-31 16:41 - 000000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Word
2025-01-10 17:50 - 2023-07-30 21:48 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2025-01-10 08:21 - 2023-07-29 09:44 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-09 22:23 - 2024-01-02 21:50 - 000000000 ___RD C:\Users\Schuuba\Desktop\jam Project
2025-01-09 22:08 - 2023-07-30 22:12 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Word
2025-01-09 13:57 - 2023-07-30 22:05 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-01-08 21:37 - 2023-07-31 09:19 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Teams
2025-01-08 20:29 - 2023-11-03 21:14 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Mp3tag
2025-01-07 19:04 - 2024-03-23 13:52 - 000000000 ____D C:\Users\Schuuba\Documents\XLN Online Installer
2025-01-07 08:23 - 2023-07-30 22:12 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Microsoft\Office
2025-01-07 08:20 - 2024-10-23 22:07 - 000000000 ____D C:\Users\Schuuba\Desktop\MATURITNÍ PROJEKT
2025-01-06 18:39 - 2023-08-03 22:59 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2025-01-03 18:12 - 2023-09-21 12:29 - 000000000 ____D C:\Users\Daniel\AppData\Roaming\lghub
2025-01-03 18:12 - 2023-09-21 12:29 - 000000000 ____D C:\Users\Daniel\AppData\Roaming\G HUB
2024-12-30 10:59 - 2024-03-23 14:28 - 000000000 ____D C:\Users\Schuuba\Documents\XLN Cloud Sync Logs
2024-12-28 19:06 - 2023-07-30 20:11 - 000000048 _____ C:\Users\Schuuba\AppData\Roaming\msregsvv.dll
2024-12-28 19:06 - 2023-07-30 20:11 - 000000048 _____ C:\ProgramData\autobk.inc
2024-12-26 12:11 - 2023-12-30 11:33 - 000000000 ____D C:\Users\Schuuba\AppData\Roaming\Neural DSP
2024-12-26 12:06 - 2023-12-30 11:25 - 000000000 ____D C:\ProgramData\Neural DSP
==================== Files in the root of some directories ========
2024-01-07 19:15 - 2024-01-07 19:15 - 000000072 _____ () C:\Users\Schuuba\AppData\Roaming\beermpauth
2023-07-30 20:11 - 2024-12-28 19:06 - 000000048 _____ () C:\Users\Schuuba\AppData\Roaming\msregsvv.dll
2023-08-02 08:55 - 2023-08-02 08:55 - 000000017 _____ () C:\Users\Schuuba\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2025
Ran by Schuuba (12-01-2025 19:53:44)
Running from C:\Users\Schuuba\AppData\Local\Temp\scoped_dir11368_274785210
Microsoft Windows 10 Home Version 22H2 19045.5131 (X64) (2023-07-29 08:37:39)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1996945063-2393557616-2674851489-500 - Administrator - Disabled)
Daniel (S-1-5-21-1996945063-2393557616-2674851489-1010 - Limited - Enabled) => C:\Users\Daniel
DefaultAccount (S-1-5-21-1996945063-2393557616-2674851489-503 - Limited - Disabled)
Guest (S-1-5-21-1996945063-2393557616-2674851489-501 - Limited - Disabled)
Schuuba (S-1-5-21-1996945063-2393557616-2674851489-1002 - Administrator - Enabled) => C:\Users\Schuuba
WDAGUtilityAccount (S-1-5-21-1996945063-2393557616-2674851489-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Ableton Live 11 Lite (HKLM\...\{3CD90CC2-E955-4C8C-8BA3-0E11FEABDB4A}) (Version: 11.0.0.0 - Ableton) Hidden
Ableton Live 11 Lite (HKLM-x32\...\{aff3a42a-12b4-4572-9857-afe1e4edd920}) (Version: 11.0.0.0 - Ableton)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation)
Amped - Roots version 2.0.0 (HKLM\...\Amped - Roots_is1) (Version: 2.0.0 - )
Arduino IDE 2.3.2 (HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\459fc68c-eb53-59f8-8957-9913bc627af3) (Version: 2.3.2 - Arduino SA)
aria2 (HKLM\...\{7BE9CDD9-BC07-44A3-8ED3-41CBC7F84FC5}) (Version: 1.37.0 - Steinberg Media Technologies GmbH)
Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version: - Ubisoft)
Audacity 3.3.3 (HKLM\...\Audacity_is1) (Version: 3.3.3 - Audacity Team)
AVG Secure Browser (HKLM-x32\...\AVG Secure Browser) (Version: 131.0.27760.140 - Gen Digital Inc.)
AVG Update Helper (HKLM-x32\...\{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5}) (Version: 1.8.1693.6 - AVG Technologies) Hidden
balenaEtcher 1.18.11 (HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.18.11 - Balena Ltd.)
Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.4.504 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Blackmagic RAW Common Components (HKLM\...\{F4268583-A17F-43C8-AAAE-57CCA111273C}) (Version: 3.6.1 - Blackmagic Design)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cabinetron version 1.0.1 (HKLM-x32\...\TBTech_Cabinetron_Programs_is1) (Version: 1.0.1 - TBTech Co. Ltd.)
City Car Driving v.1.5.9.2 build 27506 (HKLM-x32\...\City Car Driving_is1) (Version: - )
DaVinci Resolve Control Panels (HKLM\...\{D1ACF467-9FB4-45DA-942F-A19452E70A3F}) (Version: 2.0.7.0 - Blackmagic Design)
Discord (HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Discord) (Version: 1.0.9015 - Discord Inc.)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.253.0.5766 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{86d1aaaf-ecb8-4d85-be92-7db221c394d7}) (Version: 13.253.0.5766 - Electronic Arts)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.12.10.1326 - Steinberg Media Technologies GmbH)
Epic Games Launcher (HKLM-x32\...\{AEB35C6C-B6D4-4AA0-8452-DE699737B5F6}) (Version: 1.3.82.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.)
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 11.0.3 - Poikosoft)
FabFilter Total Bundle (HKLM\...\FabFilter Total Bundle_is1) (Version: 2018.11.30 - FabFilter)
Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.15 - Blackmagic Design)
Focusrite Audio Drivers 4.119.13.33 (HKLM\...\Focusrite Audio Drivers_is1) (Version: 4.119.13.33 - Focusrite Audio Engineering, Ltd.)
Focusrite Control 3.17.0.179 (HKLM\...\Focusrite Control_is1) (Version: 3.17.0.179 - Focusrite Audio Engineering Ltd.)
foobar2000 v1.6 (HKLM-x32\...\foobar2000) (Version: 1.6 - Peter Pawlowski)
Fortin NTS Suite (HKLM\...\{967FFE2C-BE3D-45EF-8AEC-5D259E9CA4DE}) (Version: 2.0.1 - Neural DSP)
Gaming Keyboard Driver (HKLM-x32\...\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}) (Version: 1.0 - Senbiz)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 102.0.2.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.265 - Google LLC)
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
Hamachi (HKLM-x32\...\{C00E2143-38F2-49BA-AB8A-03F22F02F0A4}) (Version: 2.3.0.111 - LogMeIn, Inc.) Hidden
Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.3.0.111 - LogMeIn, Inc.)
