Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Částečně fungující myš / občas zpomalené PC

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
kockopes
Návštěvník
Návštěvník
Příspěvky: 97
Registrován: 03 čer 2006 09:54

Částečně fungující myš / občas zpomalené PC

#1 Příspěvek od kockopes »

Ahoj,
včera se mi začalo nestandardně chovat PC. Občas krátkodobě zatuhne a co nefunguje prakticky vůbec je taková "maličkost" Nefunguje pravé tlačítko myši (nevyjede kontextová nabídka) Levé a prostřední tlačítko funguje, jak má. Myš jsem pochopitelně vyzkoušel i jinou. Také nefunguje.
Děkuji za pomoc. Hezký de.
Níže logy:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2025
Ran by Hladk (administrator) on DESKTOP-1T75NO9 (13-01-2025 18:33:29)
Running from C:\Users\Hladk\AppData\Local\Temp\scoped_dir39316_714575927\FRST64.exe
Loaded Profiles: Hladk
Platform: Microsoft Windows 10 Home Version 22H2 19045.5247 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\Hladk\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files (x86)\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> ) C:\Program Files\AMD\CNext\CNext\gpuup.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Users\Hladk\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Hladk\AppData\Local\Programs\Opera\115.0.5322.119\opera_crashreporter.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\atieclxx.exe
(explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\AMD\ANR\AMDNoiseSuppression.exe
(explorer.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Hladk\AppData\Local\Programs\Opera\opera.exe <48>
(explorer.exe ->) (Tencent Technology(Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe <2>
(H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology (Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\ui\AndroidEmulatorEx.exe
(H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology(Shenzhen) Company Limited -> ) H:\Program Files\TxGameAssistant\AppMarket\cef_frame_render.exe <3>
(H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology(Shenzhen) Company Limited -> ) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe
(H:\Program Files\TxGameAssistant\ui\AndroidEmulatorEx.exe ->) (Tencent Technology (Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\ui\aow_exe.exe <38>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Tencent Technology(Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2411.1.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(TeamViewer Germany GmbH -> ) C:\Windows\Temp\nszBC9D.tmp\TvUpdateInfo.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [Adobe Reader Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe" (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [Steam] => H:\Program Files\Steam\steam.exe [4388200 2024-01-13] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145800 2023-06-14] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [Opera Browser Assistant] => C:\Users\Hladk\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [com.messenger] => "C:\Users\Hladk\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {7b0d4624-4fef-11ee-9ecd-7085c262d76e} - "F:\setup.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {c65c06d3-2689-11ee-9ea5-7085c262d76e} - "F:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {fcfb6d36-245a-11ee-9ea5-7085c262d76e} - "E:\HonorSuiteOnlineInstaller.exe"
HKLM\...\Print\Monitors\Bullzip PDF Print Monitor: C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll [221696 2019-02-15] (Bullzip) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\131.0.6778.265\Installer\chrmstp.exe [2025-01-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-01-04]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume14autocheck autochk *

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1A9B7202-56B8-4664-9016-281D1EEC3260} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {D4601A28-1C77-4D43-B3C6-D962315F6F14} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-11-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {0F23A28C-26CD-462A-8152-3AEC0AC2D372} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [5998376 2025-01-03] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {2187FC92-5200-46A2-A07E-C894CFC4914E} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3918632 2025-01-03] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0128E280-34CF-4ABF-A2F2-0F776B89E28F} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [8289064 2024-12-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {6C0E15A0-5D86-4BC0-9909-C90DA6F6A00F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {E136245A-9836-41BA-8E8C-D36EA45C282E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {6A966B4E-4EEE-41BE-BF5A-1793AFEB9BAE} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-1001266131-2733610755-3133150411-1001 => C:\Users\Hladk\AppData\Local\Programs\Messenger\MessengerHelper.exe [2192632 2024-09-17] (Facebook, Inc. -> Meta Platforms, Inc.)
Task: {F81920D8-8E3F-4F2A-B56E-B04F8CC9AC3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6353EE67-29AA-4980-8F11-FD4A85C6307A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD1065E9-927B-4AAB-9FFF-BB9F473CC5B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A788F487-8AE7-4B6C-8094-CC315647E4E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {68CAAC31-1977-460C-9486-E513F82DF8F6} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-11-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {4E814242-EC28-47EA-A742-87A5C257FD57} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {86D753D7-CA53-4814-A843-0F7BB1B65B78} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1001266131-2733610755-3133150411-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {08253DF9-4318-422B-B6F6-CD459819B3E3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {35E9AF14-3F73-4E6C-B017-217664492734} - System32\Tasks\Opera scheduled assistant Autoupdate 1582748983 => C:\Users\Hladk\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Hladk\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {EDCDCBF7-A611-44FA-BDF8-838B1D08999A} - System32\Tasks\Opera scheduled Autoupdate 1555151344 => C:\Users\Hladk\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5596568 2024-12-23] (Opera Norway AS -> Opera Software)
Task: {AF6C3814-013A-4A71-B2F5-F366A1AF44BC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60344 2023-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {F31CCDB1-8D17-413B-8886-A9D658E300AF} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324024 2023-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{31f344b7-4480-4955-86df-c15fb8461db6}: [NameServer] 8.8.8.8,208.67.222.222
Tcpip\..\Interfaces\{31f344b7-4480-4955-86df-c15fb8461db6}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{31f344b7-4480-4955-86df-c15fb8461db6}: [DhcpDomain] home
Tcpip\..\Interfaces\{3cb66980-facd-4841-a4b9-d40d782f3b68}: [NameServer] 100.122.0.0

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Hladk\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-07]
Edge Notifications: Default -> hxxps://www.messenger.com
Edge Extension: (Dokumenty Google offline) - C:\Users\Hladk\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-07]
Edge Extension: (Edge relevant text changes) - C:\Users\Hladk\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]

FireFox:
========
FF DefaultProfile: 5i7y9o4g.default
FF ProfilePath: C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\5i7y9o4g.default [2022-02-09]
FF ProfilePath: C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release [2025-01-13]
FF DownloadDir: H:\Práce
FF Session Restore: Mozilla\Firefox\Profiles\uzwrieov.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\uzwrieov.default-release -> hxxps://web.whatsapp.com
FF Extension: (Pinned Messenger) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\fbmessengerpanel@alejandrobrizuela.com.ar.xpi [2022-03-22]
FF Extension: (I don't care about cookies) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-12-07]
FF Extension: (Linkificator) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\linkificator@markapola.xpi [2020-04-18]
FF Extension: (Web Messenger) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\rt42fsdty645jIidD@jetpack.xpi [2024-12-05]
FF Extension: (Lightshot (Nástroje snímků)) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}.xpi [2024-04-29]
FF Extension: (Hlídač Shopů) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{d6f0f975-91a3-4d78-96f7-5f1859ad18b6}.xpi [2024-11-13]
FF Extension: (PaladinVPN - 100% Unlimited Free VPN Proxy) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{f254dae4-b210-4b30-8001-6e86be242b13}.xpi [2023-07-26]
FF Extension: (WhatsApp Pinned) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{f2d56336-0f16-4870-bf64-84b3fd97c9c0}.xpi [2024-11-08]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default [2024-07-08]
CHR Extension: (Hamty.cz doplněk) - C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccfnphpieojibjmnodiiobdapckkkfb [2024-05-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-20]
CHR HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 QMEmulatorService; H:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [241848 2024-02-21] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [12924200 2025-01-03] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [19472176 2025-01-07] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36744 2023-07-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\amdkmdag.sys [105549744 2023-12-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 aow_drv; H:\Program Files\TxGameAssistant\UI\3.91.5299.81\aow_drv_x64_ev.sys [1402120 2024-11-07] (Tencent Technology (Shenzhen) Company Limited -> Tencent)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [79632 2025-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hn_usbccgpfilter; C:\WINDOWS\System32\drivers\hn_usbccgpfilter.sys [19328 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
U5 hn_usbdev; C:\Windows\System32\Drivers\hn_usbdev.sys [116864 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R1 TBoxDrv; C:\Program Files\AndroidTbox\TBoxDrv.sys [291912 2024-02-22] (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
S3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 amdwddmg; \SystemRoot\System32\DriverStore\FileRepository\u0395307.inf_amd64_04945749e6d18630\B395312\amdkmdag.sys [X]
S3 MpKslafe94834; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{911B6AC3-B35E-450D-995B-59CA1F19FF57}\MpKslDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\ProgramData\Desktop\VLC media player.lnk"
Error Reading file: "C:\ProgramData\Desktop\TeamViewer.lnk"
Error Reading file: "C:\ProgramData\Desktop\Steam.lnk"
Error Reading file: "C:\ProgramData\Desktop\Firefox.lnk"
Error Reading file: "C:\ProgramData\Desktop\EMCO Ping Monitor Free 6.lnk"
Error Reading file: "C:\ProgramData\Desktop\desktop.ini"
Error Reading file: "C:\ProgramData\Desktop\Datovka.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast SecureLine VPN.lnk"
2025-01-13 18:32 - 2025-01-13 18:32 - 002403328 _____ (Farbar) C:\Users\Hladk\Desktop\FRST64.exe
2025-01-11 21:27 - 2025-01-11 21:27 - 000089784 _____ C:\Users\Hladk\Desktop\Booking.com_ Potvrzení.pdf
2025-01-11 15:09 - 2025-01-11 18:01 - 3650943373 _____ C:\Users\Hladk\Downloads\Biele.ticho.HDTV.SK.2022.1080p.mkv
2025-01-11 10:39 - 2025-01-13 07:54 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\bright-vpn
2025-01-11 10:39 - 2025-01-13 07:54 - 000000000 ____D C:\Program Files (x86)\Bright VPN
2025-01-11 10:39 - 2025-01-11 10:39 - 000000000 ____D C:\Users\Hladk\AppData\Local\bright-vpn-updater
2025-01-11 10:39 - 2025-01-11 10:39 - 000000000 ____D C:\Users\Hladk\AppData\Local\BrightData
2025-01-11 10:39 - 2025-01-11 10:39 - 000000000 ____D C:\ProgramData\BrightData
2024-12-30 18:23 - 2025-01-13 07:54 - 000000000 ____D C:\Users\Hladk\Downloads\[ Torrent9.cz ] Le.Bureau.Des.Legendes.S02.FRENCH.HDTV.XviD-ZT
2024-12-30 17:16 - 2024-12-30 17:16 - 000051148 _____ C:\Users\Hladk\Downloads\Dirk-Gently-s-Holistic-Detective-Agency-S01E02(0000281370).srt
2024-12-19 22:51 - 2024-12-19 22:51 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-13 18:35 - 2022-02-09 20:27 - 000000000 ____D C:\FRST
2025-01-13 17:12 - 2019-05-05 07:47 - 000000000 ____D C:\Users\Hladk\AppData\Local\ESET
2025-01-13 16:44 - 2021-12-17 21:33 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-01-13 16:44 - 2019-05-29 18:23 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-13 16:21 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-13 16:06 - 2019-10-10 06:43 - 000000000 ____D C:\Users\Hladk\AppData\Local\ClassicShell
2025-01-13 13:17 - 2020-08-12 20:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-01-13 10:56 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-01-13 10:56 - 2019-04-22 18:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-01-13 08:02 - 2020-06-25 09:50 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-01-13 08:01 - 2020-08-12 20:11 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-13 08:01 - 2019-12-07 15:41 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2025-01-13 08:01 - 2019-12-07 15:41 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2025-01-13 08:00 - 2022-02-09 09:13 - 000001427 _____ C:\Users\Hladk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-01-13 07:59 - 2022-02-09 10:59 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-01-13 07:56 - 2024-04-08 20:23 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-01-13 07:55 - 2020-08-12 20:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-13 07:55 - 2020-08-12 20:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-01-13 07:55 - 2020-08-12 20:03 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-13 07:55 - 2020-08-12 11:48 - 000000000 ____D C:\Users\Hladk
2025-01-13 07:55 - 2019-12-13 18:50 - 000000000 ____D C:\ProgramData\AVAST Software
2025-01-13 07:55 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2025-01-13 07:55 - 2019-04-23 21:36 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-13 07:54 - 2024-03-22 21:32 - 000000000 ____D C:\Users\Hladk\Downloads\Incoming
2025-01-13 07:54 - 2021-09-10 18:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-01-13 07:54 - 2020-03-16 07:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-01-13 07:54 - 2020-03-16 07:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-01-13 07:54 - 2019-04-28 06:06 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\GHISLER
2025-01-13 07:54 - 2019-04-28 06:01 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\vlc
2025-01-13 07:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-13 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2025-01-12 06:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-01-11 21:26 - 2019-04-13 10:00 - 000000000 ____D C:\Users\Hladk\AppData\Local\Packages
2025-01-11 10:41 - 2019-04-23 22:35 - 000000000 ____D C:\Users\Hladk\AppData\Local\D3DSCache
2025-01-04 21:59 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-01-03 06:59 - 2023-09-16 16:42 - 000000000 ____D C:\Users\Hladk\AppData\Local\AMD_Common
2024-12-30 20:56 - 2023-06-16 14:56 - 000000000 ____D C:\Users\Hladk\AppData\Local\Halite
2024-12-30 15:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-12-30 08:29 - 2020-08-12 20:09 - 000004266 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1555151344
2024-12-30 08:29 - 2019-04-13 11:29 - 000001435 _____ C:\Users\Hladk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-12-29 07:54 - 2024-12-06 06:10 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\Messenger
2024-12-24 16:18 - 2023-08-18 17:36 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-12-23 11:16 - 2020-08-12 20:09 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-23 11:16 - 2020-08-12 20:09 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-21 07:13 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-19 21:37 - 2022-10-13 12:11 - 000000000 ____D C:\ProgramData\IDrive
2024-12-19 21:37 - 2019-05-08 10:56 - 000000000 ____D C:\ProgramData\Logishrd
2024-12-19 20:43 - 2024-05-17 07:43 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2024-12-19 20:43 - 2023-11-17 06:13 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2024-12-19 20:43 - 2023-11-17 06:13 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll

