VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivní kontrola - zvláštní chování FF

https://forum.viry.cz:443/viewtopic.php?t=158668

Stránka 1 z 1

Preventivní kontrola - zvláštní chování FF

Napsal: 12 čer 2022 18:35
od pre.vit
Zdravím, prosím o kontrolu logu. Firefox se mi poslední dobou chová nějak zvláštně, jako kdyby pořád na pozadí pracoval (vedle šipky se pravidelně ukazuje to kolečko). Díky!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2022 01
Ran by previ (administrator) on PC-PREVIT (12-06-2022 19:17:44)
Running from D:\Download
Loaded Profiles: previ & vitda
Platform: Microsoft Windows 11 Enterprise Version 21H2 22000.708 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Ostatni\Snagit 13\Snagit32.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\Ostatni\Snagit 13\SnagitEditor.exe
(C:\Program Files (x86)\Ostatni\Snagit 13\Snagit32.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\Ostatni\Snagit 13\SnagPriv.exe
(C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer.exe
(C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\Ostatni\TeamViewer\tv_w32.exe
(C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\Ostatni\TeamViewer\tv_x64.exe
(C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Ostatni\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\Ostatni\ESET Security\eguiProxy.exe
(Elaborate Bytes AG -> Elaborate Bytes AG) C:\Program Files (x86)\Ostatni\VirtualCloneDrive\VCDDaemon.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectMonitor.exe
(explorer.exe ->) (Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\ReflectUI.exe
(explorer.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\Ostatni\Snagit 13\Snagit32.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <14>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDTray.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) E:\Hry\Origin\OriginWebHelperService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\Ostatni\ESET Security\ekrn.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_577b4722c749a41f\OneApp.IGCC.WinService.exe
(services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\Ostatni\MysticLight\MysticLight2_Service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Paramount Software UK Ltd -> Paramount Software UK Ltd) C:\Program Files\Macrium\Common\MacriumService.exe
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDFSSvc.exe
(services.exe ->) (Safer-Networking Limited -> Safer-Networking Ltd.) C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDUpdSvc.exe
(services.exe ->) (Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDWSCSvc.exe
(services.exe ->) (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(services.exe ->) (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Ostatni\Samsung Magician\SamsungMagicianSVC.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe
(services.exe ->) (TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(services.exe ->) 0 C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\gamingservices.exe
(services.exe ->) 0 C:\Program Files\WindowsApps\Microsoft.GamingServices_4.66.2001.0_x64__8wekyb3d8bbwe\gamingservicesnet.exe
(sihost.exe ->) (0) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (0) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Intel(R) Software Development Products -> Intel Corporation) C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\SDXHelper.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (QNAP Systems, Inc. -> QNAP Systems, Inc.) C:\Program Files (x86)\QNAP\Qsync\Qsync.exe
(svchost.exe ->) 0 C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) 0 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22042.168.0_x64__8wekyb3d8bbwe\YourPhone.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\Ostatni\ESET Security\ecmdS.exe [168064 2022-03-31] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [Reflect UI] => C:\Program Files\Macrium\Common\ReflectUI.exe [3465608 2017-10-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDTray.exe [5204968 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\Ostatni\KeePass Password Safe 2\KeePass.exe [3074752 2020-05-07] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Ostatni\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKLM-x32\...\Run: [Qsync] => C:\Program Files (x86)\QNAP\Qsync\Qsync.exe [93184760 2022-03-23] (QNAP Systems, Inc. -> QNAP Systems, Inc.)
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632064 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632064 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632064 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\Run: [CorsairLink4] => C:\Program Files (x86)\Ostatni\Corsair Link 4\CorsairLink4.exe [27146448 2018-03-30] (Corsair Components, Inc. -> Corsair Components, Inc.)
HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146943096 2022-06-10] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\Run: [EpicGamesLauncher] => E:\Hry\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32648144 2022-06-08] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2632064 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Run: [Discord] => C:\Users\vitda\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [146943096 2022-06-10] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Run: [Adobe Reader Synchronizer] => "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe" (No File)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\102.0.5005.63\Installer\chrmstp.exe [2022-05-29] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TSC_SI_13.lnk [2017-11-03]
ShortcutTarget: TSC_SI_13.lnk -> C:\Program Files (x86)\Ostatni\Snagit 13\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0027F47E-6741-4D14-B18E-9D20C5B37A7C} - System32\Tasks\klcp_update => C:\Program Files (x86)\Ostatni\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2022-05-12] () [File not signed]
Task: {05B5B170-AA01-4FA7-8139-9CC5BE65385D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {0BA0ADDA-3D98-4467-9818-8D9A6C05B9AB} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2089558188-2690222546-326603744-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {1281D64D-298F-4A23-8E76-428E1115A054} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8304592 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {15B3A5BA-B7B5-41E6-A68F-3EEE5220821E} - System32\Tasks\LED Sync => C:\Program Files (x86)\Ostatni\EVGA Precision XOC\LEDSync\LEDSync.exe /s (No File)
Task: {1790D9B8-D3A3-47BC-8FFB-D5EA03E1E573} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [8304592 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {1B4D8300-2E10-48AC-BC22-B7D39C10B592} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {1C5E85DE-24B4-4290-843F-4FA1872E8271} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098928 2020-08-02] (Intel(R) Software Development Products -> Intel Corporation)
Task: {1C944813-4DE9-4176-8095-F7F279A311AF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-18] (Adobe Inc. -> Adobe Inc.)
Task: {20CCFA65-3459-45A8-938C-7FCF8339CAA7} - System32\Tasks\Speedfan\Speedfan => C:\Program Files (x86)\Ostatni\SpeedFan\speedfan.exe [8166536 2016-06-29] (SOKNO S.R.L. -> )
Task: {2B592120-E8C7-458E-9666-32B9156CC483} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {2CEB1744-AA96-467A-8417-7D80901C1F2F} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {364162D9-EE10-44A4-BB69-166CD2F5729B} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXvGPUDisableTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2020-07-14] (Microsoft Corporation) [File not signed]
Task: {3655E6CB-A89E-4BBD-A66C-BBB4D944DB4C} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {3AB2697A-2C4D-434E-B796-C58D2CF245F8} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [67472 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {427E2CDC-2296-4F07-92A9-CB3DA2417096} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [3098928 2020-08-02] (Intel(R) Software Development Products -> Intel Corporation)
Task: {46CF54F1-22F8-418B-863B-8633BE0B8C0E} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {65782AE6-A2CB-4A51-99E3-A57B1AB07B03} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDImmunize.exe [5629064 2021-11-23] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {712A7997-721E-4950-AC43-A093DAF54FEA} - System32\Tasks\TechSmith Updater => C:\Program Files (x86)\Common Files\TechSmith Shared\Updater\TSCUpdClt.exe [71232 2016-09-06] (TechSmith Corporation -> TechSmith Corporation)
Task: {749585AF-7C1F-442D-8FD8-9E92D1EE203F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3427104 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {7788B837-8A8F-43BE-BEB2-BB283302352B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {78C6D9DD-357B-4BAB-9654-D61CEBBA6336} - System32\Tasks\QNAPQsyncAutoLaunch => C:\Program Files (x86)\QNAP\Qsync\Qsync.exe [93184760 2022-03-23] (QNAP Systems, Inc. -> QNAP Systems, Inc.)
Task: {7A3EBA05-7F97-45A6-83EE-60ECFE874504} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\Ostatni\MSI Afterburner\MSIAfterburner.exe [804408 2021-12-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {88BD8066-8928-4B9E-A105-24E2BC0F8B2A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-03] (Google Inc -> Google Inc.)
Task: {8B5D307A-494A-44EC-B2BD-5A31A5307DBB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {8DE88AD4-F38B-498A-9A85-5AD27B08A9F9} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2089558188-2690222546-326603744-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214144 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {9102587C-8819-44A0-B248-23C0D601CC41} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7D270C6-052D-42B5-B511-625DAA7BE699} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {ABBA29B5-A802-492E-A1BA-A79DD0465409} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342080 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B4547647-DEF0-49C3-A1C2-06CE6D324F13} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-11-03] (Google Inc -> Google Inc.)
Task: {B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {D413A0C6-F490-4587-90C3-7B1CAFC67E57} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1654272 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {D4A36851-28D9-452B-B69C-81B4926F690D} - System32\Tasks\Microsoft\Windows\Clip\LicenseImdsIntegration => C:\WINDOWS\system32\fclip.exe [480720 2022-05-27] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D8837779-68DF-4821-BB44-2A9C5F33B77E} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\Ostatni\MysticLight\LEDKeeper.exe [1071760 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {DA47F067-F497-4F4B-B07A-789A3305956C} - System32\Tasks\S-1-5-21-2089558188-2690222546-326603744-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (No File)
Task: {DDF64CF8-CB71-484C-8E15-4CC364C0F7FE} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23244744 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {DE9E467B-0009-46DA-8F56-6748F23670BE} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {E586F5B9-21E6-4C42-ADF3-EC43B809BAE5} - System32\Tasks\Microsoft\Windows\termsrv\RemoteFX\RemoteFXWarningTask => C:\WINDOWS\System32\RemoteFXvGPUDisablement.exe [12288 2020-07-14] (Microsoft Corporation) [File not signed]
Task: {EB07954E-190B-42D9-94E2-B23CE32CEDB8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-01] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {EC72FD6A-2070-4A32-BA8B-0375FD425F3D} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {EE707CAB-19DA-42F4-A724-C93FBB3A696E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDUpdate.exe [5363552 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
Task: {F1670D46-BC54-48F9-808E-5381851E3299} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646344 2022-03-30] (Nvidia Corporation -> NVIDIA Corporation)
Task: {F6FAF34F-AADF-4A76-B619-FC302391637D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [144792 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {FF93E0F4-D9B9-4D4F-AD17-7CBAEAA2D6DE} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Ostatni\Samsung Magician\SamsungMagician.exe [109697976 2021-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\MSILEDKeeper_Host.job => C:\Program Files (x86)\Ostatni\MysticLight\LEDKeeper.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 192.168.1.254
Tcpip\..\Interfaces\{2ad5fd0a-8626-4be6-b629-4758e329ddd7}: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{9b67b8dc-37e9-483c-885e-c11011f37c88}: [DhcpNameServer] 8.8.8.8 192.168.1.254
Tcpip\..\Interfaces\{9fe4da26-d4e8-47da-ba1d-0489aabb6f7d}: [DhcpNameServer] 192.168.93.166

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\previ\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-12]
Edge HKU\S-1-5-21-2089558188-2690222546-326603744-1002\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [njjljiblognghfjfpcdpdbpbfcmhgafg]