Icon Viewer 3.5 (HKLM-x32\...\Icon Viewer 3.5_is1) (Version: - )
IK Product Manager (HKLM\...\a401809f-3509-5ed7-a6dc-34dc618bf372) (Version: 1.1.4 - IK Multimedia)
Java 8 Update 251 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Java(TM) SE Development Kit 21.0.2 (64-bit) (HKLM\...\{4279F87C-3082-5077-A915-E01597628FDF}) (Version: 21.0.2.0 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2024.9.649333 - Logitech)
Mafia II version 1.0 (HKLM-x32\...\{4F5FB47E-14DE-45B4-85E3-11CD5E497KA3}_is1) (Version: 1.0 - 2K Games)
Malwarebytes version 5.2.4.157 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.4.157 - Malwarebytes)
MediaHuman YouTube to MP3 Converter 3.9.9.86 (HKLM-x32\...\MediaHuman YouTube to MP3 Converter_is1) (Version: 3.9.9.86 - MediaHuman)
Mesa Boogie Mark IIC+ Suite (HKLM\...\{6A03BA12-275B-47B7-B722-FE30D5BE2F9D}) (Version: 1.0.0 - Neural DSP)
Metal Area version 1.0 (HKLM\...\FUDTSO4FG_is1) (Version: 1.0 - )
Microsoft .NET Host - 6.0.9 (x64) (HKLM\...\{C30ABA3F-32C0-43D1-B3B8-9AEFD58A15D9}) (Version: 48.39.47157 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.9 (x64) (HKLM\...\{FD10B803-97FD-4867-9753-8784BC35D2F8}) (Version: 48.39.47157 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.9 (x64) (HKLM\...\{0B4F742D-2D47-4E95-B756-402822D31C48}) (Version: 48.39.47157 - Microsoft Corporation) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.18324.20168 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.112 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.112 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.232.1118.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams classic (HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Teams) (Version: 1.7.00.3653 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version: - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.9 (x64) (HKLM\...\{C1CD2FC1-92E6-4DE2-89D8-6D309881856F}) (Version: 48.39.47171 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.9 (x64) (HKLM-x32\...\{569b351b-451b-48db-a2c7-7beb63411666}) (Version: 6.0.9.31620 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{A26EF561-5945-46FD-8094-FA34E44D460F}) (Version: 2.0.0.0 - Mojang)
ML Drums (HKLM\...\{A47EDF08-D517-4CD1-B329-E78C9D406B9A}) (Version: 2.3.0 - ML Sound Lab)
MODO BASS 2 version 2.0.2 (HKLM\...\{59B9A41D-B7B7-4667-9FD2-61736EEA4D46}_is1) (Version: 2.0.2 - IK Multimedia)
Mp3tag v3.23 (HKLM\...\Mp3tag) (Version: 3.23 - Florian Heidenreich)
MSVCRT Redists (HKLM\...\{52116C70-79F9-11E6-9541-BB95F5A309BD}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MuseScore 4 (HKLM\...\{649E6B31-1D3A-4D0C-935B-5CC90F29BEC3}) (Version: 4.2.1.240230937 - MuseScore BVBA and Others)
NeuralAmpModeler version 0.7.9 (HKLM\...\NeuralAmpModeler_is1) (Version: 0.7.9 - MANUFACTURER)
Newgrounds Player (HKLM-x32\...\{B9735123-2823-49F8-8264-372895D39702}) (Version: 1.0.0 - Newgrounds)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.412 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.412 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 30.0.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.18324.20092 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.18324.20092 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.18324.20168 - Microsoft Corporation) Hidden
Opera GX Stable 114.0.5282.233 (HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Opera GX 114.0.5282.233) (Version: 114.0.5282.233 - Opera Software)
Opera GX Stable 114.0.5282.248 (HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\...\Opera GX 114.0.5282.248) (Version: 114.0.5282.248 - Opera Software)
Oracle VirtualBox 7.1.4 (HKLM\...\{B7EE9AB2-4188-4B5F-8499-43114E7AD7DA}) (Version: 7.1.4 - Oracle and/or its affiliates)
PACE License Support Win64 (HKLM\...\{AE2ED717-4D24-4abd-8357-B7E86353113E}) (Version: 5.9.0.4455 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{AE2ED717-4D24-4abd-8357-B7E86353113E}) (Version: 5.9.0.4455 - PACE Anti-Piracy, Inc.)
paint.net (HKLM\...\{A89BF790-0679-403A-9CC7-4015DBF4FEBA}) (Version: 5.0.13 - dotPDN LLC)
Rally Championship Xtreme (HKLM-x32\...\{75E578B8-848F-4FCE-82B3-B08AB2A561D2}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
REAPER (x64) (HKLM\...\REAPER) (Version: 7.07 - Cockos Incorporated)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.86.1893 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.3.0.1 - Rockstar Games)
SmartScript (HKLM\...\{smartscript}}_is1) (Version: 4.9.2 - WAGO Kontakttechnik GmbH & Co. KG)
Softube Central 1.10.22 (HKLM\...\b89c234c-07b9-5da2-8d04-7fc5db1017f4) (Version: 1.10.22 - Softube AB)
Softube Installer Helper (HKLM\...\Softube Installer Helper) (Version: 2.5.75 - Softube AB)
Softube Marshall Silver Jubilee 2555 (HKLM\...\Softube Marshall Silver Jubilee 2555) (Version: 2.5.71 - Softube AB)
Steinberg Activation Manager (HKLM\...\{0224CA8C-FD43-4397-94CE-319B9471016A}) (Version: 1.5.3 - Steinberg Media Technologies GmbH)
Steinberg built-in ASIO Driver 64bit (HKLM\...\{DE26CB00-5D4F-40B4-BEF5-5FBFDC7DCA52}) (Version: 1.0.8 - Steinberg Media Technologies GmbH)
Steinberg Cubase LE AI Elements 13 (HKLM\...\{57252705-A8C2-490D-8AB6-ED9424DA7FF0}) (Version: 13.0.50 - Steinberg Media Technologies GmbH)
Steinberg Download Assistant (HKLM-x32\...\Steinberg Download Assistant) (Version: 1.35.0 - Steinberg Media Technologies GmbH)
Steinberg Generic Lower Latency ASIO Driver 64bit (HKLM\...\{16D5A798-10BE-4FF3-BB71-54C012CD0D7D}) (Version: 1.0.30 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE 5 (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 5.2.10 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic 7 (HKLM\...\{69043884-EB60-4C9A-9C41-3303C319E1A8}) (Version: 7.1.20 - Steinberg Media Technologies GmbH)
Steinberg Install Assistant (HKLM\...\{2E7DF371-6034-4FC7-AE30-100AC21A1003}) (Version: 1.3.1 - Steinberg Media Technologies GmbH)
Steinberg Library Manager (HKLM\...\{AA78592A-F13C-4C8E-B849-7A398001FA7F}) (Version: 3.2.50 - Steinberg Media Technologies GmbH)
Steinberg MediaBay (HKLM\...\{9529D195-8127-42F5-BA54-8D862E941920}) (Version: 1.2.10 - Steinberg Media Technologies GmbH)
STL Ignite - Emissary Plug-In Bundle (HKLM\...\STL Ignite - Emissary Plug-In Bundle_is1) (Version: 2.0.2 - )
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: 11.25 - NCH Software)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.6.0.11166 - Microsoft Corporation)
TLauncher (HKLM-x32\...\TLauncher) (Version: 2.885 - TLauncher Inc.)