==================== Files in the root of some directories ========

2023-01-01 17:17 - 2023-01-01 17:17 - 000000274 _____ () C:\ProgramData\fontcacheev1.dat
2019-04-30 18:32 - 2018-10-25 21:00 - 000006026 _____ () C:\Program Files (x86)\current.btskin
2019-04-30 18:37 - 2019-04-30 18:43 - 000003754 _____ () C:\Program Files (x86)\dht.dat
2019-04-30 18:37 - 2019-04-30 18:37 - 000003676 _____ () C:\Program Files (x86)\dht.dat.old
2019-04-30 18:43 - 2019-04-30 18:37 - 000000058 _____ () C:\Program Files (x86)\resume.20190430.194316.dat
2019-04-30 18:37 - 2019-04-30 18:43 - 000000058 _____ () C:\Program Files (x86)\resume.dat
2019-04-30 18:37 - 2019-04-30 18:37 - 000000058 _____ () C:\Program Files (x86)\resume.dat.old
2019-04-30 18:37 - 2019-04-30 18:43 - 000000099 _____ () C:\Program Files (x86)\rss.dat
2019-04-30 18:37 - 2019-04-30 18:37 - 000000099 _____ () C:\Program Files (x86)\rss.dat.old
2019-04-30 18:32 - 2019-04-30 18:43 - 000005623 _____ () C:\Program Files (x86)\settings.dat.old
2019-04-30 18:31 - 2018-08-28 18:30 - 000294384 _____ (emc) C:\Program Files (x86)\uninstall.exe
2019-04-30 18:32 - 2018-10-25 21:00 - 000189334 _____ () C:\Program Files (x86)\utorrent-221-25534.chm
2019-04-30 18:32 - 2018-10-25 21:00 - 000039237 _____ () C:\Program Files (x86)\utorrent.lng
2019-04-30 18:32 - 2018-10-25 21:00 - 000000049 _____ () C:\Program Files (x86)\utorrent.url
2019-04-30 18:32 - 2018-10-25 21:00 - 000184498 _____ () C:\Program Files (x86)\webui.zip

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2025
Ran by Hladk (13-01-2025 18:36:46)
Running from C:\Users\Hladk\AppData\Local\Temp\scoped_dir39316_714575927
Microsoft Windows 10 Home Version 22H2 19045.5247 (X64) (2020-08-12 19:09:37)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1001266131-2733610755-3133150411-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1001266131-2733610755-3133150411-503 - Limited - Disabled)
disk (S-1-5-21-1001266131-2733610755-3133150411-1003 - Limited - Enabled)
Guest (S-1-5-21-1001266131-2733610755-3133150411-501 - Limited - Enabled)
Hladk (S-1-5-21-1001266131-2733610755-3133150411-1001 - Administrator - Enabled) => C:\Users\Hladk
WDAGUtilityAccount (S-1-5-21-1001266131-2733610755-3133150411-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.005.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 5.08.02.027 - Advanced Micro Devices, Inc.)
AMD Product Verification Tool version 1.0.6.4 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.6.4 - AMD)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.24.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.Q4 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{94dc9043-935f-4e10-ac8b-5ce0ac055188}) (Version: 5.08.02.027 - Advanced Micro Devices, Inc.) Hidden
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 24.12.10985.14274 - Avast Software)
Bullzip PDF Printer 11.9.0.2735 (HKLM\...\Bullzip PDF Printer_is1) (Version: 11.9.0.2735 - Bullzip)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Datovka (HKLM-x32\...\Datovka) (Version: 4.24.0 - CZ.NIC, z. s. p. o.)
EMCO Ping Monitor Free 6.3 (HKLM\...\{71897DBE-7D98-47FC-88E7-73246EDB829E}) (Version: 6.3.0.5014 - EMCO Software)
GameLoop (HKLM-x32\...\MobileGamePC) (Version: 5.1.139.90 - Tencent Technology Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.265 - Google LLC)
Halite (HKLM\...\{B2C09126-EBB0-464E-8AA6-1D844E84B92D}) (Version: 0.4.04 - BinaryNotions.com)
HWiNFO32 verze 1.5 (HKLM-x32\...\HWiNFO32_is1) (Version: 1.5 - )
JDownloader 2 (HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Messenger (HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 215.6.643112060 - Facebook, Inc.)
Microsoft .NET Host - 6.0.11 (x64) (HKLM\...\{B92B890A-04F2-4880-BA20-20D4364FB263}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.11 (x64) (HKLM\...\{5E63E49B-C88C-46C5-855C-A7B07C11CDC8}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.11 (x64) (HKLM\...\{C3DD1448-513A-4DB8-978D-6991562EA63D}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.146 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.112 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM\...\{A39D4115-3A27-4245-AE92-3214B8B21932}) (Version: 48.47.50419 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM-x32\...\{c4846f79-a633-4ae4-92a3-92fdbeb33da2}) (Version: 6.0.11.31823 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 133.0.3 (x64 cs)) (Version: 133.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
NVIDIA Ovladače grafiky 457.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.51 - NVIDIA Corporation)
Opera Stable 115.0.5322.119 (HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Opera 115.0.5322.119) (Version: 115.0.5322.119 - Opera Software)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.61.4 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-12-13] ()
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2025-01-13] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2025-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2025-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2025-01-13] (Microsoft Platform Extensions)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2025-01-13] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-01-13] (NVIDIA Corp.)
Spotify – hudba a podcasty -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0 [2025-01-13] (Spotify AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm [2025-01-13] (WhatsApp Inc.) [Startup Task]
WPS Office for Free -> C:\Program Files\WindowsApps\ZhuhaiKingsoftOfficeSoftw.WPSOfficeforFree_10.2.7636.0_x86__924xes6e8q1tw [2025-01-13] (Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "C:\Program Files\Macrium\Common\ReflectMonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{241D10A2-AF17-4DE3-BB50-A51380F908D4}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.257\notification_helper.exe" => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.11\ProtonVPN.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> C:\Users\Hladk\AppData\Local\Microsoft\OneDrive\19.033.0218.0011\FileCoAuth.exe => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{F349F8C6-386F-40D5-BDC0-D0696FEF9B10}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.204\notification_helper.exe" => No File
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2023-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\nvshext.dll [2020-12-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-04-25 18:29 - 2019-02-15 16:13 - 000221696 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll
2017-08-13 07:49 - 2017-08-13 07:49 - 003664184 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://p30g.com/
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 08:31 - 2019-12-15 09:24 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files\dotnet\
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hladk\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\17680161981375668511\133812267607782730.jpg
DNS Servers: 8.8.8.8 - 208.67.222.222
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 0)
Windows Firewall is enabled.

Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Ethernet 2: TAP-Windows Adapter V9 -> tap0901.sys
Avast SecureLine VPN: Avast SecureLine Wintun Adapter -> aswWintun.sys
Ethernet: Realtek PCIe GBE Family Controller -> rt640x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HuaweiHiSuiteService64.exe => 2
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: NvTelemetryContainer => 2
MSCONFIG\Services: TeamViewer => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "Reflect UI"
HKLM\...\StartupApproved\Run: => "Služba Acronis Scheduler2"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "IDrive Background process"
HKLM\...\StartupApproved\Run32: => "IDrive Tray"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_A47958FB13D97951C426ED89C115B719"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "com.messenger"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{908618FE-CC52-4A9A-8CFD-B0D4FD1BFFD9}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{4B00823D-32CE-46E5-B498-E26DE4638092}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{9253AB2C-7D13-4D93-BCF9-3415F7B3B48F}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [TCP Query User{48E0F537-E9AC-43DC-8170-0C64992FAFA8}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [{5C43BB95-AC66-4BC4-8CE4-83D7A4E57F08}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1C1D8ACE-A4EB-43AC-9609-37A25BA1EC20}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{7C1683A2-CBE1-435E-A8F0-2B410EC56B1A}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{555844A4-C5B2-4F24-A023-7E8CB235EBE3}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [UDP Query User{8DD0C2F1-88B3-46E6-A253-45A1061A6497}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [TCP Query User{651A057B-734B-4FCF-AC7E-79516B6A06AC}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [UDP Query User{E7EF39A2-3D9F-43E8-B981-99566F76651B}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [TCP Query User{56F37981-C9BC-4AA1-AE8B-F9CAF543E069}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [UDP Query User{EDC27545-5BF3-4D0E-BF64-7A2E88E38ADD}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{A279A69B-E698-4EC3-B9E4-9BBE1EAF73D9}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [{77F15D8E-B478-4C82-AA6F-8C4CCBF1ABB1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe => No File
FirewallRules: [TCP Query User{42FFCE23-8ABF-42CB-8EED-BFE8B47302A3}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [UDP Query User{8870A970-7BB9-49CC-BA25-BC47DCB5C2C1}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [{D2247CA7-CF3D-4B68-A6DF-B895CA833728}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A5DC32B9-D0EB-4CCD-88F0-C7668B67E69A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{537ECD41-1A17-4530-A8B9-8BC143CC2445}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{33AD07A3-9CDD-4FE2-9547-1380D9B44B1E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{35B12E08-13D8-4621-901C-A47EE7E42F6B}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{760BDFEB-F33E-4689-995B-8F4F61C78C5A}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{AADA818B-AD5A-4D84-B0A5-143CE63FB9B8}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{FD50663E-8A65-4975-9C1B-3C10D164B9A7}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{806C1030-C04C-4C00-AA79-B4BA3E7C9A13}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{004C4E65-348C-4DD1-BB99-3FB7242E9BDD}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{9FBA33BC-B66D-42FB-93C0-E23142A49FD1}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{D34F61BA-23B8-45AF-A496-B345C41AC181}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{41E41DB2-720B-4249-9D73-ABE6835C1FB4}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{5AE63CF3-85F0-48B4-BB69-934B68A735EA}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{3EBD5A63-15BE-4904-B5F7-CB6FA0FB1EDE}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{7BE8AD23-84AA-47C8-B7AB-51AA0CDFAC0D}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{A056D829-F727-4489-9428-1ABD2B117236}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{B70E1CCE-3C6D-4141-9728-8DC81914FEA8}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{B5ECD5A7-2175-4A51-8D4F-161647CB0CD5}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{8FCD6066-C298-4839-98A4-E48EFF241B3C}] => (Allow) C:\Program Files\Halite\Halite.exe (Binary Notions) [File not signed]
FirewallRules: [{4F90996B-C56D-46E4-A182-99B7B37109CD}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{79CF26AF-7A18-4CAA-8639-02B02D01C215}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{860EC391-0517-427B-9D05-562F8521A463}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{3336EC84-879C-481A-8482-3010F91319D7}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{93D27C23-6A89-4AA1-B9F6-DE8663ECA72C}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{94E8281A-247F-4D42-9E25-DA5992FBE337}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File
FirewallRules: [{19AF3567-3213-43E5-B426-B974221ADFB3}] => (Allow) C:\Program Files (x86)\PaladinVPN\Paladinsvc.exe => No File
FirewallRules: [{E3569F77-75AE-4DED-937C-CA1735329045}] => (Allow) C:\Program Files (x86)\PaladinVPN\PaladinVPN.exe => No File
FirewallRules: [{4E116FBD-4E62-482F-9636-14EAF2887CE9}] => (Allow) C:\Program Files (x86)\PaladinVPN\feedback.exe => No File
FirewallRules: [{E454C439-1B03-44B0-AA67-03A52BF79B16}] => (Allow) C:\Program Files (x86)\PaladinVPN\upgrade.exe => No File
FirewallRules: [{27C8D679-5DB6-48AD-B45E-837583430BC6}] => (Allow) C:\Program Files (x86)\PaladinVPN\tun.exe => No File
FirewallRules: [{FFA18D37-3644-4879-89AA-145023FCDC0B}] => (Allow) C:\Program Files (x86)\PaladinVPN\line.exe => No File
FirewallRules: [{DF9C5B4D-EA5B-4C07-A31B-5D99FBEAC9F1}] => (Allow) C:\Program Files (x86)\PaladinVPN\tunnle\tunnle.exe => No File
FirewallRules: [{5A58E54D-D6B4-4E57-B415-AEF631124ADA}] => (Allow) C:\Program Files (x86)\PaladinVPN\pldsvc.exe => No File
FirewallRules: [{BB5E44E0-9F3A-4F3E-9336-0723C3A7EBEB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{4815278F-B264-4E19-B6A2-C0C46A2F16FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{21D9B300-2E46-476C-8EDF-50F3278FF70E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{35392DE8-5964-4484-AFFA-959AFA35724F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{E4272E7A-CBFB-49EE-8B16-ED1FDE65C4FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{10C8BC89-F8EA-4D2B-BCF1-15E842F4814C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{960CBFB0-095A-43F1-AF1E-1D2C2DAC78F4}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{531EA7A7-C4B1-49DC-82F5-3E3BCF168D8D}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{25198491-D400-4201-AFB9-D1F3397BFE2E}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [{6FD8C045-1F7E-4CD6-8454-7E0DF7062564}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [{83F0CB76-BA59-4E13-AFDD-A093EE6781B7}] => (Allow) H:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A67E242D-6706-4D45-A9BC-B79EC0890EF3}] => (Allow) H:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{779B07D0-D195-4BFE-919B-38054330551F}C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe] => (Allow) C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{9390E899-C940-4153-89B3-0E8D743AC480}C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe] => (Allow) C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{E5C7CAC4-399E-4C53-9F10-136CB345C7A1}] => (Allow) H:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{367A67AF-CD05-412A-9954-CEA0F63A784A}] => (Allow) H:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{19E2BB1B-7BFC-466B-A76C-A9958BD92E67}] => (Allow) h:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{6C7F0779-2B35-4BD2-A3FB-E04A9D09F040}] => (Allow) h:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{10649498-5D7F-4A8E-99DE-9CACE6B52561}] => (Allow) h:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{675C8CB3-1393-4314-A77E-060771EF5A42}] => (Allow) h:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{E2AC5AD2-1B33-40B9-BBD1-930B68A1236D}] => (Allow) h:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{8B812F48-9EF0-471F-89B5-773D15837395}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A70DC069-D8B4-410F-8FB6-506D3FE0A733}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{7B5B84F2-C089-4BEF-9CFA-D6A6F7BF97D2}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{0AE43303-ABFE-47E4-860B-D22A3D9D7A9D}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{0BA0DC03-6A4E-4063-B2C2-2F5EC7F526C0}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{9526EC8A-F91C-4857-A540-52686DDAD6F5}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{8E3414F2-4C4A-421B-B5F2-8BB450805B6B}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{95AF7E6D-6051-4B2D-9253-4DC8B97E9166}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{4256FD4D-350B-44D4-B88E-9C5309E185EE}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{574CDB73-1F59-42FD-AAFE-48575BE0CFC5}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{2CE7BE10-3417-4CA6-BE22-E9615886D7C9}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{9555000F-4706-4B77-B048-2D208B359B86}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{E7D4DF7C-5740-4B71-B932-4A5B5465ECA8}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{FB40256E-E653-47DF-98A4-742FFB530912}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{B8A4F47D-FB78-415E-BE31-1FF51DC36654}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{2C44299B-93DF-43FA-B8AD-38AD63DD8A70}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A7745AFE-D0A1-4D75-B18B-05253D671F77}] => (Allow) h:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{3BB5565D-EB22-4184-A260-E558429C7AD3}] => (Allow) h:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{E0F54411-5891-4C74-8F8A-14A6DF20F828}] => (Allow) h:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{DF97CEC9-9E1B-4760-9219-99F98D12BD8A}] => (Allow) h:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{94E2D437-C6D0-4B65-A950-CC39ABF27321}] => (Allow) h:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [TCP Query User{FC7DDEDE-4A88-43CD-8B4D-62074F75FF82}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{0CCFE7D9-94D7-401E-B3A4-C61F51C373CC}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{CAA382D7-ED2B-42F5-B258-D3E0694543BF}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{CC535EB9-F76C-4A03-B362-2EC2EE644C29}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [{9964C3A4-1E99-41FF-BBC6-F9D861BA6226}] => (Allow) C:\Program Files\AndroidTbox\THypervBox.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{491AE32E-8734-4F5E-B461-B17B36C1290A}] => (Allow) C:\Program Files\AndroidTbox\TBoxHeadless.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{471EC775-20E2-4B6F-B5EA-D66F28752228}] => (Allow) C:\Program Files\AndroidTbox\TBoxNetNAT.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{68523975-2286-4895-B009-1A143E342BD6}] => (Allow) C:\Program Files\AndroidTbox\TBoxSDL.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{80178366-9F1A-4B84-877B-F427E53F8F33}] => (Allow) C:\Program Files\AndroidTbox\TBoxExtPackHelperApp.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{CC77C8E0-3EAF-4064-8263-52542F333AE6}] => (Allow) C:\Program Files\AndroidTbox\USBInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{7CCE5869-25B2-466F-933C-7D77B73A7230}] => (Allow) C:\Program Files\AndroidTbox\TBoxNetDHCP.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{61523A0D-1DFF-469B-AA38-59B4204539BF}] => (Allow) C:\Program Files\AndroidTbox\TBoxManage.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{7B75A496-3104-46B9-98D5-F21C9AD53087}] => (Allow) C:\Program Files\AndroidTbox\USBUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{D929AE96-A357-498F-86C4-868490DEDE95}] => (Allow) C:\Program Files\AndroidTbox\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{BB148E0C-EF58-477E-8205-B3263090882B}] => (Allow) C:\Program Files\AndroidTbox\SUPLoggerCtl.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{920C89D9-A9FE-41F0-8301-75E555889839}] => (Allow) C:\Program Files\AndroidTbox\NetFltUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{3B3862A6-ADD2-4F1D-8C5A-A1299F6DD61F}] => (Allow) C:\Program Files\AndroidTbox\NetFltInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{F0820525-33D2-4A78-AAEE-201EDFD37038}] => (Allow) C:\Program Files\AndroidTbox\SUPUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{6DFDE3A8-C4AA-476A-8262-78ED1F2E4C1C}] => (Allow) C:\Program Files\AndroidTbox\TBoxBalloonCtrl.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{53AE2924-07D0-4CF2-8918-7408A066DBEC}] => (Allow) C:\Program Files\AndroidTbox\SUPInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{5342BEF7-4C59-409C-8324-D5F08B99B460}] => (Allow) C:\Program Files\AndroidTbox\TBoxSVC.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{ECC1C965-BEFE-4F6E-BAD9-AB381AE7E15E}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{55A94923-8D7A-458F-BC51-7018DCAD1C45}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{4F7B3391-8D64-4DF4-8D97-2FDAE3F17617}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{0579E6AB-3694-4E2B-A566-08C7591E71D8}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{F5584F59-ED9B-47C0-A6C7-950F4BB3C841}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{554839E5-24E3-4B53-A355-0EFA1ECBEFAC}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{D490CD2F-C7F7-4812-A890-019024103AF7}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{1E3D8C7E-03B2-43DF-AF1B-1A8C61355888}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{15AF286C-56A1-4259-B0FE-DF8BD80AF7FF}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{9A7B5D28-DD3C-46F6-BEC8-36AF86A1851A}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{57DA57F1-271B-41F1-9E76-DE06DA552E1C}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{1E1C2340-0A8A-4AC5-9AD4-96F1BC3F7EC8}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{9C2E28DB-1BC6-428E-AC69-5C92AEDC6394}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{38D1E316-CE09-44FC-88D7-3267A10A73F4}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D098F2DE-0CBD-40DA-82F6-8BAEE91CD1CB}] => (Allow) h:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F8E57A15-FB63-4BCD-8385-124320EC3C95}] => (Allow) h:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{9D94B572-8AC8-4BDB-8A92-CA935C774FDB}] => (Allow) h:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{8B2CD208-A6F3-46DE-9565-415FB5FCB1E0}] => (Allow) h:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{6FFC4A94-57B1-4BE5-93B7-797CABB4CB66}] => (Allow) h:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{711F1A33-A140-4116-875A-36FE8E6461F5}] => (Allow) h:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D9E54995-B113-4A0C-85F7-C3D301A7ED16}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{DF939CEE-31B9-4D8A-A1DE-62DAD3608954}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A1C61177-E237-44B0-B95D-D027356D2828}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{5815AF80-624F-4876-884E-A454158C091F}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A366817A-12A2-4A98-A20C-79C253897955}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F946EF71-3E90-4F8E-ACE3-7CF4DBCA9577}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{0AB58243-34BE-4BB3-8ACC-5FC18A744163}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{4C8C9F7E-23FB-43E7-BC68-E0FE1DA04468}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{032CBC10-7A79-4865-A02D-CD1EC0A5FF6D}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFFE11F6-D5F5-420B-8360-35B4130B819E}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{C4AC8AAA-761E-429B-B4FC-2AB17BE67584}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{435E1E4B-5BE6-4D47-B11A-753DA9726190}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{FDC0DF07-1A9C-44B7-ABAF-67A839EAEBD3}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{C2BBA2EF-EF86-4569-B072-069A0A3CB3BA}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{881828A4-1832-4E4F-BC4C-E52CF019C8C5}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{D3C307C7-E3C5-4211-85B9-41046E023F06}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{AA988E84-4A9C-4B9F-8BB9-1491ABD25426}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{6E988D73-2162-4BB0-BE0B-AB1D6102A28F}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{601EDF37-5B16-4424-9207-1283F1D96415}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{EE59B883-04CD-4CD0-8EA8-7C5674C74600}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{DDFC388D-4582-4292-BF2B-FD162E36545E}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{01CF9E22-3E11-4D69-8843-150B7136DDA9}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{8C1EEF5D-4D16-4C15-A208-6943C2224024}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{302DF26F-87B1-4F85-A9EB-AF36970EB003}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{A68B26B6-A115-4394-B737-83F686E8340A}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{1B6B00A4-D3AF-4D0C-81C2-1BA6A43DAF55}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9525875E-F4D3-40AD-A2BB-BEBA731AF10E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{790161DF-08DB-4998-A385-38BD417E8112}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D56A9D00-B65C-4AB8-AD64-048EB3CCA44B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{71A9A45D-D86B-4CC5-B9B4-C1E808839732}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C832B4C4-6168-45D4-B595-B1C5B3CC8B13}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D26298C7-C54B-4A0E-B8AA-1971F903C01F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F35DF78A-714A-40E1-8582-355C0EC873C4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{154A656F-8FED-4BC0-8A79-D3E7EDFDF079}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F7DF63CB-95A7-42AB-8C90-BE296839FFD7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B0260CC6-24AD-4388-A281-B5C77D88099A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5373155F-C65E-4563-BF51-861012D12B69}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0F0D78E0-0BB8-42FA-A305-8667DC020B74}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B7CE9BAA-C9E2-4D0C-B302-20A2828A187F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B03922E3-0E3B-45BA-8580-C0103E18C7E9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E078B236-9A5F-43E9-939D-B690A33941DD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

21-12-2024 07:07:32 Instalační služba modulů systému Windows
28-12-2024 12:12:11 Naplánovaný kontrolní bod
05-01-2025 09:14:44 Naplánovaný kontrolní bod
13-01-2025 07:38:09 Operace obnovení

==================== Faulty Device Manager Devices ============
Name: AMD Radeon(TM) Graphics
Description: AMD Radeon(TM) Graphics
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices, Inc.
Service: amdwddmg
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/13/2025 01:26:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program AppMarket.exe verze 3.71.3146.81 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 23cc

Čas spuštění: 01db6588367add7c

Čas ukončení: 4294967295

Cesta k aplikaci: H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe

ID hlášení: 7764c37b-86f5-4e2a-9b69-25b41c3615fc

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (01/13/2025 08:00:54 AM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování se nedokončilo z důvodu chyby zápisu do umístění zálohy D:\. Chyba: Umístění zálohy se nepovedlo najít nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).

Error: (01/13/2025 07:56:48 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-1T75NO9$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 13 Jan 2025 06:56:48 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 332ec1cf-13bc-4894-95d9-e7b15d64364a

Metoda: GET(1094ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (01/13/2025 07:55:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4552,R,98) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU2104B.log došlo k chybě -1811 (0xfffff8ed).

Error: (01/13/2025 07:39:02 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (01/13/2025 07:39:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (01/13/2025 07:36:19 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-1T75NO9$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 13 Jan 2025 06:36:20 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 58e2ad18-1753-46a9-b386-2ffaddd64252

Metoda: GET(281ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (01/13/2025 06:45:28 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-1T75NO9$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 13 Jan 2025 05:45:28 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: e4777f59-0424-4844-8eb1-4655865a00df

Metoda: GET(297ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)


System errors:
=============
Error: (01/13/2025 07:57:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/13/2025 07:57:56 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (120000 ms).

Error: (01/13/2025 07:55:49 AM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.

Error: (01/13/2025 07:55:49 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Inicializace výpisu stavu systému se nezdařila.

Error: (01/13/2025 07:55:07 AM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.

Error: (01/13/2025 07:55:53 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (9:02:25, ‎05.‎01.‎2025) bylo neočekávané.

Error: (01/13/2025 07:38:05 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/13/2025 07:38:05 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (120000 ms).


Windows Defender:
================
Date: 2025-01-12 11:49:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08F515CD-8D3C-4039-BE63-06A79526347B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2025-01-04 06:07:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C4DCACC4-286D-4298-97C7-EEBC9BC2D351}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-12-23 11:27:00
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0A732019-E2B8-4C3A-A435-F093E1B913E3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-12-20 11:43:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {33E62601-754D-437B-B4BA-5463138A337F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-12-20 06:52:38
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {27EE98F6-2FC5-4D6A-9D82-E627EB431D64}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2025-01-13 07:56:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2024-03-16 19:11:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.407.462.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24020.9
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2024-03-16 19:11:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.407.462.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24020.9
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

CodeIntegrity:
===============
Date: 2024-05-11 12:26:43
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\NvCamera\NvCameraAllowlisting64.dll because the set of per-page image hashes could not be found on the system.

Date: 2023-12-31 23:19:12
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AcGenral.dll because the set of per-page image hashes could not be found on the system.