FireFox:
========
FF DefaultProfile: v4b410mp.default
FF ProfilePath: C:\Users\previ\AppData\Roaming\Mozilla\Firefox\Profiles\v4b410mp.default [2022-04-24]
FF DownloadDir: D:\Download
FF Homepage: Mozilla\Firefox\Profiles\v4b410mp.default -> www.seznam.cz
FF Extension: (Tipli do prohlížeče) - C:\Users\previ\AppData\Roaming\Mozilla\Firefox\Profiles\v4b410mp.default\Extensions\@tipli-do-prohlizece-.xpi [2021-07-23]
FF Extension: (VratnePenize.cz Připomínáček) - C:\Users\previ\AppData\Roaming\Mozilla\Firefox\Profiles\v4b410mp.default\Extensions\toolbar@vratnepenize.cz.xpi [2021-04-06]
FF Extension: (Video DownloadHelper) - C:\Users\previ\AppData\Roaming\Mozilla\Firefox\Profiles\v4b410mp.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2021-07-23]
FF Extension: (No Name) - C:\Users\previ\AppData\Roaming\Mozilla\Firefox\Profiles\v4b410mp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2022-01-30]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2022-04-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2022-06-12]

Chrome:
=======
CHR Profile: C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default [2021-02-07]
CHR DownloadDir: D:\Download
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-04]
CHR Extension: (Dokumenty) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-04]
CHR Extension: (Disk Google) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-07]
CHR Extension: (YouTube) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-11-04]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-07]
CHR Extension: (Tabulky) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-11-04]
CHR Extension: (Black & white theme) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmohofkmppcgglcmlccpbokkkefigipi [2017-11-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-02-07]
CHR Extension: (Video DownloadHelper) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2019-05-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-05-05]
CHR Extension: (Fullscreen Anything) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\olcfgpmjldkkjdclidhcbonieibfhhdh [2017-11-04]
CHR Extension: (Gmail) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\previ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-05]
CHR HKU\S-1-5-21-2089558188-2690222546-326603744-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [gjgfobnenmnljakmhboildkafdkicala]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-18] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3815712 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3580200 2022-04-13] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2019-08-06] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11988424 2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
S3 CLink4Service; C:\Program Files (x86)\Ostatni\Corsair Link 4\CorsairLink4.Service.exe [34512 2018-03-30] (Corsair Components, Inc. -> Corsair Components, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [1135648 2022-05-18] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 ekrn; C:\Program Files\Ostatni\ESET Security\ekrn.exe [3210720 2022-03-31] (ESET, spol. s r.o. -> ESET)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [16029472 2021-10-08] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncHelper.exe [3373960 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
S3 GalaxyClientService; E:\Hry\GOG Galaxy\GalaxyClientService.exe [1959776 2022-01-03] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6484832 2021-11-10] (GOG Sp. z o.o. -> GOG.com)
S2 GameInput Service; C:\Program Files (x86)\Microsoft GameInput\x64\gameinputsvc.exe [75240 2022-05-25] (Microsoft Corporation -> Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11523704 2022-06-10] (Logitech Inc -> Logitech, Inc.)
R2 MacriumService; C:\Program Files\Macrium\Common\MacriumService.exe [4065096 2017-10-12] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
S3 MagicianSVC; C:\Program Files (x86)\Ostatni\Samsung Magician\SamsungMagicianSVC.exe [347576 2021-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 MysticLight2_Service; C:\Program Files (x86)\Ostatni\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.111.0522.0002\OneDriveUpdaterService.exe [3812760 2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
S3 Origin Client Service; E:\Hry\Origin\OriginClientService.exe [2575064 2022-03-31] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; E:\Hry\Origin\OriginWebHelperService.exe [3494672 2022-03-31] (Electronic Arts, Inc. -> Electronic Arts)
U2 SamsungMagicianSVC; C:\Program Files (x86)\Ostatni\Samsung Magician\SamsungMagicianSVC.exe [347576 2021-12-09] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 SDScannerService; C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDFSSvc.exe [2782080 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDUpdSvc.exe [4605312 2021-11-16] (Safer-Networking Limited -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6207704 2022-05-27] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2020-06-26] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [935352 2020-06-26] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe [14585832 2022-05-11] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3661096 2015-09-14] (TechSmith Corporation -> TechSmith Corporation)
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [7374576 2021-08-11] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 VBoxSDS; C:\Program Files\Ostatni\Oracle VirtualBox\VBoxSDS.exe [746728 2022-03-23] (Oracle Corporation -> Oracle Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2599312 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2021-06-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7550152 2021-08-11] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [98304 2021-06-05] (Microsoft Corporation) [File not signed]
S3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [75560 2020-12-25] (Broadcom Corporation -> Broadcom Corporation.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [183888 2022-03-31] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107944 2022-03-31] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15824 2021-03-15] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [226264 2022-03-31] (ESET, spol. s r.o. -> ESET)
R1 EneIo; C:\WINDOWS\system32\drivers\ene.sys [17624 2019-05-22] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [111624 2022-03-31] (ESET, spol. s r.o. -> ESET)
S3 Hsp; C:\WINDOWS\System32\drivers\Hsp.sys [111960 2022-05-11] (Microsoft Windows -> Microsoft Corporation)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [33528 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [21704 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [62904 2022-03-23] (WDKTestCert builder,132743893872553407 -> Logitech)
S3 NTIOLib_MysticLight; C:\Program Files (x86)\Ostatni\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 PSMounterEx; C:\Windows\system32\drivers\psmounterex.sys [189152 2017-08-08] (Paramount Software UK Ltd -> Windows (R) Win 7 DDK provider)
S3 RTCore64; C:\Program Files (x86)\Ostatni\MSI Afterburner\RTCore64.sys [36824 2020-07-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 VBoxNetAdp; C:\WINDOWS\System32\drivers\VBoxNetAdp6.sys [240704 2022-03-22] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [250608 2022-03-22] (Oracle Corporation -> Oracle Corporation)
R1 VBoxSup; C:\WINDOWS\system32\DRIVERS\VBoxSup.sys [1046392 2022-03-22] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [49560 2021-06-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [421112 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [73960 2021-06-05] (Microsoft Windows -> Microsoft Corporation)
R2 WinRing0_1_2_0; E:\Hry\Steam\steamapps\common\EVGA PrecisionX\WinRing0\WinRing0x64.sys [14536 2018-01-05] (EVGA -> OpenLibSys.org)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-08-16] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-06-12 19:16 - 2022-06-12 19:18 - 000000000 ____D C:\FRST
2022-06-11 15:03 - 2022-06-11 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-06-11 15:03 - 2022-06-11 15:03 - 000000000 ____D C:\Program Files\LGHUB
2022-06-09 18:13 - 2022-06-09 18:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-06-07 20:59 - 2022-06-07 20:59 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2022-06-07 20:59 - 2022-06-07 20:59 - 000000000 ____D C:\Program Files (x86)\Microsoft GameInput
2022-05-28 23:23 - 2022-05-28 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2022-05-27 21:33 - 2022-05-27 21:33 - 000001425 _____ C:\WINDOWS\system32\default_error_stack-000102-000000.txt
2022-05-27 00:24 - 2022-05-27 00:24 - 000001435 _____ C:\WINDOWS\system32\default_error_stack-000101-000000.txt
2022-05-27 00:24 - 2019-06-21 07:34 - 000019904 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Spybot3ELAM.sys
2022-05-27 00:20 - 2022-05-27 00:20 - 000557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-05-27 00:20 - 2022-05-27 00:20 - 000524288 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2022-05-27 00:20 - 2022-05-27 00:20 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-05-27 00:20 - 2022-05-27 00:20 - 000167936 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2022-05-27 00:20 - 2022-05-27 00:20 - 000057344 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2022-05-27 00:19 - 2022-05-27 00:19 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-05-27 00:19 - 2022-05-27 00:19 - 000335872 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-05-27 00:19 - 2022-05-27 00:19 - 000299008 _____ C:\WINDOWS\system32\EsclScan.dll
2022-05-27 00:19 - 2022-05-27 00:19 - 000180224 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-05-27 00:19 - 2022-05-27 00:19 - 000015004 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-05-27 00:15 - 2022-05-27 00:15 - 000000000 ___HD C:\$WinREAgent
2022-05-25 18:04 - 2022-05-25 18:04 - 000001424 _____ C:\WINDOWS\system32\default_error_stack-000100-000000.txt
2022-05-25 18:02 - 2022-05-21 05:22 - 000724688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-05-25 18:02 - 2022-05-21 05:20 - 005730880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-05-25 18:01 - 2022-05-21 05:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-05-25 18:01 - 2022-05-21 05:26 - 001905912 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-05-25 18:01 - 2022-05-21 05:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-05-25 18:01 - 2022-05-21 05:26 - 001478384 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-05-25 18:01 - 2022-05-21 05:26 - 001467080 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-05-25 18:01 - 2022-05-21 05:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-05-25 18:01 - 2022-05-21 05:26 - 001432304 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-05-25 18:01 - 2022-05-21 05:26 - 001209408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-05-25 18:01 - 2022-05-21 05:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-05-25 18:01 - 2022-05-21 05:26 - 001145584 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-05-25 18:01 - 2022-05-21 05:23 - 000587336 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-05-25 18:01 - 2022-05-21 05:23 - 000460496 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-05-25 18:01 - 2022-05-21 05:22 - 002120896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-05-25 18:01 - 2022-05-21 05:22 - 001603144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-05-25 18:01 - 2022-05-21 05:22 - 001530456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-05-25 18:01 - 2022-05-21 05:22 - 001177312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-05-25 18:01 - 2022-05-21 05:22 - 000730320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-05-25 18:01 - 2022-05-21 05:22 - 000712416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-05-25 18:01 - 2022-05-21 05:21 - 006964824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-05-25 18:01 - 2022-05-21 05:21 - 006226640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-05-25 18:01 - 2022-05-21 05:21 - 005100752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-05-25 18:01 - 2022-05-21 05:21 - 002932952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-05-25 18:01 - 2022-05-21 05:21 - 000582712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-05-25 18:01 - 2022-05-21 05:21 - 000457944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-05-25 18:01 - 2022-05-21 05:19 - 000851136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-05-25 18:01 - 2022-05-21 05:18 - 006465200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-05-25 18:01 - 2022-05-20 02:51 - 000089337 _____ C:\WINDOWS\system32\nvinfo.pb
2022-05-18 11:49 - 2022-05-18 11:49 - 000000000 ____D C:\Users\vitda\AppData\Local\DeadByDaylight
2022-05-14 20:41 - 2022-05-14 20:41 - 000001434 _____ C:\WINDOWS\system32\default_error_stack-000099-000000.txt
2022-05-13 17:11 - 2022-05-13 17:11 - 000000028 ____H C:\.GamingRoot
2022-05-13 17:11 - 2022-05-13 17:11 - 000000000 ____D C:\XboxGames