TSP_CODEC (HKLM-x32\...\{A90C03D6-08E1-4C59-B93B-6919A6C0AC19}) (Version: 1.00.0000 - Bytescribe)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 148.1.10975 - Ubisoft)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VEGAS Pro 14.0 (64-bit) (HKLM\...\{4C79D80F-79F9-11E6-8402-BB95F5A309BD}) (Version: 14.0.161 - VEGAS)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Winaero Tweaker (HKLM\...\Winaero Tweaker_is1) (Version: 1.62.1.0 - Winaero)
WinRAR 6.22 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
Wondershare NativePush(Build 1.0.0.7) (HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\Wondershare NativePush_is1) (Version: - )
XLN Online Installer (HKLM\...\XLN Online Installer Inno Setup ID_is1) (Version: - )
ZOOM Guitar Lab (HKLM\...\{E4F9E7CD-CB87-41DA-8435-1B097F65FDEF}) (Version: 7.3.0.130 - ZOOM Corporation)
Packages:
=========
@{Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe?ms-resource://Microsoft.Photos.MediaEngineDLC/Resources/PackageStoreName} -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-08-14] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_147.1.1079.0_x64__v10z8vjag6ke6 [2023-08-02] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.21.0_neutral__8xx8rvfyw5nnt [2023-10-29] (Instagram)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa [2023-09-09] (Apple Inc.) [Startup Task]
Metronom -> C:\Program Files\WindowsApps\12199Asparion.Metronom_3.0.4.0_x64__f89vgcf3qm37t [2023-08-19] (Asparion) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2023-08-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2023-08-24] (Microsoft Corporation) [MS Ad]
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2412.12001.0_x64__8wekyb3d8bbwe [2025-01-11] (Microsoft Corporation) [Startup Task]
Muse Hub -> C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6 [2024-05-31] (Muse) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-10-02] (NVIDIA Corp.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.16.3140.0_x64__8wekyb3d8bbwe [2023-07-29] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0 [2023-07-29] (Spotify AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm [2025-01-08] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1996945063-2393557616-2674851489-1002_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\Schuuba\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
CustomCLSID: HKU\S-1-5-21-1996945063-2393557616-2674851489-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Schuuba\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.28402\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1996945063-2393557616-2674851489-1002_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\Schuuba\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => D:\Program Files\EZ CD Audio Converter\ezcd64.dll [2022-09-23] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files\Mp3tag\Mp3tagShell64.dll [2023-11-03] (Florian Heidenreich -> Florian Heidenreich)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files\Mp3tag\Mp3tagShell64.dll [2023-11-03] (Florian Heidenreich -> Florian Heidenreich)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-01-12] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => D:\Program Files\EZ CD Audio Converter\ezcd64.dll [2022-09-23] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files\Mp3tag\Mp3tagShell64.dll [2023-11-03] (Florian Heidenreich -> Florian Heidenreich)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.232.1118.0003\FileSyncShell64.dll [2025-01-09] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\102.0.2.0\drivefsext.dll [2025-01-06] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2025-01-12] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-05-29] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [25640 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [70200 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [70712 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.trspch] => C:\Windows\SysWOW64\tssoft32.acm [9488 2001-05-08] (DSP GROUP, INC.) [File not signed]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] (Bandisoft -> )
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-07-12 11:38 - 2024-12-12 13:30 - 003865088 _____ (Microsoft Corporation) [File not signed] c:\windows\system32\spool\drivers\x64\3\printconfig.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\PACE:05B1219F832088EF [217]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho_64.dll => No File
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2024-12-07] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_251\bin\ssv.dll [2025-01-11] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_251\bin\jp2ssv.dll [2025-01-11] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho.dll => No File
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2024-12-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll => No File
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2025-01-10] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\sharepoint.com -> hxxps://voskh-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2023-07-29 10:21 - 2024-06-09 09:37 - 000001342 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 easeus.com
127.0.0.1 www.easeus.com
127.0.0.1 activation.easeus.com
127.0.0.1 easeus.com.cn
127.0.0.1 www.easeus.com.cn
127.0.0.1 track.easeus.com
127.0.0.1 track.easeus.com.cn
127.0.0.1 api.easeus.com
127.0.0.1 update.easeus.com
127.0.0.1 map2.hwcdn.net
127.0.0.1 easeusinfo.us-east-1.log.aliyuncs.com
127.0.0.1 aaa100cd68bbe03f3.awsglobalaccelerator.com
127.0.0.1 uompro.easeus.com
127.0.0.1 order.easeus.com
127.0.0.1 curl.haxx.se
127.0.0.1 buy.easeus.com
127.0.0.1 v2api-uoss.easeus.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\dotnet\
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\Control Panel\Desktop\\Wallpaper -> c:\users\schuuba\pictures\fotky - pantera+metallica\death_screambloodygore.png
HKU\S-1-5-21-1996945063-2393557616-2674851489-1010\Control Panel\Desktop\\Wallpaper -> C:\Users\Daniel\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\4696923372269219560\133810122643537218.jpg
DNS Servers: 1.1.1.1 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet 3: VirtualBox Host-Only Ethernet Adapter -> VBoxNetAdp6.sys
Ethernet 2: LogMeIn Hamachi Virtual Ethernet Adapter #2 -> Hamdrv.sys
Hamachi: LogMeIn Hamachi Virtual Ethernet Adapter -> Hamdrv.sys
Ethernet: Intel(R) Ethernet Connection (7) I219-V -> e1d.sys
oracle_VBoxNetLwf: VirtualBox NDIS6 Bridged Networking Driver
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "VICTORY Gaming Keyboard"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_C80176CB6C1F9FACCB7AB6118B76EC29"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "GoogleDriveFS"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "Opera GX Browser Assistant"
HKU\S-1-5-21-1996945063-2393557616-2674851489-1002\...\StartupApproved\Run: => "EADM"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{D2E3E1EA-37E0-44B5-958E-A390E9EBD1F6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E0FE21E9-1825-4047-853E-F2855D1D670D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B821E964-599D-4135-9D05-BF41DECC724B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8F98EBF5-882D-4DD4-84C4-5CA216C6DA83}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.99.3403.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22D2359C-9022-4DBF-92DF-438EDA8F29C5}] => (Allow) D:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F39AC2D7-FAFD-45AD-B363-58913C8F3261}] => (Allow) D:\Program Files (x86)\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0DB8CF91-0EBF-4DFF-926F-667616C6A9EF}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FFA349C7-1383-4387-8C56-1E741FAE8AB3}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{9CBC0661-4953-41BD-AEE4-F703E5685C8E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{05454636-6ADA-455A-A3CF-402FC93697B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A1B4CBB6-359F-4F85-A628-47701BA2C748}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EC7C7A63-151C-4847-8F60-50AC6A02DE67}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3A4D6C95-46FA-4602-AC7F-192283A659B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6468694F-4ED2-4A33-A5A6-3B3736AB47A6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EFC76F09-0D52-4235-82F4-86CFC4706527}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D7E8F857-6538-4652-A4CC-9765D8E501AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{12366E7F-509E-461D-B70F-739CA8CBC2EF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{81ECA412-55BA-4788-8121-CB1FC27499CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.216.947.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9D9E2DF4-3941-4BB9-915C-97CB3777292A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{9E6537F4-11C0-4C5F-94DF-F4516870E58F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{2BFB9BAB-53BC-4B44-AFA3-3964889250F1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F9E3117F-B0F6-415A-A170-2C12BC442BF6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A86DD11E-CF9B-4AB3-800B-4E03F7BFA35D}D:\program files\ableton\live 11 lite\program\ableton live 11 lite.exe] => (Allow) D:\program files\ableton\live 11 lite\program\ableton live 11 lite.exe (Ableton AG -> Ableton)
FirewallRules: [UDP Query User{D9458224-8789-41D7-AE89-EE22F1F65D16}D:\program files\ableton\live 11 lite\program\ableton live 11 lite.exe] => (Allow) D:\program files\ableton\live 11 lite\program\ableton live 11 lite.exe (Ableton AG -> Ableton)
FirewallRules: [TCP Query User{511436FD-3A02-42C5-9497-45B96C08AF15}D:\program files (x86)\steam\steamapps\common\team fortress 2\hl2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\team fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [UDP Query User{0D2C6282-0945-4B12-8931-6C823DEA0448}D:\program files (x86)\steam\steamapps\common\team fortress 2\hl2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\team fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [{F6155C72-E614-4BFE-AEA8-4E94AA8D2591}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn Inc.)
FirewallRules: [{52DCFF52-46B3-4EC1-B5C6-4F65F0B75925}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn Inc.)
FirewallRules: [{B1BFA685-E26F-42BB-9871-005316AC7650}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn Inc.)
FirewallRules: [{F22D7AED-1C44-498D-A52F-C9233D4AE2F4}] => (Allow) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe (LogMeIn, Inc. -> LogMeIn Inc.)