Date: 2022-12-26 19:30:25
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\NvCamera\NvCameraAllowlisting64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: American Megatrends Inc. P7.40 10/26/2022
Motherboard: ASRock AB350M Pro4
Processor: AMD Ryzen 5 5600G with Radeon Graphics
Percentage of memory in use: 68%
Total physical RAM: 15742.16 MB
Available physical RAM: 4974.55 MB
Total Virtual: 28542.16 MB
Available Virtual: 6213.63 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.53 GB) (Free:47.18 GB) (Model: Patriot Burst) NTFS ==>[drive with boot components (obtained from BCD)]
Drive h: () (Fixed) (Total:894.15 GB) (Free:829.75 GB) (Model: Patriot Burst Elite 960GB) NTFS

\\?\Volume{03d1bb58-0000-0000-0000-30c437000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 894.3 GB) (Disk ID: AAB3F884)
Partition 1: (Not Active) - (Size=894.2 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 03D1BB58)
Partition 1: (Active) - (Size=222.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=515 MB) - (Type=27)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119315
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Částečně fungující myš / občas zpomalené PC

#2 Příspěvek od Rudy »

Zdravím!
Spusťte nejprve tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
kockopes
Návštěvník
Návštěvník
Příspěvky: 97
Registrován: 03 čer 2006 09:54

Re: Částečně fungující myš / občas zpomalené PC

#3 Příspěvek od kockopes »

Děkuji.
Po restartu došlo k opětovnému zatuhnutí myši. Nešlo na nic kliknout levým/pravým tlačítkem, ale myš jezdila po obrazovce normálně. Vyřešeno skrz ctrl+alt+delete v té chvíli se rozjela...
zde log:
# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-10-23.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-13-2025
# Duration: 00:00:00
# OS: Windows 10 (Build 19045.5247)
# Cleaned: 6
# Awaiting reboot:1
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Tencent
Deleted C:\Users\Hladk\AppData\Local\Temp\Tencent
Deleted C:\Users\Hladk\AppData\Local\Tencent
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent
Needs Reboot C:\Users\Hladk\AppData\Roaming\Tencent

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{3B3862A6-ADD2-4F1D-8C5A-A1299F6DD61F}

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

***** Reboot Required to Complete *****


***** [ Folders ] *****

Cleaning failed C:\Users\Hladk\AppData\Roaming\Tencent

*************************

AdwCleaner[S00].txt - [1420 octets] - [07/03/2023 10:28:15]
AdwCleaner[S01].txt - [1481 octets] - [07/03/2023 10:28:56]
AdwCleaner[S02].txt - [1542 octets] - [08/03/2023 21:09:20]
AdwCleaner[C02].txt - [1732 octets] - [08/03/2023 21:09:24]
AdwCleaner[S03].txt - [2132 octets] - [13/01/2025 20:00:23]
AdwCleaner[S04].txt - [2193 octets] - [13/01/2025 20:01:19]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C04].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119315
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Částečně fungující myš / občas zpomalené PC

#4 Příspěvek od Rudy »

OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
kockopes
Návštěvník
Návštěvník
Příspěvky: 97
Registrován: 03 čer 2006 09:54

Re: Částečně fungující myš / občas zpomalené PC

#5 Příspěvek od kockopes »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2025
Ran by Hladk (administrator) on DESKTOP-1T75NO9 (13-01-2025 20:56:04)
Running from C:\Users\Hladk\Desktop\FRST64.exe
Loaded Profiles: Hladk
Platform: Microsoft Windows 10 Home Version 22H2 19045.5247 (X64) Language: Čeština (Česko)
Default browser: "C:\Users\Hladk\AppData\Local\Programs\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe <12>
(C:\Program Files (x86)\TeamViewer\TeamViewer.exe ->) (TeamViewer Germany GmbH -> ) C:\Program Files (x86)\TeamViewer\crashpad_handler.exe <2>
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSSrcExt.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> ) C:\Program Files\AMD\CNext\CNext\gpuup.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(C:\Users\Hladk\AppData\Local\Programs\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Hladk\AppData\Local\Programs\Opera\115.0.5322.119\opera_crashreporter.exe
(cmd.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\atiesrxx.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\atieclxx.exe
(explorer.exe ->) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Windows\System32\AMD\ANR\AMDNoiseSuppression.exe
(explorer.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe <4>
(explorer.exe ->) (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenu.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) C:\Users\Hladk\AppData\Local\Programs\Opera\opera.exe <45>
(H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology (Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\ui\AndroidEmulatorEx.exe
(H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology(Shenzhen) Company Limited -> ) H:\Program Files\TxGameAssistant\AppMarket\cef_frame_render.exe <3>
(H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology(Shenzhen) Company Limited -> ) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe
(H:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe ->) (Tencent Technology(Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe
(H:\Program Files\TxGameAssistant\ui\AndroidEmulatorEx.exe ->) (Tencent Technology (Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\ui\aow_exe.exe <33>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\atiesrxx.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (Tencent Technology(Shenzhen) Company Limited -> Tencent) H:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2411.1.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Tencent Technology(Shenzhen) Company Limited -> Tencent LLC) H:\Program Files\TxGameAssistant\AppMarket\wmpf_installer.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [Adobe Reader Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe" (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [Steam] => H:\Program Files\Steam\steam.exe [4388200 2024-01-13] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [AMDNoiseSuppression] => C:\WINDOWS\system32\AMD\ANR\AMDNoiseSuppression.exe [145800 2023-06-14] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [Opera Browser Assistant] => C:\Users\Hladk\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [ProtonVPN] => C:\Program Files\Proton\VPN\ProtonVPN.Launcher.exe (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [com.messenger] => "C:\Users\Hladk\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {7b0d4624-4fef-11ee-9ecd-7085c262d76e} - "F:\setup.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {c65c06d3-2689-11ee-9ea5-7085c262d76e} - "F:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {fcfb6d36-245a-11ee-9ea5-7085c262d76e} - "E:\HonorSuiteOnlineInstaller.exe"
HKLM\...\Print\Monitors\Bullzip PDF Print Monitor: C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll [221696 2019-02-15] (Bullzip) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\131.0.6778.265\Installer\chrmstp.exe [2025-01-13] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2025-01-04]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume14autocheck autochk *

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1A9B7202-56B8-4664-9016-281D1EEC3260} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {63B89C15-D0F5-4AC4-AAAD-CEC266006E06} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-11-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {0F23A28C-26CD-462A-8152-3AEC0AC2D372} - System32\Tasks\Avast Software\Avast SecureLine VPN Bug Report => C:\Program Files\Avast Software\SecureLine VPN\AvBugReport.exe [5998376 2025-01-03] (Avast Software s.r.o. -> Gen Digital Inc.) -> --send "dumps|report" --silent --product 11 --programpath "C:\Program Files\Avast Software\SecureLine VPN" --configpath "C:\ProgramData\Avast Software\SecureLine VPN" --path "C:\ProgramData\Avast Software\SecureLine VPN\log" --path "C:\ProgramData\Avast Software\Icarus\Logs" --logpath "C:\ProgramDat (the data entry has 80 more characters).
Task: {6300EFA5-7422-4256-846F-D36D87E272A5} - System32\Tasks\Avast Software\Avast SecureLine VPN Emergency Update => C:\Program Files\Avast Software\SecureLine VPN\VpnUpdate.exe [3918632 2025-01-03] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0128E280-34CF-4ABF-A2F2-0F776B89E28F} - System32\Tasks\Avast Software\Avast SecureLine VPN Update => C:\Program Files\Common Files\Avast Software\Icarus\avast-vpn\icarus.exe [8289064 2024-12-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {6C0E15A0-5D86-4BC0-9909-C90DA6F6A00F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2564904 2024-11-19] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {E136245A-9836-41BA-8E8C-D36EA45C282E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {6A966B4E-4EEE-41BE-BF5A-1793AFEB9BAE} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-1001266131-2733610755-3133150411-1001 => C:\Users\Hladk\AppData\Local\Programs\Messenger\MessengerHelper.exe [2192632 2024-09-17] (Facebook, Inc. -> Meta Platforms, Inc.)
Task: {F81920D8-8E3F-4F2A-B56E-B04F8CC9AC3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6353EE67-29AA-4980-8F11-FD4A85C6307A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD1065E9-927B-4AAB-9FFF-BB9F473CC5B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A788F487-8AE7-4B6C-8094-CC315647E4E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {68CAAC31-1977-460C-9486-E513F82DF8F6} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030584 2023-11-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {4E814242-EC28-47EA-A742-87A5C257FD57} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {86D753D7-CA53-4814-A843-0F7BB1B65B78} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-1001266131-2733610755-3133150411-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {08253DF9-4318-422B-B6F6-CD459819B3E3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {35E9AF14-3F73-4E6C-B017-217664492734} - System32\Tasks\Opera scheduled assistant Autoupdate 1582748983 => C:\Users\Hladk\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Hladk\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {EDCDCBF7-A611-44FA-BDF8-838B1D08999A} - System32\Tasks\Opera scheduled Autoupdate 1555151344 => C:\Users\Hladk\AppData\Local\Programs\Opera\autoupdate\opera_autoupdate.exe [5596568 2024-12-23] (Opera Norway AS -> Opera Software)
Task: {AF6C3814-013A-4A71-B2F5-F366A1AF44BC} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60344 2023-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
Task: {F31CCDB1-8D17-413B-8886-A9D658E300AF} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324024 2023-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{31f344b7-4480-4955-86df-c15fb8461db6}: [NameServer] 8.8.8.8,208.67.222.222
Tcpip\..\Interfaces\{31f344b7-4480-4955-86df-c15fb8461db6}: [DhcpNameServer] 31.30.90.11 31.30.90.12
Tcpip\..\Interfaces\{31f344b7-4480-4955-86df-c15fb8461db6}: [DhcpDomain] home
Tcpip\..\Interfaces\{3cb66980-facd-4841-a4b9-d40d782f3b68}: [NameServer] 100.122.0.0

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Hladk\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-07]
Edge Notifications: Default -> hxxps://www.messenger.com
Edge Extension: (Dokumenty Google offline) - C:\Users\Hladk\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-07]
Edge Extension: (Edge relevant text changes) - C:\Users\Hladk\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]

FireFox:
========
FF DefaultProfile: 5i7y9o4g.default
FF ProfilePath: C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\5i7y9o4g.default [2022-02-09]
FF ProfilePath: C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release [2025-01-13]
FF DownloadDir: H:\Práce
FF Session Restore: Mozilla\Firefox\Profiles\uzwrieov.default-release -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\uzwrieov.default-release -> hxxps://web.whatsapp.com
FF Extension: (Pinned Messenger) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\fbmessengerpanel@alejandrobrizuela.com.ar.xpi [2022-03-22]
FF Extension: (I don't care about cookies) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2023-12-07]
FF Extension: (Linkificator) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\linkificator@markapola.xpi [2020-04-18]
FF Extension: (Web Messenger) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\rt42fsdty645jIidD@jetpack.xpi [2024-12-05]
FF Extension: (Lightshot (Nástroje snímků)) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{394DCBA4-1F92-4f8e-8EC9-8D2CB90CB69B}.xpi [2024-04-29]
FF Extension: (Hlídač Shopů) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{d6f0f975-91a3-4d78-96f7-5f1859ad18b6}.xpi [2024-11-13]
FF Extension: (PaladinVPN - 100% Unlimited Free VPN Proxy) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{f254dae4-b210-4b30-8001-6e86be242b13}.xpi [2023-07-26]
FF Extension: (WhatsApp Pinned) - C:\Users\Hladk\AppData\Roaming\Mozilla\Firefox\Profiles\uzwrieov.default-release\Extensions\{f2d56336-0f16-4870-bf64-84b3fd97c9c0}.xpi [2024-11-08]
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.14 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default [2024-07-08]
CHR Extension: (Hamty.cz doplněk) - C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gccfnphpieojibjmnodiiobdapckkkfb [2024-05-12]
CHR Extension: (Dokumenty Google offline) - C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Hladk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-20]
CHR HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

Opera:
=======
OPR DefaultProfile: Default

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 QMEmulatorService; H:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [241848 2024-02-21] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
R2 SecureLine; C:\Program Files\Avast Software\SecureLine VPN\VpnSvc.exe [12924200 2025-01-03] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [19472176 2025-01-07] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdfendrmgr; C:\WINDOWS\System32\drivers\amdfendrmgr.sys [36744 2023-07-17] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_54807f69fe156f14\amdsafd.sys [113088 2023-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 amduw23g; C:\WINDOWS\System32\DriverStore\FileRepository\u0397541.inf_amd64_95ed90594a1ac1bd\B398024\amdkmdag.sys [105549744 2023-12-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
R2 aow_drv; H:\Program Files\TxGameAssistant\UI\3.91.5299.81\aow_drv_x64_ev.sys [1402120 2024-11-07] (Tencent Technology (Shenzhen) Company Limited -> Tencent)
S3 aswVpnRdr; C:\WINDOWS\System32\drivers\aswVpnRdr.sys [79632 2025-01-03] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R3 aswWintun; C:\WINDOWS\System32\drivers\aswWintun.sys [40832 2024-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Avast Software)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2019-08-19] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 hn_usbccgpfilter; C:\WINDOWS\System32\drivers\hn_usbccgpfilter.sys [19328 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
U5 hn_usbdev; C:\Windows\System32\Drivers\hn_usbdev.sys [116864 2022-04-24] (Microsoft Windows Hardware Compatibility Publisher -> Honor Technologies Co., Ltd.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2018-08-29] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49008 2020-08-19] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R1 TBoxDrv; C:\Program Files\AndroidTbox\TBoxDrv.sys [291912 2024-02-22] (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
S3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\WINDOWS\System32\drivers\wireguard.sys [489368 2024-05-08] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 amdwddmg; \SystemRoot\System32\DriverStore\FileRepository\u0395307.inf_amd64_04945749e6d18630\B395312\amdkmdag.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