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2022-06-12 19:08 - 2017-11-03 18:57 - 000000000 ____D C:\Program Files (x86)\Google
2022-06-12 19:00 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-06-12 18:59 - 2022-02-08 20:38 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-06-12 18:58 - 2017-11-04 18:46 - 000000000 ____D C:\Users\vitda\AppData\LocalLow\Mozilla
2022-06-12 18:46 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-06-12 18:37 - 2021-01-07 20:59 - 000000000 ____D C:\ProgramData\NVIDIA
2022-06-12 18:37 - 2020-01-13 20:57 - 000000000 ____D C:\Users\vitda\AppData\Roaming\LGHUB
2022-06-12 18:37 - 2020-01-13 20:57 - 000000000 ____D C:\Users\vitda\AppData\Local\LGHUB
2022-06-12 18:37 - 2017-11-04 18:46 - 000000000 ___RD C:\Users\vitda\OneDrive
2022-06-12 15:22 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-06-12 12:51 - 2022-01-31 20:01 - 000000000 ____D C:\Users\vitda\AppData\Roaming\.minecraft
2022-06-12 12:14 - 2018-05-12 01:16 - 000000000 ____D C:\Users\vitda\AppData\Local\D3DSCache
2022-06-12 12:03 - 2021-10-06 21:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-06-12 10:52 - 2017-11-04 18:44 - 000000000 ____D C:\Users\vitda\AppData\Local\Packages
2022-06-11 15:09 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2022-06-11 15:09 - 2020-06-09 20:45 - 000002442 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-06-11 15:03 - 2021-10-10 08:53 - 000003546 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7baeca9818c49
2022-06-11 15:03 - 2021-10-06 22:04 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-06-10 23:25 - 2022-01-11 00:30 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2089558188-2690222546-326603744-1001
2022-06-10 23:25 - 2021-12-11 13:37 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2089558188-2690222546-326603744-1002
2022-06-10 23:25 - 2021-10-06 22:04 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-06-10 23:25 - 2021-06-22 19:14 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-06-10 23:25 - 2019-09-15 19:11 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-06-09 21:38 - 2021-10-06 22:04 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-06-09 21:38 - 2017-11-03 18:53 - 000001015 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-06-07 23:32 - 2017-11-04 19:53 - 000000000 ____D C:\Users\vitda\AppData\Roaming\Origin
2022-06-07 23:32 - 2017-11-04 01:16 - 000000000 ____D C:\ProgramData\Origin
2022-06-07 23:26 - 2017-11-04 19:53 - 000000000 ____D C:\Users\vitda\AppData\Local\Origin
2022-06-07 23:25 - 2017-11-04 19:53 - 000000000 ____D C:\Users\vitda\AppData\Local\Battle.net
2022-06-07 20:59 - 2022-01-24 22:15 - 002762208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xgameruntime.dll
2022-06-07 20:59 - 2022-01-24 22:15 - 000402920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameplatformservices.dll
2022-06-07 20:59 - 2022-01-24 22:15 - 000230864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingservicesproxy.dll
2022-06-07 20:59 - 2022-01-24 22:15 - 000198112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameconfighelper.dll
2022-06-07 20:59 - 2022-01-24 22:15 - 000136672 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamelaunchhelper.dll
2022-06-07 20:59 - 2022-01-24 22:15 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamingtcuihelpers.dll
2022-06-07 20:59 - 2022-01-24 22:15 - 000062928 _____ (Microsoft Corporation) C:\WINDOWS\system32\gamemodcontrol.exe
2022-06-07 20:59 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2022-06-05 11:20 - 2018-02-18 03:21 - 000000000 ____D C:\Users\vitda\AppData\Roaming\discord
2022-06-05 11:19 - 2018-02-18 03:21 - 000000000 ____D C:\Users\vitda\AppData\Local\Discord
2022-06-04 18:52 - 2020-05-22 08:56 - 000000000 ____D C:\Users\vitda\AppData\Local\EpicGamesLauncher
2022-06-04 11:54 - 2017-12-29 01:56 - 000000000 ____D C:\Users\vitda\AppData\Local\id Software
2022-06-04 11:54 - 2017-11-03 18:37 - 000000000 ____D C:\ProgramData\Package Cache
2022-06-02 21:57 - 2019-04-23 23:05 - 000000000 ____D C:\Users\vitda\AppData\Local\Ubisoft Game Launcher
2022-05-31 20:37 - 2017-11-03 18:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-05-29 13:20 - 2018-04-10 22:37 - 000000000 ____D C:\Users\vitda\.VirtualBox
2022-05-29 13:12 - 2019-01-24 00:40 - 000000000 ____D C:\ProgramData\VirtualBox
2022-05-29 12:58 - 2018-07-25 23:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2022-05-29 10:25 - 2019-02-08 18:00 - 000000000 ____D C:\Program Files\Microsoft Office
2022-05-29 00:49 - 2017-11-03 18:57 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-05-28 23:50 - 2021-10-06 22:04 - 000003316 _____ C:\WINDOWS\system32\Tasks\klcp_update
2022-05-28 23:50 - 2021-02-07 15:32 - 000000000 ____D C:\Users\previ\AppData\Local\NVIDIA
2022-05-28 23:50 - 2017-11-04 00:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2022-05-28 23:29 - 2018-04-15 21:01 - 000000000 ____D C:\Users\previ\.VirtualBox
2022-05-28 20:21 - 2020-01-19 16:41 - 000000000 ____D C:\Users\vitda\AppData\Roaming\HandBrake
2022-05-28 20:13 - 2021-10-06 21:38 - 000000000 ____D C:\Program Files\MSBuild
2022-05-28 20:13 - 2021-10-06 21:38 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-05-28 17:39 - 2022-05-11 21:58 - 000724674 _____ C:\WINDOWS\system32\perfh005.dat
2022-05-28 17:39 - 2022-05-11 21:58 - 000150580 _____ C:\WINDOWS\system32\perfc005.dat
2022-05-28 17:39 - 2021-10-06 22:03 - 001714894 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-05-27 21:34 - 2021-10-06 22:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-05-27 21:34 - 2020-05-30 09:50 - 000012288 ___SH C:\DumpStack.log.tmp
2022-05-27 21:34 - 2018-06-10 17:52 - 000000000 ____D C:\Intel
2022-05-27 21:33 - 2021-06-05 14:01 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-05-27 21:33 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-05-27 00:25 - 2020-05-30 09:52 - 000000256 ____H C:\WINDOWS\Tasks\MSILEDKeeper_Host.job
2022-05-27 00:24 - 2022-05-03 17:19 - 000479672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-05-27 00:24 - 2021-06-05 19:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-05-27 00:24 - 2021-06-05 19:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-05-27 00:24 - 2021-06-05 19:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-05-27 00:24 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-05-27 00:24 - 2017-11-03 18:59 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2022-05-27 00:24 - 2017-11-03 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2022-05-27 00:19 - 2021-10-06 21:59 - 003101184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-05-25 18:05 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2022-05-21 14:41 - 2021-02-04 21:47 - 000000000 ____D C:\Users\vitda\AppData\Roaming\Microsoft\Windows\Start Menu\SteamVR
2022-05-21 05:18 - 2021-10-13 21:16 - 007618584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-05-18 12:31 - 2021-10-06 22:04 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2022-05-18 11:49 - 2020-05-22 08:56 - 000000000 ____D C:\Users\vitda\AppData\Local\UnrealEngine
2022-05-18 11:48 - 2018-04-20 23:05 - 000000000 ____D C:\Users\vitda\AppData\Roaming\EasyAntiCheat

==================== Files in the root of some directories ========

2018-12-30 21:24 - 2018-12-30 21:25 - 000000022 _____ () C:\Users\vitda\mn1.bat
2019-03-26 01:34 - 2019-03-26 01:34 - 000000291 _____ () C:\Users\previ\AppData\Local\ledConfiguration.config
2021-04-20 19:57 - 2021-04-20 19:57 - 000000205 _____ () C:\Users\previ\AppData\Local\oobelibMkey.log
2017-11-04 19:12 - 2017-11-04 19:12 - 000000017 _____ () C:\Users\previ\AppData\Local\resmon.resmoncfg
2020-12-25 00:47 - 2020-12-25 00:47 - 000012288 _____ () C:\Users\previ\AppData\Local\vita_uranus.data

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Preventivní kontrola - zvláštní chování FF

Napsal: 13 čer 2022 18:56
od Rudy
Zdravím!
Přidejte ještě log Additional. Je v D:\Download v souboru additional.txt.