FirewallRules: [TCP Query User{EC1D1394-44C3-441D-9D52-F70364302812}C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{00E3A5E5-A15B-4AC6-9855-73F72FA96C87}C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{2A4A4E1E-FBF1-4001-A4FA-CCAFFCB28049}] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [{717D8FAF-D609-4AD1-B221-6C58C835618C}] => (Block) C:\program files (x86)\minecraft launcher\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{14361509-5131-4282-9F6C-F94035200BC2}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{AE533446-F530-4F57-894F-F085DE656776}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{14612B18-37AD-4C87-BA08-83B3468B419E}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{DB95363D-94DA-448D-ADF5-9728B494039F}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{1AE9BC2A-229E-472A-9F33-679A858576FB}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [UDP Query User{32C6DC5B-9796-40F8-865C-A53CC296D7B8}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{4D148A51-8ADD-4935-87A3-E9855F579CA3}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{5C3D482F-094D-4946-88F4-3E4C8D70443D}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{77229BD0-2395-4E1C-8976-CFD0A97E99C8}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Magicka\Magicka.exe (Arrowhead Game Studios AB) [File not signed]
FirewallRules: [{F963BBDA-F9A3-44AE-BB60-7C0B83E91C98}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Magicka\Magicka.exe (Arrowhead Game Studios AB) [File not signed]
FirewallRules: [{AF2A1ADA-396E-414E-970C-17805532AB16}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{5A7851E8-F8EB-4AF5-8816-9F0EBB859D2F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{ACE0069D-1486-4F05-9B76-D4E080527640}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{785A3D3F-DBF2-4CFC-B79A-9346FC0924A7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{175E5C27-C45E-43DF-B041-A35801A15D45}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6783AAD3-32E4-4A96-B5B0-5EBAC8CC7290}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B51A6EAE-9334-432A-A2D6-42ACE776D477}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6F82B76F-26CE-4019-909D-DF010C00E0CF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.4.57066.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{B407F442-D567-4EBD-BEDB-AD6DB52160AE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe () [File not signed]
FirewallRules: [{9FE30AC3-1AA0-4FBB-836E-5280019972E0}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe () [File not signed]
FirewallRules: [TCP Query User{B168FF92-5153-4D14-8DA5-04A4EB78887D}D:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe () [File not signed]
FirewallRules: [UDP Query User{06BC8490-3354-4BD5-B014-A0FDB5FD3ECC}D:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\portal 2\portal2.exe () [File not signed]
FirewallRules: [TCP Query User{D1487C41-B396-4E06-A038-11E4DE4A038C}D:\program files (x86)\epic games\mudrunner\mudrunner.exe] => (Allow) D:\program files (x86)\epic games\mudrunner\mudrunner.exe (Focus Home Interactive) [File not signed]
FirewallRules: [UDP Query User{2EE4D81D-D51D-4BD2-A10C-F89CEF70B65C}D:\program files (x86)\epic games\mudrunner\mudrunner.exe] => (Allow) D:\program files (x86)\epic games\mudrunner\mudrunner.exe (Focus Home Interactive) [File not signed]
FirewallRules: [TCP Query User{8A01A473-6580-42A3-A04B-A4E033E9E552}D:\hry\city car driving\bin\win32\starter.exe] => (Allow) D:\hry\city car driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [UDP Query User{B6D44841-38E6-498E-A0D0-690AFAB5A36A}D:\hry\city car driving\bin\win32\starter.exe] => (Allow) D:\hry\city car driving\bin\win32\starter.exe (Forward Development) [File not signed]
FirewallRules: [TCP Query User{58B670F9-1C45-4753-A683-CF5FCD24685B}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{52489D96-0E36-4B12-A2BA-4DAC8F1A776B}C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-legacy\windows-x64\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{B7D4B3E7-4A22-4C7A-B263-CCAFB22CD48A}C:\users\schuuba\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\schuuba\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [UDP Query User{96756A72-2D5B-426C-BD5C-03A33A13F063}C:\users\schuuba\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe] => (Allow) C:\users\schuuba\appdata\roaming\.tlauncher\jvms\jre1.8.0_281\bin\javaw.exe
FirewallRules: [TCP Query User{FD8AA2AC-AF5A-4E1A-B9C1-26E4CF98F826}C:\users\schuuba\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\schuuba\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe
FirewallRules: [UDP Query User{4600329B-0AD7-493A-828B-806D1E4AF3A0}C:\users\schuuba\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe] => (Allow) C:\users\schuuba\appdata\roaming\.minecraft\runtime\jre-legacy\windows\jre-legacy\bin\javaw.exe
FirewallRules: [TCP Query User{5DCD8429-0B07-4465-B1C2-EF7376163865}C:\users\schuuba\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\schuuba\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [UDP Query User{29D3ED9F-D898-4872-B9E1-7D9CB7EBBB59}C:\users\schuuba\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\schuuba\appdata\roaming\.minecraft\runtime\java-runtime-gamma\windows\java-runtime-gamma\bin\javaw.exe
FirewallRules: [TCP Query User{1CA5BE34-CA39-49F1-9890-5EB75F7A2C93}C:\users\schuuba\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\schuuba\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{E553EA6D-081A-46BA-8773-E469ED521F01}C:\users\schuuba\appdata\local\programs\opera gx\opera.exe] => (Allow) C:\users\schuuba\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{36F3736B-A29D-40E8-9FBA-37D60522D1FB}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [UDP Query User{B4919675-5221-4661-9AFF-29B7DA202834}C:\program files\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [TCP Query User{3C54419E-B6D9-446D-8685-E9C69D299531}D:\program files\videolan\vlc\vlc.exe] => (Allow) D:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{920E554A-04BB-4E57-B5D4-D6805A0C3018}D:\program files\videolan\vlc\vlc.exe] => (Allow) D:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{7DA33E91-7269-43E2-82AF-DC7723C975B4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve Corp. -> Valve)
FirewallRules: [{4A71D642-6F36-41A6-8843-C5F2425630DF}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Half-Life\hl.exe (Valve Corp. -> Valve)
FirewallRules: [{A266484F-62CD-4E68-9A7B-3D2D48C82462}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0F131C53-B4B1-47BD-88CC-4B5CFD699FA2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F08D133E-1E51-43F5-8E28-D6E402AC8721}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{C98E73AC-DE45-400E-A30C-938FFEBD6BD1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{EEDA0840-C5C7-4D6C-84D6-A98104C5A673}] => (Allow) D:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe () [File not signed]
FirewallRules: [TCP Query User{AAA89815-B7A4-409C-B32E-8B50534A72C4}C:\users\daniel\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\daniel\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{20A2AFBB-29EA-4522-A9E5-A66A328DF7D1}C:\users\daniel\appdata\local\programs\opera gx\opera.exe] => (Block) C:\users\daniel\appdata\local\programs\opera gx\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{9E79A752-F683-4151-AE88-6736C967BDCA}D:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe () [File not signed]