Error Reading file: "C:\ProgramData\Desktop\VLC media player.lnk"
Error Reading file: "C:\ProgramData\Desktop\TeamViewer.lnk"
Error Reading file: "C:\ProgramData\Desktop\Steam.lnk"
Error Reading file: "C:\ProgramData\Desktop\Firefox.lnk"
Error Reading file: "C:\ProgramData\Desktop\EMCO Ping Monitor Free 6.lnk"
Error Reading file: "C:\ProgramData\Desktop\desktop.ini"
Error Reading file: "C:\ProgramData\Desktop\Datovka.lnk"
Error Reading file: "C:\ProgramData\Desktop\Avast SecureLine VPN.lnk"
2025-01-13 20:02 - 2025-01-13 20:02 - 000000000 ____D C:\ProgramData\Tencent
2025-01-13 19:58 - 2025-01-13 19:58 - 008790880 _____ (Malwarebytes) C:\Users\Hladk\Desktop\adwcleaner.exe
2025-01-13 18:47 - 2025-01-13 18:49 - 000062963 _____ C:\Users\Hladk\Desktop\Addition.txt
2025-01-13 18:46 - 2025-01-13 20:57 - 000026393 _____ C:\Users\Hladk\Desktop\FRST.txt
2025-01-13 18:32 - 2025-01-13 18:32 - 002403328 _____ (Farbar) C:\Users\Hladk\Desktop\FRST64.exe
2025-01-11 21:27 - 2025-01-11 21:27 - 000089784 _____ C:\Users\Hladk\Desktop\Booking.com_ Potvrzení.pdf
2025-01-11 15:09 - 2025-01-11 18:01 - 3650943373 _____ C:\Users\Hladk\Downloads\Biele.ticho.HDTV.SK.2022.1080p.mkv
2025-01-11 10:39 - 2025-01-13 07:54 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\bright-vpn
2025-01-11 10:39 - 2025-01-13 07:54 - 000000000 ____D C:\Program Files (x86)\Bright VPN
2025-01-11 10:39 - 2025-01-11 10:39 - 000000000 ____D C:\Users\Hladk\AppData\Local\bright-vpn-updater
2025-01-11 10:39 - 2025-01-11 10:39 - 000000000 ____D C:\Users\Hladk\AppData\Local\BrightData
2025-01-11 10:39 - 2025-01-11 10:39 - 000000000 ____D C:\ProgramData\BrightData
2024-12-30 18:23 - 2025-01-13 07:54 - 000000000 ____D C:\Users\Hladk\Downloads\[ Torrent9.cz ] Le.Bureau.Des.Legendes.S02.FRENCH.HDTV.XviD-ZT
2024-12-30 17:16 - 2024-12-30 17:16 - 000051148 _____ C:\Users\Hladk\Downloads\Dirk-Gently-s-Holistic-Detective-Agency-S01E02(0000281370).srt
2024-12-19 22:51 - 2024-12-19 22:51 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-13 20:56 - 2022-02-09 20:27 - 000000000 ____D C:\FRST
2025-01-13 20:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-13 20:15 - 2020-08-12 20:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-01-13 20:13 - 2019-04-23 22:35 - 000000000 ____D C:\Users\Hladk\AppData\Local\D3DSCache
2025-01-13 20:08 - 2020-08-12 20:11 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-13 20:08 - 2019-12-07 15:41 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2025-01-13 20:08 - 2019-12-07 15:41 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2025-01-13 20:08 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-01-13 20:02 - 2024-04-08 20:23 - 000003118 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2025-01-13 20:02 - 2020-08-12 20:09 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-13 20:02 - 2020-08-12 20:09 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-01-13 20:02 - 2019-12-13 18:50 - 000000000 ____D C:\ProgramData\AVAST Software
2025-01-13 20:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2025-01-13 20:02 - 2019-04-23 21:36 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-13 20:02 - 2019-04-22 18:58 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-01-13 20:01 - 2023-03-07 10:28 - 000000000 ____D C:\AdwCleaner
2025-01-13 20:01 - 2020-08-12 20:03 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-13 20:01 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-01-13 17:12 - 2019-05-05 07:47 - 000000000 ____D C:\Users\Hladk\AppData\Local\ESET
2025-01-13 16:44 - 2021-12-17 21:33 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-01-13 16:44 - 2019-05-29 18:23 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-13 16:06 - 2019-10-10 06:43 - 000000000 ____D C:\Users\Hladk\AppData\Local\ClassicShell
2025-01-13 08:02 - 2020-06-25 09:50 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-01-13 08:00 - 2022-02-09 09:13 - 000001427 _____ C:\Users\Hladk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-01-13 07:59 - 2022-02-09 10:59 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-01-13 07:55 - 2020-08-12 11:48 - 000000000 ____D C:\Users\Hladk
2025-01-13 07:54 - 2024-03-22 21:32 - 000000000 ____D C:\Users\Hladk\Downloads\Incoming
2025-01-13 07:54 - 2021-09-10 18:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2025-01-13 07:54 - 2020-03-16 07:22 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-01-13 07:54 - 2020-03-16 07:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-01-13 07:54 - 2019-04-28 06:06 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\GHISLER
2025-01-13 07:54 - 2019-04-28 06:01 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\vlc
2025-01-13 07:46 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-13 07:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2025-01-12 06:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-01-11 21:26 - 2019-04-13 10:00 - 000000000 ____D C:\Users\Hladk\AppData\Local\Packages
2025-01-03 06:59 - 2023-09-16 16:42 - 000000000 ____D C:\Users\Hladk\AppData\Local\AMD_Common
2024-12-30 20:56 - 2023-06-16 14:56 - 000000000 ____D C:\Users\Hladk\AppData\Local\Halite
2024-12-30 15:38 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-12-30 08:29 - 2020-08-12 20:09 - 000004266 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1555151344
2024-12-30 08:29 - 2019-04-13 11:29 - 000001435 _____ C:\Users\Hladk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-12-29 07:54 - 2024-12-06 06:10 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\Messenger
2024-12-24 16:18 - 2023-08-18 17:36 - 000000000 ____D C:\Users\Hladk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-12-23 11:16 - 2020-08-12 20:09 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-23 11:16 - 2020-08-12 20:09 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-12-21 07:13 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-19 21:37 - 2022-10-13 12:11 - 000000000 ____D C:\ProgramData\IDrive
2024-12-19 21:37 - 2019-05-08 10:56 - 000000000 ____D C:\ProgramData\Logishrd
2024-12-19 20:43 - 2024-05-17 07:43 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2024-12-19 20:43 - 2023-11-17 06:13 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2024-12-19 20:43 - 2023-11-17 06:13 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll

==================== Files in the root of some directories ========

2023-01-01 17:17 - 2023-01-01 17:17 - 000000274 _____ () C:\ProgramData\fontcacheev1.dat
2019-04-30 18:32 - 2018-10-25 21:00 - 000006026 _____ () C:\Program Files (x86)\current.btskin
2019-04-30 18:37 - 2019-04-30 18:43 - 000003754 _____ () C:\Program Files (x86)\dht.dat
2019-04-30 18:37 - 2019-04-30 18:37 - 000003676 _____ () C:\Program Files (x86)\dht.dat.old
2019-04-30 18:43 - 2019-04-30 18:37 - 000000058 _____ () C:\Program Files (x86)\resume.20190430.194316.dat
2019-04-30 18:37 - 2019-04-30 18:43 - 000000058 _____ () C:\Program Files (x86)\resume.dat
2019-04-30 18:37 - 2019-04-30 18:37 - 000000058 _____ () C:\Program Files (x86)\resume.dat.old
2019-04-30 18:37 - 2019-04-30 18:43 - 000000099 _____ () C:\Program Files (x86)\rss.dat
2019-04-30 18:37 - 2019-04-30 18:37 - 000000099 _____ () C:\Program Files (x86)\rss.dat.old
2019-04-30 18:32 - 2019-04-30 18:43 - 000005623 _____ () C:\Program Files (x86)\settings.dat.old
2019-04-30 18:31 - 2018-08-28 18:30 - 000294384 _____ (emc) C:\Program Files (x86)\uninstall.exe
2019-04-30 18:32 - 2018-10-25 21:00 - 000189334 _____ () C:\Program Files (x86)\utorrent-221-25534.chm
2019-04-30 18:32 - 2018-10-25 21:00 - 000039237 _____ () C:\Program Files (x86)\utorrent.lng
2019-04-30 18:32 - 2018-10-25 21:00 - 000000049 _____ () C:\Program Files (x86)\utorrent.url
2019-04-30 18:32 - 2018-10-25 21:00 - 000184498 _____ () C:\Program Files (x86)\webui.zip

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2025
Ran by Hladk (13-01-2025 20:58:04)
Running from C:\Users\Hladk\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5247 (X64) (2020-08-12 19:09:37)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1001266131-2733610755-3133150411-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1001266131-2733610755-3133150411-503 - Limited - Disabled)
disk (S-1-5-21-1001266131-2733610755-3133150411-1003 - Limited - Enabled)
Guest (S-1-5-21-1001266131-2733610755-3133150411-501 - Limited - Enabled)
Hladk (S-1-5-21-1001266131-2733610755-3133150411-1001 - Administrator - Enabled) => C:\Users\Hladk
WDAGUtilityAccount (S-1-5-21-1001266131-2733610755-3133150411-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.005.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 5.08.02.027 - Advanced Micro Devices, Inc.)
AMD Product Verification Tool version 1.0.6.4 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.6.4 - AMD)
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.24.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 23.Q4 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{94dc9043-935f-4e10-ac8b-5ce0ac055188}) (Version: 5.08.02.027 - Advanced Micro Devices, Inc.) Hidden
Avast SecureLine VPN (HKLM\...\Avast SecureLine) (Version: 24.12.10985.14274 - Avast Software)
Bullzip PDF Printer 11.9.0.2735 (HKLM\...\Bullzip PDF Printer_is1) (Version: 11.9.0.2735 - Bullzip)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Datovka (HKLM-x32\...\Datovka) (Version: 4.24.0 - CZ.NIC, z. s. p. o.)
EMCO Ping Monitor Free 6.3 (HKLM\...\{71897DBE-7D98-47FC-88E7-73246EDB829E}) (Version: 6.3.0.5014 - EMCO Software)
GameLoop (HKLM-x32\...\MobileGamePC) (Version: 5.1.139.90 - Tencent Technology Company)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.265 - Google LLC)
Halite (HKLM\...\{B2C09126-EBB0-464E-8AA6-1D844E84B92D}) (Version: 0.4.04 - BinaryNotions.com)
HWiNFO32 verze 1.5 (HKLM-x32\...\HWiNFO32_is1) (Version: 1.5 - )
JDownloader 2 (HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Messenger (HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 215.6.643112060 - Facebook, Inc.)
Microsoft .NET Host - 6.0.11 (x64) (HKLM\...\{B92B890A-04F2-4880-BA20-20D4364FB263}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.11 (x64) (HKLM\...\{5E63E49B-C88C-46C5-855C-A7B07C11CDC8}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.11 (x64) (HKLM\...\{C3DD1448-513A-4DB8-978D-6991562EA63D}) (Version: 48.47.50420 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.146 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.112 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM\...\{A39D4115-3A27-4245-AE92-3214B8B21932}) (Version: 48.47.50419 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.11 (x64) (HKLM-x32\...\{c4846f79-a633-4ae4-92a3-92fdbeb33da2}) (Version: 6.0.11.31823 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 133.0.3 (x64 cs)) (Version: 133.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 74.0 - Mozilla)
NVIDIA Ovladače grafiky 457.51 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.51 - NVIDIA Corporation)
Opera Stable 115.0.5322.119 (HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Opera 115.0.5322.119) (Version: 115.0.5322.119 - Opera Software)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.61.4 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)

Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-12-13] ()
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2025-01-13] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2025-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2025-01-13] (Microsoft Corporation) [MS Ad]
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2025-01-13] (Microsoft Platform Extensions)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_7.0.8.0_neutral__mcm4njqhnhss8 [2025-01-13] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-01-13] (NVIDIA Corp.)
Spotify – hudba a podcasty -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0 [2025-01-13] (Spotify AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm [2025-01-13] (WhatsApp Inc.) [Startup Task]
WPS Office for Free -> C:\Program Files\WindowsApps\ZhuhaiKingsoftOfficeSoftw.WPSOfficeforFree_10.2.7636.0_x86__924xes6e8q1tw [2025-01-13] (Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "C:\Program Files\Macrium\Common\ReflectMonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{241D10A2-AF17-4DE3-BB50-A51380F908D4}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.257\notification_helper.exe" => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.11\ProtonVPN.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> C:\Users\Hladk\AppData\Local\Microsoft\OneDrive\19.033.0218.0011\FileCoAuth.exe => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{F349F8C6-386F-40D5-BDC0-D0696FEF9B10}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.204\notification_helper.exe" => No File
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2023-11-22] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\nvshext.dll [2020-12-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2019-04-25 18:29 - 2019-02-15 16:13 - 000221696 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll
2017-08-13 07:49 - 2017-08-13 07:49 - 003664184 _____ (Ivaylo Beltchev -> IvoSoft) [File not signed] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://p30g.com/
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [File not signed]

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\localhost -> localhost

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-09-15 08:31 - 2019-12-15 09:24 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files\dotnet\
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hladk\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\17680161981375668511\133812267607782730.jpg
DNS Servers: 8.8.8.8 - 208.67.222.222
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 0)
Windows Firewall is enabled.

Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Ethernet 2: TAP-Windows Adapter V9 -> tap0901.sys
Avast SecureLine VPN: Avast SecureLine Wintun Adapter -> aswWintun.sys
Ethernet: Realtek PCIe GBE Family Controller -> rt640x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HuaweiHiSuiteService64.exe => 2
MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2
MSCONFIG\Services: NvTelemetryContainer => 2
MSCONFIG\Services: TeamViewer => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "Reflect UI"
HKLM\...\StartupApproved\Run: => "Služba Acronis Scheduler2"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "IDrive Background process"
HKLM\...\StartupApproved\Run32: => "IDrive Tray"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "utweb"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_A47958FB13D97951C426ED89C115B719"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\StartupApproved\Run: => "com.messenger"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{908618FE-CC52-4A9A-8CFD-B0D4FD1BFFD9}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{4B00823D-32CE-46E5-B498-E26DE4638092}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{9253AB2C-7D13-4D93-BCF9-3415F7B3B48F}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [TCP Query User{48E0F537-E9AC-43DC-8170-0C64992FAFA8}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [{5C43BB95-AC66-4BC4-8CE4-83D7A4E57F08}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1C1D8ACE-A4EB-43AC-9609-37A25BA1EC20}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{7C1683A2-CBE1-435E-A8F0-2B410EC56B1A}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{555844A4-C5B2-4F24-A023-7E8CB235EBE3}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [UDP Query User{8DD0C2F1-88B3-46E6-A253-45A1061A6497}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [TCP Query User{651A057B-734B-4FCF-AC7E-79516B6A06AC}C:\program files\nová složka\bin\javaw.exe] => (Allow) C:\program files\nová složka\bin\javaw.exe
FirewallRules: [UDP Query User{E7EF39A2-3D9F-43E8-B981-99566F76651B}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [TCP Query User{56F37981-C9BC-4AA1-AE8B-F9CAF543E069}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [UDP Query User{EDC27545-5BF3-4D0E-BF64-7A2E88E38ADD}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{A279A69B-E698-4EC3-B9E4-9BBE1EAF73D9}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [{77F15D8E-B478-4C82-AA6F-8C4CCBF1ABB1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe => No File
FirewallRules: [TCP Query User{42FFCE23-8ABF-42CB-8EED-BFE8B47302A3}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [UDP Query User{8870A970-7BB9-49CC-BA25-BC47DCB5C2C1}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [{D2247CA7-CF3D-4B68-A6DF-B895CA833728}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A5DC32B9-D0EB-4CCD-88F0-C7668B67E69A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{537ECD41-1A17-4530-A8B9-8BC143CC2445}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{33AD07A3-9CDD-4FE2-9547-1380D9B44B1E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{35B12E08-13D8-4621-901C-A47EE7E42F6B}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [TCP Query User{760BDFEB-F33E-4689-995B-8F4F61C78C5A}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{AADA818B-AD5A-4D84-B0A5-143CE63FB9B8}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{FD50663E-8A65-4975-9C1B-3C10D164B9A7}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{806C1030-C04C-4C00-AA79-B4BA3E7C9A13}C:\users\hladk\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\hladk\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{004C4E65-348C-4DD1-BB99-3FB7242E9BDD}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{9FBA33BC-B66D-42FB-93C0-E23142A49FD1}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{D34F61BA-23B8-45AF-A496-B345C41AC181}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{41E41DB2-720B-4249-9D73-ABE6835C1FB4}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{5AE63CF3-85F0-48B4-BB69-934B68A735EA}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{3EBD5A63-15BE-4904-B5F7-CB6FA0FB1EDE}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{7BE8AD23-84AA-47C8-B7AB-51AA0CDFAC0D}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{A056D829-F727-4489-9428-1ABD2B117236}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{B70E1CCE-3C6D-4141-9728-8DC81914FEA8}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{B5ECD5A7-2175-4A51-8D4F-161647CB0CD5}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{8FCD6066-C298-4839-98A4-E48EFF241B3C}] => (Allow) C:\Program Files\Halite\Halite.exe (Binary Notions) [File not signed]
FirewallRules: [{4F90996B-C56D-46E4-A182-99B7B37109CD}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{79CF26AF-7A18-4CAA-8639-02B02D01C215}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{860EC391-0517-427B-9D05-562F8521A463}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{3336EC84-879C-481A-8482-3010F91319D7}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{93D27C23-6A89-4AA1-B9F6-DE8663ECA72C}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{94E8281A-247F-4D42-9E25-DA5992FBE337}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File
FirewallRules: [{19AF3567-3213-43E5-B426-B974221ADFB3}] => (Allow) C:\Program Files (x86)\PaladinVPN\Paladinsvc.exe => No File
FirewallRules: [{E3569F77-75AE-4DED-937C-CA1735329045}] => (Allow) C:\Program Files (x86)\PaladinVPN\PaladinVPN.exe => No File
FirewallRules: [{4E116FBD-4E62-482F-9636-14EAF2887CE9}] => (Allow) C:\Program Files (x86)\PaladinVPN\feedback.exe => No File
FirewallRules: [{E454C439-1B03-44B0-AA67-03A52BF79B16}] => (Allow) C:\Program Files (x86)\PaladinVPN\upgrade.exe => No File
FirewallRules: [{27C8D679-5DB6-48AD-B45E-837583430BC6}] => (Allow) C:\Program Files (x86)\PaladinVPN\tun.exe => No File
FirewallRules: [{FFA18D37-3644-4879-89AA-145023FCDC0B}] => (Allow) C:\Program Files (x86)\PaladinVPN\line.exe => No File
FirewallRules: [{DF9C5B4D-EA5B-4C07-A31B-5D99FBEAC9F1}] => (Allow) C:\Program Files (x86)\PaladinVPN\tunnle\tunnle.exe => No File
FirewallRules: [{5A58E54D-D6B4-4E57-B415-AEF631124ADA}] => (Allow) C:\Program Files (x86)\PaladinVPN\pldsvc.exe => No File
FirewallRules: [{BB5E44E0-9F3A-4F3E-9336-0723C3A7EBEB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{4815278F-B264-4E19-B6A2-C0C46A2F16FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{21D9B300-2E46-476C-8EDF-50F3278FF70E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{35392DE8-5964-4484-AFFA-959AFA35724F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{E4272E7A-CBFB-49EE-8B16-ED1FDE65C4FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{10C8BC89-F8EA-4D2B-BCF1-15E842F4814C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{960CBFB0-095A-43F1-AF1E-1D2C2DAC78F4}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{531EA7A7-C4B1-49DC-82F5-3E3BCF168D8D}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{25198491-D400-4201-AFB9-D1F3397BFE2E}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [{6FD8C045-1F7E-4CD6-8454-7E0DF7062564}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [{83F0CB76-BA59-4E13-AFDD-A093EE6781B7}] => (Allow) H:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A67E242D-6706-4D45-A9BC-B79EC0890EF3}] => (Allow) H:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{779B07D0-D195-4BFE-919B-38054330551F}C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe] => (Allow) C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{9390E899-C940-4153-89B3-0E8D743AC480}C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe] => (Allow) C:\users\hladk\documents\nová složka\jdownloader\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{E5C7CAC4-399E-4C53-9F10-136CB345C7A1}] => (Allow) H:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{367A67AF-CD05-412A-9954-CEA0F63A784A}] => (Allow) H:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{19E2BB1B-7BFC-466B-A76C-A9958BD92E67}] => (Allow) h:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{6C7F0779-2B35-4BD2-A3FB-E04A9D09F040}] => (Allow) h:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{10649498-5D7F-4A8E-99DE-9CACE6B52561}] => (Allow) h:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{675C8CB3-1393-4314-A77E-060771EF5A42}] => (Allow) h:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{E2AC5AD2-1B33-40B9-BBD1-930B68A1236D}] => (Allow) h:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{8B812F48-9EF0-471F-89B5-773D15837395}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A70DC069-D8B4-410F-8FB6-506D3FE0A733}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{7B5B84F2-C089-4BEF-9CFA-D6A6F7BF97D2}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{0AE43303-ABFE-47E4-860B-D22A3D9D7A9D}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{0BA0DC03-6A4E-4063-B2C2-2F5EC7F526C0}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{9526EC8A-F91C-4857-A540-52686DDAD6F5}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{8E3414F2-4C4A-421B-B5F2-8BB450805B6B}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{95AF7E6D-6051-4B2D-9253-4DC8B97E9166}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{4256FD4D-350B-44D4-B88E-9C5309E185EE}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{574CDB73-1F59-42FD-AAFE-48575BE0CFC5}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{2CE7BE10-3417-4CA6-BE22-E9615886D7C9}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{9555000F-4706-4B77-B048-2D208B359B86}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{E7D4DF7C-5740-4B71-B932-4A5B5465ECA8}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{FB40256E-E653-47DF-98A4-742FFB530912}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{B8A4F47D-FB78-415E-BE31-1FF51DC36654}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{2C44299B-93DF-43FA-B8AD-38AD63DD8A70}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A7745AFE-D0A1-4D75-B18B-05253D671F77}] => (Allow) h:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{3BB5565D-EB22-4184-A260-E558429C7AD3}] => (Allow) h:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{E0F54411-5891-4C74-8F8A-14A6DF20F828}] => (Allow) h:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{DF97CEC9-9E1B-4760-9219-99F98D12BD8A}] => (Allow) h:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{94E2D437-C6D0-4B65-A950-CC39ABF27321}] => (Allow) h:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [TCP Query User{FC7DDEDE-4A88-43CD-8B4D-62074F75FF82}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{0CCFE7D9-94D7-401E-B3A4-C61F51C373CC}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{CAA382D7-ED2B-42F5-B258-D3E0694543BF}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{CC535EB9-F76C-4A03-B362-2EC2EE644C29}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [{9964C3A4-1E99-41FF-BBC6-F9D861BA6226}] => (Allow) C:\Program Files\AndroidTbox\THypervBox.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{491AE32E-8734-4F5E-B461-B17B36C1290A}] => (Allow) C:\Program Files\AndroidTbox\TBoxHeadless.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{471EC775-20E2-4B6F-B5EA-D66F28752228}] => (Allow) C:\Program Files\AndroidTbox\TBoxNetNAT.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{68523975-2286-4895-B009-1A143E342BD6}] => (Allow) C:\Program Files\AndroidTbox\TBoxSDL.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{80178366-9F1A-4B84-877B-F427E53F8F33}] => (Allow) C:\Program Files\AndroidTbox\TBoxExtPackHelperApp.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{CC77C8E0-3EAF-4064-8263-52542F333AE6}] => (Allow) C:\Program Files\AndroidTbox\USBInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{7CCE5869-25B2-466F-933C-7D77B73A7230}] => (Allow) C:\Program Files\AndroidTbox\TBoxNetDHCP.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{61523A0D-1DFF-469B-AA38-59B4204539BF}] => (Allow) C:\Program Files\AndroidTbox\TBoxManage.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{7B75A496-3104-46B9-98D5-F21C9AD53087}] => (Allow) C:\Program Files\AndroidTbox\USBUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{D929AE96-A357-498F-86C4-868490DEDE95}] => (Allow) C:\Program Files\AndroidTbox\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{BB148E0C-EF58-477E-8205-B3263090882B}] => (Allow) C:\Program Files\AndroidTbox\SUPLoggerCtl.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{920C89D9-A9FE-41F0-8301-75E555889839}] => (Allow) C:\Program Files\AndroidTbox\NetFltUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{F0820525-33D2-4A78-AAEE-201EDFD37038}] => (Allow) C:\Program Files\AndroidTbox\SUPUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{6DFDE3A8-C4AA-476A-8262-78ED1F2E4C1C}] => (Allow) C:\Program Files\AndroidTbox\TBoxBalloonCtrl.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{53AE2924-07D0-4CF2-8918-7408A066DBEC}] => (Allow) C:\Program Files\AndroidTbox\SUPInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{5342BEF7-4C59-409C-8324-D5F08B99B460}] => (Allow) C:\Program Files\AndroidTbox\TBoxSVC.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{ECC1C965-BEFE-4F6E-BAD9-AB381AE7E15E}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{55A94923-8D7A-458F-BC51-7018DCAD1C45}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{4F7B3391-8D64-4DF4-8D97-2FDAE3F17617}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{0579E6AB-3694-4E2B-A566-08C7591E71D8}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{F5584F59-ED9B-47C0-A6C7-950F4BB3C841}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{554839E5-24E3-4B53-A355-0EFA1ECBEFAC}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{D490CD2F-C7F7-4812-A890-019024103AF7}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{1E3D8C7E-03B2-43DF-AF1B-1A8C61355888}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{15AF286C-56A1-4259-B0FE-DF8BD80AF7FF}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{9A7B5D28-DD3C-46F6-BEC8-36AF86A1851A}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{57DA57F1-271B-41F1-9E76-DE06DA552E1C}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{1E1C2340-0A8A-4AC5-9AD4-96F1BC3F7EC8}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{9C2E28DB-1BC6-428E-AC69-5C92AEDC6394}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{38D1E316-CE09-44FC-88D7-3267A10A73F4}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D098F2DE-0CBD-40DA-82F6-8BAEE91CD1CB}] => (Allow) h:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F8E57A15-FB63-4BCD-8385-124320EC3C95}] => (Allow) h:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{9D94B572-8AC8-4BDB-8A92-CA935C774FDB}] => (Allow) h:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{8B2CD208-A6F3-46DE-9565-415FB5FCB1E0}] => (Allow) h:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{6FFC4A94-57B1-4BE5-93B7-797CABB4CB66}] => (Allow) h:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{711F1A33-A140-4116-875A-36FE8E6461F5}] => (Allow) h:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{D9E54995-B113-4A0C-85F7-C3D301A7ED16}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{DF939CEE-31B9-4D8A-A1DE-62DAD3608954}] => (Allow) H:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{A1C61177-E237-44B0-B95D-D027356D2828}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{5815AF80-624F-4876-884E-A454158C091F}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A366817A-12A2-4A98-A20C-79C253897955}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{F946EF71-3E90-4F8E-ACE3-7CF4DBCA9577}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{0AB58243-34BE-4BB3-8ACC-5FC18A744163}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{4C8C9F7E-23FB-43E7-BC68-E0FE1DA04468}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{032CBC10-7A79-4865-A02D-CD1EC0A5FF6D}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{BFFE11F6-D5F5-420B-8360-35B4130B819E}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{C4AC8AAA-761E-429B-B4FC-2AB17BE67584}] => (Allow) C:\Program Files\Avast Software\SecureLine VPN\Vpn.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{435E1E4B-5BE6-4D47-B11A-753DA9726190}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{FDC0DF07-1A9C-44B7-ABAF-67A839EAEBD3}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{C2BBA2EF-EF86-4569-B072-069A0A3CB3BA}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{881828A4-1832-4E4F-BC4C-E52CF019C8C5}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{D3C307C7-E3C5-4211-85B9-41046E023F06}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{AA988E84-4A9C-4B9F-8BB9-1491ABD25426}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{6E988D73-2162-4BB0-BE0B-AB1D6102A28F}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{601EDF37-5B16-4424-9207-1283F1D96415}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{EE59B883-04CD-4CD0-8EA8-7C5674C74600}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{DDFC388D-4582-4292-BF2B-FD162E36545E}] => (Allow) h:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{01CF9E22-3E11-4D69-8843-150B7136DDA9}] => (Allow) h:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{8C1EEF5D-4D16-4C15-A208-6943C2224024}] => (Allow) h:\program files\txgameassistant\ui\TInst.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{302DF26F-87B1-4F85-A9EB-AF36970EB003}] => (Allow) h:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology (Shenzhen) Company Limited -> )
FirewallRules: [{A68B26B6-A115-4394-B737-83F686E8340A}] => (Allow) h:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology (Shenzhen) Company Limited -> Tencent)
FirewallRules: [{1B6B00A4-D3AF-4D0C-81C2-1BA6A43DAF55}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9525875E-F4D3-40AD-A2BB-BEBA731AF10E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{790161DF-08DB-4998-A385-38BD417E8112}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D56A9D00-B65C-4AB8-AD64-048EB3CCA44B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{71A9A45D-D86B-4CC5-B9B4-C1E808839732}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C832B4C4-6168-45D4-B595-B1C5B3CC8B13}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D26298C7-C54B-4A0E-B8AA-1971F903C01F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F35DF78A-714A-40E1-8582-355C0EC873C4}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{154A656F-8FED-4BC0-8A79-D3E7EDFDF079}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F7DF63CB-95A7-42AB-8C90-BE296839FFD7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.253.438.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B0260CC6-24AD-4388-A281-B5C77D88099A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5373155F-C65E-4563-BF51-861012D12B69}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0F0D78E0-0BB8-42FA-A305-8667DC020B74}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B7CE9BAA-C9E2-4D0C-B302-20A2828A187F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B03922E3-0E3B-45BA-8580-C0103E18C7E9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E078B236-9A5F-43E9-939D-B690A33941DD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