Re: Preventivní kontrola - zvláštní chování FF

Napsal: 13 čer 2022 19:02
od pre.vit
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-06-2022 01
Ran by previ (12-06-2022 19:18:39)
Running from D:\Download
Microsoft Windows 11 Enterprise Version 21H2 22000.708 (X64) (2021-10-06 20:04:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2089558188-2690222546-326603744-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2089558188-2690222546-326603744-503 - Limited - Disabled)
Guest (S-1-5-21-2089558188-2690222546-326603744-501 - Limited - Disabled)
previ (S-1-5-21-2089558188-2690222546-326603744-1001 - Administrator - Enabled) => C:\Users\previ
vitda (S-1-5-21-2089558188-2690222546-326603744-1002 - Limited - Enabled) => C:\Users\vitda
WDAGUtilityAccount (S-1-5-21-2089558188-2690222546-326603744-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: Spybot - Search and Destroy (Enabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ACDSee Pro 5 (HKLM-x32\...\{35E0BA9D-3AFE-402A-99CA-D94FE1E73D18}) (Version: 5.0.110 - ACD Systems International Inc.)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.001.20117 - Adobe)
Adobe AIR (HKLM-x32\...\{10E33ABF-D7FB-4F47-900A-7973854AB45A}) (Version: 32.0.0.89 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 7.7.0.35 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Balíček ovladače systému Windows - Broadcom Corporation (bcbtums) Bluetooth (07/14/2015 12.0.1.658) (HKLM\...\BABE4E18F2E0DA329C1139E5584082BBE6F64E5F) (Version: 07/14/2015 12.0.1.658 - Broadcom Corporation)
Balíček ovladače systému Windows - Corsair Components, Inc. (SIUSBXP) USB (07/14/2017 3.3) (HKLM\...\A2206C09905C467F30CB24DCBB49F056D7F0A290) (Version: 07/14/2017 3.3 - Corsair Components, Inc.)
Balíček ovladače systému Windows - Silicon Laboratories (silabenm) Ports (03/19/2014 6.7.0.0) (HKLM\...\B97004A400E30DCF940971EFA7A0C13C6B0A4B66) (Version: 03/19/2014 6.7.0.0 - Silicon Laboratories)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bitcoin Diamond (64-bit) (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Bitcoin Diamond (64-bit)) (Version: 1.2.0 - Bitcoin Diamond project)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6389 - CDBurnerXP)
Corsair LINK 4 (HKLM-x32\...\{40036d0c-634b-4fc0-be89-13343b4bea96}) (Version: 4.9.7.35 - Corsair Components, Inc.)
Corsair LINK 4 (HKLM-x32\...\{D97F4B31-5A7D-4A07-AC85-16D64FAB93E1}) (Version: 4.9.7.35 - Corsair Components, Inc.) Hidden
Diablo (HKLM-x32\...\1412601690_is1) (Version: 1.09 - GOG.com)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dungeon Keeper (HKLM-x32\...\{B9E79070-56B6-4980-A7E9-C28D6480D050}) (Version: 1.0.0.1 - Electronic Arts)
ENE RGB HAL (HKLM\...\{87316426-A33E-41E9-942B-968E928A9A47}) (Version: 1.00.10 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{9f93601b-15ea-4e69-8d7c-dfa0f29ae04e}) (Version: 1.00.10 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{1CD178C9-BB49-4E59-9DA6-3C152E2A9844}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fe81cfd3-9db4-409d-b0f9-26707d1423c6}) (Version: 1.00.01 - ENE TECHNOLOGY INC.) Hidden
eObčanka (HKLM\...\{45F6BE7F-4C79-4E99-A6C8-63919DFF6F87}) (Version: 3.1.1.19123 - MONET+, a.s. pro Ministerstvo vnitra České republiky)
Epic Games Launcher (HKLM-x32\...\{1D4EB18B-0FEE-444E-B4D1-6F2CFBC363E6}) (Version: 1.1.267.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
ESET Security (HKLM\...\{F6EFF0FC-2E8F-4BA6-93BC-DEFD0AD5D8C6}) (Version: 15.1.12.0 - ESET, spol. s r.o.)
Exodus (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\exodus) (Version: 21.8.27 - Exodus Movement Inc)
Farming Simulator 19 (HKLM-x32\...\FarmingSimulator2019_is1) (Version: 1.7.1 - GIANTS Software)
Garlium version 156f162984c0ee7717d11f703613776363bec359 (HKLM-x32\...\{39298325-1AE0-4C6C-A61F-31911712601C}_is1) (Version: 156f162984c0ee7717d11f703613776363bec359 - Ske)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 102.0.5005.63 - Google LLC)
HandBrake 0.10.5 (HKLM-x32\...\HandBrake) (Version: 0.10.5 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might and Magic® III (HKLM-x32\...\Heroes of Might and Magic® III) (Version: - )
HWiNFO64 Version 7.22 (HKLM\...\HWiNFO64_is1) (Version: 7.22 - Martin Malik - REALiX)
ChargeMaster2 (HKLM-x32\...\{B18DE38C-9854-49C8-92AC-01519F96F71E}) (Version: 1.0.0 - SkyRC)
Intel(R) Computing Improvement Program (HKLM\...\{9C2782AC-55D3-4A41-889C-34A51A2CEB67}) (Version: 2.4.05982 - Intel Corporation)
Intel(R) Graphics Driver Software (HKLM-x32\...\{bd73e01d-c055-4533-8bc3-1f9489e66168}) (Version: 3.11.1.0 - Intel) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{90291EBF-187A-4C7E-A9AD-DCCB6C946536}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{FBDA24D3-1A19-4D75-B3F1-F2A1FB6B61BF}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Driver (HKLM\...\{8DEA4234-C97D-41BE-B2BC-313A196BCD09}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel® Hardware Accelerated Execution Manager (HKLM\...\{7563302D-BD6B-4153-BA7D-3E3432E7C22D}) (Version: 7.5.6 - Intel Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
KeePass Password Safe 2.45 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.45 - Dominik Reichl)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
K-Lite Codec Pack 17.0.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 17.0.0 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2022.6.271036 - Logitech)
Logitech Unifying Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Macrium Reflect Free Edition (HKLM\...\{DF15DF65-0D1A-4A5D-9BF0-B0DAC51398B0}) (Version: 7.1.2646 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.1 - Paramount Software (UK) Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 102.0.1245.39 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 101.0.1210.53 - Microsoft Corporation)
Microsoft GameInput (HKLM-x32\...\{A9CFD6A1-C0D3-7F37-C220-8B104867EF15}) (Version: 10.1.22621.1011 - Microsoft Corporation)
Microsoft Office Professional Plus 2019 - cs-cz (HKLM\...\ProPlus2019Retail - cs-cz) (Version: 16.0.15225.20204 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.111.0522.0002 - Microsoft Corporation)
Microsoft OneNote - cs-cz (HKLM\...\OneNoteFreeRetail - cs-cz) (Version: 16.0.15225.20204 - Microsoft Corporation)
Microsoft Project - cs-cz (HKLM\...\ProjectPro2019Retail - cs-cz) (Version: 16.0.15225.20204 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Teams) (Version: 1.5.00.4689 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{BD2E4F7B-30B0-46A7-8E5C-D99D21C52336}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{200969CA-4114-4553-832D-4286C5ACBB98}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30135 (HKLM-x32\...\{fa7f6d52-f85e-48ef-8f56-a37268aa5772}) (Version: 14.29.30135.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30135 (HKLM\...\{34DB4181-0770-4B5A-B561-68758A077B0F}) (Version: 14.29.30135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30135 (HKLM\...\{40118CD9-A805-400C-864E-041A5B5C01B0}) (Version: 14.29.30135 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.16.1247.518 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 101.0.1 (x64 cs)) (Version: 101.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0.2 - Mozilla)
MSI Afterburner 4.6.4 (HKLM-x32\...\Afterburner) (Version: 4.6.4 - MSI Co., LTD)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.69 - MSI)
Need for Speed™ The Run (HKLM-x32\...\{0EDC9BA0-016E-406a-86DA-04FC1BE00C21}) (Version: 1.1.0.0 - Electronic Arts)
NVIDIA CUDA Development 11.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADevelopment_11.2) (Version: 11.2 - NVIDIA Corporation)
NVIDIA CUDA Documentation 11.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDADocument_11.2) (Version: 11.2 - NVIDIA Corporation)
NVIDIA CUDA Nsight NVTX 11.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_nsight_nvtx_11.2) (Version: 11.2 - NVIDIA Corporation)
NVIDIA CUDA Runtime 11.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDARuntimes_11.2) (Version: 11.2 - NVIDIA Corporation)
NVIDIA CUDA Samples 11.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_samples_11.2) (Version: 11.2 - NVIDIA Corporation)
NVIDIA CUDA Visual Studio Integration 11.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_visual_studio_integration_11.2) (Version: 11.2 - NVIDIA Corporation)
NVIDIA FrameView SDK 1.2.7521.31103277 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7521.31103277 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.1.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.1.27 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.39.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.3 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 512.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 512.95 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15225.20150 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15225.20194 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenVR-SpaceCalibrator (HKLM-x32\...\OpenVRSpaceCalibrator) (Version: - )
Oracle VM VirtualBox 6.1.34 (HKLM\...\{25617419-CAFD-48B3-8FDF-016EDAD8B925}) (Version: 6.1.34 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.112.50486 - Electronic Arts, Inc.)
Primecoin (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Primecoin) (Version: 0.1.2 - Primecoin project)
QNAP Qsync Client (HKLM-x32\...\Qsync) (Version: 5.0.4.1523 - QNAP Systems, Inc.)
Revskills (HKLM-x32\...\Revskills) (Version: - )
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 7.0.1.630 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Skype verze 8.83 (HKLM-x32\...\Skype_is1) (Version: 8.83 - Skype Technologies S.A.)
Snagit 13 (HKLM-x32\...\{35159268-7E2F-47D1-AAF2-A951A61DB5B4}) (Version: 13.1.0 - TechSmith Corporation) Hidden
Snagit 13 (HKLM-x32\...\{f40213e2-b7e5-45fa-9bc3-a671ed6d94ea}) (Version: 13.1.0.7494 - TechSmith Corporation)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
StarCraft (HKLM-x32\...\StarCraft) (Version: - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subtitle Edit 3.5.0 (HKLM-x32\...\SubtitleEdit_is1) (Version: 3.5.0.0 - Nikse)
Subtitle Edit 3.5.16 (HKLM\...\SubtitleEdit_is1) (Version: 3.5.16.0 - Nikse)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.30.3 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.0 - Ghisler Software GmbH)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VIVEPORT DirectX 9.0 (HKLM-x32\...\{4b01ac5b-340e-4644-828b-0882c8255a4e}) (Version: 1.2.0.3 - HTC Corp.) Hidden
VIVEPORT DirectX 9.0 (x86/x64) (HKLM-x32\...\{9D42F21E-7CFA-4C87-99FD-C81CFFCB12E5}) (Version: 1.2.0.3 - HTC Corp.) Hidden
Wargaming.net Game Center (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\Wargaming.net Game Center) (Version: 22.1.0.8744 - Wargaming.net)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinX DVD Ripper Platinum 8.6.0 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
World of Tanks EU (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\WOWS.EU.PRODUCTION) (Version: - Wargaming.net)
World_of_Warships (HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\WOWS.WW.PRODUCTION) (Version: - Wargaming.net)