FirewallRules: [UDP Query User{47BB1996-8265-48B9-8DDF-0455E708F94A}D:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\left 4 dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{6679C007-5E79-4842-B77C-17572ECDC78B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{825C8EE8-7B23-4E82-89ED-2BA6FA2DD333}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{A99CFA19-3F3C-4BF2-A183-AA44F7D71977}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{4A78EEEF-B1C1-4749-A9ED-4ED28333D901}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{C683672A-6D06-4CD9-9609-4603737F70C6}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{795CF02E-8D56-415B-BE44-35A90C2F42E5}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{B26736AE-D44A-4086-8E35-A64C0FF32F6F}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{C116FC99-2B85-49D2-9E9E-A5D6E01F268B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{43F6B1E5-5FCC-47FD-9033-7FD51B7BDA3D}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{9CC8971C-979C-4721-B6AC-BAB282143B35}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [{958BDAC7-4D18-4894-AFD5-55200D7A27A3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4CBAF08F-4F7F-4E46-94C4-ECA7B32FD4B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{A42CD492-E22B-419B-9E63-647902CC2245}D:\program files (x86)\steam\steamapps\common\scp containment breach multiplayer\game.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\scp containment breach multiplayer\game.exe () [File not signed]
FirewallRules: [UDP Query User{ABBB1F30-CB1F-412C-8F29-885B0F558261}D:\program files (x86)\steam\steamapps\common\scp containment breach multiplayer\game.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\scp containment breach multiplayer\game.exe () [File not signed]
FirewallRules: [TCP Query User{9AC57ABB-AE34-4272-B1E6-998064B7F9D7}C:\users\schuuba\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.9\mdns-discovery.exe] => (Allow) C:\users\schuuba\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.9\mdns-discovery.exe () [File not signed]
FirewallRules: [UDP Query User{BE126558-0196-4A64-9097-B3DE2F0DA777}C:\users\schuuba\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.9\mdns-discovery.exe] => (Allow) C:\users\schuuba\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.9\mdns-discovery.exe () [File not signed]
FirewallRules: [TCP Query User{F13E02A7-F556-4AD9-8CCE-4496960F7673}C:\users\schuuba\appdata\local\programs\arduino ide\arduino ide.exe] => (Allow) C:\users\schuuba\appdata\local\programs\arduino ide\arduino ide.exe (Arduino SA -> Arduino SA)
FirewallRules: [UDP Query User{1352747F-20FB-4578-B776-DFC13599C341}C:\users\schuuba\appdata\local\programs\arduino ide\arduino ide.exe] => (Allow) C:\users\schuuba\appdata\local\programs\arduino ide\arduino ide.exe (Arduino SA -> Arduino SA)
FirewallRules: [{C0C0775C-BEC3-4EDB-B42F-7E5A9A234D40}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{2757D353-0E9D-43BD-BACE-04D491920368}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{B1452D90-4591-46AC-BF58-80FB4A550A84}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{B20163CE-4169-462E-B91C-DDE830257447}] => (Allow) C:\Program Files\WindowsApps\Muse.MuseHub_1.0.2.800_x64__rb9pth70m6nz6\Muse.Service.exe (Musecy SM Ltd. -> Muse.Service)
FirewallRules: [{733439F4-28E0-4EBB-B1BC-216953EECAE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{F278022E-5FDD-4FDB-BB3D-E71A3EA02504}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{B0FA4AEF-3061-4398-A87C-AEED92ED0771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{F7E42BDA-C039-4BC1-BC58-D06879B45EFA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{583952F1-75CC-4475-A69F-0E5740A30442}] => (Allow) LPort=57209
FirewallRules: [{D7D24CCA-B6C7-47E9-AEC1-37ADF69F287A}] => (Allow) LPort=57210
FirewallRules: [{50E55D00-0377-44A8-8681-193B5C86A544}] => (Allow) LPort=57211
FirewallRules: [{05EDD882-44FF-44D7-8CF1-FAE707E70B7D}] => (Allow) LPort=57212
FirewallRules: [{45BC4E64-34E2-4C4F-831C-9F3359136060}] => (Allow) LPort=57213
FirewallRules: [{20F4143E-33CE-44F8-96B5-A4E929CC33B3}] => (Allow) LPort=57214
FirewallRules: [{99EDB9D0-0AF8-4FAE-83A7-A5498A843A32}] => (Allow) LPort=57215
FirewallRules: [{832EAC92-D289-4394-B9CA-41B8760CA3CA}] => (Allow) LPort=57216
FirewallRules: [{5514C379-CF25-471A-B66E-11CDB1B17899}] => (Allow) LPort=57217
FirewallRules: [{0D65B3B8-C76F-478A-B1A9-DC9475263A59}] => (Allow) LPort=57218
FirewallRules: [TCP Query User{6BE96033-96AB-41F8-8BA4-9444AA30D6D3}C:\users\schuuba\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Allow) C:\users\schuuba\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{FD5B1BBE-4A35-4F9F-9819-97A2F5E70037}C:\users\schuuba\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Allow) C:\users\schuuba\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [{AE606D84-45C1-4CDE-A6B9-79F6259BC5F9}] => (Allow) LPort=57209
FirewallRules: [{53D8505B-C4E1-4DD0-9D56-EBD352FF426C}] => (Allow) LPort=57210
FirewallRules: [{3617C029-A13C-4BE5-8A99-52E68171EBCD}] => (Allow) LPort=57211
FirewallRules: [{91620096-3655-43A8-813D-6C887C751F72}] => (Allow) LPort=57212
FirewallRules: [{32F2AE11-B6AA-4255-8242-0FACFFFADB7F}] => (Allow) LPort=57213
FirewallRules: [{2A7C2750-BC69-4957-ADDE-A1F85989AF36}] => (Allow) LPort=57214
FirewallRules: [{D15FD439-C781-4C57-8C0F-DB89D9D14016}] => (Allow) LPort=57215
FirewallRules: [{37CE252C-6E5D-4963-9DE5-6FB7648D44A3}] => (Allow) LPort=57216
FirewallRules: [{8BEC02C0-1AB3-40C1-9205-A10A5319E887}] => (Allow) LPort=57217
FirewallRules: [{87775870-F60C-47BA-BD8D-CF30089459CD}] => (Allow) LPort=57218
FirewallRules: [{B086B8F0-68DB-4B5E-8839-3F17E06D6FE8}] => (Allow) LPort=23007
FirewallRules: [{6AE71768-9A5E-486E-BEB9-98EEA4E82427}] => (Allow) LPort=23008
FirewallRules: [{C14EDFDA-8451-4EBD-8BB8-9284B4355F18}] => (Allow) LPort=33009
FirewallRules: [{6190BB2C-EC07-4396-9199-8C22A0E71ACA}] => (Allow) LPort=33010
FirewallRules: [{06F36B16-8ACE-4F61-8343-C63F54A8DCDB}] => (Allow) LPort=33011
FirewallRules: [{F5DAB815-7C15-4A58-BE78-8543DEEA4572}] => (Allow) LPort=43012
FirewallRules: [{639BC231-3D68-417B-B7FD-3A25095EAD81}] => (Allow) LPort=43013
FirewallRules: [{8E40CB18-0AC4-434A-8F9B-04EADE47E187}] => (Allow) LPort=53014
FirewallRules: [{649169AC-489B-4928-831B-36688F92CDFB}] => (Allow) LPort=53015
FirewallRules: [{37183C83-7D00-4D77-B8EF-137CAD54E9B1}] => (Allow) LPort=53016
FirewallRules: [{08914380-6C29-456D-BE1E-EC81FEEE435E}] => (Allow) LPort=23007
FirewallRules: [{1CECED45-8EDF-4BAD-8C4C-53F61CAED5E4}] => (Allow) LPort=23008
FirewallRules: [{C0A27FCD-2525-45A3-8FB7-A7244A572778}] => (Allow) LPort=33009
FirewallRules: [{C3C7418F-64BF-470D-BE39-5D63E060F43B}] => (Allow) LPort=33010
FirewallRules: [{651FEEB1-DDCF-47AF-9961-C4E90309C8D4}] => (Allow) LPort=33011
FirewallRules: [{20B7A6E3-4C0C-4CAF-BC99-BD9D3B727766}] => (Allow) LPort=43012
FirewallRules: [{8D01646E-F781-4F80-968B-E9C8BFEA7BE1}] => (Allow) LPort=43013
FirewallRules: [{4B1D46C7-914D-4BDC-B810-352E7DBDA9C3}] => (Allow) LPort=53014
FirewallRules: [{5A969602-EA5E-4564-B21F-979C4C41B47B}] => (Allow) LPort=53015
FirewallRules: [{AAA44474-6A49-4549-BB5E-EC2C4D089951}] => (Allow) LPort=53016
FirewallRules: [{01D0C67F-E8AD-4FE7-AC17-3CB6F277B5FE}] => (Allow) LPort=50053
FirewallRules: [{87F4EAB2-A975-407F-9848-D5CED6FAFDFB}] => (Allow) LPort=50053
FirewallRules: [TCP Query User{DC3D4FC2-AA57-4957-86E0-6DDA3C2DB007}D:\hry\torrent\utorrentportable\app\utorrent\utorrent.exe] => (Allow) D:\hry\torrent\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{7D097142-1D8D-4976-9DE7-2AF1106ACFF9}D:\hry\torrent\utorrentportable\app\utorrent\utorrent.exe] => (Allow) D:\hry\torrent\utorrentportable\app\utorrent\utorrent.exe (Rainberry Inc -> BitTorrent Inc.)