28-12-2024 12:12:11 Naplánovaný kontrolní bod
05-01-2025 09:14:44 Naplánovaný kontrolní bod
13-01-2025 07:38:09 Operace obnovení

==================== Faulty Device Manager Devices ============
Name: AMD Radeon(TM) Graphics
Description: AMD Radeon(TM) Graphics
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Advanced Micro Devices, Inc.
Service: amdwddmg
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Event log errors: ========================

Application errors:
==================
Error: (01/13/2025 08:02:17 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-1T75NO9$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 13 Jan 2025 19:02:16 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 8a7d593a-68f3-4065-97f5-7799f4ad547e

Metoda: GET(391ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (01/13/2025 01:26:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program AppMarket.exe verze 3.71.3146.81 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 23cc

Čas spuštění: 01db6588367add7c

Čas ukončení: 4294967295

Cesta k aplikaci: H:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe

ID hlášení: 7764c37b-86f5-4e2a-9b69-25b41c3615fc

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (01/13/2025 08:00:54 AM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: Zálohování se nedokončilo z důvodu chyby zápisu do umístění zálohy D:\. Chyba: Umístění zálohy se nepovedlo najít nebo není platné. Zkontrolujte nastavení zálohování a umístění zálohy. (0x81000006).

Error: (01/13/2025 07:56:48 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-1T75NO9$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 13 Jan 2025 06:56:48 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 332ec1cf-13bc-4894-95d9-e7b15d64364a

Metoda: GET(1094ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (01/13/2025 07:55:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4552,R,98) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU2104B.log došlo k chybě -1811 (0xfffff8ed).

Error: (01/13/2025 07:39:02 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (01/13/2025 07:39:02 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (01/13/2025 07:36:19 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-1T75NO9$ přes https://AMD-KeyId-52fb59e29aa83a962fb9e ... s/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-52fb59e29aa83a962fb9eef0fe5b4811de6b751e.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Mon, 13 Jan 2025 06:36:20 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 58e2ad18-1753-46a9-b386-2ffaddd64252

Metoda: GET(281ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)


System errors:
=============
Error: (01/13/2025 08:04:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (01/13/2025 08:04:04 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (120000 ms).

Error: (01/13/2025 08:01:56 PM) (Source: TPM) (EventID: 15) (User: NT AUTHORITY)
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.

Error: (01/13/2025 08:01:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avast SecureLine VPN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (01/13/2025 08:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/13/2025 08:01:23 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (01/13/2025 08:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD External Events Utility byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/13/2025 08:01:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD Crash Defender Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2025-01-12 11:49:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08F515CD-8D3C-4039-BE63-06A79526347B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2025-01-04 06:07:43
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C4DCACC4-286D-4298-97C7-EEBC9BC2D351}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-12-23 11:27:00
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0A732019-E2B8-4C3A-A435-F093E1B913E3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-12-20 11:43:30
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {33E62601-754D-437B-B4BA-5463138A337F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-12-20 06:52:38
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {27EE98F6-2FC5-4D6A-9D82-E627EB431D64}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:

Date: 2025-01-13 07:56:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Aktuální
Kód chyby: 0x80070003
Popis chyby: Systém nemůže nalézt uvedenou cestu.
Verze bezpečnostních informací: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2024-03-16 19:11:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.407.462.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24020.9
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

Date: 2024-03-16 19:11:41
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.407.462.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.24020.9
Kód chyby: 0x80070102
Popis chyby: Vypršel časový limit operace čekání.

CodeIntegrity:
===============
Date: 2024-05-11 12:26:43
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\NvCamera\NvCameraAllowlisting64.dll because the set of per-page image hashes could not be found on the system.

Date: 2023-12-31 23:19:12
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AcGenral.dll because the set of per-page image hashes could not be found on the system.

Date: 2022-12-26 19:30:25
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\NvCamera\NvCameraAllowlisting64.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

BIOS: American Megatrends Inc. P7.40 10/26/2022
Motherboard: ASRock AB350M Pro4
Processor: AMD Ryzen 5 5600G with Radeon Graphics
Percentage of memory in use: 67%
Total physical RAM: 15742.16 MB
Available physical RAM: 5092.63 MB
Total Virtual: 28542.16 MB
Available Virtual: 9197.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.53 GB) (Free:47.88 GB) (Model: Patriot Burst) NTFS ==>[drive with boot components (obtained from BCD)]
Drive h: () (Fixed) (Total:894.15 GB) (Free:829.74 GB) (Model: Patriot Burst Elite 960GB) NTFS

\\?\Volume{03d1bb58-0000-0000-0000-30c437000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 894.3 GB) (Disk ID: AAB3F884)
Partition 1: (Not Active) - (Size=894.2 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 03D1BB58)
Partition 1: (Active) - (Size=222.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=515 MB) - (Type=27)

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119315
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Částečně fungující myš / občas zpomalené PC

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [com.messenger] => "C:\Users\Hladk\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {7b0d4624-4fef-11ee-9ecd-7085c262d76e} - "F:\setup.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {c65c06d3-2689-11ee-9ea5-7085c262d76e} - "F:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {fcfb6d36-245a-11ee-9ea5-7085c262d76e} - "E:\HonorSuiteOnlineInstaller.exe"
Task: {E136245A-9836-41BA-8E8C-D36EA45C282E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E136245A-9836-41BA-8E8C-D36EA45C282E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "C:\Program Files\Macrium\Common\ReflectMonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{241D10A2-AF17-4DE3-BB50-A51380F908D4}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.257\notification_helper.exe" => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.11\ProtonVPN.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> C:\Users\Hladk\AppData\Local\Microsoft\OneDrive\19.033.0218.0011\FileCoAuth.exe => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{F349F8C6-386F-40D5-BDC0-D0696FEF9B10}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.204\notification_helper.exe" => No File
FirewallRules: [UDP Query User{7C1683A2-CBE1-435E-A8F0-2B410EC56B1A}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{555844A4-C5B2-4F24-A023-7E8CB235EBE3}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [UDP Query User{E7EF39A2-3D9F-43E8-B981-99566F76651B}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [TCP Query User{56F37981-C9BC-4AA1-AE8B-F9CAF543E069}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [UDP Query User{EDC27545-5BF3-4D0E-BF64-7A2E88E38ADD}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{A279A69B-E698-4EC3-B9E4-9BBE1EAF73D9}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [{77F15D8E-B478-4C82-AA6F-8C4CCBF1ABB1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe => No File
FirewallRules: [TCP Query User{42FFCE23-8ABF-42CB-8EED-BFE8B47302A3}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [UDP Query User{8870A970-7BB9-49CC-BA25-BC47DCB5C2C1}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [TCP Query User{35B12E08-13D8-4621-901C-A47EE7E42F6B}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [{004C4E65-348C-4DD1-BB99-3FB7242E9BDD}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{9FBA33BC-B66D-42FB-93C0-E23142A49FD1}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{D34F61BA-23B8-45AF-A496-B345C41AC181}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{41E41DB2-720B-4249-9D73-ABE6835C1FB4}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{5AE63CF3-85F0-48B4-BB69-934B68A735EA}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{3EBD5A63-15BE-4904-B5F7-CB6FA0FB1EDE}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{7BE8AD23-84AA-47C8-B7AB-51AA0CDFAC0D}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{A056D829-F727-4489-9428-1ABD2B117236}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{B70E1CCE-3C6D-4141-9728-8DC81914FEA8}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{B5ECD5A7-2175-4A51-8D4F-161647CB0CD5}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{4F90996B-C56D-46E4-A182-99B7B37109CD}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{79CF26AF-7A18-4CAA-8639-02B02D01C215}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{860EC391-0517-427B-9D05-562F8521A463}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{3336EC84-879C-481A-8482-3010F91319D7}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{93D27C23-6A89-4AA1-B9F6-DE8663ECA72C}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{94E8281A-247F-4D42-9E25-DA5992FBE337}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File
FirewallRules: [{19AF3567-3213-43E5-B426-B974221ADFB3}] => (Allow) C:\Program Files (x86)\PaladinVPN\Paladinsvc.exe => No File
FirewallRules: [{E3569F77-75AE-4DED-937C-CA1735329045}] => (Allow) C:\Program Files (x86)\PaladinVPN\PaladinVPN.exe => No File
FirewallRules: [{4E116FBD-4E62-482F-9636-14EAF2887CE9}] => (Allow) C:\Program Files (x86)\PaladinVPN\feedback.exe => No File
FirewallRules: [{E454C439-1B03-44B0-AA67-03A52BF79B16}] => (Allow) C:\Program Files (x86)\PaladinVPN\upgrade.exe => No File
FirewallRules: [{27C8D679-5DB6-48AD-B45E-837583430BC6}] => (Allow) C:\Program Files (x86)\PaladinVPN\tun.exe => No File
FirewallRules: [{FFA18D37-3644-4879-89AA-145023FCDC0B}] => (Allow) C:\Program Files (x86)\PaladinVPN\line.exe => No File
FirewallRules: [{DF9C5B4D-EA5B-4C07-A31B-5D99FBEAC9F1}] => (Allow) C:\Program Files (x86)\PaladinVPN\tunnle\tunnle.exe => No File
FirewallRules: [{5A58E54D-D6B4-4E57-B415-AEF631124ADA}] => (Allow) C:\Program Files (x86)\PaladinVPN\pldsvc.exe => No File
FirewallRules: [{BB5E44E0-9F3A-4F3E-9336-0723C3A7EBEB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{4815278F-B264-4E19-B6A2-C0C46A2F16FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{21D9B300-2E46-476C-8EDF-50F3278FF70E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{35392DE8-5964-4484-AFFA-959AFA35724F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{E4272E7A-CBFB-49EE-8B16-ED1FDE65C4FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{10C8BC89-F8EA-4D2B-BCF1-15E842F4814C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{960CBFB0-095A-43F1-AF1E-1D2C2DAC78F4}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{531EA7A7-C4B1-49DC-82F5-3E3BCF168D8D}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{25198491-D400-4201-AFB9-D1F3397BFE2E}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [{6FD8C045-1F7E-4CD6-8454-7E0DF7062564}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [TCP Query User{CAA382D7-ED2B-42F5-B258-D3E0694543BF}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{CC535EB9-F76C-4A03-B362-2EC2EE644C29}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
kockopes
Návštěvník
Návštěvník
Příspěvky: 97
Registrován: 03 čer 2006 09:54

Re: Částečně fungující myš / občas zpomalené PC

#7 Příspěvek od kockopes »

Děkuji. Malá změna po restartu. Myš funguje, ale při kliknutí pravým tlačítkem se zobrazuje kontextová nabídka z levého tlačítka. při pojíždění po ploše se za ní zobrazuje linka nebo čtverec, jako bych měl vybírat nějaké soubory či složky. Kliknutím na levé tlačítko myši se nic nestane. "Znormální" to opět přes ctrl+alt+delete po kliknutí na správce úloh. Zde log:

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-01-2025
Ran by Hladk (13-01-2025 22:01:49) Run:2
Running from C:\Users\Hladk\Desktop
Loaded Profiles: Hladk
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\Run: [com.messenger] => "C:\Users\Hladk\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {7b0d4624-4fef-11ee-9ecd-7085c262d76e} - "F:\setup.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {c65c06d3-2689-11ee-9ea5-7085c262d76e} - "F:\HonorSuiteOnlineInstaller.exe"
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\...\MountPoints2: {fcfb6d36-245a-11ee-9ea5-7085c262d76e} - "E:\HonorSuiteOnlineInstaller.exe"
Task: {E136245A-9836-41BA-8E8C-D36EA45C282E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {E136245A-9836-41BA-8E8C-D36EA45C282E} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "C:\Program Files\Macrium\Common\ReflectMonitor.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{241D10A2-AF17-4DE3-BB50-A51380F908D4}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.257\notification_helper.exe" => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> "C:\Program Files\Proton\VPN\v3.2.11\ProtonVPN.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> C:\Users\Hladk\AppData\Local\Microsoft\OneDrive\19.033.0218.0011\FileCoAuth.exe => No File
CustomCLSID: HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{F349F8C6-386F-40D5-BDC0-D0696FEF9B10}\localserver32 -> "C:\Users\Hladk\AppData\Local\Vivaldi\Application\6.1.3035.204\notification_helper.exe" => No File
FirewallRules: [UDP Query User{7C1683A2-CBE1-435E-A8F0-2B410EC56B1A}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{555844A4-C5B2-4F24-A023-7E8CB235EBE3}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe => No File
FirewallRules: [UDP Query User{E7EF39A2-3D9F-43E8-B981-99566F76651B}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [TCP Query User{56F37981-C9BC-4AA1-AE8B-F9CAF543E069}C:\gog games\divinity - original sin 2\classic\eocapp.exe] => (Allow) C:\gog games\divinity - original sin 2\classic\eocapp.exe => No File
FirewallRules: [UDP Query User{EDC27545-5BF3-4D0E-BF64-7A2E88E38ADD}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [TCP Query User{A279A69B-E698-4EC3-B9E4-9BBE1EAF73D9}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe] => (Allow) C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe => No File
FirewallRules: [{77F15D8E-B478-4C82-AA6F-8C4CCBF1ABB1}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe => No File
FirewallRules: [TCP Query User{42FFCE23-8ABF-42CB-8EED-BFE8B47302A3}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [UDP Query User{8870A970-7BB9-49CC-BA25-BC47DCB5C2C1}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe => No File
FirewallRules: [TCP Query User{35B12E08-13D8-4621-901C-A47EE7E42F6B}C:\program files\java\jre1.8.0_211\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_211\bin\javaw.exe => No File
FirewallRules: [{004C4E65-348C-4DD1-BB99-3FB7242E9BDD}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{9FBA33BC-B66D-42FB-93C0-E23142A49FD1}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{D34F61BA-23B8-45AF-A496-B345C41AC181}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{41E41DB2-720B-4249-9D73-ABE6835C1FB4}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe => No File
FirewallRules: [{5AE63CF3-85F0-48B4-BB69-934B68A735EA}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{3EBD5A63-15BE-4904-B5F7-CB6FA0FB1EDE}] => (Allow) D:\Steam\Steam.exe => No File
FirewallRules: [{7BE8AD23-84AA-47C8-B7AB-51AA0CDFAC0D}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{A056D829-F727-4489-9428-1ABD2B117236}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{B70E1CCE-3C6D-4141-9728-8DC81914FEA8}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{B5ECD5A7-2175-4A51-8D4F-161647CB0CD5}] => (Allow) D:\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{4F90996B-C56D-46E4-A182-99B7B37109CD}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{79CF26AF-7A18-4CAA-8639-02B02D01C215}] => (Allow) C:\Program Files\Vuze\Azureus.exe => No File
FirewallRules: [{860EC391-0517-427B-9D05-562F8521A463}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe => No File
FirewallRules: [{3336EC84-879C-481A-8482-3010F91319D7}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => No File
FirewallRules: [{93D27C23-6A89-4AA1-B9F6-DE8663ECA72C}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => No File
FirewallRules: [{94E8281A-247F-4D42-9E25-DA5992FBE337}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe => No File
FirewallRules: [{19AF3567-3213-43E5-B426-B974221ADFB3}] => (Allow) C:\Program Files (x86)\PaladinVPN\Paladinsvc.exe => No File
FirewallRules: [{E3569F77-75AE-4DED-937C-CA1735329045}] => (Allow) C:\Program Files (x86)\PaladinVPN\PaladinVPN.exe => No File
FirewallRules: [{4E116FBD-4E62-482F-9636-14EAF2887CE9}] => (Allow) C:\Program Files (x86)\PaladinVPN\feedback.exe => No File
FirewallRules: [{E454C439-1B03-44B0-AA67-03A52BF79B16}] => (Allow) C:\Program Files (x86)\PaladinVPN\upgrade.exe => No File
FirewallRules: [{27C8D679-5DB6-48AD-B45E-837583430BC6}] => (Allow) C:\Program Files (x86)\PaladinVPN\tun.exe => No File
FirewallRules: [{FFA18D37-3644-4879-89AA-145023FCDC0B}] => (Allow) C:\Program Files (x86)\PaladinVPN\line.exe => No File
FirewallRules: [{DF9C5B4D-EA5B-4C07-A31B-5D99FBEAC9F1}] => (Allow) C:\Program Files (x86)\PaladinVPN\tunnle\tunnle.exe => No File
FirewallRules: [{5A58E54D-D6B4-4E57-B415-AEF631124ADA}] => (Allow) C:\Program Files (x86)\PaladinVPN\pldsvc.exe => No File
FirewallRules: [{BB5E44E0-9F3A-4F3E-9336-0723C3A7EBEB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{4815278F-B264-4E19-B6A2-C0C46A2F16FC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{21D9B300-2E46-476C-8EDF-50F3278FF70E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{35392DE8-5964-4484-AFFA-959AFA35724F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{E4272E7A-CBFB-49EE-8B16-ED1FDE65C4FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{10C8BC89-F8EA-4D2B-BCF1-15E842F4814C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ELDEN RING\Game\start_protected_game.exe => No File
FirewallRules: [{960CBFB0-095A-43F1-AF1E-1D2C2DAC78F4}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{531EA7A7-C4B1-49DC-82F5-3E3BCF168D8D}] => (Allow) C:\Program Files\MiniTool ShadowMaker\AgentService.exe => No File
FirewallRules: [{25198491-D400-4201-AFB9-D1F3397BFE2E}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [{6FD8C045-1F7E-4CD6-8454-7E0DF7062564}] => (Allow) H:\Nová složka\Steam.exe => No File
FirewallRules: [TCP Query User{CAA382D7-ED2B-42F5-B258-D3E0694543BF}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File
FirewallRules: [UDP Query User{CC535EB9-F76C-4A03-B362-2EC2EE644C29}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe] => (Allow) H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\Software\Microsoft\Windows\CurrentVersion\Run\\com.messenger" => removed successfully
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7b0d4624-4fef-11ee-9ecd-7085c262d76e} => removed successfully
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c65c06d3-2689-11ee-9ea5-7085c262d76e} => removed successfully
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{fcfb6d36-245a-11ee-9ea5-7085c262d76e} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E136245A-9836-41BA-8E8C-D36EA45C282E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E136245A-9836-41BA-8E8C-D36EA45C282E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E136245A-9836-41BA-8E8C-D36EA45C282E}" => not found
"C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{92287C8F-7234-41FD-8ED7-DFB5FDDF475A}" => not found
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED} => removed successfully
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{241D10A2-AF17-4DE3-BB50-A51380F908D4} => removed successfully
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000} => removed successfully
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2} => removed successfully
HKU\S-1-5-21-1001266131-2733610755-3133150411-1001_Classes\CLSID\{F349F8C6-386F-40D5-BDC0-D0696FEF9B10} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7C1683A2-CBE1-435E-A8F0-2B410EC56B1A}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{555844A4-C5B2-4F24-A023-7E8CB235EBE3}C:\gog games\divinity - original sin 2\defed\bin\eocapp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E7EF39A2-3D9F-43E8-B981-99566F76651B}C:\gog games\divinity - original sin 2\classic\eocapp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{56F37981-C9BC-4AA1-AE8B-F9CAF543E069}C:\gog games\divinity - original sin 2\classic\eocapp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EDC27545-5BF3-4D0E-BF64-7A2E88E38ADD}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{A279A69B-E698-4EC3-B9E4-9BBE1EAF73D9}C:\users\hladk\downloads\divinity original sin 2 multi5\bin\eocapp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{77F15D8E-B478-4C82-AA6F-8C4CCBF1ABB1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{42FFCE23-8ABF-42CB-8EED-BFE8B47302A3}C:\program files (x86)\hearthstone\hearthstone.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8870A970-7BB9-49CC-BA25-BC47DCB5C2C1}C:\program files (x86)\hearthstone\hearthstone.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{35B12E08-13D8-4621-901C-A47EE7E42F6B}C:\program files\java\jre1.8.0_211\bin\javaw.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{004C4E65-348C-4DD1-BB99-3FB7242E9BDD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9FBA33BC-B66D-42FB-93C0-E23142A49FD1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D34F61BA-23B8-45AF-A496-B345C41AC181}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{41E41DB2-720B-4249-9D73-ABE6835C1FB4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5AE63CF3-85F0-48B4-BB69-934B68A735EA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3EBD5A63-15BE-4904-B5F7-CB6FA0FB1EDE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7BE8AD23-84AA-47C8-B7AB-51AA0CDFAC0D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A056D829-F727-4489-9428-1ABD2B117236}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B70E1CCE-3C6D-4141-9728-8DC81914FEA8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B5ECD5A7-2175-4A51-8D4F-161647CB0CD5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4F90996B-C56D-46E4-A182-99B7B37109CD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{79CF26AF-7A18-4CAA-8639-02B02D01C215}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{860EC391-0517-427B-9D05-562F8521A463}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3336EC84-879C-481A-8482-3010F91319D7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{93D27C23-6A89-4AA1-B9F6-DE8663ECA72C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{94E8281A-247F-4D42-9E25-DA5992FBE337}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{19AF3567-3213-43E5-B426-B974221ADFB3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E3569F77-75AE-4DED-937C-CA1735329045}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E116FBD-4E62-482F-9636-14EAF2887CE9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E454C439-1B03-44B0-AA67-03A52BF79B16}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{27C8D679-5DB6-48AD-B45E-837583430BC6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFA18D37-3644-4879-89AA-145023FCDC0B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DF9C5B4D-EA5B-4C07-A31B-5D99FBEAC9F1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A58E54D-D6B4-4E57-B415-AEF631124ADA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BB5E44E0-9F3A-4F3E-9336-0723C3A7EBEB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4815278F-B264-4E19-B6A2-C0C46A2F16FC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{21D9B300-2E46-476C-8EDF-50F3278FF70E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{35392DE8-5964-4484-AFFA-959AFA35724F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E4272E7A-CBFB-49EE-8B16-ED1FDE65C4FE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{10C8BC89-F8EA-4D2B-BCF1-15E842F4814C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{960CBFB0-095A-43F1-AF1E-1D2C2DAC78F4}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{531EA7A7-C4B1-49DC-82F5-3E3BCF168D8D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{25198491-D400-4201-AFB9-D1F3397BFE2E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6FD8C045-1F7E-4CD6-8454-7E0DF7062564}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CAA382D7-ED2B-42F5-B258-D3E0694543BF}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CC535EB9-F76C-4A03-B362-2EC2EE644C29}H:\program files\steam\steamapps\common\baldurs gate 3\bin\bg3_dx11.exe" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 764944850 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 150025300 B
Windows/system/drivers => 8845881 B
Edge => 0 B
Chrome => 168477434 B
Firefox => 1944587003 B
Opera => 490447792 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 193 B
systemprofile32 => 193 B
LocalService => 193 B
NetworkService => 1524761 B
Hladk => 375912546 B

RecycleBin => 10408467232 B
EmptyTemp: => 13.3 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:06:07 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119315
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Částečně fungující myš / občas zpomalené PC

#8 Příspěvek od Rudy »

Ještě spusťte AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, spusťte, nechte pracovat a po skončení akce smažte vše, co najde. Popis v odkazu platí pro starší verzi. Pokud by nic nenašel, bude pak třeba obnova systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
kockopes
Návštěvník
Návštěvník
Příspěvky: 97
Registrován: 03 čer 2006 09:54

Re: Částečně fungující myš / občas zpomalené PC

#9 Příspěvek od kockopes »

Dobrý den,
scan proveden, nic nenašel. Obnovení systému byla absolutně první věc, která mne napadla a toto jsem provedl ještě před tímto prvním postem. Bez úspěchu. Chování systéme je absolutně zvláštní. Zvlášť to, že to "vyřeší" proklik do správce úloh. Co jsem vypozoroval je to, že kontextová nabídka z pravého tlačítka myší se občas sama zobrazí po několika minutách nepoužívání PC. Např. zůstanu v prohlížeči a přijdu k PC a vidím roletku s nabídkou z pravého tlačítka, aniž bych na něj předtím kliknul...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119315
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Částečně fungující myš / občas zpomalené PC

#10 Příspěvek od Rudy »

Potom už zbývá jen návrat do tov. nastavení se zachováním vlastních souborů, nebo bez zachování, pokud se to předchozí nepovede, nebo reinstal. Systém je zřejmě poškozen.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
kockopes
Návštěvník
Návštěvník
Příspěvky: 97
Registrován: 03 čer 2006 09:54

Re: Částečně fungující myš / občas zpomalené PC

#11 Příspěvek od kockopes »

Děkuji za reakce a pomoc. Původně jsem myslel, že se jedná o nějakou breberku. Nepomohlo nic, tudíž reinstall nebo upgrade na WIN11, který bude beztak taky brzy zapotřebí. Jelikož jsemtu už poněkolikáté, posílám malé všimné.
Ještě jednou díky a hezký den.
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119315
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Částečně fungující myš / občas zpomalené PC

#12 Příspěvek od Rudy »

Za příspěvek děkujeme a vy nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“