Packages:
=========
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2022-01-30] (INTEL CORP)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-10-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-10-06] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-05-25] (NVIDIA Corp.)
Příslušenství pro Xbox -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.2202.25001.0_x64__8wekyb3d8bbwe [2022-04-18] (Microsoft Corporation)
The Northern Lights -> C:\Program Files\WindowsApps\Microsoft.TheNorthernLights_1.0.0.0_neutral__8wekyb3d8bbwe [2017-11-03] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{036DF054-6CD0-4C29-90F9-B90D8220555A} -> [QNAP Qsync Client: QNAP-TS-453D (Cloud - MP3)] => D:\Cloud - MP3 [2018-07-11 04:45]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{57D0E8CF-2552-4B76-A5C4-B1E9D413FD14} -> [Qsync] => C:\Users\previ\AppData\Local\QNAP\Qsync\Quick Access [2020-10-24 09:40]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{6532DB5A-59C1-47EC-87EE-7B3FED0B8A2E} -> [QNAP Qsync Client: QNAP-TS-453D (Cloud - fotky)] => D:\Cloud - fotky [2018-07-11 04:33]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{834A4A7A-5B36-47F6-B751-D287A410D53F} -> [QNAP Qsync Client: QNAP-TS-453D (Cloud)] => D:\Cloud [2018-07-11 04:14]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{C1399140-83F1-4DB0-8A13-B22AA6BAE697} -> [QNAP Qsync Client: QNAP-TS-453D (!Archivace)] => D:\!Archivace [2018-07-11 03:55]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-650CACAEE295} -> [Creative Cloud Files] => C:\Users\vitda\Creative Cloud Files [2021-04-19 14:09]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\vitda\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21348.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{3BD28F86-F879-42B6-BEB4-85AD44836EDE} -> [QNAP Qsync Client: QNAP-TS-453D (Cloud - MP3)] => D:\Cloud - MP3 [2018-07-11 04:45]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{57D0E8CF-2552-4B76-A5C4-B1E9D413FD14} -> [Qsync] => C:\Users\vitda\AppData\Local\QNAP\Qsync\Quick Access [2020-10-17 12:46]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{A895474D-86A2-4785-AD8D-5504F73A2C17} -> [QNAP Qsync Client: QNAP-TS-453D (Cloud - fotky)] => D:\Cloud - fotky [2018-07-11 04:33]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{E2494AEB-3D7B-407D-A043-11B0591A20E5} -> [QNAP Qsync Client: QNAP-TS-453D (Cloud - fotky)] => D:\Cloud - fotky [2018-07-11 04:33]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{E8C609B7-5514-4189-ACC7-0BE04D3C9237} -> [QNAP Qsync Client: QNAP-TS-453D (!Archivace)] => D:\!Archivace [2018-07-11 03:55]
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{F42E8672-A15B-4C87-94ED-B53362132468} -> [QNAP Qsync Client: QNAP-TS-453D (Cloud)] => D:\Cloud [2018-07-11 04:14]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ QsyncEx_Icon1] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers: [ QsyncEx_Icon2] -> {6284D19F-282D-48CF-BAC3-10F36C2C550E} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers: [ QsyncEx_Icon3] -> {9A5A18F6-5C8F-47E8-BE4B-C04964A772BD} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers: [ QsyncEx_Icon4] -> {53889303-C346-4F3E-9EAA-E13029BADD8F} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\Ostatni\ESET Security\shellExt.dll [2022-03-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Ostatni\Macrium Reflect 7\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Ostatni\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\Ostatni\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\Ostatni\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\Ostatni\ESET Security\shellExt.dll [2022-03-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Ostatni\Macrium Reflect 7\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd -> Paramount Software UK Ltd)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Ostatni\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.111.0522.0002\FileSyncShell64.dll [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_647b4244e991951b\nvshext.dll [2022-05-21] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\Ostatni\ESET Security\shellExt.dll [2022-03-31] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [QsyncExt] -> {17affcaf-2e65-4b1b-98a1-a7b3b4d8ad36} => C:\Program Files (x86)\QNAP\Qsync\QsyncExt.dll [2021-09-27] (QNAP Systems, Inc. -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\Ostatni\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\Ostatni\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2089558188-2690222546-326603744-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers6_S-1-5-21-2089558188-2690222546-326603744-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers1_S-1-5-21-2089558188-2690222546-326603744-1002: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers6_S-1-5-21-2089558188-2690222546-326603744-1002: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.i420] => c:\windows\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-06-11 15:03 - 2022-06-10 19:34 - 000151040 _____ () [File not signed] \\?\C:\Program Files\LGHUB\resources\app.asar.unpacked\node_modules\keytar\build\Release\keytar.node
2017-01-20 10:12 - 2017-01-20 10:12 - 001152512 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\cairo.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000601088 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\fontconfig.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000778240 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\harfbuzz.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000023552 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\iconv.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000165888 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\libpng16.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 001015296 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\libxml2.dll
2017-01-20 10:10 - 2017-01-20 10:10 - 008968192 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\opencv_core300.dll
2017-01-20 10:11 - 2017-01-20 10:11 - 008968192 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\opencv_core310.dll
2017-01-20 10:10 - 2017-01-20 10:10 - 020629504 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\opencv_imgproc300.dll
2017-01-20 10:11 - 2017-01-20 10:11 - 020629504 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\opencv_imgproc310.dll
2017-01-20 10:11 - 2017-01-20 10:11 - 000800768 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\opencv_photo310.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000588288 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\pixman-1.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000071680 _____ () [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\zlib1.dll
2021-11-17 04:56 - 2021-11-17 04:56 - 000188928 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\IOTCAPIs.dll
2021-11-17 04:56 - 2021-11-17 04:56 - 000037376 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\json-c.dll
2021-11-17 04:56 - 2021-11-17 04:56 - 000039424 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\P2PTunnelAPIs.dll
2021-11-17 04:57 - 2021-11-17 04:57 - 000166400 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\RdiffDll.dll
2021-11-17 04:56 - 2021-11-17 04:56 - 000031232 _____ () [File not signed] C:\Program Files (x86)\QNAP\Qsync\RDTAPIs.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000058880 _____ (Free Software Foundation) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\libintl.dll
2017-01-20 10:11 - 2017-01-20 10:11 - 000306688 _____ (hxxp://hunspell.sourceforge.net/) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\libhunspell.dll
2020-08-03 22:23 - 2020-08-03 22:23 - 000016896 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\esrv_lib_security.dll
2022-04-19 22:08 - 2022-04-19 22:08 - 042859520 _____ (Intel Corporation) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt\IGCC.dll
2017-01-20 10:09 - 2017-01-20 10:09 - 000066192 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\LFJbg15U.DLL
2017-01-20 10:09 - 2017-01-20 10:09 - 000126096 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\LFPng15U.DLL
2017-01-20 10:09 - 2017-01-20 10:09 - 000212112 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\Ltimgclr15u.dll
2017-01-20 10:09 - 2017-01-20 10:09 - 000134288 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\Ltimgutl15u.dll
2017-01-20 10:09 - 2017-01-20 10:09 - 000122000 _____ (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\Lttwn15u.dll
2020-04-19 20:30 - 2020-04-19 20:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2020-04-19 20:30 - 2020-04-19 20:30 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2022-03-23 06:10 - 2022-03-23 06:10 - 083313664 _____ (QNAP Systems, Inc.) [File not signed] C:\Program Files (x86)\QNAP\Qsync\Lang\QsyncCSY.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000248832 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\pango-1.0.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000449024 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\pangocairo-1.0.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000468992 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\pangoft2-1.0.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000055808 _____ (Red Hat Software) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\pangowin32-1.0.dll
2020-08-03 22:23 - 2020-08-03 22:23 - 001688576 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\SQLite.Interop.dll
2020-03-05 23:42 - 2021-06-19 01:55 - 001079909 _____ (SQLite Development Team) [File not signed] C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\sqlite3.dll
2020-08-03 22:23 - 2020-08-03 22:23 - 001918464 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
2021-11-17 04:57 - 2021-11-17 04:57 - 000394752 _____ (The curl library, hxxps://curl.se/) [File not signed] C:\Program Files (x86)\QNAP\Qsync\libcurl.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 001093632 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\glib-2.0.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000015872 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\gmodule-2.0.dll
2017-01-20 10:12 - 2017-01-20 10:12 - 000232960 _____ (The GLib developer community) [File not signed] C:\Program Files (x86)\Ostatni\Snagit 13\gobject-2.0.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] E:\Hry\Origin\LIBEAY32.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] E:\Hry\Origin\ssleay32.dll
2021-11-17 04:57 - 2021-11-17 04:57 - 002052096 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\QNAP\Qsync\libcrypto-1_1.dll
2021-11-17 04:57 - 2021-11-17 04:57 - 000497664 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files (x86)\QNAP\Qsync\libssl-1_1.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 001611264 _____ (The Qt Company Ltd) [File not signed] E:\Hry\Origin\platforms\qwindows.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 005487104 _____ (The Qt Company Ltd) [File not signed] E:\Hry\Origin\Qt5Core.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 005841920 _____ (The Qt Company Ltd) [File not signed] E:\Hry\Origin\Qt5Gui.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 001179136 _____ (The Qt Company Ltd) [File not signed] E:\Hry\Origin\Qt5Network.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 000146432 _____ (The Qt Company Ltd) [File not signed] E:\Hry\Origin\Qt5WebSockets.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 005089792 _____ (The Qt Company Ltd) [File not signed] E:\Hry\Origin\Qt5Widgets.dll
2022-04-14 03:23 - 2020-06-23 18:29 - 000184832 _____ (The Qt Company Ltd) [File not signed] E:\Hry\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5678]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2089558188-2690222546-326603744-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-04-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7942 more sites.

IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\123simsen.com -> www.123simsen.com

There are 7946 more sites.

IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\123simsen.com -> www.123simsen.com

There are 7946 more sites.


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-10-18 20:07 - 2021-11-12 18:39 - 000455252 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com

There are 15623 more lines.


==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> c:\program files\nvidia gpu computing toolkit\cuda\v11.2\bin;c:\program files\nvidia gpu computing toolkit\cuda\v11.2\libnvvp;c:\program files (x86)\intel\intel(r) management engine components\icls\;c:\program files\intel\intel(r) management engine components\icls\;c:\programdata\oracle\java\javapath;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\windows\system32\openssh\;c:\program files (x86)\intel\intel(r) management engine components\dal;c:\program files\intel\intel(r) management engine components\dal;c:\program files (x86)\intel\intel(r) management engine components\ipt;c:\program files\intel\intel(r) management engine components\ipt;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-2089558188-2690222546-326603744-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\previ\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\vitda\Pictures\Backgrounds Wallpapers HD\25691.jpg
DNS Servers: 8.8.8.8 - 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