FirewallRules: [{DFFCA388-57A4-4BF3-9069-7811B9F9565D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6E095962-3651-4E2D-A020-E28169C7F3D2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5EBC37AF-227F-4226-96E7-B960D314268A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{6427F116-070B-4825-B250-AF93B7C5DD6A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{973C491F-B4C2-4755-A363-D302EA0AAFF8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{5A29C961-2A00-42D4-AA1D-CEB4362EFF0A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{44FF88F8-B8BA-4912-8369-BE128CA7F313}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{31DED920-D10C-4F7E-BFF8-A0920F3D08C9}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{811BF59A-EAA5-4E4D-8367-12FF4E12E0B1}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{74F83870-423F-487B-BD60-EC91A133A331}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{50E7651F-D951-4BF3-988A-E2C27A9A0692}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{AF02383F-D1D0-4890-BA1C-DDE3E2877021}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{B8F2B18A-303F-415D-A343-0EC60DF7FBA3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\KingdomComeDeliverance\Bin\Win64\KingdomCome.exe (Warhorse Studios sro) [File not signed]
FirewallRules: [{43C3B6F2-CDCC-4D51-8190-28F60F3370D4}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24277.3507.3205.5228_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2D15540A-42A0-42AB-9B3D-6289147EA5AE}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24277.3507.3205.5228_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2D751E8D-B5F7-4920-B5C4-104674AAE49A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99DEEF51-316F-4D37-9B58-291AD8954905}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B4A1A6CE-C33C-4DEC-9CC1-9B9A1C13203B}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{92480F21-115E-4406-966F-16C5FE310A40}C:\program files\steinberg\cubase le ai elements 13\components\vst2xscanner.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 13\components\vst2xscanner.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [UDP Query User{04A99619-A5B7-4335-895F-215CA84A0DBC}C:\program files\steinberg\cubase le ai elements 13\components\vst2xscanner.exe] => (Allow) C:\program files\steinberg\cubase le ai elements 13\components\vst2xscanner.exe (Steinberg Media Technologies) [File not signed]
FirewallRules: [{17517571-2C84-4181-9D8C-998EB93640A8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe => No File
FirewallRules: [{EF029A84-BCBB-4796-AAE6-33D2EB968CEC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{4274E838-ABD8-4115-BB23-C7D9D2C5A59F}] => (Allow) C:\Program Files\AVG\Browser\Application\AVGBrowser.exe => No File
==================== Restore Points =========================
12-01-2025 10:48:38 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Zařízení klávesnice standardu HID
Description: Zařízení klávesnice standardu HID
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: kbdhid
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (01/12/2025 07:47:15 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll
Error: (01/12/2025 07:47:15 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa10001, Error: Need user interaction to continue.mcpmanagementservice.dll
Error: (01/12/2025 07:47:11 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll
Error: (01/12/2025 07:47:11 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa10001, Error: Need user interaction to continue.mcpmanagementservice.dll
Error: (01/12/2025 07:47:07 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll
Error: (01/12/2025 07:47:07 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa10001, Error: Need user interaction to continue.mcpmanagementservice.dll
Error: (01/12/2025 07:47:03 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failed to get auth header with 0x8086000cmcpmanagementservice.dll
Error: (01/12/2025 07:47:03 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: User Interaction Required while trying to get a token silently. ErrorCode: 0xcaa10001, Error: Need user interaction to continue.mcpmanagementservice.dll
System errors:
=============
Error: (01/12/2025 07:34:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (01/12/2025 07:34:19 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (01/12/2025 07:34:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Microsoft Edge Update Service (edgeupdate) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (01/12/2025 07:34:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba AVG Browser Update (avg) neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (01/12/2025 07:34:18 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (01/12/2025 07:32:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MDCoreSvc neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (01/12/2025 07:32:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba GameInput Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (01/12/2025 07:32:12 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Ovladač zjistil interní chybu ovladače na \Device\VBoxNetLwf.
CodeIntegrity:
===============
Date: 2025-01-12 19:49:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\WINDOWS\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2025-01-12 19:48:22
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.50 10/09/2018
Motherboard: Micro-Star International Co., Ltd. B360 GAMING PLUS (MS-7B22)
Processor: Intel(R) Core(TM) i5-9400F CPU @ 2.90GHz
Percentage of memory in use: 33%
Total physical RAM: 16322.34 MB
Available physical RAM: 10844.57 MB
Total Virtual: 18754.34 MB
Available Virtual: 11650.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:231.6 GB) (Free:10.38 GB) (Model: Samsung SSD 860 EVO 250GB) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:92.76 GB) (Model: ST1000DM010-2EP102) NTFS
\\?\Volume{e2c75712-1627-4a15-824d-1c9979aba212}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.1 GB) NTFS
\\?\Volume{b6573334-080b-4207-bc63-d9280bcba9b8}\ () (Fixed) (Total:0.65 GB) (Free:0.11 GB) NTFS
\\?\Volume{63b2ca22-577c-4990-abaa-783b1f9958fd}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu - virus
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - virus
Zdravím!
Váš WindowsDefender němůže fungovat proto, že máte nainstalovaný Malwarebytes a ten vypíná systémový antivir. Aby WinDef fungoval, musíte MalwareBytes buď vyopnout, nebo odinstalovat. Malwarebytes je ovšem daleko lepší, než WinDef. PC můžeme vyčistit. Otevřte poznámkový blok a zkopírujte do něj:
Váš WindowsDefender němůže fungovat proto, že máte nainstalovaný Malwarebytes a ten vypíná systémový antivir. Aby WinDef fungoval, musíte MalwareBytes buď vyopnout, nebo odinstalovat. Malwarebytes je ovšem daleko lepší, než WinDef. PC můžeme vyčistit. Otevřte poznámkový blok a zkopírujte do něj:
Přesuňte FRST na plochu a pak uložte text shora na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [TeamsMachineInstaller] => %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS (No File)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => "C:\Program Files (x86)\Gaming Keyboard\Monitor.exe" (No File)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" (No File)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {5D6DC190-2521-46AD-B2E8-7C73D652BBB5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {901AC54D-A58E-45AE-9151-28A08620391C} - System32\Tasks\NCH Software\SwitchDowngrade => C:\Program Files (x86)\NCH Software\Switch\switch.exe -downgrade (No File)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
U4 MsSecFlt; no ImagePath
U4 Sense; no ImagePath
U4 SgrmAgent; no ImagePath
U4 SgrmBroker; no ImagePath
U4 WdBoot; no ImagePath
U4 WdFilter; no ImagePath
U4 WdNisDrv; no ImagePath
U4 WdNisSvc; no ImagePath
U2 WinDefend; no ImagePath
AlternateDataStreams: C:\ProgramData\PACE:05B1219F832088EF [217]
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho_64.dll => No File
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll => No File
FirewallRules: [{9D9E2DF4-3941-4BB9-915C-97CB3777292A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{9E6537F4-11C0-4C5F-94DF-F4516870E58F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [TCP Query User{14361509-5131-4282-9F6C-F94035200BC2}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{AE533446-F530-4F57-894F-F085DE656776}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{14612B18-37AD-4C87-BA08-83B3468B419E}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{DB95363D-94DA-448D-ADF5-9728B494039F}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{1AE9BC2A-229E-472A-9F33-679A858576FB}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [UDP Query User{32C6DC5B-9796-40F8-865C-A53CC296D7B8}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{4D148A51-8ADD-4935-87A3-E9855F579CA3}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{5C3D482F-094D-4946-88F4-3E4C8D70443D}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{F08D133E-1E51-43F5-8E28-D6E402AC8721}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{C98E73AC-DE45-400E-A30C-938FFEBD6BD1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{6679C007-5E79-4842-B77C-17572ECDC78B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{825C8EE8-7B23-4E82-89ED-2BA6FA2DD333}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{A99CFA19-3F3C-4BF2-A183-AA44F7D71977}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{4A78EEEF-B1C1-4749-A9ED-4ED28333D901}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{C683672A-6D06-4CD9-9609-4603737F70C6}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{795CF02E-8D56-415B-BE44-35A90C2F42E5}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{B26736AE-D44A-4086-8E35-A64C0FF32F6F}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{C116FC99-2B85-49D2-9E9E-A5D6E01F268B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{43F6B1E5-5FCC-47FD-9033-7FD51B7BDA3D}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{9CC8971C-979C-4721-B6AC-BAB282143B35}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [{733439F4-28E0-4EBB-B1BC-216953EECAE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{F278022E-5FDD-4FDB-BB3D-E71A3EA02504}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{B0FA4AEF-3061-4398-A87C-AEED92ED0771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{F7E42BDA-C039-4BC1-BC58-D06879B45EFA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{17517571-2C84-4181-9D8C-998EB93640A8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe => No File
FirewallRules: [{4274E838-ABD8-4115-BB23-C7D9D2C5A59F}] => (Allow) C:\Program Files\AVG\Browser\Application\AVGBrowser.exe => No File
EmptyTemp:
Hosts:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
MetalSchuuba
- Návštěvník
- Příspěvky: 2
- Registrován: 12 led 2025 19:50
Re: Kontrola logu - virus
Provedl jsem fix. Tady je fixlog.