Network Binding:
=============
Intel LAN 1Gbps: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox LAN: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run32: => "ACPW05EN"
HKU\S-1-5-21-2089558188-2690222546-326603744-1001\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\...\StartupApproved\Run: => "Discord"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D9F2DF61-5CFB-4874-B28E-299749619C2B}] => (Allow) E:\Hry\Steam\steamapps\common\Half-Life Alyx\game\bin\win64\hlvr.exe (Valve -> )
FirewallRules: [{0999AC70-2D73-4566-9C12-4DC090CE11F0}] => (Allow) E:\Hry\Steam\steamapps\common\Half-Life Alyx\game\bin\win64\hlvr.exe (Valve -> )
FirewallRules: [{C4E16624-ADB5-45E7-BD6E-758148022982}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A46A44F8-A04C-4777-A272-AA606E7B7165}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F6CC82A8-B7AC-4B1F-9926-E427BC595414}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F0301FCD-F59E-4782-A7B8-818C3FC58345}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{26C54B0D-8320-4CF0-89A7-6D0EF7FEC207}] => (Allow) E:\Hry\Steam\steamapps\common\The Lab\TheLab\win64\TheLab.exe () [File not signed]
FirewallRules: [{3ABBE004-E89B-4D93-BD1F-E5BF3716EF51}] => (Allow) E:\Hry\Steam\steamapps\common\The Lab\TheLab\win64\TheLab.exe () [File not signed]
FirewallRules: [{FDDBAB75-0516-46FC-8F12-E396711399D5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2CD21093-CA5A-4D05-8B3E-79B352A40DCF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{74E6764C-BFFF-4637-8764-87ABC8F6EBFF}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File
FirewallRules: [{63743E44-650A-4992-9E58-351C481F813F}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File
FirewallRules: [{72989146-042C-4258-A529-2687359EDCBD}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe => No File
FirewallRules: [{C6D8FC48-38E2-4BFF-A326-82DBA0D08789}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe => No File
FirewallRules: [UDP Query User{90A4128C-CE4E-4AB9-953B-63EDC934166E}E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{428D8328-FD10-4742-B779-4D2C8350EC8C}E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{16FEECEE-8AB6-4F16-8707-765B0406AD64}E:\hry\origin\need for speed the run\need for speed the run.exe] => (Block) E:\hry\origin\need for speed the run\need for speed the run.exe (Electronic Arts -> Electronic Arts, Inc.)
FirewallRules: [TCP Query User{4913342F-C689-48CD-ADCE-0EEA248E2AFF}E:\hry\origin\need for speed the run\need for speed the run.exe] => (Block) E:\hry\origin\need for speed the run\need for speed the run.exe (Electronic Arts -> Electronic Arts, Inc.)
FirewallRules: [UDP Query User{832734CF-03CF-4A81-BE90-B0F1A077F964}E:\hry\epic games\defensegrid\defensegrid.exe] => (Allow) E:\hry\epic games\defensegrid\defensegrid.exe () [File not signed]
FirewallRules: [TCP Query User{66D9D6CE-35F1-461E-9047-717817E756E4}E:\hry\epic games\defensegrid\defensegrid.exe] => (Allow) E:\hry\epic games\defensegrid\defensegrid.exe () [File not signed]
FirewallRules: [UDP Query User{44C19EA7-8546-449D-925D-86503B5656EB}E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe] => (Allow) E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe => No File
FirewallRules: [TCP Query User{4844D966-0516-4F91-8BC6-E2DFD320C46A}E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe] => (Allow) E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe => No File
FirewallRules: [{7B557CEA-D8A8-49F0-A791-59334EAC8EFA}] => (Allow) E:\Hry\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{DB5948A9-3184-4017-8D3B-52F5E7018F35}] => (Allow) E:\Hry\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [UDP Query User{D3A8F770-A521-4117-AA12-8D87F5D5CE21}E:\hry\steam\steamapps\common\the lab\robotrepair\bin\win64\vr.exe] => (Allow) E:\hry\steam\steamapps\common\the lab\robotrepair\bin\win64\vr.exe () [File not signed]
FirewallRules: [TCP Query User{E74A9CAC-96D2-496B-971B-F0DBE5B43AE3}E:\hry\steam\steamapps\common\the lab\robotrepair\bin\win64\vr.exe] => (Allow) E:\hry\steam\steamapps\common\the lab\robotrepair\bin\win64\vr.exe () [File not signed]
FirewallRules: [UDP Query User{E49A4E0F-E797-4BD8-B3D8-31E1BB1FC5DE}E:\hry\starcraft ii\versions\base84643\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base84643\sc2_x64.exe => No File
FirewallRules: [TCP Query User{862208E1-A523-4E6C-B35B-6848B3AA8725}E:\hry\starcraft ii\versions\base84643\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base84643\sc2_x64.exe => No File
FirewallRules: [TCP Query User{F111D09B-5DE8-485E-8DDE-A3D749CE605B}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{A4758818-8D0A-42E8-A28A-6F41973EDCBB}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{5912F5DC-F9DA-4872-B8E5-F0EE6A260FBB}E:\hry\wargaming.net gamecenter\wgc.exe] => (Allow) E:\hry\wargaming.net gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{647EBD9C-02FD-41FB-894C-F36CBCAC4DC2}E:\hry\wargaming.net gamecenter\wgc.exe] => (Allow) E:\hry\wargaming.net gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{056795FD-21EC-4BEA-BE44-04B3724821A3}] => (Block) E:\hry\wargaming.net gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{A0988269-880D-41D0-BC51-B7C8991102D8}] => (Block) E:\hry\wargaming.net gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{0FBEC7BA-3476-4855-85A5-1C7F9A927E11}E:\hry\steam\steam.exe] => (Allow) E:\hry\steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{E4AAEA3C-E2B4-4D41-8B96-1700C420B4E6}E:\hry\steam\steam.exe] => (Allow) E:\hry\steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{65FE2B8F-E32E-4AA5-AB49-0F6C660A3CFF}] => (Allow) E:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{51988939-C13B-488A-9A55-4A19DB7E6978}] => (Allow) E:\Hry\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DFB3C802-82E0-4985-A0CD-E7332B81C0AC}] => (Allow) E:\Hry\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [{926C18CC-AD9A-4171-AC2C-93DCC5FDB404}] => (Allow) E:\Hry\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [TCP Query User{FF0B1204-A78F-4527-A178-3077B686F7EB}E:\hry\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Allow) E:\hry\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [UDP Query User{1CC1ED43-A5D5-4F30-B84F-9E0D42F1383F}E:\hry\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe] => (Allow) E:\hry\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{EDC78579-B023-4B45-BC4D-E674569D1DB0}] => (Block) E:\hry\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{1E8E4086-E6C5-4EC5-A386-A7CFD6FAE689}] => (Block) E:\hry\steam\steamapps\common\steamvr\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [TCP Query User{77F9C7B8-FB8E-4073-9907-9C01B021FEF2}E:\hry\steam\steamapps\common\beat saber\beat saber.exe] => (Allow) E:\hry\steam\steamapps\common\beat saber\beat saber.exe () [File not signed]
FirewallRules: [UDP Query User{F73BC3AB-D15A-4993-A935-553FB9C2D1B7}E:\hry\steam\steamapps\common\beat saber\beat saber.exe] => (Allow) E:\hry\steam\steamapps\common\beat saber\beat saber.exe () [File not signed]
FirewallRules: [{0B13E814-54FB-4549-91A7-FB65B0636748}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{53854AC2-DC5B-4D7F-ADDF-78982197CC0A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{5AC13912-48E5-46A3-B5B8-AB0006766CE8}E:\hry\starcraft ii\versions\base86383\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base86383\sc2_x64.exe => No File
FirewallRules: [UDP Query User{61EDCA45-B0F0-4D96-821F-80F536FF859B}E:\hry\starcraft ii\versions\base86383\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base86383\sc2_x64.exe => No File
FirewallRules: [TCP Query User{C87299A7-0EC6-4470-BE54-9B38E761A1D5}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{1706DFEE-DE9E-4D18-9AAC-149D0F4786E1}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{0677B5DB-B90D-4B56-99B4-0EF100EFF20F}] => (Allow) E:\Hry\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FED3DA77-6158-4587-BF52-9767A1C73A4C}] => (Allow) E:\Hry\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6D64EC19-3B64-4535-8559-84F01238ED3D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{66CEE12F-309E-482C-BA57-4294B855C8DD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{1B6C0383-C8D0-4E7B-85C5-D341F85686D4}E:\hry\farming simulator 2019\x64\farmingsimulator2019game.exe] => (Block) E:\hry\farming simulator 2019\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [UDP Query User{74CFA04F-699A-44AE-B317-F4501547941C}E:\hry\farming simulator 2019\x64\farmingsimulator2019game.exe] => (Block) E:\hry\farming simulator 2019\x64\farmingsimulator2019game.exe (GIANTS Software GmbH -> GIANTS Software GmbH)
FirewallRules: [{91CC89F0-AC9B-4875-BC61-5C9C704DF67B}] => (Allow) E:\Hry\Origin\Need for Speed The Run\Need For Speed The Run.exe (Electronic Arts -> Electronic Arts, Inc.)
FirewallRules: [{3D72D371-5ED4-457A-A058-C415AF1E72E1}] => (Allow) E:\Hry\Origin\Need for Speed The Run\Need For Speed The Run.exe (Electronic Arts -> Electronic Arts, Inc.)
FirewallRules: [{A399DFDC-B161-4321-B882-47EA8E1A151A}] => (Allow) E:\Hry\Steam\steamapps\common\MixedRealityVRDriver\bin\win64\Launch.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F12C8B26-9D65-4C04-8A19-F5401D3FACA4}] => (Allow) E:\Hry\Steam\steamapps\common\MixedRealityVRDriver\bin\win64\Launch.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0D022C4F-6AC1-4613-9335-F28F2B46EA7F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BB7B7364-024A-4E56-A9EF-320B67D5E0A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{20FA43A8-33CA-4DB6-9DB5-BD6FE14FCA7A}] => (Allow) E:\Hry\Origin\games\Dungeon Keeper\DATA\DOSBox\DOSBox.exe (Electronic Arts -> DOSBox Team)
FirewallRules: [{86C2F77F-FC98-4A82-BC98-12BF01B3ADC9}] => (Allow) E:\Hry\Origin\games\Dungeon Keeper\DATA\DOSBox\DOSBox.exe (Electronic Arts -> DOSBox Team)
FirewallRules: [TCP Query User{CE414668-FF4E-46B2-9177-07C9D6BFF1BD}D:\download\anydesk.exe] => (Allow) D:\download\anydesk.exe => No File
FirewallRules: [UDP Query User{6AB78282-7867-40AC-9C60-093110C1D8B8}D:\download\anydesk.exe] => (Allow) D:\download\anydesk.exe => No File
FirewallRules: [TCP Query User{DC8FDAD7-17B1-4420-8BB9-F0DFB4C7AE24}E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe] => (Allow) E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe => No File
FirewallRules: [UDP Query User{D94233EE-B7B8-4611-90AD-1D3FE9159E3A}E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe] => (Allow) E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe => No File
FirewallRules: [{859F19BD-0EE5-44E4-96CC-921BCAE223BB}] => (Allow) E:\Hry\Steam\steamapps\common\The Lab\TheLab\win64\TheLab.exe () [File not signed]
FirewallRules: [{8CAE8744-B206-4D40-B2EE-2A90F900E072}] => (Allow) E:\Hry\Steam\steamapps\common\The Lab\TheLab\win64\TheLab.exe () [File not signed]
FirewallRules: [TCP Query User{404B9C0F-CB74-469F-B81C-7479726DCE39}C:\users\vitda\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vitda\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{1444F2A9-9510-4545-911E-64C3DFF37473}C:\users\vitda\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\vitda\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1AE2AAAF-54F9-4747-9B01-E89DDFF5BC57}] => (Block) E:\Hry\Origin\Need for Speed The Run\Need For Speed The Run.exe (Electronic Arts -> Electronic Arts, Inc.)
FirewallRules: [TCP Query User{619BF094-6409-45A5-A58C-B44D2F609DEC}E:\hry\world of tanks\win64\worldoftanks.exe] => (Allow) E:\hry\world of tanks\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{F719475F-9559-4BAA-8B16-6B1EAC27B638}E:\hry\world of tanks\win64\worldoftanks.exe] => (Allow) E:\hry\world of tanks\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{138BA2A1-9677-4F11-BB17-0511509DD815}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{31E5165D-048E-4C28-8A8E-9169419CB5D2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B9E6B717-0878-45A8-B2AE-AD2FDC5638B5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE90E9AD-F967-4423-981C-EBC3B57077A5}] => (Allow) E:\Hry\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{6726BFEC-748B-46A0-8551-E7C526BDA5E5}] => (Allow) E:\Hry\Steam\steamapps\common\DiRT Rally 2.0\dirtrally2.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{DCC9EA3A-AC24-47BC-86BA-7840AFB5ED8B}] => (Allow) E:\Hry\Steam\steamapps\common\DiRT 4\dirt4.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{296E14C9-7C81-4356-A46B-76AD494E50AE}] => (Allow) E:\Hry\Steam\steamapps\common\DiRT 4\dirt4.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [TCP Query User{976F5B76-424A-44A6-8BFB-B835A5CC11D8}C:\users\vitda\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\vitda\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [UDP Query User{84F1EB56-E931-4145-99FA-FCF7AD5BF61C}C:\users\vitda\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe] => (Allow) C:\users\vitda\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-beta\windows-x64\java-runtime-beta\bin\javaw.exe
FirewallRules: [TCP Query User{13312E58-B7A0-4580-A30A-26065769685A}E:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) E:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{3C7A2DD4-2657-428C-8515-B9834D0649A3}E:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) E:\hry\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{299E4279-749E-41BE-8121-ABDA86C8C98D}E:\hry\starcraft ii\versions\base87702\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base87702\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{6296462A-E4A4-48DF-914F-A80ED9AE1DA9}E:\hry\starcraft ii\versions\base87702\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base87702\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [TCP Query User{1F9EE251-9AE9-4BF7-8DAE-10BBD131B101}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => No File
FirewallRules: [UDP Query User{74203BF7-5963-4FE0-BF40-E5373764A2C4}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => No File
FirewallRules: [{11C8B00F-5641-40E3-88D8-FB69675B1A7F}] => (Block) C:\program files\ispy\ispy.exe => No File
FirewallRules: [{31AE838F-AEB7-4C9E-8C28-77376A2F987F}] => (Block) C:\program files\ispy\ispy.exe => No File
FirewallRules: [{9C4D334E-9FE9-4A26-A69D-CAF0D91D2D03}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{91F13EB7-3827-4769-9758-3162310F9EDD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C2B373F9-7210-42C1-8D9F-D8876FD9964C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{17399129-EB67-42BB-A07B-FAA7C60E5388}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{345FB8FA-DE9A-466A-88F3-D957A6123FA0}C:\program files (x86)\qnap\qsync\qsync.exe] => (Allow) C:\program files (x86)\qnap\qsync\qsync.exe (QNAP Systems, Inc. -> QNAP Systems, Inc.)
FirewallRules: [UDP Query User{3B4FF966-5FA1-460F-A011-4E9B5AAADDB1}C:\program files (x86)\qnap\qsync\qsync.exe] => (Allow) C:\program files (x86)\qnap\qsync\qsync.exe (QNAP Systems, Inc. -> QNAP Systems, Inc.)
FirewallRules: [{2B672670-52D4-4356-91F6-B7226F6AF391}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22082.402.1279.2578_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1CDBFA74-7E51-42B6-9628-7BAAD7E5C25F}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22082.402.1279.2578_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{D8204296-EE02-43C2-A39C-E31449FB4D54}E:\hry\wargaming.net gamecenter\wargaming.net\gamecenter\wgc.exe] => (Allow) E:\hry\wargaming.net gamecenter\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{F90ED0F9-EFDD-439A-9732-C4FFA9C02DC4}E:\hry\wargaming.net gamecenter\wargaming.net\gamecenter\wgc.exe] => (Allow) E:\hry\wargaming.net gamecenter\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{7CEB2621-B4E3-4AC4-B913-A9060359A10B}C:\program files (x86)\ostatni\reolink\reolink.exe] => (Allow) C:\program files (x86)\ostatni\reolink\reolink.exe (Reolink Innovation Limited -> Shenzhen Reolink Technology Co., Ltd.)
FirewallRules: [UDP Query User{EE962D0C-3D82-402D-AF0D-A2EED221D386}C:\program files (x86)\ostatni\reolink\reolink.exe] => (Allow) C:\program files (x86)\ostatni\reolink\reolink.exe (Reolink Innovation Limited -> Shenzhen Reolink Technology Co., Ltd.)
FirewallRules: [{37312F01-3967-4893-9EE5-714E70094E9E}] => (Block) C:\program files (x86)\ostatni\reolink\reolink.exe (Reolink Innovation Limited -> Shenzhen Reolink Technology Co., Ltd.)
FirewallRules: [{F2966E5E-2978-410A-BAB3-E89DE6431C2F}] => (Block) C:\program files (x86)\ostatni\reolink\reolink.exe (Reolink Innovation Limited -> Shenzhen Reolink Technology Co., Ltd.)
FirewallRules: [{768254A0-1FF7-4D6D-9ED9-F90A1632E29B}] => (Allow) LPort=26820
FirewallRules: [{97DB51C4-49C0-4F72-9C30-ADCBE64E948C}] => (Allow) LPort=26822
FirewallRules: [{83B89A71-6E4A-4B16-B4A4-0EE5E7C16D7F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\101.0.1210.53\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CD6DD953-D244-4CA0-9BFD-E2D2F69B11B6}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B273D976-BE35-4BB2-A1B0-E27429EF9867}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C91A8460-F32B-41E3-8063-C6F00F062628}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E032C303-6F5B-44AC-AB2A-864F509713A9}] => (Allow) C:\Program Files (x86)\Ostatni\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{439B9BD8-9531-4B78-97F0-02511CB3451A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{43490095-1BFD-4C14-9DD4-F9B1B090CFB5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D36F52AD-0A8D-4568-98D2-175DBDAB2CF4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A13EABC8-76F6-442E-8CFD-4D7B591ADA9F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.AltspaceVR_4.3.18.2_x64__8wekyb3d8bbwe\AltspaceVR.exe (Access Denied) [File not signed]
FirewallRules: [{D8D740C5-18A1-4C81-9D74-E976942DA849}] => (Allow) C:\Program Files\WindowsApps\Microsoft.AltspaceVR_4.3.18.2_x64__8wekyb3d8bbwe\AltspaceVR.exe (Access Denied) [File not signed]
FirewallRules: [{279F206A-BE10-4235-AFF9-EF9CA127C15D}] => (Allow) E:\Hry\Steam\steamapps\common\DOOMEternal\idTechLauncher.exe () [File not signed]
FirewallRules: [{0D93389B-63D9-401C-9FAE-E51C6A305848}] => (Allow) E:\Hry\Steam\steamapps\common\DOOMEternal\idTechLauncher.exe () [File not signed]
FirewallRules: [{24FBEEB8-B6BA-49EB-B6FB-31723E0C6353}] => (Allow) E:\Hry\Steam\steamapps\common\Half-Life Alyx\game\bin\win64\hlvr.exe (Valve -> )
FirewallRules: [{53FA9324-17CB-4A69-A8AD-669E105AA062}] => (Allow) E:\Hry\Steam\steamapps\common\Half-Life Alyx\game\bin\win64\hlvr.exe (Valve -> )
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Ostatni\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Restore Points =========================