Fix result of Farbar Recovery Scan Tool (x64) Version: 12-01-2025
Ran by Schuuba (12-01-2025 22:07:05) Run:2
Running from C:\Users\Schuuba\Desktop
Loaded Profiles: Schuuba & Daniel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [TeamsMachineInstaller] => %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS (No File)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => "C:\Program Files (x86)\Gaming Keyboard\Monitor.exe" (No File)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" (No File)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {5D6DC190-2521-46AD-B2E8-7C73D652BBB5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {901AC54D-A58E-45AE-9151-28A08620391C} - System32\Tasks\NCH Software\SwitchDowngrade => C:\Program Files (x86)\NCH Software\Switch\switch.exe -downgrade (No File)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
U4 MsSecFlt; no ImagePath
U4 Sense; no ImagePath
U4 SgrmAgent; no ImagePath
U4 SgrmBroker; no ImagePath
U4 WdBoot; no ImagePath
U4 WdFilter; no ImagePath
U4 WdNisDrv; no ImagePath
U4 WdNisSvc; no ImagePath
U2 WinDefend; no ImagePath
AlternateDataStreams: C:\ProgramData\PACE:05B1219F832088EF [217]
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho_64.dll => No File
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll => No File
FirewallRules: [{9D9E2DF4-3941-4BB9-915C-97CB3777292A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{9E6537F4-11C0-4C5F-94DF-F4516870E58F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [TCP Query User{14361509-5131-4282-9F6C-F94035200BC2}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{AE533446-F530-4F57-894F-F085DE656776}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{14612B18-37AD-4C87-BA08-83B3468B419E}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{DB95363D-94DA-448D-ADF5-9728B494039F}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{1AE9BC2A-229E-472A-9F33-679A858576FB}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [UDP Query User{32C6DC5B-9796-40F8-865C-A53CC296D7B8}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{4D148A51-8ADD-4935-87A3-E9855F579CA3}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{5C3D482F-094D-4946-88F4-3E4C8D70443D}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{F08D133E-1E51-43F5-8E28-D6E402AC8721}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{C98E73AC-DE45-400E-A30C-938FFEBD6BD1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{6679C007-5E79-4842-B77C-17572ECDC78B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{825C8EE8-7B23-4E82-89ED-2BA6FA2DD333}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{A99CFA19-3F3C-4BF2-A183-AA44F7D71977}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{4A78EEEF-B1C1-4749-A9ED-4ED28333D901}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{C683672A-6D06-4CD9-9609-4603737F70C6}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{795CF02E-8D56-415B-BE44-35A90C2F42E5}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{B26736AE-D44A-4086-8E35-A64C0FF32F6F}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{C116FC99-2B85-49D2-9E9E-A5D6E01F268B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{43F6B1E5-5FCC-47FD-9033-7FD51B7BDA3D}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{9CC8971C-979C-4721-B6AC-BAB282143B35}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [{733439F4-28E0-4EBB-B1BC-216953EECAE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{F278022E-5FDD-4FDB-BB3D-E71A3EA02504}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{B0FA4AEF-3061-4398-A87C-AEED92ED0771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{F7E42BDA-C039-4BC1-BC58-D06879B45EFA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{17517571-2C84-4181-9D8C-998EB93640A8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe => No File
FirewallRules: [{4274E838-ABD8-4115-BB23-C7D9D2C5A59F}] => (Allow) C:\Program Files\AVG\Browser\Application\AVGBrowser.exe => No File
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\TeamsMachineInstaller" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\VICTORY Gaming Keyboard" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center => not found
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found
C:\ProgramData\NTUSER.pol => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5D6DC190-2521-46AD-B2E8-7C73D652BBB5}" => not found
"C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{901AC54D-A58E-45AE-9151-28A08620391C}" => not found
"C:\WINDOWS\System32\Tasks\NCH Software\SwitchDowngrade" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NCH Software\SwitchDowngrade" => not found
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000008 => not found
HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.251.2 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.251.2 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@update.avgbrowser.com/AVG Browser;version=3 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@update.avgbrowser.com/AVG Browser;version=9 => not found
MsSecFlt => service not found.
Sense => service not found.
SgrmAgent => service not found.
SgrmBroker => service not found.
WdBoot => service not found.
WdFilter => service not found.
WdNisDrv => service not found.
WdNisSvc => service not found.
WinDefend => service not found.
"C:\ProgramData\PACE" => ":05B1219F832088EF" ADS not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9D9E2DF4-3941-4BB9-915C-97CB3777292A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9E6537F4-11C0-4C5F-94DF-F4516870E58F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{14361509-5131-4282-9F6C-F94035200BC2}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AE533446-F530-4F57-894F-F085DE656776}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14612B18-37AD-4C87-BA08-83B3468B419E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB95363D-94DA-448D-ADF5-9728B494039F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1AE9BC2A-229E-472A-9F33-679A858576FB}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{32C6DC5B-9796-40F8-865C-A53CC296D7B8}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D148A51-8ADD-4935-87A3-E9855F579CA3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5C3D482F-094D-4946-88F4-3E4C8D70443D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F08D133E-1E51-43F5-8E28-D6E402AC8721}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C98E73AC-DE45-400E-A30C-938FFEBD6BD1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6679C007-5E79-4842-B77C-17572ECDC78B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{825C8EE8-7B23-4E82-89ED-2BA6FA2DD333}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A99CFA19-3F3C-4BF2-A183-AA44F7D71977}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A78EEEF-B1C1-4749-A9ED-4ED28333D901}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C683672A-6D06-4CD9-9609-4603737F70C6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{795CF02E-8D56-415B-BE44-35A90C2F42E5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B26736AE-D44A-4086-8E35-A64C0FF32F6F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C116FC99-2B85-49D2-9E9E-A5D6E01F268B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{43F6B1E5-5FCC-47FD-9033-7FD51B7BDA3D}D:\program files\blackmagic design\davinci resolve\resolve.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9CC8971C-979C-4721-B6AC-BAB282143B35}D:\program files\blackmagic design\davinci resolve\resolve.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{733439F4-28E0-4EBB-B1BC-216953EECAE5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F278022E-5FDD-4FDB-BB3D-E71A3EA02504}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0FA4AEF-3061-4398-A87C-AEED92ED0771}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F7E42BDA-C039-4BC1-BC58-D06879B45EFA}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{17517571-2C84-4181-9D8C-998EB93640A8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4274E838-ABD8-4115-BB23-C7D9D2C5A59F}" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21106346 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 30002686 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Schuuba => 80504 B
Daniel => 80504 B
RecycleBin => 0 B
EmptyTemp: => 48.9 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:07:08 ====
Mám tu další problém. I když jsem Malwarebytes odinstaloval, tak stále nemůžu zapnout antivirovou ochranu. V příloze zasílám screenshot.