04-06-2022 11:24:32 Naplánovaný kontrolní bod
04-06-2022 11:53:51 Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (06/12/2022 04:50:10 PM) (Source: Spybot Auto Update) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/08/2022 11:56:18 PM) (Source: Spybot Auto Update) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/08/2022 11:21:10 PM) (Source: Spybot Auto Update) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/07/2022 07:33:17 AM) (Source: Spybot Auto Update) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/07/2022 01:17:41 AM) (Source: Spybot Auto Update) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/05/2022 06:47:46 PM) (Source: Spybot Auto Update) (EventID: 0) (User: )
Description: Event-ID 0

Error: (06/01/2022 05:23:36 PM) (Source: Spybot Auto Update) (EventID: 0) (User: )
Description: Event-ID 0

Error: (05/27/2022 09:33:43 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.


System errors:
=============
Error: (06/12/2022 06:37:08 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{9B67B8DC-37E9-483C-885E-C11011F37C88}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (06/12/2022 06:37:05 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{0E879AE4-488C-4046-924A-966E762BA834}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (06/12/2022 06:26:43 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{9B67B8DC-37E9-483C-885E-C11011F37C88}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (06/12/2022 06:26:40 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{0E879AE4-488C-4046-924A-966E762BA834}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (06/12/2022 05:06:13 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{9B67B8DC-37E9-483C-885E-C11011F37C88}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (06/12/2022 05:06:10 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{0E879AE4-488C-4046-924A-966E762BA834}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (06/12/2022 10:51:43 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{9B67B8DC-37E9-483C-885E-C11011F37C88}, protože jiný počítač v síti má stejný název. Server nelze spustit.

Error: (06/12/2022 10:51:40 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{0E879AE4-488C-4046-924A-966E762BA834}, protože jiný počítač v síti má stejný název. Server nelze spustit.


CodeIntegrity:
===============
Date: 2022-06-12 11:08:18
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files\Ostatni\ESET Security\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 2401 07/12/2019
Motherboard: ASUSTeK COMPUTER INC. PRIME Z370-A
Processor: Intel(R) Core(TM) i7-8700K CPU @ 3.70GHz
Percentage of memory in use: 58%
Total physical RAM: 16319.07 MB
Available physical RAM: 6716.68 MB
Total Virtual: 24511.07 MB
Available Virtual: 11741.11 MB

==================== Drives ================================

Drive c: (system) (Fixed) (Total:231.67 GB) (Free:18.46 GB) (Model: Samsung SSD 970 PRO 1TB) NTFS
Drive d: (data) (Fixed) (Total:931.5 GB) (Free:142.7 GB) (Model: Samsung SSD 960 EVO 1TB) NTFS
Drive e: (hry) (Fixed) (Total:720.98 GB) (Free:92.73 GB) (Model: Samsung SSD 970 PRO 1TB) NTFS

\\?\Volume{2ddcdacf-ee4f-4213-9cf3-135a677ee366}\ () (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{0335f0f2-a255-42ee-8179-e79d031f5741}\ () (Fixed) (Total:0.61 GB) (Free:0.08 GB) NTFS
\\?\Volume{03e84174-2b0b-45fd-add1-2c8c44eccf41}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{73780278-ebef-11e7-8210-902b34316445}\ () () (Total:0 GB) (Free:0 GB)
\\?\Volume{44a4b105-91e0-11e8-8287-1831bfcc9632}\ () () (Total:0 GB) (Free:0 GB)

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Preventivní kontrola - zvláštní chování FF

Napsal: 13 čer 2022 20:08
od Rudy
OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1_S-1-5-21-2089558188-2690222546-326603744-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers6_S-1-5-21-2089558188-2690222546-326603744-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers1_S-1-5-21-2089558188-2690222546-326603744-1002: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers6_S-1-5-21-2089558188-2690222546-326603744-1002: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5678]
FirewallRules: [{74E6764C-BFFF-4637-8764-87ABC8F6EBFF}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File
FirewallRules: [{63743E44-650A-4992-9E58-351C481F813F}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File
FirewallRules: [{72989146-042C-4258-A529-2687359EDCBD}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe => No File
FirewallRules: [{C6D8FC48-38E2-4BFF-A326-82DBA0D08789}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe => No File
FirewallRules: [UDP Query User{90A4128C-CE4E-4AB9-953B-63EDC934166E}E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{428D8328-FD10-4742-B779-4D2C8350EC8C}E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{44C19EA7-8546-449D-925D-86503B5656EB}E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe] => (Allow) E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe => No File
FirewallRules: [TCP Query User{4844D966-0516-4F91-8BC6-E2DFD320C46A}E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe] => (Allow) E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe => No File
FirewallRules: [{7B557CEA-D8A8-49F0-A791-59334EAC8EFA}] => (Allow) E:\Hry\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{DB5948A9-3184-4017-8D3B-52F5E7018F35}] => (Allow) E:\Hry\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [UDP Query User{E49A4E0F-E797-4BD8-B3D8-31E1BB1FC5DE}E:\hry\starcraft ii\versions\base84643\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base84643\sc2_x64.exe => No File
FirewallRules: [TCP Query User{862208E1-A523-4E6C-B35B-6848B3AA8725}E:\hry\starcraft ii\versions\base84643\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base84643\sc2_x64.exe => No File
FirewallRules: [TCP Query User{5AC13912-48E5-46A3-B5B8-AB0006766CE8}E:\hry\starcraft ii\versions\base86383\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base86383\sc2_x64.exe => No File
FirewallRules: [UDP Query User{61EDCA45-B0F0-4D96-821F-80F536FF859B}E:\hry\starcraft ii\versions\base86383\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base86383\sc2_x64.exe => No File
FirewallRules: [TCP Query User{CE414668-FF4E-46B2-9177-07C9D6BFF1BD}D:\download\anydesk.exe] => (Allow) D:\download\anydesk.exe => No File
FirewallRules: [UDP Query User{6AB78282-7867-40AC-9C60-093110C1D8B8}D:\download\anydesk.exe] => (Allow) D:\download\anydesk.exe => No File
FirewallRules: [TCP Query User{DC8FDAD7-17B1-4420-8BB9-F0DFB4C7AE24}E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe] => (Allow) E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe => No File
FirewallRules: [UDP Query User{D94233EE-B7B8-4611-90AD-1D3FE9159E3A}E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe] => (Allow) E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe => No File
FirewallRules: [TCP Query User{1F9EE251-9AE9-4BF7-8DAE-10BBD131B101}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => No File
FirewallRules: [UDP Query User{74203BF7-5963-4FE0-BF40-E5373764A2C4}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => No File
FirewallRules: [{11C8B00F-5641-40E3-88D8-FB69675B1A7F}] => (Block) C:\program files\ispy\ispy.exe => No File
FirewallRules: [{31AE838F-AEB7-4C9E-8C28-77376A2F987F}] => (Block) C:\program files\ispy\ispy.exe => No File
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy\User: Restriction ? <==== ATTENTION
Task: {15B3A5BA-B7B5-41E6-A68F-3EEE5220821E} - System32\Tasks\LED Sync => C:\Program Files (x86)\Ostatni\EVGA Precision XOC\LEDSync\LEDSync.exe /s (No File)
Task: {B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
C:\WINDOWS\CbsTemp
C:\Users\vitda\mn1.bat