Fix result of Farbar Recovery Scan Tool (x64) Version: 12-01-2025
Ran by Schuuba (12-01-2025 22:07:05) Run:2
Running from C:\Users\Schuuba\Desktop
Loaded Profiles: Schuuba & Daniel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [TeamsMachineInstaller] => %ProgramFiles%\Teams Installer\Teams.exe --checkInstall --source=PROPLUS (No File)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => "C:\Program Files (x86)\Gaming Keyboard\Monitor.exe" (No File)
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" (No File)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center: Restriction <==== ATTENTION
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {5D6DC190-2521-46AD-B2E8-7C73D652BBB5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {901AC54D-A58E-45AE-9151-28A08620391C} - System32\Tasks\NCH Software\SwitchDowngrade => C:\Program Files (x86)\NCH Software\Switch\switch.exe -downgrade (No File)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll => No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [No File]
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=3 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
FF Plugin-x32: @update.avgbrowser.com/AVG Browser;version=9 -> C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll [No File]
U4 MsSecFlt; no ImagePath
U4 Sense; no ImagePath
U4 SgrmAgent; no ImagePath
U4 SgrmBroker; no ImagePath
U4 WdBoot; no ImagePath
U4 WdFilter; no ImagePath
U4 WdNisDrv; no ImagePath
U4 WdNisSvc; no ImagePath
U2 WinDefend; no ImagePath
AlternateDataStreams: C:\ProgramData\PACE:05B1219F832088EF [217]
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho_64.dll => No File
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\131.0.2903.112\BHO\ie_to_edge_bho.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll => No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll => No File
FirewallRules: [{9D9E2DF4-3941-4BB9-915C-97CB3777292A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{9E6537F4-11C0-4C5F-94DF-F4516870E58F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [TCP Query User{14361509-5131-4282-9F6C-F94035200BC2}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [UDP Query User{AE533446-F530-4F57-894F-F085DE656776}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{14612B18-37AD-4C87-BA08-83B3468B419E}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [{DB95363D-94DA-448D-ADF5-9728B494039F}] => (Block) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe => No File
FirewallRules: [TCP Query User{1AE9BC2A-229E-472A-9F33-679A858576FB}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [UDP Query User{32C6DC5B-9796-40F8-865C-A53CC296D7B8}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{4D148A51-8ADD-4935-87A3-E9855F579CA3}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{5C3D482F-094D-4946-88F4-3E4C8D70443D}] => (Block) D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe => No File
FirewallRules: [{F08D133E-1E51-43F5-8E28-D6E402AC8721}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{C98E73AC-DE45-400E-A30C-938FFEBD6BD1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => No File
FirewallRules: [{6679C007-5E79-4842-B77C-17572ECDC78B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{825C8EE8-7B23-4E82-89ED-2BA6FA2DD333}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{A99CFA19-3F3C-4BF2-A183-AA44F7D71977}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{4A78EEEF-B1C1-4749-A9ED-4ED28333D901}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{C683672A-6D06-4CD9-9609-4603737F70C6}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{795CF02E-8D56-415B-BE44-35A90C2F42E5}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{B26736AE-D44A-4086-8E35-A64C0FF32F6F}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{C116FC99-2B85-49D2-9E9E-A5D6E01F268B}] => (Allow) D:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{43F6B1E5-5FCC-47FD-9033-7FD51B7BDA3D}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{9CC8971C-979C-4721-B6AC-BAB282143B35}D:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) D:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [{733439F4-28E0-4EBB-B1BC-216953EECAE5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{F278022E-5FDD-4FDB-BB3D-E71A3EA02504}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe => No File
FirewallRules: [{B0FA4AEF-3061-4398-A87C-AEED92ED0771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{F7E42BDA-C039-4BC1-BC58-D06879B45EFA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe => No File
FirewallRules: [{17517571-2C84-4181-9D8C-998EB93640A8}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe => No File
FirewallRules: [{4274E838-ABD8-4115-BB23-C7D9D2C5A59F}] => (Allow) C:\Program Files\AVG\Browser\Application\AVGBrowser.exe => No File
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\TeamsMachineInstaller" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\VICTORY Gaming Keyboard" => not found
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender Security Center => not found
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found
C:\ProgramData\NTUSER.pol => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5D6DC190-2521-46AD-B2E8-7C73D652BBB5}" => not found
"C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{D2FC358F-BDC3-48B2-A3BD-830F0ACD94D8}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{901AC54D-A58E-45AE-9151-28A08620391C}" => not found
"C:\WINDOWS\System32\Tasks\NCH Software\SwitchDowngrade" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\NCH Software\SwitchDowngrade" => not found
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000008 => not found
HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.251.2 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.251.2 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@update.avgbrowser.com/AVG Browser;version=3 => not found
HKLM\Software\Wow6432Node\MozillaPlugins\@update.avgbrowser.com/AVG Browser;version=9 => not found
MsSecFlt => service not found.
Sense => service not found.
SgrmAgent => service not found.
SgrmBroker => service not found.
WdBoot => service not found.
WdFilter => service not found.
WdNisDrv => service not found.
WdNisSvc => service not found.
WinDefend => service not found.
"C:\ProgramData\PACE" => ":05B1219F832088EF" ADS not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9D9E2DF4-3941-4BB9-915C-97CB3777292A}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9E6537F4-11C0-4C5F-94DF-F4516870E58F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{14361509-5131-4282-9F6C-F94035200BC2}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AE533446-F530-4F57-894F-F085DE656776}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14612B18-37AD-4C87-BA08-83B3468B419E}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB95363D-94DA-448D-ADF5-9728B494039F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1AE9BC2A-229E-472A-9F33-679A858576FB}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{32C6DC5B-9796-40F8-865C-A53CC296D7B8}D:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4D148A51-8ADD-4935-87A3-E9855F579CA3}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5C3D482F-094D-4946-88F4-3E4C8D70443D}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F08D133E-1E51-43F5-8E28-D6E402AC8721}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C98E73AC-DE45-400E-A30C-938FFEBD6BD1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6679C007-5E79-4842-B77C-17572ECDC78B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{825C8EE8-7B23-4E82-89ED-2BA6FA2DD333}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A99CFA19-3F3C-4BF2-A183-AA44F7D71977}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A78EEEF-B1C1-4749-A9ED-4ED28333D901}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C683672A-6D06-4CD9-9609-4603737F70C6}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{795CF02E-8D56-415B-BE44-35A90C2F42E5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B26736AE-D44A-4086-8E35-A64C0FF32F6F}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C116FC99-2B85-49D2-9E9E-A5D6E01F268B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{43F6B1E5-5FCC-47FD-9033-7FD51B7BDA3D}D:\program files\blackmagic design\davinci resolve\resolve.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9CC8971C-979C-4721-B6AC-BAB282143B35}D:\program files\blackmagic design\davinci resolve\resolve.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{733439F4-28E0-4EBB-B1BC-216953EECAE5}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F278022E-5FDD-4FDB-BB3D-E71A3EA02504}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0FA4AEF-3061-4398-A87C-AEED92ED0771}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F7E42BDA-C039-4BC1-BC58-D06879B45EFA}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{17517571-2C84-4181-9D8C-998EB93640A8}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4274E838-ABD8-4115-BB23-C7D9D2C5A59F}" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21106346 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 30002686 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Schuuba => 80504 B
Daniel => 80504 B
RecycleBin => 0 B
EmptyTemp: => 48.9 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:07:08 ====
Mám tu další problém. I když jsem Malwarebytes odinstaloval, tak stále nemůžu zapnout antivirovou ochranu. V příloze zasílám screenshot.
- screen_defender.png (54.44 KiB) Zobrazeno 2434 x
-
Rudy
- Site Admin
- Příspěvky: 119315
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu - virus
I podle logu FRST je zřejmé, že váš profil, z něhož děláte FRST sken nemá příslušné oprávnění. Sken spusťte v profilu s admin oprávněním. Pokud to není možné, systém je posškozen.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?