EmptyTemp:
Hosts:
End

Uložte do D:\Download jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Preventivní kontrola - zvláštní chování FF

Napsal: 14 čer 2022 19:40
od pre.vit
Díky! Spustil jsem fix, ale v průběhu jsem si uvědomil, že FRST nebyl spuštěn s admin právy. Mám to projet se stejným konfigem znovu?
Fix result of Farbar Recovery Scan Tool (x64) Version: 14-06-2022
Ran by vitda (14-06-2022 20:05:27) Run:1
Running from D:\Download
Loaded Profiles: vitda
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
CustomCLSID: HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\vitda\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll => No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1_S-1-5-21-2089558188-2690222546-326603744-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers6_S-1-5-21-2089558188-2690222546-326603744-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers1_S-1-5-21-2089558188-2690222546-326603744-1002: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
ContextMenuHandlers6_S-1-5-21-2089558188-2690222546-326603744-1002: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\previ\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll -> No File
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [5678]
FirewallRules: [{74E6764C-BFFF-4637-8764-87ABC8F6EBFF}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File
FirewallRules: [{63743E44-650A-4992-9E58-351C481F813F}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe => No File
FirewallRules: [{72989146-042C-4258-A529-2687359EDCBD}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe => No File
FirewallRules: [{C6D8FC48-38E2-4BFF-A326-82DBA0D08789}] => (Allow) E:\Hry\Ubisoft Uplay Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe => No File
FirewallRules: [UDP Query User{90A4128C-CE4E-4AB9-953B-63EDC934166E}E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{428D8328-FD10-4742-B779-4D2C8350EC8C}E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\hry\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{44C19EA7-8546-449D-925D-86503B5656EB}E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe] => (Allow) E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe => No File
FirewallRules: [TCP Query User{4844D966-0516-4F91-8BC6-E2DFD320C46A}E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe] => (Allow) E:\hry\ubisoft uplay game launcher\games\far cry 5\bin_plus\farcry5.exe => No File
FirewallRules: [{7B557CEA-D8A8-49F0-A791-59334EAC8EFA}] => (Allow) E:\Hry\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [{DB5948A9-3184-4017-8D3B-52F5E7018F35}] => (Allow) E:\Hry\Steam\steamapps\common\FarCry5\bin\ArcadeEditor64.exe => No File
FirewallRules: [UDP Query User{E49A4E0F-E797-4BD8-B3D8-31E1BB1FC5DE}E:\hry\starcraft ii\versions\base84643\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base84643\sc2_x64.exe => No File
FirewallRules: [TCP Query User{862208E1-A523-4E6C-B35B-6848B3AA8725}E:\hry\starcraft ii\versions\base84643\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base84643\sc2_x64.exe => No File
FirewallRules: [TCP Query User{5AC13912-48E5-46A3-B5B8-AB0006766CE8}E:\hry\starcraft ii\versions\base86383\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base86383\sc2_x64.exe => No File
FirewallRules: [UDP Query User{61EDCA45-B0F0-4D96-821F-80F536FF859B}E:\hry\starcraft ii\versions\base86383\sc2_x64.exe] => (Allow) E:\hry\starcraft ii\versions\base86383\sc2_x64.exe => No File
FirewallRules: [TCP Query User{CE414668-FF4E-46B2-9177-07C9D6BFF1BD}D:\download\anydesk.exe] => (Allow) D:\download\anydesk.exe => No File
FirewallRules: [UDP Query User{6AB78282-7867-40AC-9C60-093110C1D8B8}D:\download\anydesk.exe] => (Allow) D:\download\anydesk.exe => No File
FirewallRules: [TCP Query User{DC8FDAD7-17B1-4420-8BB9-F0DFB4C7AE24}E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe] => (Allow) E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe => No File
FirewallRules: [UDP Query User{D94233EE-B7B8-4611-90AD-1D3FE9159E3A}E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe] => (Allow) E:\hry\world of warships\bin\4883153\bin64\worldofwarships64.exe => No File
FirewallRules: [TCP Query User{1F9EE251-9AE9-4BF7-8DAE-10BBD131B101}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => No File
FirewallRules: [UDP Query User{74203BF7-5963-4FE0-BF40-E5373764A2C4}C:\program files\ispy\ispy.exe] => (Allow) C:\program files\ispy\ispy.exe => No File
FirewallRules: [{11C8B00F-5641-40E3-88D8-FB69675B1A7F}] => (Block) C:\program files\ispy\ispy.exe => No File
FirewallRules: [{31AE838F-AEB7-4C9E-8C28-77376A2F987F}] => (Block) C:\program files\ispy\ispy.exe => No File
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" (No File)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
GroupPolicy\User: Restriction ? <==== ATTENTION
Task: {15B3A5BA-B7B5-41E6-A68F-3EEE5220821E} - System32\Tasks\LED Sync => C:\Program Files (x86)\Ostatni\EVGA Precision XOC\LEDSync\LEDSync.exe /s (No File)
Task: {B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
Task: {B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe (No File)
C:\WINDOWS\CbsTemp
C:\Users\vitda\mn1.bat

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}" => not found
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}" => not found
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}" => not found
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}" => not found
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}" => not found
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}" => not found
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145} => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237} => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4} => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58} => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469} => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229} => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => could not remove. Access Denied.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => could not remove. Access Denied.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => could not remove. Access Denied.
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => could not remove. Access Denied.
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => could not remove. Access Denied.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => could not remove. Access Denied.
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => could not remove. Access Denied.
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => could not remove. Access Denied.
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001\Software\Classes\*\ShellEx\ContextMenuHandlers\CloudStation.SyncFolderContextMenu" => not found
"HKU\S-1-5-21-2089558188-2690222546-326603744-1001\Software\Classes\Folder\ShellEx\ContextMenuHandlers\CloudStation.SyncFolderContextMenu" => not found
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\Software\Classes\*\ShellEx\ContextMenuHandlers\CloudStation.SyncFolderContextMenu => removed successfully
HKU\S-1-5-21-2089558188-2690222546-326603744-1002\Software\Classes\Folder\ShellEx\ContextMenuHandlers\CloudStation.SyncFolderContextMenu => removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules => Access Denied
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce => Access Denied
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce => Access Denied
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiSpyware => Error setting value.
HKLM\SOFTWARE\Microsoft\Windows Defender\\DisableAntiVirus => Error setting value.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => could not remove. Access Denied.

"C:\WINDOWS\system32\GroupPolicy\User" folder move:

Could not move "C:\WINDOWS\system32\GroupPolicy\User" => Scheduled to move on reboot.

Could not move "C:\WINDOWS\system32\GroupPolicy\GPT.ini" => Scheduled to move on reboot.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{15B3A5BA-B7B5-41E6-A68F-3EEE5220821E} => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15B3A5BA-B7B5-41E6-A68F-3EEE5220821E} => could not remove. Access Denied.
"C:\WINDOWS\System32\Tasks\LED Sync" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LED Sync => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} => could not remove. Access Denied.
"C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E} => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E} => could not remove. Access Denied.
Could not move "C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => Scheduled to move on reboot.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350} => could not remove. Access Denied.
"C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => not found
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E} => could not remove. Access Denied.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E} => could not remove. Access Denied.
Could not move "C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => Scheduled to move on reboot.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => could not remove. Access Denied.

"C:\WINDOWS\CbsTemp" folder move:

Could not move "C:\WINDOWS\CbsTemp" => Scheduled to move on reboot.

C:\Users\vitda\mn1.bat => moved successfully
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16358206 B
Java, Discord, Steam htmlcache => 830641839 B
Windows/system/drivers => 0 B
Edge => 1737948 B
Chrome => 1361070184 B
Firefox => 2321069374 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 0 B
NetworkService => 0 B
previ => 0 B
vitda => 289922402 B

RecycleBin => 0 B
EmptyTemp: => 4.5 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 14-06-2022 20:11:06)

C:\WINDOWS\system32\GroupPolicy\User => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => moved successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => Is moved successfully
C:\WINDOWS\CbsTemp => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

Result of scheduled keys to remove after reboot:

HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{15B3A5BA-B7B5-41E6-A68F-3EEE5220821E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15B3A5BA-B7B5-41E6-A68F-3EEE5220821E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\LED Sync" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4C2E4DD-2F5F-4E79-BA54-829FD7B4E350}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CCDFC0B8-01A3-4E74-A820-4F13F51D269E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser" => removed successfully

==== End of Fixlog 20:11:09 ====

Re: Preventivní kontrola - zvláštní chování FF

Napsal: 14 čer 2022 20:03
od Rudy
Není třeba spouštět znovu, bylo smazáno. Log již vypadá OK. Změnilo se něco?

Re: Preventivní kontrola - zvláštní chování FF

Napsal: 14 čer 2022 21:11
od pre.vit
Rudy píše: 14 čer 2022 20:03 Není třeba spouštět znovu, bylo smazáno. Log již vypadá OK. Změnilo se něco?
Zatím to vypadá dobře, díky! Počítač nevypadá, že by Firefox něco dělal na pozadí při prohlížení webu. Co jste tam vlastně viděl za problém, něco starého v TEMP?

Re: Preventivní kontrola - zvláštní chování FF

Napsal: 15 čer 2022 09:27
od Rudy
Nic zvláštního, jen samé zbytečnosti, které ale mohou tento problém způsobit. Soubory v temp to mohly být také (4,5GB) a dále pak nestandardní Hosts.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz