Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

microsoft

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

microsoft

#1 Příspěvek od Reysanger »

Obrázek
Obrázek

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
Ran by Jirka (administrator) on DESKTOP-HBD88RJ (Gigabyte Technology Co., Ltd. B450 AORUS PRO) (04-02-2023 14:11:42)
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka
Platform: Microsoft Windows 10 Home Version 22H2 19045.2486 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\PlayerFab\QCef.exe <3>
(C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe ->) (DVDFab Software Inc. -> PlayerFab Server Inc.) C:\Program Files\DVDFab\PlayerFab\PlayerFab Server.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(D:\Steamp\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\Steamp\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(explorer.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\DVDFab 12\LiveUpdate.exe
(explorer.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (SatoshiLabs, s.r.o. -> ) D:\Program Files\trezor\TREZOR Bridge\trezord.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\Steamp\steam.exe
(F.lux Software LLC) C:\Program Files\WindowsApps\F.luxSoftwareLLC.f.lux_4.120.0.0_x86__sw1dyjdkns7gt\Flux\flux.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <24>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_20573575ac789ce1\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(sihost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MSPaint_6.2203.1037.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.53.43112.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2210.0.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
(svchost.exe ->) (NVIDIA Corporation) [File not signed] C:\Users\Jirka\AppData\Roaming\MAGIX\VEGAS Pro\JPWLCVAVRDDXXTGA.exe <4>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [Steam] => D:\Steamp\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-02-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [611dd93a9b5c578be68b17d997792402] => C:\Program Files\DVDFab\DVDFab 12\LiveUpdate.exe [5476168 2023-01-30] (DVDFab Software Inc. -> )
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [MicrosoftEdgeAutoLaunch_9351DC8C75826C8A9C791E0FFD3CBFF5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [20f2c92f05b0a2d284081b5631e280ea] => "D:\PlayerFab\liveUpdate.exe" --run_mode=background_check (No File)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [PlayerFab] => C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe [22816584 2023-01-11] (DVDFab Software Inc. -> )
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [4f63842c5ef1a9d4ee3c64ea199dba50] => C:\Program Files\DVDFab\PlayerFab\liveUpdate.exe [7335752 2023-01-11] (DVDFab Software Inc. -> )
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TREZOR Bridge.lnk [2020-09-29]
ShortcutTarget: TREZOR Bridge.lnk -> D:\Program Files\trezor\TREZOR Bridge\trezord.exe (SatoshiLabs, s.r.o. -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01650B79-F76D-40D4-911C-AA0C092E5CC7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [710560 2023-02-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {03A156DD-2FE2-4509-8B9E-A90AF3969BE0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0C283053-187F-4D0D-BFAA-156F0E962AE3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1F21D070-5755-492B-B7D7-ABBCC38482B5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2C6AA328-4B10-4160-A502-3B7F0B6FCE17} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3B8DAA22-B788-4486-A5E9-1D0637507EBB} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [78648 2021-03-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {3ef97c13-8dc5-40f5-bf98-371099feea89} - no filepath
Task: {3F5BA140-0684-4FE2-A9C5-48A088B858D1} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2332088 2023-01-30] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {4AE0F13F-DBB3-4E89-8274-116CBD8525DB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {56563025-EE9A-4033-96DE-F9C3BE49DE8A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {62A3733F-BCCB-4E6F-9A2E-824C53249902} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {74550FC8-3F87-4274-BF36-EFA252505BFB} - System32\Tasks\JPWLCVAVRDDXXTGA_run => C:\Users\Jirka\AppData\Roaming\MAGIX\VEGAS Pro\JPWLCVAVRDDXXTGA.exe [891368 2022-06-26] (NVIDIA Corporation) [File not signed]
Task: {7CBE2B10-73BF-446F-8EAB-F8464317EDDC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {888FBCBE-1748-4895-963C-C1EE62D03A7F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 85F4D821BAA65D0F => C:\Users\Jirka\AppData\Local\Mozilla Firefox\default-browser-agent.exe [682936 2021-11-19] (Mozilla Corporation -> Mozilla Foundation)
Task: {914EA571-E9A6-43D8-8397-02234C4CC90D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {97b83383-1faa-45ee-abbd-da36f47f95b3} - no filepath
Task: {9E02C1A5-A205-46AF-8752-6E54CE359413} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1674576 2021-03-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {A2FF44DE-FD97-4F7E-A87E-45ED614683C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AD687932-A953-46CA-82D4-BB169FF887C7} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [47416 2021-03-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {B7FDE235-7065-4B41-9D59-8AEBAE650352} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C13CBD02-5712-4E7C-8BDA-7FA8A8C9C78B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe -check plugin (No File)
Task: {C8A6FEB1-2329-4C73-A7D6-E0800C75A669} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [661408 2023-02-02] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {D12CDB6C-5853-4E0C-9621-2CDC5C225142} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {d96d353b-9530-4b06-8ec6-1e0c2ec03067} - no filepath
Task: {E1BFF514-92BC-4A3B-82FA-6D09FD4D9C7B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MpCmdRun.exe [1592184 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E99A00B4-DC51-4D74-9C93-D86A021ECC92} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2147776618-328994716-1476381886-1002 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F5FC87BE-46B5-4513-B459-C3A9348AB0D5} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2147776618-328994716-1476381886-500 => C:\Users\Jirka\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {F7CF92DA-06CB-4869-93B2-5374267E5DC4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-17] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {FAB1DFD3-1134-4E20-9C9E-6F9162DC2C36} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [78648 2021-03-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.18.1
Tcpip\..\Interfaces\{77e61f90-d511-49c1-a4e6-8b232e0e4137}: [NameServer] 8.8.8.8,208.67.222.222
Tcpip\..\Interfaces\{77e61f90-d511-49c1-a4e6-8b232e0e4137}: [DhcpNameServer] 192.168.18.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Jirka\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-04]

FireFox:
========
FF DefaultProfile: z47imitc.default
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\70gl8hsf.default-release [2023-02-04]
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default [2023-02-04]
FF DownloadDir: D:\Stažene\Karaga
FF Homepage: Mozilla\Firefox\Profiles\z47imitc.default -> hxxps://www.seznam.cz
FF NewTab: Mozilla\Firefox\Profiles\z47imitc.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10427__190823
FF Notifications: Mozilla\Firefox\Profiles\z47imitc.default -> hxxps://sktorrent.eu; hxxps://forhonor.ubisoft.com; hxxps://gazellegames.net; hxxps://freebitco.in; hxxps://s49-en.gladiatus.gameforge.com; hxxps://www.knizniklub.cz
FF HomepageOverride: Mozilla\Firefox\Profiles\z47imitc.default -> Disabled: _j7Members_@www.convertdocsonline.com
FF NewTabOverride: Mozilla\Firefox\Profiles\z47imitc.default -> Disabled: _j7Members_@www.convertdocsonline.com
FF Extension: (Dark Reader) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\addon@darkreader.org.xpi [2023-01-10]
FF Extension: (Browsec VPN - Free VPN for Firefox) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\browsec@browsec.com.xpi [2023-02-01]
FF Extension: (MetaMask) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\webextension@metamask.io.xpi [2022-11-30]
FF Extension: (Dark Mode) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\{174b2d58-b983-4501-ab4b-07e71203cb43}.xpi [2022-07-09]
FF Extension: (Gladiatus Crazy Add On) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\{7fb9a47c-8237-47dd-a247-bf2cb7f07e2a}.xpi [2022-09-24]
FF Extension: (Grayfox) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\{ceb971ca-37e6-4c49-ab6e-1d1a97a1eb8c}.xpi [2020-10-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll [2019-03-29] (Adobe Systems Incorporated -> )
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-01-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll [2019-03-29] (Adobe Systems Incorporated -> )
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin HKU\S-1-5-21-2147776618-328994716-1476381886-1002: @jlgplayer3.julegame.com -> C:\Users\Jirka\AppData\Local\JuleGame\jlgplayer\npjlgplayer3.dll [2019-10-14] (成都云合互动科技有限公司 -> Jule game technology co.,ltd)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default [2022-04-13]
CHR Extension: (Prezentace) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-08]
CHR Extension: (Dokumenty) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-08]
CHR Extension: (Disk Google) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-08]
CHR Extension: (YouTube) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-08]
CHR Extension: (Cleanflight - Configurator) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\enacoimjcgeinfnnnpajinjgmkahmfgb [2020-06-09]
CHR Extension: (Tabulky) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-19]
CHR Extension: (Betaflight - Configurator) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdaghagfopacdngbohiknlhcocjccjao [2020-06-08]
CHR Extension: (AVG SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-08-20]
CHR Extension: (BLHeli - Configurator) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mejfjggmbnocnfibbibmoogocnjbcjnk [2020-06-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-08]
CHR Extension: (Gmail) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-16]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8923096 2022-05-18] (BattlEye Innovations e.K. -> )
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4507328 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810984 2022-06-13] (EasyAntiCheat Oy -> Epic Games, Inc)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-04-22] (Mixbyte Inc -> Freemake)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10172672 2023-02-01] (Logitech Inc -> Logitech, Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [21753376 2021-02-26] (Mail.Ru LLC -> LLC Mail.Ru)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [131568 2021-01-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32752 2021-02-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35848 2021-01-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557656 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476184 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2021-10-06] (Even Balance, Inc. -> )
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [102648 2021-01-29] (Proton Technologies AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [62712 2021-01-29] (Proton Technologies AG -> )
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6973168 2021-06-25] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7235784 2021-06-25] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_20573575ac789ce1\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_20573575ac789ce1\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [150440 2015-12-28] (SlySoft, Inc. -> SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [150440 2015-12-28] (SlySoft, Inc. -> SlySoft, Inc.)
S3 atvi-randgrid_sr; D:\Steamp\steamapps\common\Call of Duty HQ\randgrid.sys [2877704 2023-01-10] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 DigiartyVirtualCDBus; C:\WINDOWS\System32\drivers\DigiartyVirtualCDBus.sys [276256 2022-11-26] (Digiarty, Inc. -> Digiarty Software, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 eustub; C:\WINDOWS\System32\drivers\eusbstub.sys [43440 2019-12-23] (Electronic Team, Inc -> Electronic Team, Inc.)
S3 gdrv; C:\Windows\gdrv.sys [26792 2018-10-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 gdrv2; C:\Windows\gdrv2.sys [32720 2018-10-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [52536 2022-09-09] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-22] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-22] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-22] (Logitech Inc -> Logitech)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [20986200 2021-02-26] (Mail.Ru LLC -> LLC Mail.Ru)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2021-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 vuhub; C:\WINDOWS\System32\drivers\vuhub.sys [163760 2019-12-23] (Electronic Team, Inc -> Electronic Team, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-06-26] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-04 14:11 - 2023-02-04 14:12 - 000034177 _____ C:\Users\Jirka\Desktop\FRST.txt
2023-02-04 14:10 - 2023-02-04 14:10 - 002376704 _____ (Farbar) C:\Users\Jirka\Desktop\FRST64.exe
2023-02-03 18:28 - 2023-02-03 18:28 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlayerFab (x64)
2023-02-03 18:28 - 2023-02-03 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayerFab (x64)
2023-02-03 18:23 - 2023-02-03 18:23 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\25451
2023-02-02 04:04 - 2023-02-03 09:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-02-02 03:59 - 2023-02-02 03:59 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\StreamUpdate
2023-02-01 19:44 - 2023-02-01 19:44 - 011905648 _____ (Tim Kosse) C:\Users\Jirka\Downloads\FileZilla_3.62.2_win64-setup.exe
2023-02-01 17:32 - 2023-02-01 17:32 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 12 (x64)
2023-02-01 17:32 - 2023-02-01 17:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 12 (x64)
2023-02-01 17:31 - 2023-02-03 18:28 - 000000000 ____D C:\Program Files\DVDFab
2023-02-01 14:52 - 2023-02-01 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-02-01 14:52 - 2023-02-01 14:52 - 000000000 ____D C:\Program Files\LGHUB
2023-02-01 14:51 - 2023-02-01 14:51 - 000000000 ____D C:\Users\Jirka\Documents\AnyDVDHD
2023-02-01 14:42 - 2023-02-01 14:52 - 000000040 ___SH C:\ProgramData\.zreglib
2023-02-01 14:41 - 2023-02-01 14:41 - 000000000 ____D C:\ProgramData\SlySoft
2023-02-01 14:41 - 2023-02-01 14:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
2023-02-01 14:41 - 2023-02-01 14:41 - 000000000 ____D C:\Program Files (x86)\SlySoft
2023-02-01 13:47 - 2023-02-01 13:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pioneer Corporation
2023-02-01 13:47 - 2023-02-01 13:47 - 000000000 ____D C:\Program Files (x86)\Pioneer Corporation
2023-02-01 12:56 - 2023-02-01 12:56 - 000000000 ____D C:\Users\Public\Documents\Cyberlink
2023-02-01 12:55 - 2023-02-01 12:55 - 000000000 ____D C:\Users\Jirka\Documents\CyberLink
2023-02-01 12:55 - 2023-02-01 12:55 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\CyberLink
2023-02-01 12:54 - 2023-02-01 13:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\CLFCL5.22
2023-02-01 12:54 - 2023-02-01 12:55 - 000000000 ____D C:\Users\Jirka\AppData\Local\CyberLink
2023-02-01 12:54 - 2023-02-01 12:54 - 000000000 ____D C:\ProgramData\PDVD
2023-02-01 12:53 - 2023-02-01 13:31 - 000000000 ____D C:\ProgramData\install_clap
2023-02-01 12:53 - 2023-02-01 12:54 - 000000000 ____D C:\ProgramData\CLSK
2023-02-01 12:52 - 2023-02-01 12:53 - 359030536 _____ C:\Users\Jirka\Downloads\PowerDVD_22.0.2415.62_Essential_DVD221214-03.exe
2023-02-01 12:51 - 2023-02-01 13:30 - 000000000 ___HD C:\ProgramData\CyberLink
2023-02-01 12:39 - 2023-02-01 19:47 - 000000000 ____D C:\Users\Jirka\Documents\LiveUpdate
2023-02-01 12:34 - 2023-02-01 12:34 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Plcore
2023-02-01 12:15 - 2023-02-01 12:23 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\DVDFab10
2023-02-01 12:15 - 2023-02-01 12:15 - 000000304 _____ C:\Users\Jirka\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2023-02-01 12:15 - 2023-02-01 12:15 - 000000175 _____ C:\Users\Jirka\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2023-02-01 12:15 - 2023-02-01 12:15 - 000000171 _____ C:\Users\Jirka\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2023-02-01 12:14 - 2023-02-01 12:14 - 000000000 ____D C:\Users\Jirka\Documents\DVDFab10
2023-02-01 10:47 - 2023-02-01 10:47 - 001688324 _____ C:\Users\Jirka\Desktop\rotace u steny.mp4
2023-01-30 12:32 - 2023-01-30 12:32 - 000837156 _____ C:\Users\Jirka\Desktop\Mark Sircus - Jedlá soda 2014.pdf
2023-01-28 16:34 - 2023-01-28 16:34 - 008980998 _____ C:\Users\Jirka\Desktop\plnach andy.mp4
2023-01-25 17:49 - 2023-01-25 17:49 - 000225782 _____ C:\Users\Jirka\Downloads\HON NA CARODEJNICE (2011) BD.torrent
2023-01-25 15:23 - 2023-01-25 15:23 - 002518631 _____ C:\Users\Jirka\Desktop\tgu.mp4
2023-01-25 08:58 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-01-25 08:58 - 2023-01-18 06:49 - 000865256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-01-25 08:58 - 2023-01-18 06:49 - 000672296 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-01-25 08:58 - 2023-01-18 06:49 - 000506856 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 002163736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 001619968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 001532432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 001192968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 000949736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 000743976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-01-25 08:58 - 2023-01-18 06:48 - 000734232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 012453352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 010220536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 005890552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 005865976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 000457712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-01-25 08:58 - 2023-01-18 06:46 - 005818872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-01-25 08:58 - 2023-01-18 06:46 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-01-25 08:58 - 2023-01-15 23:41 - 000101010 _____ C:\WINDOWS\system32\nvinfo.pb
2023-01-23 16:41 - 2023-01-23 16:41 - 056099660 _____ C:\Users\Jirka\Desktop\boxerka.mp4
2023-01-22 13:19 - 2023-01-22 13:19 - 008642039 _____ C:\Users\Jirka\Desktop\Nauli krija yogalibre.cz-.mp4
2023-01-21 08:15 - 2023-01-18 06:44 - 006517008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-01-15 18:09 - 2023-01-15 18:09 - 004420670 _____ C:\Users\Jirka\Desktop\- Rotations Into Low Bridge Beginner.mp4
2023-01-15 12:31 - 2023-01-15 12:31 - 026608946 _____ C:\Users\Jirka\Desktop\cvicenenec kruhy kotnik.mp4
2023-01-13 20:26 - 2023-01-13 20:26 - 000030690 _____ C:\Users\Jirka\Desktop\lopatky-clank2-600x400.webp
2023-01-13 20:22 - 2023-01-13 20:22 - 008941639 _____ C:\Users\Jirka\Desktop\lapatky shyby ramen.mp4
2023-01-12 11:56 - 2023-01-12 12:41 - 000000000 ____D C:\Users\Jirka\Desktop\Good Omens (S01)(2019)(Complete)(FHD)(1080p)(WebDl)(Hevc)(Multi 8 lang)(MultiSub) PHDTeam
2023-01-11 05:30 - 2023-01-11 05:30 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-04 14:12 - 2019-10-14 10:49 - 000000000 ____D C:\FRST
2023-02-04 14:07 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-02-04 12:28 - 2019-09-10 07:07 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\uTorrent
2023-02-04 12:28 - 2018-10-18 15:02 - 000000000 ____D C:\Users\Jirka\AppData\Local\CrashDumps
2023-02-04 12:25 - 2018-10-16 12:00 - 000000000 ____D C:\ProgramData\NVIDIA
2023-02-04 12:11 - 2018-10-18 15:09 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\vlc
2023-02-04 10:35 - 2018-10-18 10:22 - 000000000 ____D C:\Users\Jirka\AppData\LocalLow\Mozilla
2023-02-04 10:21 - 2022-11-26 14:35 - 000000000 ____D C:\Users\Jirka\Documents\DVDFab
2023-02-04 10:21 - 2021-02-04 20:05 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\LGHUB
2023-02-04 10:21 - 2021-02-04 20:05 - 000000000 ____D C:\Users\Jirka\AppData\Local\LGHUB
2023-02-04 08:22 - 2021-07-10 14:19 - 000000000 ____D C:\Users\Jirka\Desktop\Dalas
2023-02-04 05:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-02-04 05:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-03 23:58 - 2020-06-08 19:09 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-03 18:29 - 2019-05-23 15:44 - 000000000 ____D C:\temp
2023-02-03 18:23 - 2022-11-26 14:17 - 000000000 ____D C:\Log
2023-02-03 11:57 - 2018-11-11 21:18 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\FileZilla
2023-02-03 11:13 - 2022-11-26 14:17 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-02-03 09:47 - 2020-08-21 10:34 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-03 09:47 - 2019-12-07 15:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2023-02-03 09:47 - 2019-12-07 15:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2023-02-03 09:47 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-02-03 09:42 - 2022-04-18 09:38 - 000000000 ____D C:\Users\Jirka\Desktop\koordinace
2023-02-03 09:37 - 2020-08-21 10:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-03 09:37 - 2020-08-21 10:24 - 000008192 ___SH C:\DumpStack.log.tmp
2023-02-03 09:37 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-02-03 09:37 - 2019-09-19 09:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-02-03 07:50 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-02 21:44 - 2020-05-15 10:57 - 000156065 _____ C:\Users\Jirka\Desktop\zapis.txt
2023-02-02 15:45 - 2020-08-21 10:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-02-02 08:08 - 2021-11-28 11:52 - 000001318 _____ C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-02 08:08 - 2021-10-09 05:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-02-02 08:08 - 2018-10-18 10:22 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-01 19:45 - 2020-03-09 22:24 - 000000128 _____ C:\Users\Jirka\AppData\Local\PUTTY.RND
2023-02-01 19:33 - 2022-11-26 14:17 - 000000000 ____D C:\BDInfo
2023-02-01 13:31 - 2018-10-16 11:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-02-01 12:57 - 2018-10-17 18:15 - 000000000 ____D C:\Users\Jirka\AppData\Local\D3DSCache
2023-02-01 12:39 - 2022-11-26 14:33 - 000000000 ____D C:\Users\Jirka\Downloads\DVDFab
2023-02-01 12:34 - 2022-11-26 14:17 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\DVDFab
2023-02-01 12:03 - 2020-07-10 19:51 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\dvdcss
2023-01-26 12:15 - 2022-10-13 14:49 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-01-26 12:15 - 2022-10-13 14:49 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-01-26 12:15 - 2020-08-21 10:31 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-01-25 18:09 - 2021-02-13 20:01 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\tor
2023-01-25 09:01 - 2018-11-19 16:31 - 000000000 ____D C:\Users\Jirka\AppData\Local\NVIDIA
2023-01-24 08:40 - 2022-11-11 17:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-01-22 13:57 - 2018-10-18 10:41 - 000000000 ____D C:\Users\Jirka\AppData\Local\Ubisoft Game Launcher
2023-01-21 13:08 - 2021-04-11 11:18 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\obs-studio
2023-01-21 08:12 - 2018-10-16 11:59 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-01-21 08:11 - 2020-08-21 10:31 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2018-10-16 12:00 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-01-21 08:11 - 2018-10-16 11:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-01-20 04:15 - 2021-01-24 08:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-18 06:53 - 2022-06-29 08:31 - 001487376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-01-18 06:47 - 2022-06-29 08:31 - 003334664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-01-18 06:44 - 2020-08-17 16:43 - 007648024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-01-16 17:48 - 2020-08-21 07:18 - 000000000 ____D C:\Users\Jirka
2023-01-11 12:09 - 2020-08-21 10:24 - 000289664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-11 05:35 - 2020-08-21 10:26 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-11 04:06 - 2018-10-18 07:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-11 04:04 - 2018-10-18 07:43 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-08 18:11 - 2020-08-10 09:28 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk

==================== Files in the root of some directories ========

2022-03-19 17:08 - 2021-12-26 15:00 - 000215040 _____ (Igor Pavlov) C:\Program Files\7zxa.dll
2022-03-19 17:08 - 2022-03-06 14:20 - 000321536 _____ () C:\Program Files\Default.SFX
2022-03-19 17:08 - 2022-03-06 14:20 - 000371200 _____ () C:\Program Files\Default64.SFX
2022-03-19 17:08 - 2022-01-04 11:35 - 000002534 _____ () C:\Program Files\Descript.ion
2022-03-19 17:08 - 2022-01-02 19:43 - 000006870 _____ () C:\Program Files\License.txt
2022-03-19 17:08 - 2014-05-22 17:31 - 000006880 _____ () C:\Program Files\License_US.txt
2022-03-19 17:08 - 2022-03-07 08:16 - 000004108 _____ () C:\Program Files\Order.htm
2022-03-19 17:08 - 2022-03-03 14:16 - 000627352 _____ (Alexander Roshal) C:\Program Files\Rar.exe
2022-03-19 17:08 - 2022-02-22 11:30 - 000109934 _____ () C:\Program Files\Rar.txt
2022-03-19 17:08 - 2022-03-03 14:16 - 000647832 _____ (Alexander Roshal) C:\Program Files\RarExt.dll
2022-03-19 17:08 - 2022-03-03 14:16 - 000557720 _____ (Alexander Roshal) C:\Program Files\RarExt32.dll
2022-03-19 17:08 - 2022-03-03 14:16 - 000180888 _____ (Alexander Roshal) C:\Program Files\RarExtInstaller.exe
2022-03-19 17:08 - 2021-10-21 17:36 - 000002183 _____ () C:\Program Files\RarExtLogo.altform-unplated_targetsize-32.png
2022-03-19 17:08 - 2021-10-21 17:36 - 000004179 _____ () C:\Program Files\RarExtLogo.altform-unplated_targetsize-48.png
2022-03-19 17:08 - 2021-10-21 18:54 - 000006234 _____ () C:\Program Files\RarExtLogo.altform-unplated_targetsize-64.png
2022-03-19 17:08 - 2022-03-03 14:15 - 000023531 _____ () C:\Program Files\RarExtPackage.msix
2022-03-19 17:08 - 2017-09-07 00:11 - 000001335 _____ () C:\Program Files\RarFiles.lst
2022-03-19 17:08 - 2022-03-07 09:15 - 000993432 _____ () C:\Program Files\rarlng.dll
2022-03-19 17:09 - 2022-03-19 17:09 - 000000024 _____ () C:\Program Files\rarnew.dat
2022-03-19 17:09 - 2022-03-19 17:08 - 000000486 _____ () C:\Program Files\rarreg.key
2022-03-19 17:08 - 2022-01-04 11:36 - 000001642 _____ () C:\Program Files\ReadMe.txt
2022-03-19 17:08 - 2022-03-03 14:16 - 000422552 _____ (Alexander Roshal) C:\Program Files\Uninstall.exe
2022-03-19 17:08 - 2022-01-02 23:06 - 000000826 _____ () C:\Program Files\Uninstall.lst
2022-03-19 17:08 - 2022-03-03 14:16 - 000427160 _____ (Alexander Roshal) C:\Program Files\UnRAR.exe
2022-03-19 17:08 - 2022-03-06 15:09 - 000225808 _____ () C:\Program Files\WhatsNew.txt
2022-03-19 17:08 - 2022-02-22 13:21 - 000097656 _____ () C:\Program Files\WhatsNew_US.txt
2022-03-19 17:08 - 2022-03-06 14:20 - 000292864 _____ (Alexander Roshal) C:\Program Files\WinCon.SFX
2022-03-19 17:08 - 2022-03-06 14:20 - 000344576 _____ (Alexander Roshal) C:\Program Files\WinCon64.SFX
2022-03-19 17:08 - 2022-02-24 11:20 - 000410812 _____ () C:\Program Files\WinRAR.chm
2022-03-19 17:08 - 2022-03-03 14:16 - 002461336 _____ (Alexander Roshal) C:\Program Files\WinRAR.exe
2022-03-19 17:08 - 2022-03-06 14:20 - 000272384 _____ () C:\Program Files\Zip.SFX
2022-03-19 17:08 - 2022-03-06 14:20 - 000307200 _____ () C:\Program Files\Zip64.SFX
2022-03-19 17:09 - 2022-03-19 17:09 - 000000022 _____ () C:\Program Files\zipnew.dat
2023-02-01 12:15 - 2023-02-01 12:15 - 000000171 _____ () C:\Users\Jirka\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2023-02-01 12:15 - 2023-02-01 12:15 - 000000304 _____ () C:\Users\Jirka\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2022-11-26 14:34 - 2022-11-26 14:34 - 000000171 _____ () C:\Users\Jirka\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2020-04-13 15:34 - 2020-04-13 15:34 - 000040460 _____ () C:\Users\Jirka\AppData\Roaming\edz_0D0A0E0M0O0N0T1F1F1I1B1V0F0StJ1V0A0V0A0S0T.txt
2020-04-13 15:34 - 2020-04-13 15:34 - 000284028 _____ () C:\Users\Jirka\AppData\Roaming\edz_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2023-02-01 12:15 - 2023-02-01 12:15 - 000000175 _____ () C:\Users\Jirka\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2020-10-07 10:17 - 2021-12-21 08:47 - 000000128 _____ () C:\Users\Jirka\AppData\Roaming\PUTTY.RND
2020-05-11 16:34 - 2021-08-10 14:43 - 000052303 _____ () C:\Users\Jirka\AppData\Local\PlariumPlay.log
2020-03-09 22:24 - 2023-02-01 19:45 - 000000128 _____ () C:\Users\Jirka\AppData\Local\PUTTY.RND
2021-05-19 10:40 - 2021-05-19 10:40 - 000000001 _____ () C:\Users\Jirka\AppData\Local\RawCopy.1.10.agreement
2021-05-19 10:43 - 2021-05-19 10:46 - 000000001 _____ () C:\Users\Jirka\AppData\Local\RawCopy.sourcedisk.index
2021-05-14 18:02 - 2022-12-13 09:33 - 000007603 _____ () C:\Users\Jirka\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: microsoft

#2 Příspěvek od Rudy »

Zdravím!
Nějak jste neuvedl, co vás trápí.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

Re: microsoft

#3 Příspěvek od Reysanger »

Ve screenu na úvodu jsem to vyfotil
Nejde mě provést Filtr a když jsem dal ostranit z filtu tak mě volal poskytovatel že posílam viry.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: microsoft

#4 Příspěvek od Rudy »

OK. Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

Re: microsoft

#5 Příspěvek od Reysanger »

Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 04.02.23
Čas skenování: 16:12
Logovací soubor: 60d783b2-a49e-11ed-94b5-e0d55eaeaae9.json

-Informace o softwaru-
Verze: 4.5.21.231
Verze komponentů: 1.0.1890
Aktualizovat verzi balíku komponent: 1.0.65301
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19045.2486)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-HBD88RJ\Jirka

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 311819
Zjištěné hrozby: 32
Hrozby umístěné do karantény: 0
Uplynulý čas: 2 min, 0 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 4
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\log, Žádná uživatelská akce, 861, 411853, , , , , ,
RiskWare.BitCoinMiner, C:\USERS\JIRKA\APPDATA\LOCAL\MINERGATE, Žádná uživatelská akce, 861, 411853, 1.0.65301, , ame, , ,
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove, Žádná uživatelská akce, 924, 542290, , , , , ,
PUP.Optional.WinYahoo.TskLnk, C:\USERS\JIRKA\APPDATA\LOCAL\{00283674-2480-5ACC-4918-7F246D7083BC}, Žádná uživatelská akce, 924, 542290, 1.0.65301, , ame, , ,

Soubor: 28
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\log\bcn.log, Žádná uživatelská akce, 861, 411853, , , , , AABFBB5FF2E36B6ED3E37A514D5902AC, B5778D39545415FDC3331FFCAC0A42ABA9632A4F3F806C3A0A66388D2AE383EF
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\log\etc.log, Žádná uživatelská akce, 861, 411853, , , , , AB17AC09C10B81F1A605AB35341F86AD, 4021A4FA535707B47F5E0F00AA4E75754AFFF8CA8D41479DB3F21DDE42102186
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\log\eth.log, Žádná uživatelská akce, 861, 411853, , , , , BC4CEC01181B9866C329AF93A53C0FA2, 41F502055ADC9F79AFDC763E6AC991331CE879554C06A6063D79B9D78B5746C9
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\log\minergate.log, Žádná uživatelská akce, 861, 411853, , , , , FCDA637FBAC225D150E52A243BACB7E2, BDD72CB16B2B6E9B2F644D97485831AD8CB0EC7B272AFF0F98B344B01253409A
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\log\xmr.log, Žádná uživatelská akce, 861, 411853, , , , , 073607339E28D861569385B243A81019, 3EDBE492187310037C514F74696A3FDE8ACEA26C6A191AC3C248AE556F6D761E
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\log\zec.log, Žádná uživatelská akce, 861, 411853, , , , , 8A96876576801A4542FE4AFF42FEF40C, B59931C895E6C86ADBE48F6673AB2E955D5B8FFFD5CC7186C3081296FF7A2D0E
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\.lock, Žádná uživatelská akce, 861, 411853, , , , , 15BC5EA7275275A20D1DA628EDD26EE4, 13D4161333652EAB561DB1C2659F4C6E0A4451422892CFAC0543C094880CB94D
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\.miners_lock, Žádná uživatelská akce, 861, 411853, , , , , ,
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\appId.txt, Žádná uživatelská akce, 861, 411853, , , , , 99BE4B555B3BF0D97218F247ADFA24B2, 1263BE6FA8C72335C92FAC1E7CB78E435A90D01233619BD7456A8B3C89841F4A
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\miners.ini, Žádná uživatelská akce, 861, 411853, , , , , 16881642C12B8663F7D595A0887B4162, 9B39A33042CF011A50284D4F6CBE484830882DCD1812232B76A3B926DC12AF48
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\pools.config, Žádná uživatelská akce, 861, 411853, , , , , 4CB8D59C5C2A251B55624409FBCC8B29, E1B04D4F45D6C550997FA6929783B5915BC36748A01DB6522C03814C498770D6
RiskWare.BitCoinMiner, C:\Users\Jirka\AppData\Local\minergate\showed, Žádná uživatelská akce, 861, 411853, , , , , 973CB0B7487A0F802E25EC13DCEE8CAA, 1EBA482A369CA4EAE273CD083C1A6E0E37C548B9804937FD42FB6E1E332DD34F
PUP.Optional.WinYahoo.TskLnk, C:\USERS\JIRKA\APPDATA\LOCAL\{00283674-2480-5ACC-4918-7F246D7083BC}\HOWTOREMOVE\HOWTOREMOVE.HTML, Žádná uživatelská akce, 924, 542290, 1.0.65301, , ame, , 92A56BD431B8EC678C73844C916017CA, 47BFA64B49B9ABF0C2DCA4F400E0137E1C29211CE6ED4196EDE1560149D13FF2
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\chromium-min.jpg, Žádná uživatelská akce, 924, 542290, , , , , 63BC75E5CF5CBA301C0A333A493C1E6C, AECF7E9F8EA60035CF8E255B99ADDBC4739C357BC9773273B682B06073AE2BBC
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\control panel-min-min.JPG, Žádná uživatelská akce, 924, 542290, , , , , D3317C08A7FD5C68AF7607B56365D7EF, E0DF11EDFC606871F3FA3E825D0A346D895CF2246372E1919F3F6B6F823855EA
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\down.png, Žádná uživatelská akce, 924, 542290, , , , , BD28C167E200A3B28D65FAD11067F767, 782AEE35F1473A0818E85C7888276AB1A92A2C6650420A6914C11D4A87017959
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\ff menu.JPG, Žádná uživatelská akce, 924, 542290, , , , , 0ACF64A62398FD3E28C0F776E080E02E, A7E228427AFE421EE317EECF714464E5ED346B2032C98F4076B01EB61D92F11F
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\ff search engine-min.png, Žádná uživatelská akce, 924, 542290, , , , , 98167327578F423AD62775F9C0DA1C08, 95E4B167F0173DB00F6BCDDE9864CC2E5DDED171506F8AB8E7B9F7863D913680
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\hp-min ff.png, Žádná uživatelská akce, 924, 542290, , , , , AFE6FD269F10B4FB4055028CE2E0F70C, F0403DEBED00E906EE26EFE1463A63347D5B7CD6EB60BB38AE0E3C3460F71693
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\hp-min ie.png, Žádná uživatelská akce, 924, 542290, , , , , C76F780F7CDEDA6D63A72E00719EAE53, 0A53A6F7C61B73B40061A401ED4C5D1E520C1D1DEC270617C5C25C8EE64A95C6
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\search engine.gif, Žádná uživatelská akce, 924, 542290, , , , , D2665D24334093AFB3D3E64E22346AC4, E5CA26785BDB836C3C234A67E991BF1C70D4E87CAA75EC43747619E64DECAA57
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\setup pages.gif, Žádná uživatelská akce, 924, 542290, , , , , D8957AB88B51AC3D91DB06AC96369BE4, 6BB5388E49AAB90AB7C85A736EAABDEB9A78CDCCA4D7A4138B00DBC1C657C8D5
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\sp-min.png, Žádná uživatelská akce, 924, 542290, , , , , C4A8846B0AAC9BEF78F6A001514ECFF5, 4E9A05BDB43137235913F0BBB1F21C35DF34E62D33F2A4F4FC9C0F15FA1346E3
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\start-min.jpg, Žádná uživatelská akce, 924, 542290, , , , , 7A52610FBA6935C9ACF2A2F38CA86F6A, 677001B0CFD9F6C824E422C5EBBC5C042ABB0CF156990064DD3170CF6F3379C8
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\HowToRemove\up.png, Žádná uživatelská akce, 924, 542290, , , , , 45B1D3F523A38E29419DC26AE6BDD253, 892E25F7363B1C4EFA5FFACD5F4CDADD01833F49EF5CEF335676D84DA871EBA0
PUP.Optional.WinYahoo.TskLnk, C:\Users\Jirka\AppData\Local\{00283674-2480-5ACC-4918-7F246D7083BC}\uninst.exe, Žádná uživatelská akce, 924, 542290, , , , , 4ED777A5428F68EFA0A9D84FEB06D056, 59EE7AA430827FED2DCE7D0765AA95560094D864A811AB3611E30EA1B2CB4293
PUP.Optional.BundleInstaller, C:\USERS\JIRKA\APPDATA\ROAMING\UTORRENT\UTORRENT.EXE, Žádná uživatelská akce, 490, 1091497, 1.0.65301, 4645080F4644D31AAEE42F1B, dds, 02153524, 74EB0A3AD5044EB7A1A47446CD8377E2, EB1F1CCF4E12AA66D2CDF9B1785A4B3BE26AC3D4832A0387E82AAA1614B4706F
Malware.AI.4213926522, C:\USERS\JIRKA\DESKTOP\MKVTOOLNIX\MINERGATE-XFAST-GUI-1.7-WIN.EXE, Žádná uživatelská akce, 1000000, -81040774, 1.0.65301, 21F601EBA6C01815FB2B6A7A, dds, 02153524, D39DB201257E47832B46156C030FBEFE, 53B71E22DEA21344DABFFDB89A4EBEBFD7865C545CD94829899F4144EC1F9FDB

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

Re: microsoft

#6 Příspěvek od Reysanger »

pote na Cisteni a opravy (Clean and Repair) Jen tam je karantená žádné čistení nebo oprava

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: microsoft

#7 Příspěvek od Rudy »

Nalezené položky smažte (dejte do karantény), restartujte a dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

Re: microsoft

#8 Příspěvek od Reysanger »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-02-2023
Ran by Jirka (04-02-2023 17:29:09)
Running from C:\Users\Jirka\Desktop
Microsoft Windows 10 Home Version 22H2 19045.2486 (X64) (2020-08-21 09:31:44)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2147776618-328994716-1476381886-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2147776618-328994716-1476381886-503 - Limited - Disabled)
Guest (S-1-5-21-2147776618-328994716-1476381886-501 - Limited - Disabled)
Jirka (S-1-5-21-2147776618-328994716-1476381886-1002 - Administrator - Enabled) => C:\Users\Jirka
WDAGUtilityAccount (S-1-5-21-2147776618-328994716-1476381886-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Enabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
7-Zip 21.06 (x64) (HKLM\...\7-Zip) (Version: 21.06 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 22.003.20314 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD Ryzen Master SDK (HKLM\...\{DBD50508-5F75-416B-995D-C42433A00944}) (Version: 2.7.0.1725 - Advanced Micro Devices, Inc.)
AnyDVD (HKLM-x32\...\AnyDVD) (Version: 7.6.9.0 - SlySoft)
AstronTycoon2 Ritual (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\AstronTycoon2 Ritual) (Version: - HOODLUM)
Avidemux VC++ 64bits (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\{563f0c36-f4f1-4965-86fc-3ee560252453}) (Version: 2.7.5 - Mean)
Avidemux VC++ 64bits (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\{897780bf-1117-4ce6-b6b5-6855cf4f6bc8}) (Version: 2.7.8 - Mean)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Betaflight Configurator (HKLM\...\e72c90bb-45eb-48dc-9cf3-ac2e8ec52f8c_is1) (Version: 10.8.0 - The Betaflight open source project)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CPUID CPU-Z 1.96 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.96 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1184 - Disc Soft Ltd)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
DVDFab 12 (x64) (31/01/2023) (HKLM-x32\...\DVDFab 12 (x64)) (Version: 12.0.9.8 - DVDFab Software Inc.)
ENE_DRAM_RGB_AIO (HKLM\...\{1745D314-9077-46C9-8562-1C62BAE189B7}) (Version: 1.0.1.2 - Ene Tech.) Hidden
ENE_DRAM_RGB_AIO (HKLM-x32\...\{40941c42-b00c-4b98-900e-941e412fb676}) (Version: 1.0.1.2 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{fd812556-e0bb-4961-ac2b-cf5643484519}) (Version: 1.0.7.11 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM\...\{9E97178A-ADB8-4778-BE60-7E28E2A72721}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_MousePad_HAL (HKLM-x32\...\{c2c794a4-7986-4c45-884d-d4ca43b88df9}) (Version: 1.0.2.0 - ENE TECHNOLOGY INC.) Hidden
ENE_X-JMI_HAL (HKLM\...\{2B8E611F-0B51-4FAC-87BB-AF50D82E7DDA}) (Version: 1.0.5.1 - ENE Tech) Hidden
ENE_X-JMI_HAL (HKLM-x32\...\{50ec3a07-291b-463e-be86-487eb8cbb71c}) (Version: 1.0.5.1 - ENE Tech) Hidden
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
Evil West (HKLM-x32\...\Evil West_is1) (Version: - )
FileZilla Client 3.56.2 (HKLM-x32\...\FileZilla Client) (Version: 3.56.2 - Tim Kosse)
Groma v. 8.0 - demonstrační verze (HKLM-x32\...\Groma8-demo_is1) (Version: - Geoline, spol. s r.o.)
Hi-Rez Studios Games (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Network Connections 21.1.29.0 (HKLM\...\{1E5EDF73-13EC-4211-820D-1900B8BD7951}) (Version: 21.1.29.0 - Intel) Hidden
Intel(R) Network Connections 21.1.29.0 (HKLM\...\PROSetDX) (Version: 21.1.29.0 - Intel)
Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version: 2023.1.364056 - Logitech)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Malwarebytes version 4.5.21.231 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.21.231 - Malwarebytes)
MediaInfo 22.09 (HKLM\...\MediaInfo) (Version: 22.09 - MediaArea.net)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.78 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.70 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{89581302-705F-42C5-99B0-E368A845DAD5}) (Version: 3.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931 (HKLM-x32\...\{d4cecf3b-b68f-4995-8840-52ea0fab646e}) (Version: 14.34.31931.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.34.31931 (HKLM-x32\...\{6ba9fb5e-8366-4cc4-bf65-25fe9819b2fc}) (Version: 14.34.31931.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31931 (HKLM\...\{EAE242B1-0A26-485A-BFEB-0292EE9F03CB}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31931 (HKLM\...\{CF4C347D-954E-4543-88D2-EC17F07F466F}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.34.31931 (HKLM-x32\...\{C2662EFF-06E6-4FD1-9D6D-FDCA91025757}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.34.31931 (HKLM-x32\...\{AB1BDF73-7393-42CE-812D-9A90918814D5}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
MKVToolNix 72.0.0 (32-bit) (HKLM-x32\...\MKVToolNix) (Version: 72.0.0 - Moritz Bunkus)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 109.0.1 (x64 cs)) (Version: 109.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.2 - Mozilla)
MSI SDK (HKLM-x32\...\{EE7D557C-3AE7-4348-8DCA-3A89790D0002}}_is1) (Version: 2.2021.0416.01 - MSI)
MSVCRT Redists (HKLM\...\{C0400FDE-0517-11E7-8E05-C2A106E0D44C}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
NFOPad 1.73 (HKLM-x32\...\NFOPad) (Version: 1.73 - True Human Design)
Northgard CZ (GOG) (HKLM-x32\...\Northgard CZ (GOG)) (Version: 2.6.4.23618 - Blaster550)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.160 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.160 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.30.112 (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.30.112 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.39.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.39.16 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 528.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 528.24 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{FAAC26AD-73BA-40CE-86AA-C9213F9E064A}) (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 26.1.1 - OBS Project)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
OpenTX Companion 2.3 (HKLM-x32\...\OpenTX Companion 2.3) (Version: 2.3.15 - OpenTX)
Origin (HKLM-x32\...\Origin) (Version: 10.5.106.49298 - Electronic Arts, Inc.)
Pioneer BD Drive Utility BDR-211 (HKLM-x32\...\{2FBEA021-32AE-4848-BAF2-95D3047DC977}) (Version: 1.2.0.3 - Pioneer Corporation)
PlayerFab (x64) (11/01/2023) (HKLM-x32\...\PlayerFab (x64)) (Version: 7.0.3.5 - DVDFab Software Inc.)
ProtonVPN (HKLM-x32\...\{FFAFEA09-E7DA-4710-A278-7F0506C96829}) (Version: 1.18.5 - Proton Technologies AG) Hidden
ProtonVPN (HKLM-x32\...\ProtonVPN 1.18.5) (Version: 1.18.5 - Proton Technologies AG)
ProtonVPNTap (HKLM-x32\...\{5DA710E2-1B81-4675-BFC5-76BAF63AE1F6}) (Version: 1.1.3 - Proton Technologies AG)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Skype verze 8.93 (HKLM-x32\...\Skype_is1) (Version: 8.93 - Skype Technologies S.A.)
SopCast 4.2.0 (HKLM-x32\...\SopCast) (Version: 4.2.0 - www.sopcast.com)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tanki Online 1.255.255 (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\c50ff345-e72a-5ce9-90f5-05db394fb064) (Version: 1.255.255 - APL Publishing Ltd.)
Trezor Suite 22.12.1 (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\978be57b-9286-5cd7-a60b-54c81352a986) (Version: 22.12.1 - SatoshiLabs)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 38.2 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
VNC Viewer 6.20.529 (HKLM\...\{DCF5BBEA-3BDB-4E03-BF06-03836F320CA6}) (Version: 6.20.529.42646 - RealVNC Ltd)
Wargaming.net Game Center (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Wargaming.net Game Center) (Version: 21.0.0.3580 - Wargaming.net)
Wargaming.net Game Center for Steam (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Wargaming.net Game Center for Steam) (Version: 22.2.1.9342 - Wargaming.net)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{9c94735f-73fd-4b0f-9ddb-8be7b3cc4681}) (Version: 1.0.12.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK D50 (HKLM-x32\...\{a1d1ba00-92b7-4a99-8ebd-65b25c0e9e44}) (Version: 1.0.9.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
WonderFox DVD Video Converter 27.7 (HKLM-x32\...\WonderFox DVD Video Converter) (Version: 27.7 - WonderFox Soft, Inc.)
World of Tanks NA (HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\WOT.NA.PRODUCTION) (Version: - Wargaming.net)

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.16.345.0_x64__rz1tebttyb220 [2023-01-24] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-21] (Microsoft Corporation)
DragonCenter -> C:\Program Files\WindowsApps\9426MICRO-STARINTERNATION.DragonCenter_2.0.121.0_x64__kzh8wxbdkxb8p [2021-12-09] (MICRO-STAR INTERNATIONAL CO., LTD) [Startup Task]
f.lux -> C:\Program Files\WindowsApps\F.luxSoftwareLLC.f.lux_4.120.0.0_x86__sw1dyjdkns7gt [2021-06-24] (F.lux Software LLC) [Startup Task]
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_142.3.139.0_x64__v10z8vjag6ke6 [2023-01-27] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.963.0_x64__56jybvy8sckqj [2023-01-25] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.180.0_x64__dt26b99r8h8gj [2019-12-09] (Realtek Semiconductor Corp)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2022-12-09] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-11-24] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-02-04] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-11-24] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_20573575ac789ce1\nvshext.dll [2023-01-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-11-24] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-02-04] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2023-02-03 18:28 - 2023-01-11 03:22 - 000027136 _____ () [File not signed] C:\Program Files\DVDFab\PlayerFab\fftreal.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 173966336 _____ () [File not signed] C:\Program Files\DVDFab\PlayerFab\libcef.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 001354240 _____ () [File not signed] C:\Program Files\DVDFab\PlayerFab\utilities.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 000068096 _____ () [File not signed] C:\Program Files\DVDFab\PlayerFab\VMProtectSDK64.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 000124416 _____ () [File not signed] C:\Program Files\DVDFab\PlayerFab\zlib.dll
2023-02-01 14:52 - 2023-02-01 12:02 - 000155136 _____ () [File not signed] C:\Program Files\LGHUB\resources\app.asar.unpacked\keytar.node
2023-02-03 18:28 - 2023-01-11 03:22 - 000111616 _____ (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\DVDFab\PlayerFab\amd_ags_x64.dll
2016-08-24 15:54 - 2016-08-24 15:54 - 000352256 _____ (Intel(R) Corporation) [File not signed] C:\Windows\system32\NCS2Setp.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 001220096 _____ (The Chromium Authors) [File not signed] C:\Program Files\DVDFab\PlayerFab\chrome_elf.dll
2021-10-06 18:18 - 2021-10-06 18:18 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2021-10-06 18:18 - 2021-10-06 18:18 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 002097664 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\DVDFab\PlayerFab\LIBEAY32.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 000418261 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\DVDFab\PlayerFab\SSLEAY32.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 002696704 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\DVDFab\PlayerFab\libcrypto-1_1-x64.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 000642560 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Program Files\DVDFab\PlayerFab\libssl-1_1-x64.dll
2021-10-06 18:18 - 2021-10-06 18:18 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-10-21 08:51 - 2021-10-06 18:18 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-10-21 08:51 - 2021-10-06 18:18 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-10-21 08:51 - 2021-10-06 18:18 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-10-21 08:51 - 2021-10-06 18:18 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-10-21 08:51 - 2021-10-06 18:18 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-10-21 08:51 - 2021-10-06 18:18 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2023-02-01 17:32 - 2023-01-30 09:13 - 001245184 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\platforms\qwindows.dll
2023-02-01 17:32 - 2023-01-30 09:13 - 005686784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Core.dll
2023-02-01 17:32 - 2023-01-30 09:13 - 006005760 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Gui.dll
2023-02-01 17:32 - 2023-01-30 09:13 - 001070080 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Network.dll
2023-02-01 17:32 - 2023-01-30 09:13 - 005506048 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\DVDFab\DVDFab 12\Qt5Widgets.dll
2023-02-03 18:28 - 2023-01-11 03:22 - 006158456 _____ (The Qt Company Oy -> The Qt Company Ltd.) [File not signed] C:\Program Files\DVDFab\PlayerFab\Qt5Core.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Jirka:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Jirka\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jirka\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Jirka\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jirka\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-12-06] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-12-06] (Oracle America, Inc. -> Oracle Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\localhost -> localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 8.8.8.8 - 208.67.222.222
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{35363163-55EA-4183-9DCC-28D30CB58BA2}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{C2C732D6-B43B-4012-B749-75035153E698}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{F943FC76-8FB8-4272-A028-0F7FBD66C49C}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{3DDEEB2D-B3C7-4D57-9E95-C7B967A3246D}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [{2333E3D5-B8F2-4F35-96C9-B6D66DD705E5}] => (Allow) D:\Steamp\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6F98E648-5FE1-4E43-925F-3F4578E0DCC5}] => (Allow) D:\Steamp\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8995CDAD-150B-4F64-AE1B-2349AFD3032E}] => (Allow) D:\Steamp\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6BF9A1DE-E979-4250-9331-54E153CA560E}] => (Allow) D:\Steamp\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{6B2201AD-2AA3-4A5A-AA6F-46FC4BDD42E3}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Block) D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{DF99E149-A95A-43BF-A905-5AEA46AA543C}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Block) D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{AFE00191-6CB3-486B-8ECC-2515F6A772AD}D:\steamp\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamp\steamapps\common\counter-strike global offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [UDP Query User{3A8485DA-69D4-41B1-B81B-ADB31F695857}D:\steamp\steamapps\common\counter-strike global offensive\csgo.exe] => (Allow) D:\steamp\steamapps\common\counter-strike global offensive\csgo.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{ABF1731A-F68C-420F-BE12-69350164D2A7}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{558F43F7-579A-4D27-ADF1-DC79E6F2DB5E}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{B33AB347-DE37-4B49-8C3A-6EC0DAED453A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E8C14851-1BC1-4494-A703-3502716CE59B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{7A1C8A6F-7E29-4757-A3A4-1FEDFFDAC713}D:\steamp\steamapps\common\for honor\forhonor.exe] => (Allow) D:\steamp\steamapps\common\for honor\forhonor.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{5639ABA1-47CB-4510-AD12-A5A5EB4DC788}D:\steamp\steamapps\common\for honor\forhonor.exe] => (Allow) D:\steamp\steamapps\common\for honor\forhonor.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{6631CA31-75DC-45F8-8D01-137C6C3F832D}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe] => (Allow) C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe => No File
FirewallRules: [UDP Query User{F4E76A33-1FBB-4FEC-B858-BF8455DC403C}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe] => (Allow) C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe => No File
FirewallRules: [{12866477-161B-42F8-AE53-1D359DD4E9D3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3E5EC70B-09D9-4670-8674-E785EDD61499}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2A8BE622-E5E1-44AF-96EA-A9B9D3CD946B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E2C0E993-2CA4-4E60-ABC3-3DD9497BC4DE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{C56F3641-86F0-4E77-B746-2328AC31E146}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{B121B4E2-D336-4ADA-9FD6-25FF878739EB}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{BD9B5272-AA7B-481E-9641-8B91BBA8675E}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [UDP Query User{54583F5F-889C-447A-A268-0448F9FA4116}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [TCP Query User{31A9786A-AFE6-4C9A-A00A-44FBC0593815}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [UDP Query User{98C15C73-32BB-4C50-B45F-5B8CC5D20E67}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [TCP Query User{35BFF6E3-453F-4DA3-B6B8-42950F3E9877}C:\program files\dogecoin\dogecoin-qt.exe] => (Allow) C:\program files\dogecoin\dogecoin-qt.exe => No File
FirewallRules: [UDP Query User{F8898BCD-C3F5-4290-9C7C-7138CBDEED0F}C:\program files\dogecoin\dogecoin-qt.exe] => (Allow) C:\program files\dogecoin\dogecoin-qt.exe => No File
FirewallRules: [{B188C9AD-8546-4326-8DBC-C53E81B505A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{DE2CF34E-C2F8-436B-8F88-04644B19BAAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{FA4CC01B-9266-49DB-A079-F58B00C6500E}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe] => (Allow) E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe => No File
FirewallRules: [UDP Query User{74891D5F-AD57-46F2-9EDB-84F9CB42C7D6}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe] => (Allow) E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe => No File
FirewallRules: [TCP Query User{338577F3-3565-4015-ACE4-D22412FBEFD4}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe] => (Block) E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe => No File
FirewallRules: [UDP Query User{4A0C8E98-3291-46EE-9A1C-77352BB3CEEC}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe] => (Block) E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe => No File
FirewallRules: [{721B0FCC-66E3-449E-B6E2-0E8859D57CCB}] => (Allow) D:\Steamp\steamapps\common\Gladio and Glory\Gladio and Glory\Gladio and Glory.exe => No File
FirewallRules: [{87D8EDCF-8FF2-4229-9984-7F1470D20685}] => (Allow) D:\Steamp\steamapps\common\Gladio and Glory\Gladio and Glory\Gladio and Glory.exe => No File
FirewallRules: [TCP Query User{CCB87B87-4D9A-4E52-9A10-B55D8FDBDA89}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [UDP Query User{33BAA319-990C-40AE-BF81-C016A8093DDE}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [TCP Query User{E7A06F18-A26B-46CD-8640-37826BEE9959}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [UDP Query User{FBD52A69-E1C4-463B-823B-ABA4988D555A}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [{2403E493-B35F-435A-BABF-D07922A5DA99}] => (Allow) D:\Steamp\steamapps\common\World of Tanks\wgcs_api.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{4EA116A3-DC2E-4285-98F7-CD34F1B7EDA8}] => (Allow) D:\Steamp\steamapps\common\World of Tanks\wgcs_api.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{8D8FE183-C8E1-494A-AAFA-CFF89A2082ED}D:\steamp\steamapps\common\world of tanks\eu\win64\worldoftanks.exe] => (Allow) D:\steamp\steamapps\common\world of tanks\eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{3F33CEE0-DD2B-44D8-A899-B3A821D1C314}D:\steamp\steamapps\common\world of tanks\eu\win64\worldoftanks.exe] => (Allow) D:\steamp\steamapps\common\world of tanks\eu\win64\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{2B48E2BF-38A1-40C2-B962-1A4AAE881032}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\Orqa FPV.SkyDive.exe => No File
FirewallRules: [{954CCF3E-4FAB-49B1-B320-BA28117AFFBE}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\Orqa FPV.SkyDive.exe => No File
FirewallRules: [TCP Query User{C0BA5164-0806-4058-905E-9D368B302FE3}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [UDP Query User{82FFB38D-C0E6-4CD0-AE1F-7B68422796A8}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [TCP Query User{3E3E813E-010F-405F-B741-0F89769C9DC1}C:\users\jirka\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\jirka\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{904C5486-2473-4497-9029-B42662DFE8B5}C:\users\jirka\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe] => (Allow) C:\users\jirka\appdata\local\nvidia corporation\geforcenow\cef\geforcenow.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{17822CDB-CEE1-49BE-939D-B9FFB46E6548}] => (Allow) D:\Steamp\steamapps\common\Grim Dawn\Grim Dawn.exe (Crate Entertainment, LLC) [File not signed]
FirewallRules: [{1DAC7648-5EB9-4F4E-9FBD-04573F808315}] => (Allow) D:\Steamp\steamapps\common\Grim Dawn\Grim Dawn.exe (Crate Entertainment, LLC) [File not signed]
FirewallRules: [TCP Query User{010006A1-CA4E-4572-AF52-3388B13F1277}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{C7C0DD16-4B5C-4BAE-A25D-7A93112F304D}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{DA5DDE84-BE6C-466F-A83E-489922C4388A}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{12B8582E-0CB1-48A3-876C-6B94483C56D7}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{256C0A4A-660A-40D1-9EE1-7B37F0A3331A}D:\steamp\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe] => (Allow) D:\steamp\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [UDP Query User{57F4D855-C43F-4ED6-85F3-446E98D45429}D:\steamp\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe] => (Allow) D:\steamp\steamapps\common\cryptic studios\neverwinter\live\x64\gameclient.exe (Cryptic Studios Inc. -> )
FirewallRules: [{2F0241C1-B7DE-4191-855C-BE03EF1D37F6}] => (Allow) D:\Steamp\steamapps\common\SWD7Demo\SWD7_Demo\Binaries\Win64\SWD7-Win64-Shipping.exe => No File
FirewallRules: [{EB921942-4578-4606-8F49-B65B2267BEF9}] => (Allow) D:\Steamp\steamapps\common\SWD7Demo\SWD7_Demo\Binaries\Win64\SWD7-Win64-Shipping.exe => No File
FirewallRules: [TCP Query User{6CCA0621-D97F-4869-BE1F-E3CE3F84FF51}C:\programdata\wargaming.net\gamecenter for steam\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter for steam\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{C2B4389B-A34D-4A9A-92B3-E6842E9D61FE}C:\programdata\wargaming.net\gamecenter for steam\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter for steam\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{0263186A-50F8-41FD-8F09-BE835D224FE9}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe => No File
FirewallRules: [UDP Query User{9897449C-784C-4584-9AEA-B4020CB2F6F4}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe => No File
FirewallRules: [TCP Query User{619ABB6E-9C34-4B42-BEC5-995D67E8A64E}D:\program files\vlcvideolan\vlc\vlc.exe] => (Block) D:\program files\vlcvideolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{13497CF9-21BA-4029-BB41-0C2DEC3495AE}D:\program files\vlcvideolan\vlc\vlc.exe] => (Block) D:\program files\vlcvideolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{27E40EB8-8E23-4FBB-964F-D7515EE0DB17}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\jirka\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{5664AA3E-5CC8-4682-A9F7-F4DDE3AB5C09}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\jirka\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{D3B71723-4A6D-4F4B-8CC9-22E196AB503F}D:\steamp\steamapps\common\new world\bin64\newworld.exe] => (Allow) D:\steamp\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [UDP Query User{AD16206C-5F07-45C5-87FA-39323AEAD758}D:\steamp\steamapps\common\new world\bin64\newworld.exe] => (Allow) D:\steamp\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [{8A3E9F06-D883-4071-9BDA-AB77EEE841D5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{FEF8753F-0A6B-4430-89A9-B28D7E61D884}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{A0FEAC8C-3C8A-463E-BB39-0754172B5E7C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{40FD841F-86E5-4117-9DCE-E5538A73C1B9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{22E08A23-E30B-429D-A32A-F390A90219DA}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [{C6C3C57E-3CAB-4285-AF1D-31BF07882D05}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FirewallRules: [TCP Query User{0903754F-6415-4E5E-870E-ED010B0A4250}D:\steamp\steamapps\common\battlefield 4\bf4.exe] => (Allow) D:\steamp\steamapps\common\battlefield 4\bf4.exe => No File
FirewallRules: [UDP Query User{AB53A4A3-817C-4956-84D2-EB441A7A4F1E}D:\steamp\steamapps\common\battlefield 4\bf4.exe] => (Allow) D:\steamp\steamapps\common\battlefield 4\bf4.exe => No File
FirewallRules: [TCP Query User{F273ABCC-2A8F-45A3-8349-1092807129F5}D:\steamp\steamapps\common\battlefield v\bfv.exe] => (Allow) D:\steamp\steamapps\common\battlefield v\bfv.exe => No File
FirewallRules: [UDP Query User{85D69B72-A0B1-47E7-AE10-4E9C6B9B4D57}D:\steamp\steamapps\common\battlefield v\bfv.exe] => (Allow) D:\steamp\steamapps\common\battlefield v\bfv.exe => No File
FirewallRules: [TCP Query User{33CC939E-25D8-4D3E-9D49-AB4028853E4E}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steamp\steamapps\common\battlefield 2042\bf2042.exe => No File
FirewallRules: [UDP Query User{FFC22252-53DA-448E-9632-447F6CBC20B6}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steamp\steamapps\common\battlefield 2042\bf2042.exe => No File
FirewallRules: [TCP Query User{B30775E8-8459-48A9-BC76-066C41D68391}E:\jirka\hry\crsed\launcher.exe] => (Allow) E:\jirka\hry\crsed\launcher.exe => No File
FirewallRules: [UDP Query User{E1AEAD39-E24E-4A40-B6D5-B149C5ED2E27}E:\jirka\hry\crsed\launcher.exe] => (Allow) E:\jirka\hry\crsed\launcher.exe => No File
FirewallRules: [TCP Query User{57F28B68-26EE-4418-8E93-2962AEAC6FE9}E:\jirka\hry\crsed\win64\cuisine_royale.exe] => (Allow) E:\jirka\hry\crsed\win64\cuisine_royale.exe => No File
FirewallRules: [UDP Query User{20E6369D-F27B-4225-ACD0-B2BE76775D77}E:\jirka\hry\crsed\win64\cuisine_royale.exe] => (Allow) E:\jirka\hry\crsed\win64\cuisine_royale.exe => No File
FirewallRules: [{4F48087D-5170-4DC6-9835-66C42990AF9D}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\FPV.SkyDive.exe () [File not signed]
FirewallRules: [{3F6B0A63-315A-4538-BA3F-D09B43F5E5F1}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\FPV.SkyDive.exe () [File not signed]
FirewallRules: [TCP Query User{668DE0FF-88E2-4B02-A63F-FACE5A97911F}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe] => (Allow) E:\jirka\hry\diablo iii - eternal collection\yuzu.exe => No File
FirewallRules: [UDP Query User{D1E18B8A-7CE4-4F07-BCEF-D191793615F8}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe] => (Allow) E:\jirka\hry\diablo iii - eternal collection\yuzu.exe => No File
FirewallRules: [{F5EF4C5D-A7F0-4756-84D2-11579DD683D3}] => (Allow) D:\Steamp\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve Corp. -> )
FirewallRules: [{EA6E31E8-BF12-4B5C-96A5-417AF52B5433}] => (Allow) D:\Steamp\steamapps\common\Counter-Strike Global Offensive\bin\SDKLauncher.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{10124BAC-6FC0-46C6-B41B-83850BD52C8F}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => No File
FirewallRules: [UDP Query User{FF07401D-52DB-4CA5-BEEC-6A9F43F832CA}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => No File
FirewallRules: [{AF2DE916-A4C7-44DD-B8FC-13ECF3675A8F}] => (Allow) D:\Steamp\steamapps\common\Eternium\MageAndMinions.exe (Marmalade Technologies Ltd) [File not signed]
FirewallRules: [{B8B307A3-A962-490C-A9A0-8C6449F08D8F}] => (Allow) D:\Steamp\steamapps\common\Eternium\MageAndMinions.exe (Marmalade Technologies Ltd) [File not signed]
FirewallRules: [{75B43A1A-915A-4819-B718-050CEEB6CA2E}] => (Allow) D:\Steamp\steamapps\common\Liftoff\Liftoff.exe () [File not signed]
FirewallRules: [{38075ABD-1507-43AE-B0D5-6AABEA3C619A}] => (Allow) D:\Steamp\steamapps\common\Liftoff\Liftoff.exe () [File not signed]
FirewallRules: [TCP Query User{A05A57B1-3A1B-4E8D-966C-BC0C3E74C570}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{2B880CF6-59CB-4D7C-9F56-C83EC92D9E6D}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{59651423-211E-4A24-8752-9701CA2E78B8}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe => No File
FirewallRules: [UDP Query User{5F9F38B7-8FB1-4F9E-BFDA-115591187FEA}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe => No File
FirewallRules: [{90D6CE9E-9409-4161-B99F-539CE464F299}] => (Allow) D:\Steamp\steamapps\common\Uncrashed FPV Drone Sim\Uncrashed.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{637344E0-8171-482F-9A6C-0F0ED7B4E852}] => (Allow) D:\Steamp\steamapps\common\Uncrashed FPV Drone Sim\Uncrashed.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{B56F48F0-7D17-48B4-8610-11758C7B76CA}] => (Allow) D:\Steamp\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{8BAC073F-FE9D-43B1-B27C-1A7D2D1F1E46}] => (Allow) D:\Steamp\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [TCP Query User{D9AB8084-01AC-480A-ABEA-DC3C313848C0}D:\games\wrc generations - the fia wrc official game\wrcg.exe] => (Allow) D:\games\wrc generations - the fia wrc official game\wrcg.exe => No File
FirewallRules: [UDP Query User{E5425873-B859-48AD-A1F3-89223738325A}D:\games\wrc generations - the fia wrc official game\wrcg.exe] => (Allow) D:\games\wrc generations - the fia wrc official game\wrcg.exe => No File
FirewallRules: [{A5236DBD-C007-4229-9E5C-F95C063220CA}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.)
FirewallRules: [{ABE7535E-E44C-42AF-9D43-38D0534FD6E4}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.)
FirewallRules: [TCP Query User{9518EF88-2DED-477A-83D2-69330C8F7031}C:\program files\dvdfab\dvdfab 12\dvdfab64.exe] => (Allow) C:\program files\dvdfab\dvdfab 12\dvdfab64.exe (DVDFab Software Inc. -> DVDFab.cn)
FirewallRules: [UDP Query User{0C70E994-6D6B-4F49-9BED-8A4DC00F2DF5}C:\program files\dvdfab\dvdfab 12\dvdfab64.exe] => (Allow) C:\program files\dvdfab\dvdfab 12\dvdfab64.exe (DVDFab Software Inc. -> DVDFab.cn)
FirewallRules: [TCP Query User{30EE7AFB-9F56-44C1-9950-407518660846}C:\users\jirka\appdata\local\programs\trezor suite\trezor suite.exe] => (Allow) C:\users\jirka\appdata\local\programs\trezor suite\trezor suite.exe (SatoshiLabs, s.r.o. -> SatoshiLabs)
FirewallRules: [UDP Query User{7CC3D469-CF7E-41D1-A141-2CCBA6BAD31C}C:\users\jirka\appdata\local\programs\trezor suite\trezor suite.exe] => (Allow) C:\users\jirka\appdata\local\programs\trezor suite\trezor suite.exe (SatoshiLabs, s.r.o. -> SatoshiLabs)
FirewallRules: [{B5D62EE3-332A-4798-8665-10A379BD7749}] => (Allow) D:\Steamp\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [File not signed]
FirewallRules: [{66B8556B-974E-4AB8-90A9-2D5D9F116F70}] => (Allow) D:\Steamp\steamapps\common\Grim Dawn\x64\Grim Dawn.exe (Crate Entertainment, LLC) [File not signed]
FirewallRules: [{EB51E501-344A-49D5-BD36-9EDD9FBCE7E6}] => (Allow) D:\Steamp\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{C214A983-BC42-46C5-B8D8-762D3E3ADC64}] => (Allow) D:\Steamp\steamapps\common\Call of Duty HQ\cod.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{B26803C1-E02B-4A8F-A7E7-FD98628EBC6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{87DF0581-98D8-4EB0-B873-BCD067D7908C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B37C71AA-5ED1-43AF-B2CA-98A3DCD32B52}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B134A154-86EB-4F94-85F5-F90F5798230A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{423FE385-0218-4EEA-88E1-961614D9A3C8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DEC18318-6D18-4440-8EB5-F69C891C3433}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6C4C1AA2-8C2C-40E1-BB64-19CF58E8F481}] => (Allow) D:\Steamp\steamapps\common\Isonzo\Isonzo\Isonzo.exe () [File not signed]
FirewallRules: [{727275FA-9DC7-4BFA-9A60-397EBFD12B1F}] => (Allow) D:\Steamp\steamapps\common\Isonzo\Isonzo\Isonzo.exe () [File not signed]
FirewallRules: [{E57A8CB6-3802-41BB-BFA9-40A85610891B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{0DAF4482-53DB-4DB0-A3DF-CB878CDBE66C}D:\playerfab\playerfab server.exe] => (Allow) D:\playerfab\playerfab server.exe => No File
FirewallRules: [UDP Query User{4196B96E-5F34-4290-8143-11A89F2F0514}D:\playerfab\playerfab server.exe] => (Allow) D:\playerfab\playerfab server.exe => No File
FirewallRules: [TCP Query User{6104BC45-DED1-453A-94F1-40E8CD28C934}D:\playerfab\playerfab.exe] => (Allow) D:\playerfab\playerfab.exe => No File
FirewallRules: [UDP Query User{E5303CB6-3ACD-4C88-8656-1A8605EBDAA3}D:\playerfab\playerfab.exe] => (Allow) D:\playerfab\playerfab.exe => No File
FirewallRules: [TCP Query User{37A9EB60-A0FB-4FA8-B30E-6A805B4C065C}C:\program files\dvdfab\playerfab\playerfab server.exe] => (Block) C:\program files\dvdfab\playerfab\playerfab server.exe (DVDFab Software Inc. -> PlayerFab Server Inc.)
FirewallRules: [UDP Query User{A3F0EB5D-2190-438F-BAAC-DCD99A775723}C:\program files\dvdfab\playerfab\playerfab server.exe] => (Block) C:\program files\dvdfab\playerfab\playerfab server.exe (DVDFab Software Inc. -> PlayerFab Server Inc.)
FirewallRules: [TCP Query User{3E776975-B69F-4E34-8C9A-C5C12BAD7971}C:\program files\dvdfab\playerfab\playerfab.exe] => (Block) C:\program files\dvdfab\playerfab\playerfab.exe (DVDFab Software Inc. -> )
FirewallRules: [UDP Query User{95ECB60E-50C2-4EAF-A6A2-B8E01F0D7F19}C:\program files\dvdfab\playerfab\playerfab.exe] => (Block) C:\program files\dvdfab\playerfab\playerfab.exe (DVDFab Software Inc. -> )
FirewallRules: [{B4EAA6DF-33D6-4EC7-9793-D0C3D2343DBE}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD.exe => No File
FirewallRules: [{A94DEDF2-1178-486A-A498-E56D376E5C41}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\ShareModule32\Kernel\DMS\CLMSServerPDVD22.exe => No File
FirewallRules: [{0FC3E53A-563A-40AC-B86C-4212B607ED38}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD22Agent.exe => No File
FirewallRules: [{57E78C4B-2BB5-4818-988E-936B46DC52B7}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Movie\PowerDVDMovie.exe => No File
FirewallRules: [{F83CFE81-530A-4EBF-8EDA-1496CEDADCA7}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\CastingStation.exe => No File
FirewallRules: [{4975C5A5-2C4D-4DDA-A54D-63E219A08E71}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe => No File
FirewallRules: [{8D4264C2-8A7C-4ABB-A29B-C9470CB43B89}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\dynamic_transcode.exe => No File
FirewallRules: [{F8A347FB-1826-4619-BF8A-9FB1124637CF}] => (Allow) LPort=32682

==================== Restore Points =========================

28-01-2023 15:01:17 Naplánovaný kontrolní bod
01-02-2023 13:47:07 Installed Pioneer BD Drive Utility BDR-211.
03-02-2023 07:49:36 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (02/04/2023 05:25:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: FreemakeUtilsService.exe, verze: 1.0.0.0, časové razítko: 0x5e9fe263
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.2486, časové razítko: 0xca518c9d
Kód výjimky: 0xe0434352
Posun chyby: 0x0012e292
ID chybujícího procesu: 0xffc
Čas spuštění chybující aplikace: 0x01d938b549af42d1
Cesta k chybující aplikaci: C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: e6fecd08-dcd1-43b2-964c-042f8a25f66b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/04/2023 05:25:26 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: FreemakeUtilsService.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na FreemakeUtilsService.Program.Main(System.String[])

Error: (02/04/2023 04:01:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: uTorrent.exe, verze: 2.2.1.25203, časové razítko: 0x4da658c2
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.2130, časové razítko: 0x463c9bed
Kód výjimky: 0xc000041d
Posun chyby: 0x00005e57
ID chybujícího procesu: 0x2d50
Čas spuštění chybující aplikace: 0x01d938a577b4c673
Cesta k chybující aplikaci: C:\Program Files (x86)\uTorrent\uTorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: bc08bff6-4f7a-450c-8732-4911622f72f5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/04/2023 03:29:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: uTorrent.exe, verze: 2.2.1.25203, časové razítko: 0x4da658c2
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.2130, časové razítko: 0x463c9bed
Kód výjimky: 0xc000041d
Posun chyby: 0x00005e57
ID chybujícího procesu: 0x30f4
Čas spuštění chybující aplikace: 0x01d938a1b46a122e
Cesta k chybující aplikaci: C:\Program Files (x86)\uTorrent\uTorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 7c93c547-e6b6-41c0-b7c1-4fce372d2a2b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/04/2023 12:28:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: uTorrent.exe, verze: 2.2.1.25203, časové razítko: 0x4da658c2
Název chybujícího modulu: GDI32.dll, verze: 10.0.19041.2130, časové razítko: 0x463c9bed
Kód výjimky: 0xc000041d
Posun chyby: 0x00005e57
ID chybujícího procesu: 0x4468
Čas spuštění chybující aplikace: 0x01d938823e4be447
Cesta k chybující aplikaci: C:\Program Files (x86)\uTorrent\uTorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 4be8e84a-8870-4c70-8b69-478e3eae5ab0
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/04/2023 10:21:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: VoiceControlEngine.exe, verze: 1.0.0.6, časové razítko: 0xde434485
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.2486, časové razítko: 0xca518c9d
Kód výjimky: 0xe0434352
Posun chyby: 0x0012e292
ID chybujícího procesu: 0x2264
Čas spuštění chybující aplikace: 0x01d9387a0319edb8
Cesta k chybující aplikaci: C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 80ca2a7c-d28d-4e5f-8baf-b55a61478d9e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/04/2023 10:21:08 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: VoiceControlEngine.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.Net.Sockets.SocketException
na System.Net.Sockets.Socket.DoBind(System.Net.EndPoint, System.Net.SocketAddress)
na System.Net.Sockets.Socket.Bind(System.Net.EndPoint)
na System.Net.Sockets.TcpListener.Start(Int32)
na VoiceControlEngine.WebSocketServer.Start()
na VoiceControlEngine.MainWindow..ctor()

Informace o výjimce: System.Windows.Markup.XamlParseException
na System.Windows.Markup.WpfXamlLoader.Load(System.Xaml.XamlReader, System.Xaml.IXamlObjectWriterFactory, Boolean, System.Object, System.Xaml.XamlObjectWriterSettings, System.Uri)
na System.Windows.Markup.WpfXamlLoader.LoadBaml(System.Xaml.XamlReader, Boolean, System.Object, System.Xaml.Permissions.XamlAccessLevel, System.Uri)
na System.Windows.Markup.XamlReader.LoadBaml(System.IO.Stream, System.Windows.Markup.ParserContext, System.Object, Boolean)
na System.Windows.Application.LoadBamlStreamWithSyncInfo(System.IO.Stream, System.Windows.Markup.ParserContext)
na System.Windows.Application.LoadComponent(System.Uri, Boolean)
na System.Windows.Application.DoStartup()
na System.Windows.Application.<.ctor>b__1_0(System.Object)
na System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
na System.Windows.Threading.DispatcherOperation.InvokeImpl()
na System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
na MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
na MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)
na System.Windows.Threading.DispatcherOperation.Invoke()
na System.Windows.Threading.Dispatcher.ProcessQueue()
na System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
na MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
na MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
na System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
na System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
na MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
na MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
na System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
na System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
na System.Windows.Application.RunDispatcher(System.Object)
na System.Windows.Application.RunInternal(System.Windows.Window)
na System.Windows.Application.Run(System.Windows.Window)
na VoiceControlEngine.App.Main()

Error: (02/04/2023 07:02:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: JPWLCVAVRDDXXTGA.exe, verze: 2.0.0.0, časové razítko: 0x621e795b
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000140003be2
ID chybujícího procesu: 0x1be4
Čas spuštění chybující aplikace: 0x01d93855e9dd6f79
Cesta k chybující aplikaci: C:\Users\Jirka\AppData\Roaming\MAGIX\VEGAS Pro\JPWLCVAVRDDXXTGA.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: edf00762-668a-467c-99fd-18c33ed535aa
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (02/04/2023 05:25:30 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (02/04/2023 05:25:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Freemake Improver neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (02/04/2023 05:25:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Freemake Improver bylo dosaženo časového limitu (45000 ms).

Error: (02/04/2023 05:25:25 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (02/04/2023 04:22:19 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (02/04/2023 04:12:27 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT AUTHORITY)
Description: Při pokusu o načtení souboru místních hostitelů došlo k chybě.

Error: (02/04/2023 10:21:18 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WinRing0_1_2_0 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (02/04/2023 05:02:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba WinRing0_1_2_0 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.


Windows Defender:
================
Date: 2023-02-04 14:19:23
Description:
Řízený přístup ke složkám zablokoval pro D:\Steamp\steamapps\common\For Honor\forhonor.exe možnost upravit %userprofile%\Documents\My Games.
Čas detekce: 2023-02-04T13:19:23.368Z
Uživatel: DESKTOP-HBD88RJ\Jirka
Cesta: %userprofile%\Documents\My Games
Název procesu: D:\Steamp\steamapps\common\For Honor\forhonor.exe
Verze bezpečnostních informací: 1.381.3081.0
Verze modulu: 1.1.19900.2
Verze produktu: 4.18.2211.5

Date: 2023-02-04 14:18:58
Description:
Řízený přístup ke složkám zablokoval pro D:\Steamp\steamapps\common\For Honor\forhonor.exe možnost upravit %userprofile%\Documents\My Games.
Čas detekce: 2023-02-04T13:18:58.464Z
Uživatel: DESKTOP-HBD88RJ\Jirka
Cesta: %userprofile%\Documents\My Games
Název procesu: D:\Steamp\steamapps\common\For Honor\forhonor.exe
Verze bezpečnostních informací: 1.381.3081.0
Verze modulu: 1.1.19900.2
Verze produktu: 4.18.2211.5

Date: 2023-02-03 19:17:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8AC632C8-4F54-4165-9523-9D52B852392E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-02-03 18:01:58
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {4EF72074-9468-47D0-B7A0-353182231ED9}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-02-03 16:48:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {6B71685B-6BA5-479B-ACEE-4376202E8A11}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2023-02-04 17:27:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.

Date: 2023-02-04 17:27:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. F3b 10/04/2018
Motherboard: Gigabyte Technology Co., Ltd. B450 AORUS PRO-CF
Processor: AMD Ryzen 5 2600X Six-Core Processor
Percentage of memory in use: 34%
Total physical RAM: 16332.56 MB
Available physical RAM: 10657.25 MB
Total Virtual: 20172.56 MB
Available Virtual: 10079.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.97 GB) (Free:57.59 GB) (Model: XPG GAMMIX S11) NTFS
Drive d: () (Fixed) (Total:931.5 GB) (Free:346.54 GB) (Model: ST1000DM010-2EP102) NTFS
Drive e: (E) (Fixed) (Total:3726.01 GB) (Free:1194.49 GB) (Model: WDC WD4003FFBX-68MU3N0) NTFS

\\?\Volume{bea04c9f-af26-42d9-995d-e26a73ffb427}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{423c6468-b74a-4544-9187-272b75b837d7}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 3726 GB) (Disk ID: E814A80B)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

Re: microsoft

#9 Příspěvek od Reysanger »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2023
Ran by Jirka (administrator) on DESKTOP-HBD88RJ (Gigabyte Technology Co., Ltd. B450 AORUS PRO) (04-02-2023 17:28:00)
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka
Platform: Microsoft Windows 10 Home Version 22H2 19045.2486 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI.CentralServer.exe
(C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\PlayerFab\QCef.exe <3>
(C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe ->) (DVDFab Software Inc. -> PlayerFab Server Inc.) C:\Program Files\DVDFab\PlayerFab\PlayerFab Server.exe
(C:\Program Files\LGHUB\lghub.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe
(C:\Program Files\LGHUB\system_tray\lghub_system_tray.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\F.luxSoftwareLLC.f.lux_4.120.0.0_x86__sw1dyjdkns7gt\Flux\noshow.exe ->) (F.lux Software LLC) C:\Program Files\WindowsApps\F.luxSoftwareLLC.f.lux_4.120.0.0_x86__sw1dyjdkns7gt\Flux\flux.exe
(explorer.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\DVDFab 12\LiveUpdate.exe
(explorer.exe ->) (DVDFab Software Inc. -> ) C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe
(explorer.exe ->) (F.lux Software LLC) C:\Program Files\WindowsApps\F.luxSoftwareLLC.f.lux_4.120.0.0_x86__sw1dyjdkns7gt\Flux\noshow.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (SatoshiLabs, s.r.o. -> ) D:\Program Files\trezor\TREZOR Bridge\trezord.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <25>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(services.exe ->) (Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(services.exe ->) (Intel(R) Network Platform Group -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe
(services.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_20573575ac789ce1\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2204.13303.0_x64__8wekyb3d8bbwe\Cortana.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.BingWeather_4.53.43112.0_x64__8wekyb3d8bbwe\Microsoft.Msn.Weather.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.22112.142.0_x64__8wekyb3d8bbwe\PhoneExperienceHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe
(svchost.exe ->) (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControlEngine.exe
(svchost.exe ->) (NVIDIA Corporation) [File not signed] C:\Users\Jirka\AppData\Roaming\MAGIX\VEGAS Pro\JPWLCVAVRDDXXTGA.exe <4>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [Steam] => D:\Steamp\steam.exe [4246376 2022-12-15] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365760 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [152025856 2023-02-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [611dd93a9b5c578be68b17d997792402] => C:\Program Files\DVDFab\DVDFab 12\LiveUpdate.exe [5476168 2023-01-30] (DVDFab Software Inc. -> )
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [MicrosoftEdgeAutoLaunch_9351DC8C75826C8A9C791E0FFD3CBFF5] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-02-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [20f2c92f05b0a2d284081b5631e280ea] => "D:\PlayerFab\liveUpdate.exe" --run_mode=background_check (No File)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [PlayerFab] => C:\Program Files\DVDFab\PlayerFab\PlayerFab.exe [22816584 2023-01-11] (DVDFab Software Inc. -> )
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [4f63842c5ef1a9d4ee3c64ea199dba50] => C:\Program Files\DVDFab\PlayerFab\liveUpdate.exe [7335752 2023-01-11] (DVDFab Software Inc. -> )
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TREZOR Bridge.lnk [2020-09-29]
ShortcutTarget: TREZOR Bridge.lnk -> D:\Program Files\trezor\TREZOR Bridge\trezord.exe (SatoshiLabs, s.r.o. -> )
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01650B79-F76D-40D4-911C-AA0C092E5CC7} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [710560 2023-02-02] (Mozilla Corporation -> Mozilla Foundation)
Task: {0C283053-187F-4D0D-BFAA-156F0E962AE3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1F21D070-5755-492B-B7D7-ABBCC38482B5} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {2C6AA328-4B10-4160-A502-3B7F0B6FCE17} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {3B8DAA22-B788-4486-A5E9-1D0637507EBB} - System32\Tasks\MSI Task Host - DisplayID => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [78648 2021-03-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {3ef97c13-8dc5-40f5-bf98-371099feea89} - no filepath
Task: {3F5BA140-0684-4FE2-A9C5-48A088B858D1} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2332088 2023-01-30] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {4AE0F13F-DBB3-4E89-8274-116CBD8525DB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {56563025-EE9A-4033-96DE-F9C3BE49DE8A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {74550FC8-3F87-4274-BF36-EFA252505BFB} - System32\Tasks\JPWLCVAVRDDXXTGA_run => C:\Users\Jirka\AppData\Roaming\MAGIX\VEGAS Pro\JPWLCVAVRDDXXTGA.exe [891368 2022-06-26] (NVIDIA Corporation) [File not signed]
Task: {7CBE2B10-73BF-446F-8EAB-F8464317EDDC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {888FBCBE-1748-4895-963C-C1EE62D03A7F} - System32\Tasks\Mozilla\Firefox Default Browser Agent 85F4D821BAA65D0F => C:\Users\Jirka\AppData\Local\Mozilla Firefox\default-browser-agent.exe [682936 2021-11-19] (Mozilla Corporation -> Mozilla Foundation)
Task: {914EA571-E9A6-43D8-8397-02234C4CC90D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {97b83383-1faa-45ee-abbd-da36f47f95b3} - no filepath
Task: {9E02C1A5-A205-46AF-8752-6E54CE359413} - System32\Tasks\MSI Task Host - LEDKeeper2_Host => C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LEDKeeper2.exe [1674576 2021-03-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {AD687932-A953-46CA-82D4-BB169FF887C7} - System32\Tasks\MSI Task Host - MSI.True Color => C:\Program Files (x86)\MSI\One Dragon Center\True Color\MSI.True Color.exe [47416 2021-03-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {B7FDE235-7065-4B41-9D59-8AEBAE650352} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C13CBD02-5712-4E7C-8BDA-7FA8A8C9C78B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe -check plugin (No File)
Task: {C8A6FEB1-2329-4C73-A7D6-E0800C75A669} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [661408 2023-02-02] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {D12CDB6C-5853-4E0C-9621-2CDC5C225142} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {d96d353b-9530-4b06-8ec6-1e0c2ec03067} - no filepath
Task: {E99A00B4-DC51-4D74-9C93-D86A021ECC92} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2147776618-328994716-1476381886-1002 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F5FC87BE-46B5-4513-B459-C3A9348AB0D5} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2147776618-328994716-1476381886-500 => C:\Users\Jirka\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Task: {F7CF92DA-06CB-4869-93B2-5374267E5DC4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-17] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {FAB1DFD3-1134-4E20-9C9E-6F9162DC2C36} - System32\Tasks\MSI Task Host - Detect_Monitor => C:\Program Files (x86)\MSI\One Dragon Center\MSI.NotifyServer.exe [78648 2021-03-11] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.18.1
Tcpip\..\Interfaces\{77e61f90-d511-49c1-a4e6-8b232e0e4137}: [NameServer] 8.8.8.8,208.67.222.222
Tcpip\..\Interfaces\{77e61f90-d511-49c1-a4e6-8b232e0e4137}: [DhcpNameServer] 192.168.18.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge Profile: C:\Users\Jirka\AppData\Local\Microsoft\Edge\User Data\Default [2023-02-04]

FireFox:
========
FF DefaultProfile: z47imitc.default
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\70gl8hsf.default-release [2023-02-04]
FF ProfilePath: C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default [2023-02-04]
FF DownloadDir: D:\Stažene\Karaga
FF Homepage: Mozilla\Firefox\Profiles\z47imitc.default -> hxxps://www.seznam.cz
FF NewTab: Mozilla\Firefox\Profiles\z47imitc.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10427__190823
FF Notifications: Mozilla\Firefox\Profiles\z47imitc.default -> hxxps://sktorrent.eu; hxxps://forhonor.ubisoft.com; hxxps://gazellegames.net; hxxps://freebitco.in; hxxps://s49-en.gladiatus.gameforge.com; hxxps://www.knizniklub.cz
FF HomepageOverride: Mozilla\Firefox\Profiles\z47imitc.default -> Disabled: _j7Members_@www.convertdocsonline.com
FF NewTabOverride: Mozilla\Firefox\Profiles\z47imitc.default -> Disabled: _j7Members_@www.convertdocsonline.com
FF Extension: (Dark Reader) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\addon@darkreader.org.xpi [2023-01-10]
FF Extension: (Browsec VPN - Free VPN for Firefox) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\browsec@browsec.com.xpi [2023-02-01]
FF Extension: (MetaMask) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\webextension@metamask.io.xpi [2022-11-30]
FF Extension: (Dark Mode) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\{174b2d58-b983-4501-ab4b-07e71203cb43}.xpi [2022-07-09]
FF Extension: (Gladiatus Crazy Add On) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\{7fb9a47c-8237-47dd-a247-bf2cb7f07e2a}.xpi [2022-09-24]
FF Extension: (Grayfox) - C:\Users\Jirka\AppData\Roaming\Mozilla\Firefox\Profiles\z47imitc.default\Extensions\{ceb971ca-37e6-4c49-ab6e-1d1a97a1eb8c}.xpi [2020-10-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll [2019-03-29] (Adobe Systems Incorporated -> )
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.16 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-01-21] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll [2019-03-29] (Adobe Systems Incorporated -> )
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (Electronic Sports Network i Sverige AB -> ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-12-06] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin HKU\S-1-5-21-2147776618-328994716-1476381886-1002: @jlgplayer3.julegame.com -> C:\Users\Jirka\AppData\Local\JuleGame\jlgplayer\npjlgplayer3.dll [2019-10-14] (成都云合互动科技有限公司 -> Jule game technology co.,ltd)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default [2022-04-13]
CHR Extension: (Prezentace) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-06-08]
CHR Extension: (Dokumenty) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-06-08]
CHR Extension: (Disk Google) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-08]
CHR Extension: (YouTube) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-06-08]
CHR Extension: (Cleanflight - Configurator) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\enacoimjcgeinfnnnpajinjgmkahmfgb [2020-06-09]
CHR Extension: (Tabulky) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-06-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-19]
CHR Extension: (Betaflight - Configurator) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdaghagfopacdngbohiknlhcocjccjao [2020-06-08]
CHR Extension: (AVG SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2020-08-20]
CHR Extension: (BLHeli - Configurator) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\mejfjggmbnocnfibbibmoogocnjbcjnk [2020-06-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-06-08]
CHR Extension: (Gmail) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-08]
CHR Extension: (Chrome Media Router) - C:\Users\Jirka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-16]
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8923096 2022-05-18] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4507328 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [810984 2022-06-13] (EasyAntiCheat Oy -> Epic Games, Inc)
S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-04-22] (Mixbyte Inc -> Freemake)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10172672 2023-02-01] (Logitech Inc -> Logitech, Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\LightKeeperService.exe [86776 2020-12-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [8966256 2023-02-04] (Malwarebytes Inc. -> Malwarebytes)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [21753376 2021-02-26] (Mail.Ru LLC -> LLC Mail.Ru)
R2 MSI_Central_Service; C:\Program Files (x86)\MSI\One Dragon Center\MSI_Central_Service.exe [147088 2020-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 MSI_Companion_Service; C:\Program Files (x86)\MSI\One Dragon Center\Game_Summary\MSI_Companion_Service.exe [131568 2021-01-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_VoiceControl_Service; C:\Program Files (x86)\MSI\One Dragon Center\VoiceControl\VoiceControl_Service.exe [32752 2021-02-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 Mystic_Light_Service; C:\Program Files (x86)\MSI\One Dragon Center\Mystic_Light\Mystic_Light_Service.exe [35848 2021-01-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2557656 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3476184 2021-10-19] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76152 2021-10-06] (Even Balance, Inc. -> )
S3 ProtonVPN Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPNService.exe [102648 2021-01-29] (Proton Technologies AG -> )
S3 ProtonVPN Update Service; C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.UpdateService.exe [62712 2021-01-29] (Proton Technologies AG -> )
S3 ucldr_battlegrounds_gl; C:\Program Files\Common Files\UNCHEATER\ucldr_battlegrounds_gl.exe [6973168 2021-06-25] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\NisSrv.exe [3191264 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2211.5-0\MsMpEng.exe [133592 2022-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 zksvc; C:\Program Files\Common Files\PUBG\zksvc.exe [7235784 2021-06-25] (PUBG CORPORATION -> PUBG Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_20573575ac789ce1\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_20573575ac789ce1\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [150440 2015-12-28] (SlySoft, Inc. -> SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [150440 2015-12-28] (SlySoft, Inc. -> SlySoft, Inc.)
S3 atvi-randgrid_sr; D:\Steamp\steamapps\common\Call of Duty HQ\randgrid.sys [2877704 2023-01-10] (Activision Publishing Inc -> Activision Blizzard, Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 DigiartyVirtualCDBus; C:\WINDOWS\System32\drivers\DigiartyVirtualCDBus.sys [276256 2022-11-26] (Digiarty, Inc. -> Digiarty Software, Inc.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-04-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [42616 2017-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [20992 2020-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [158640 2023-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S3 eustub; C:\WINDOWS\System32\drivers\eusbstub.sys [43440 2019-12-23] (Electronic Team, Inc -> Electronic Team, Inc.)
S3 gdrv; C:\Windows\gdrv.sys [26792 2018-10-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 gdrv2; C:\Windows\gdrv2.sys [32720 2018-10-16] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [52536 2022-09-09] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [44880 2022-09-22] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [32080 2022-09-22] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [73040 2022-09-22] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [223176 2023-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2023-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198088 2023-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [76216 2023-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239544 2023-02-04] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [181816 2023-02-04] (Malwarebytes Inc. -> Malwarebytes)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [20986200 2021-02-26] (Mail.Ru LLC -> LLC Mail.Ru)
R1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [17424 2020-01-19] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
S3 NTIOLib_CC_Clock; C:\Program Files (x86)\MSI\One Dragon Center\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S3 ProtonVPNCallout; C:\Program Files (x86)\Proton Technologies\ProtonVPN\x64\Win10\ProtonVPN.CalloutDriver.sys [34176 2021-01-27] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
R3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [49024 2020-12-30] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 VClone; C:\WINDOWS\System32\drivers\VClone.sys [44544 2020-02-22] (Microsoft Windows Hardware Compatibility Publisher -> Elaborate Bytes AG)
S3 vuhub; C:\WINDOWS\System32\drivers\vuhub.sys [163760 2019-12-23] (Electronic Team, Inc -> Electronic Team, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49568 2022-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [473376 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [99616 2022-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2729456 2021-06-26] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-04 17:28 - 2023-02-04 17:28 - 000033510 _____ C:\Users\Jirka\Desktop\FRST.txt
2023-02-04 17:27 - 2023-02-04 17:27 - 002376704 _____ (Farbar) C:\Users\Jirka\Desktop\FRST64.exe
2023-02-04 17:25 - 2023-02-04 17:25 - 000181816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2023-02-04 17:25 - 2023-02-04 17:25 - 000000000 ____D C:\Users\Jirka\AppData\LocalLow\IGDump
2023-02-04 16:11 - 2023-02-04 16:11 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2023-02-04 16:11 - 2023-02-04 16:11 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2023-02-04 16:11 - 2023-02-04 16:11 - 000000000 ____D C:\Users\Jirka\AppData\Local\mbam
2023-02-04 16:10 - 2023-02-04 16:10 - 000000000 ____D C:\ProgramData\Malwarebytes
2023-02-04 16:10 - 2023-02-04 16:10 - 000000000 ____D C:\Program Files\Malwarebytes
2023-02-04 15:19 - 2023-02-04 15:19 - 046323970 _____ C:\Users\Jirka\Desktop\gymnastka hand stand.mp4
2023-02-03 18:28 - 2023-02-03 18:28 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PlayerFab (x64)
2023-02-03 18:28 - 2023-02-03 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayerFab (x64)
2023-02-03 18:23 - 2023-02-03 18:23 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\25451
2023-02-02 04:04 - 2023-02-03 09:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-02-02 03:59 - 2023-02-02 03:59 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\StreamUpdate
2023-02-01 19:44 - 2023-02-01 19:44 - 011905648 _____ (Tim Kosse) C:\Users\Jirka\Downloads\FileZilla_3.62.2_win64-setup.exe
2023-02-01 17:32 - 2023-02-01 17:32 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DVDFab 12 (x64)
2023-02-01 17:32 - 2023-02-01 17:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 12 (x64)
2023-02-01 17:31 - 2023-02-03 18:28 - 000000000 ____D C:\Program Files\DVDFab
2023-02-01 14:52 - 2023-02-01 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2023-02-01 14:52 - 2023-02-01 14:52 - 000000000 ____D C:\Program Files\LGHUB
2023-02-01 14:51 - 2023-02-01 14:51 - 000000000 ____D C:\Users\Jirka\Documents\AnyDVDHD
2023-02-01 14:42 - 2023-02-01 14:52 - 000000040 ___SH C:\ProgramData\.zreglib
2023-02-01 14:41 - 2023-02-01 14:41 - 000000000 ____D C:\ProgramData\SlySoft
2023-02-01 14:41 - 2023-02-01 14:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlySoft
2023-02-01 14:41 - 2023-02-01 14:41 - 000000000 ____D C:\Program Files (x86)\SlySoft
2023-02-01 13:47 - 2023-02-01 13:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pioneer Corporation
2023-02-01 13:47 - 2023-02-01 13:47 - 000000000 ____D C:\Program Files (x86)\Pioneer Corporation
2023-02-01 12:56 - 2023-02-01 12:56 - 000000000 ____D C:\Users\Public\Documents\Cyberlink
2023-02-01 12:55 - 2023-02-01 12:55 - 000000000 ____D C:\Users\Jirka\Documents\CyberLink
2023-02-01 12:55 - 2023-02-01 12:55 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\CyberLink
2023-02-01 12:54 - 2023-02-01 13:30 - 000000000 ____D C:\WINDOWS\system32\Drivers\CLFCL5.22
2023-02-01 12:54 - 2023-02-01 12:55 - 000000000 ____D C:\Users\Jirka\AppData\Local\CyberLink
2023-02-01 12:54 - 2023-02-01 12:54 - 000000000 ____D C:\ProgramData\PDVD
2023-02-01 12:53 - 2023-02-01 13:31 - 000000000 ____D C:\ProgramData\install_clap
2023-02-01 12:53 - 2023-02-01 12:54 - 000000000 ____D C:\ProgramData\CLSK
2023-02-01 12:52 - 2023-02-01 12:53 - 359030536 _____ C:\Users\Jirka\Downloads\PowerDVD_22.0.2415.62_Essential_DVD221214-03.exe
2023-02-01 12:51 - 2023-02-01 13:30 - 000000000 ___HD C:\ProgramData\CyberLink
2023-02-01 12:39 - 2023-02-01 19:47 - 000000000 ____D C:\Users\Jirka\Documents\LiveUpdate
2023-02-01 12:34 - 2023-02-01 12:34 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\Plcore
2023-02-01 12:15 - 2023-02-01 12:23 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\DVDFab10
2023-02-01 12:15 - 2023-02-01 12:15 - 000000304 _____ C:\Users\Jirka\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2023-02-01 12:15 - 2023-02-01 12:15 - 000000175 _____ C:\Users\Jirka\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2023-02-01 12:15 - 2023-02-01 12:15 - 000000171 _____ C:\Users\Jirka\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2023-02-01 12:14 - 2023-02-01 12:14 - 000000000 ____D C:\Users\Jirka\Documents\DVDFab10
2023-02-01 10:47 - 2023-02-01 10:47 - 001688324 _____ C:\Users\Jirka\Desktop\rotace u steny.mp4
2023-01-30 12:32 - 2023-01-30 12:32 - 000837156 _____ C:\Users\Jirka\Desktop\Mark Sircus - Jedlá soda 2014.pdf
2023-01-28 16:34 - 2023-01-28 16:34 - 008980998 _____ C:\Users\Jirka\Desktop\plnach andy.mp4
2023-01-25 17:49 - 2023-01-25 17:49 - 000225782 _____ C:\Users\Jirka\Downloads\HON NA CARODEJNICE (2011) BD.torrent
2023-01-25 15:23 - 2023-01-25 15:23 - 002518631 _____ C:\Users\Jirka\Desktop\tgu.mp4
2023-01-25 08:58 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 002236992 _____ C:\WINDOWS\system32\vulkaninfo.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 001642560 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2023-01-25 08:58 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001444416 _____ C:\WINDOWS\system32\vulkan-1.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001226776 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2023-01-25 08:58 - 2023-01-18 06:53 - 001168952 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2023-01-25 08:58 - 2023-01-18 06:49 - 000865256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2023-01-25 08:58 - 2023-01-18 06:49 - 000672296 _____ C:\WINDOWS\system32\nvofapi64.dll
2023-01-25 08:58 - 2023-01-18 06:49 - 000506856 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 002163736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 001619968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 001532432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 001192968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 000949736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2023-01-25 08:58 - 2023-01-18 06:48 - 000743976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2023-01-25 08:58 - 2023-01-18 06:48 - 000734232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 012453352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 010220536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 005890552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 005865976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2023-01-25 08:58 - 2023-01-18 06:47 - 000457712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2023-01-25 08:58 - 2023-01-18 06:46 - 005818872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2023-01-25 08:58 - 2023-01-18 06:46 - 000853016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2023-01-25 08:58 - 2023-01-15 23:41 - 000101010 _____ C:\WINDOWS\system32\nvinfo.pb
2023-01-23 16:41 - 2023-01-23 16:41 - 056099660 _____ C:\Users\Jirka\Desktop\boxerka.mp4
2023-01-22 13:19 - 2023-01-22 13:19 - 008642039 _____ C:\Users\Jirka\Desktop\Nauli krija yogalibre.cz-.mp4
2023-01-21 08:15 - 2023-01-18 06:44 - 006517008 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2023-01-15 18:09 - 2023-01-15 18:09 - 004420670 _____ C:\Users\Jirka\Desktop\- Rotations Into Low Bridge Beginner.mp4
2023-01-15 12:31 - 2023-01-15 12:31 - 026608946 _____ C:\Users\Jirka\Desktop\cvicenenec kruhy kotnik.mp4
2023-01-13 20:26 - 2023-01-13 20:26 - 000030690 _____ C:\Users\Jirka\Desktop\lopatky-clank2-600x400.webp
2023-01-13 20:22 - 2023-01-13 20:22 - 008941639 _____ C:\Users\Jirka\Desktop\lapatky shyby ramen.mp4
2023-01-12 11:56 - 2023-01-12 12:41 - 000000000 ____D C:\Users\Jirka\Desktop\Good Omens (S01)(2019)(Complete)(FHD)(1080p)(WebDl)(Hevc)(Multi 8 lang)(MultiSub) PHDTeam
2023-01-11 05:30 - 2023-01-11 05:30 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-02-04 17:28 - 2019-10-14 10:49 - 000000000 ____D C:\FRST
2023-02-04 17:26 - 2022-11-26 14:35 - 000000000 ____D C:\Users\Jirka\Documents\DVDFab
2023-02-04 17:26 - 2022-11-26 14:17 - 000000000 ____D C:\ProgramData\boost_interprocess
2023-02-04 17:26 - 2021-02-04 20:05 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\LGHUB
2023-02-04 17:26 - 2021-02-04 20:05 - 000000000 ____D C:\Users\Jirka\AppData\Local\LGHUB
2023-02-04 17:26 - 2018-10-18 10:22 - 000000000 ____D C:\Users\Jirka\AppData\LocalLow\Mozilla
2023-02-04 17:25 - 2020-08-21 10:31 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-02-04 17:25 - 2020-08-21 10:24 - 000008192 ___SH C:\DumpStack.log.tmp
2023-02-04 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-02-04 17:25 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-02-04 17:25 - 2018-10-16 12:00 - 000000000 ____D C:\ProgramData\NVIDIA
2023-02-04 17:00 - 2019-09-10 07:07 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\uTorrent
2023-02-04 17:00 - 2019-01-10 10:35 - 000000000 ____D C:\Users\Jirka\Desktop\MKVToolniX
2023-02-04 16:53 - 2020-09-29 16:04 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\TREZOR Bridge
2023-02-04 16:53 - 2018-10-18 15:09 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\vlc
2023-02-04 16:11 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-02-04 16:01 - 2018-10-18 15:02 - 000000000 ____D C:\Users\Jirka\AppData\Local\CrashDumps
2023-02-04 14:20 - 2018-10-17 18:15 - 000000000 ____D C:\Users\Jirka\AppData\Local\D3DSCache
2023-02-04 14:18 - 2018-10-18 10:41 - 000000000 ____D C:\Users\Jirka\AppData\Local\Ubisoft Game Launcher
2023-02-04 14:16 - 2021-07-10 14:19 - 000000000 ____D C:\Users\Jirka\Desktop\Dalas
2023-02-04 05:02 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-02-04 05:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-02-03 23:58 - 2020-06-08 19:09 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-02-03 18:29 - 2019-05-23 15:44 - 000000000 ____D C:\temp
2023-02-03 18:23 - 2022-11-26 14:17 - 000000000 ____D C:\Log
2023-02-03 11:57 - 2018-11-11 21:18 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\FileZilla
2023-02-03 09:47 - 2020-08-21 10:34 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-02-03 09:47 - 2019-12-07 15:41 - 000716764 _____ C:\WINDOWS\system32\perfh005.dat
2023-02-03 09:47 - 2019-12-07 15:41 - 000144942 _____ C:\WINDOWS\system32\perfc005.dat
2023-02-03 09:47 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2023-02-03 09:42 - 2022-04-18 09:38 - 000000000 ____D C:\Users\Jirka\Desktop\koordinace
2023-02-03 09:37 - 2019-09-19 09:06 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-02-03 07:50 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-02-02 21:44 - 2020-05-15 10:57 - 000156065 _____ C:\Users\Jirka\Desktop\zapis.txt
2023-02-02 15:45 - 2020-08-21 10:24 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-02-02 08:08 - 2021-11-28 11:52 - 000001318 _____ C:\Users\Jirka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-02 08:08 - 2021-10-09 05:11 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2023-02-02 08:08 - 2018-10-18 10:22 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-02-01 19:45 - 2020-03-09 22:24 - 000000128 _____ C:\Users\Jirka\AppData\Local\PUTTY.RND
2023-02-01 19:33 - 2022-11-26 14:17 - 000000000 ____D C:\BDInfo
2023-02-01 13:31 - 2018-10-16 11:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-02-01 12:39 - 2022-11-26 14:33 - 000000000 ____D C:\Users\Jirka\Downloads\DVDFab
2023-02-01 12:34 - 2022-11-26 14:17 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\DVDFab
2023-02-01 12:03 - 2020-07-10 19:51 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\dvdcss
2023-01-26 12:15 - 2022-10-13 14:49 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2023-01-26 12:15 - 2022-10-13 14:49 - 000002061 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2023-01-26 12:15 - 2020-08-21 10:31 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-01-25 18:09 - 2021-02-13 20:01 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\tor
2023-01-25 09:01 - 2018-11-19 16:31 - 000000000 ____D C:\Users\Jirka\AppData\Local\NVIDIA
2023-01-24 08:40 - 2022-11-11 17:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2023-01-21 13:08 - 2021-04-11 11:18 - 000000000 ____D C:\Users\Jirka\AppData\Roaming\obs-studio
2023-01-21 08:12 - 2018-10-16 11:59 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2023-01-21 08:11 - 2020-08-21 10:31 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2020-08-21 10:31 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-21 08:11 - 2018-10-16 12:00 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-01-21 08:11 - 2018-10-16 11:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-01-20 04:15 - 2021-01-24 08:06 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-01-18 06:53 - 2022-06-29 08:31 - 001487376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2023-01-18 06:47 - 2022-06-29 08:31 - 003334664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2023-01-18 06:44 - 2020-08-17 16:43 - 007648024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2023-01-16 17:48 - 2020-08-21 07:18 - 000000000 ____D C:\Users\Jirka
2023-01-11 12:09 - 2020-08-21 10:24 - 000289664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-01-11 12:08 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-01-11 05:35 - 2020-08-21 10:26 - 003014656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-01-11 04:06 - 2018-10-18 07:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-11 04:04 - 2018-10-18 07:43 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-08 18:11 - 2020-08-10 09:28 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk

==================== Files in the root of some directories ========

2022-03-19 17:08 - 2021-12-26 15:00 - 000215040 _____ (Igor Pavlov) C:\Program Files\7zxa.dll
2022-03-19 17:08 - 2022-03-06 14:20 - 000321536 _____ () C:\Program Files\Default.SFX
2022-03-19 17:08 - 2022-03-06 14:20 - 000371200 _____ () C:\Program Files\Default64.SFX
2022-03-19 17:08 - 2022-01-04 11:35 - 000002534 _____ () C:\Program Files\Descript.ion
2022-03-19 17:08 - 2022-01-02 19:43 - 000006870 _____ () C:\Program Files\License.txt
2022-03-19 17:08 - 2014-05-22 17:31 - 000006880 _____ () C:\Program Files\License_US.txt
2022-03-19 17:08 - 2022-03-07 08:16 - 000004108 _____ () C:\Program Files\Order.htm
2022-03-19 17:08 - 2022-03-03 14:16 - 000627352 _____ (Alexander Roshal) C:\Program Files\Rar.exe
2022-03-19 17:08 - 2022-02-22 11:30 - 000109934 _____ () C:\Program Files\Rar.txt
2022-03-19 17:08 - 2022-03-03 14:16 - 000647832 _____ (Alexander Roshal) C:\Program Files\RarExt.dll
2022-03-19 17:08 - 2022-03-03 14:16 - 000557720 _____ (Alexander Roshal) C:\Program Files\RarExt32.dll
2022-03-19 17:08 - 2022-03-03 14:16 - 000180888 _____ (Alexander Roshal) C:\Program Files\RarExtInstaller.exe
2022-03-19 17:08 - 2021-10-21 17:36 - 000002183 _____ () C:\Program Files\RarExtLogo.altform-unplated_targetsize-32.png
2022-03-19 17:08 - 2021-10-21 17:36 - 000004179 _____ () C:\Program Files\RarExtLogo.altform-unplated_targetsize-48.png
2022-03-19 17:08 - 2021-10-21 18:54 - 000006234 _____ () C:\Program Files\RarExtLogo.altform-unplated_targetsize-64.png
2022-03-19 17:08 - 2022-03-03 14:15 - 000023531 _____ () C:\Program Files\RarExtPackage.msix
2022-03-19 17:08 - 2017-09-07 00:11 - 000001335 _____ () C:\Program Files\RarFiles.lst
2022-03-19 17:08 - 2022-03-07 09:15 - 000993432 _____ () C:\Program Files\rarlng.dll
2022-03-19 17:09 - 2022-03-19 17:09 - 000000024 _____ () C:\Program Files\rarnew.dat
2022-03-19 17:09 - 2022-03-19 17:08 - 000000486 _____ () C:\Program Files\rarreg.key
2022-03-19 17:08 - 2022-01-04 11:36 - 000001642 _____ () C:\Program Files\ReadMe.txt
2022-03-19 17:08 - 2022-03-03 14:16 - 000422552 _____ (Alexander Roshal) C:\Program Files\Uninstall.exe
2022-03-19 17:08 - 2022-01-02 23:06 - 000000826 _____ () C:\Program Files\Uninstall.lst
2022-03-19 17:08 - 2022-03-03 14:16 - 000427160 _____ (Alexander Roshal) C:\Program Files\UnRAR.exe
2022-03-19 17:08 - 2022-03-06 15:09 - 000225808 _____ () C:\Program Files\WhatsNew.txt
2022-03-19 17:08 - 2022-02-22 13:21 - 000097656 _____ () C:\Program Files\WhatsNew_US.txt
2022-03-19 17:08 - 2022-03-06 14:20 - 000292864 _____ (Alexander Roshal) C:\Program Files\WinCon.SFX
2022-03-19 17:08 - 2022-03-06 14:20 - 000344576 _____ (Alexander Roshal) C:\Program Files\WinCon64.SFX
2022-03-19 17:08 - 2022-02-24 11:20 - 000410812 _____ () C:\Program Files\WinRAR.chm
2022-03-19 17:08 - 2022-03-03 14:16 - 002461336 _____ (Alexander Roshal) C:\Program Files\WinRAR.exe
2022-03-19 17:08 - 2022-03-06 14:20 - 000272384 _____ () C:\Program Files\Zip.SFX
2022-03-19 17:08 - 2022-03-06 14:20 - 000307200 _____ () C:\Program Files\Zip64.SFX
2022-03-19 17:09 - 2022-03-19 17:09 - 000000022 _____ () C:\Program Files\zipnew.dat
2023-02-01 12:15 - 2023-02-01 12:15 - 000000171 _____ () C:\Users\Jirka\AppData\Roaming\1eb766f2-fed1-4d33-9c39-2c8a972fd11f
2023-02-01 12:15 - 2023-02-01 12:15 - 000000304 _____ () C:\Users\Jirka\AppData\Roaming\4e93aa11-2d46-4980-a421-0a4ac759e5bf
2022-11-26 14:34 - 2022-11-26 14:34 - 000000171 _____ () C:\Users\Jirka\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2020-04-13 15:34 - 2020-04-13 15:34 - 000040460 _____ () C:\Users\Jirka\AppData\Roaming\edz_0D0A0E0M0O0N0T1F1F1I1B1V0F0StJ1V0A0V0A0S0T.txt
2020-04-13 15:34 - 2020-04-13 15:34 - 000284028 _____ () C:\Users\Jirka\AppData\Roaming\edz_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2023-02-01 12:15 - 2023-02-01 12:15 - 000000175 _____ () C:\Users\Jirka\AppData\Roaming\fc19ece2-6b3f-4f22-8758-9651ab9ca388
2020-10-07 10:17 - 2021-12-21 08:47 - 000000128 _____ () C:\Users\Jirka\AppData\Roaming\PUTTY.RND
2020-05-11 16:34 - 2021-08-10 14:43 - 000052303 _____ () C:\Users\Jirka\AppData\Local\PlariumPlay.log
2020-03-09 22:24 - 2023-02-01 19:45 - 000000128 _____ () C:\Users\Jirka\AppData\Local\PUTTY.RND
2021-05-19 10:40 - 2021-05-19 10:40 - 000000001 _____ () C:\Users\Jirka\AppData\Local\RawCopy.1.10.agreement
2021-05-19 10:43 - 2021-05-19 10:46 - 000000001 _____ () C:\Users\Jirka\AppData\Local\RawCopy.sourcedisk.index
2021-05-14 18:02 - 2022-12-13 09:33 - 000007603 _____ () C:\Users\Jirka\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: microsoft

#10 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [20f2c92f05b0a2d284081b5631e280ea] => "D:\PlayerFab\liveUpdate.exe" --run_mode=background_check (No File)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3ef97c13-8dc5-40f5-bf98-371099feea89} - no filepath
Task: {97b83383-1faa-45ee-abbd-da36f47f95b3} - no filepath
Task: {C13CBD02-5712-4E7C-8BDA-7FA8A8C9C78B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe -check plugin (No File)
Task: {d96d353b-9530-4b06-8ec6-1e0c2ec03067} - no filepath
Task: {F5FC87BE-46B5-4513-B459-C3A9348AB0D5} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2147776618-328994716-1476381886-500 => C:\Users\Jirka\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp
hellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
AlternateDataStreams: C:\Users\Jirka:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Jirka\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jirka\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Jirka\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jirka\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
FirewallRules: [TCP Query User{F943FC76-8FB8-4272-A028-0F7FBD66C49C}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{3DDEEB2D-B3C7-4D57-9E95-C7B967A3246D}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{6B2201AD-2AA3-4A5A-AA6F-46FC4BDD42E3}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Block) D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{DF99E149-A95A-43BF-A905-5AEA46AA543C}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Block) D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{6631CA31-75DC-45F8-8D01-137C6C3F832D}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe] => (Allow) C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe => No File
FirewallRules: [UDP Query User{F4E76A33-1FBB-4FEC-B858-BF8455DC403C}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe] => (Allow) C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe => No File
irewallRules: [TCP Query User{BD9B5272-AA7B-481E-9641-8B91BBA8675E}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [UDP Query User{54583F5F-889C-447A-A268-0448F9FA4116}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [TCP Query User{31A9786A-AFE6-4C9A-A00A-44FBC0593815}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [UDP Query User{98C15C73-32BB-4C50-B45F-5B8CC5D20E67}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [TCP Query User{35BFF6E3-453F-4DA3-B6B8-42950F3E9877}C:\program files\dogecoin\dogecoin-qt.exe] => (Allow) C:\program files\dogecoin\dogecoin-qt.exe => No File
FirewallRules: [UDP Query User{F8898BCD-C3F5-4290-9C7C-7138CBDEED0F}C:\program files\dogecoin\dogecoin-qt.exe] => (Allow) C:\program files\dogecoin\dogecoin-qt.exe => No File
FirewallRules: [TCP Query User{FA4CC01B-9266-49DB-A079-F58B00C6500E}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe] => (Allow) E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe => No File
FirewallRules: [UDP Query User{74891D5F-AD57-46F2-9EDB-84F9CB42C7D6}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe] => (Allow) E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe => No File
FirewallRules: [TCP Query User{338577F3-3565-4015-ACE4-D22412FBEFD4}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe] => (Block) E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe => No File
FirewallRules: [UDP Query User{4A0C8E98-3291-46EE-9A1C-77352BB3CEEC}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe] => (Block) E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe => No File
FirewallRules: [{721B0FCC-66E3-449E-B6E2-0E8859D57CCB}] => (Allow) D:\Steamp\steamapps\common\Gladio and Glory\Gladio and Glory\Gladio and Glory.exe => No File
FirewallRules: [{87D8EDCF-8FF2-4229-9984-7F1470D20685}] => (Allow) D:\Steamp\steamapps\common\Gladio and Glory\Gladio and Glory\Gladio and Glory.exe => No File
FirewallRules: [TCP Query User{CCB87B87-4D9A-4E52-9A10-B55D8FDBDA89}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [UDP Query User{33BAA319-990C-40AE-BF81-C016A8093DDE}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [TCP Query User{E7A06F18-A26B-46CD-8640-37826BEE9959}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [UDP Query User{FBD52A69-E1C4-463B-823B-ABA4988D555A}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [{2B48E2BF-38A1-40C2-B962-1A4AAE881032}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\Orqa FPV.SkyDive.exe => No File
FirewallRules: [{954CCF3E-4FAB-49B1-B320-BA28117AFFBE}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\Orqa FPV.SkyDive.exe => No File
FirewallRules: [TCP Query User{C0BA5164-0806-4058-905E-9D368B302FE3}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [UDP Query User{82FFB38D-C0E6-4CD0-AE1F-7B68422796A8}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [TCP Query User{010006A1-CA4E-4572-AF52-3388B13F1277}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{C7C0DD16-4B5C-4BAE-A25D-7A93112F304D}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{DA5DDE84-BE6C-466F-A83E-489922C4388A}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{12B8582E-0CB1-48A3-876C-6B94483C56D7}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{2F0241C1-B7DE-4191-855C-BE03EF1D37F6}] => (Allow) D:\Steamp\steamapps\common\SWD7Demo\SWD7_Demo\Binaries\Win64\SWD7-Win64-Shipping.exe => No File
FirewallRules: [{EB921942-4578-4606-8F49-B65B2267BEF9}] => (Allow) D:\Steamp\steamapps\common\SWD7Demo\SWD7_Demo\Binaries\Win64\SWD7-Win64-Shipping.exe => No File
FirewallRules: [TCP Query User{0263186A-50F8-41FD-8F09-BE835D224FE9}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe => No File
FirewallRules: [UDP Query User{9897449C-784C-4584-9AEA-B4020CB2F6F4}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe => No File
FirewallRules: [TCP Query User{27E40EB8-8E23-4FBB-964F-D7515EE0DB17}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\jirka\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{5664AA3E-5CC8-4682-A9F7-F4DDE3AB5C09}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\jirka\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{D3B71723-4A6D-4F4B-8CC9-22E196AB503F}D:\steamp\steamapps\common\new world\bin64\newworld.exe] => (Allow) D:\steamp\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [UDP Query User{AD16206C-5F07-45C5-87FA-39323AEAD758}D:\steamp\steamapps\common\new world\bin64\newworld.exe] => (Allow) D:\steamp\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [TCP Query User{0903754F-6415-4E5E-870E-ED010B0A4250}D:\steamp\steamapps\common\battlefield 4\bf4.exe] => (Allow) D:\steamp\steamapps\common\battlefield 4\bf4.exe => No File
FirewallRules: [UDP Query User{AB53A4A3-817C-4956-84D2-EB441A7A4F1E}D:\steamp\steamapps\common\battlefield 4\bf4.exe] => (Allow) D:\steamp\steamapps\common\battlefield 4\bf4.exe => No File
FirewallRules: [TCP Query User{F273ABCC-2A8F-45A3-8349-1092807129F5}D:\steamp\steamapps\common\battlefield v\bfv.exe] => (Allow) D:\steamp\steamapps\common\battlefield v\bfv.exe => No File
FirewallRules: [UDP Query User{85D69B72-A0B1-47E7-AE10-4E9C6B9B4D57}D:\steamp\steamapps\common\battlefield v\bfv.exe] => (Allow) D:\steamp\steamapps\common\battlefield v\bfv.exe => No File
FirewallRules: [TCP Query User{33CC939E-25D8-4D3E-9D49-AB4028853E4E}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steamp\steamapps\common\battlefield 2042\bf2042.exe => No File
FirewallRules: [UDP Query User{FFC22252-53DA-448E-9632-447F6CBC20B6}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steamp\steamapps\common\battlefield 2042\bf2042.exe => No File
FirewallRules: [TCP Query User{B30775E8-8459-48A9-BC76-066C41D68391}E:\jirka\hry\crsed\launcher.exe] => (Allow) E:\jirka\hry\crsed\launcher.exe => No File
FirewallRules: [UDP Query User{E1AEAD39-E24E-4A40-B6D5-B149C5ED2E27}E:\jirka\hry\crsed\launcher.exe] => (Allow) E:\jirka\hry\crsed\launcher.exe => No File
FirewallRules: [TCP Query User{57F28B68-26EE-4418-8E93-2962AEAC6FE9}E:\jirka\hry\crsed\win64\cuisine_royale.exe] => (Allow) E:\jirka\hry\crsed\win64\cuisine_royale.exe => No File
FirewallRules: [UDP Query User{20E6369D-F27B-4225-ACD0-B2BE76775D77}E:\jirka\hry\crsed\win64\cuisine_royale.exe] => (Allow) E:\jirka\hry\crsed\win64\cuisine_royale.exe => No File
FirewallRules: [TCP Query User{668DE0FF-88E2-4B02-A63F-FACE5A97911F}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe] => (Allow) E:\jirka\hry\diablo iii - eternal collection\yuzu.exe => No File
FirewallRules: [UDP Query User{D1E18B8A-7CE4-4F07-BCEF-D191793615F8}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe] => (Allow) E:\jirka\hry\diablo iii - eternal collection\yuzu.exe => No File
FirewallRules: [TCP Query User{10124BAC-6FC0-46C6-B41B-83850BD52C8F}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => No File
FirewallRules: [UDP Query User{FF07401D-52DB-4CA5-BEEC-6A9F43F832CA}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => No File
FirewallRules: [TCP Query User{59651423-211E-4A24-8752-9701CA2E78B8}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe => No File
FirewallRules: [UDP Query User{5F9F38B7-8FB1-4F9E-BFDA-115591187FEA}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe => No File
FirewallRules: [{B56F48F0-7D17-48B4-8610-11758C7B76CA}] => (Allow) D:\Steamp\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{8BAC073F-FE9D-43B1-B27C-1A7D2D1F1E46}] => (Allow) D:\Steamp\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [TCP Query User{D9AB8084-01AC-480A-ABEA-DC3C313848C0}D:\games\wrc generations - the fia wrc official game\wrcg.exe] => (Allow) D:\games\wrc generations - the fia wrc official game\wrcg.exe => No File
FirewallRules: [UDP Query User{E5425873-B859-48AD-A1F3-89223738325A}D:\games\wrc generations - the fia wrc official game\wrcg.exe] => (Allow) D:\games\wrc generations - the fia wrc official game\wrcg.exe => No File
FirewallRules: [TCP Query User{0DAF4482-53DB-4DB0-A3DF-CB878CDBE66C}D:\playerfab\playerfab server.exe] => (Allow) D:\playerfab\playerfab server.exe => No File
FirewallRules: [UDP Query User{4196B96E-5F34-4290-8143-11A89F2F0514}D:\playerfab\playerfab server.exe] => (Allow) D:\playerfab\playerfab server.exe => No File
FirewallRules: [TCP Query User{6104BC45-DED1-453A-94F1-40E8CD28C934}D:\playerfab\playerfab.exe] => (Allow) D:\playerfab\playerfab.exe => No File
FirewallRules: [UDP Query User{E5303CB6-3ACD-4C88-8656-1A8605EBDAA3}D:\playerfab\playerfab.exe] => (Allow) D:\playerfab\playerfab.exe => No File
FirewallRules: [{B4EAA6DF-33D6-4EC7-9793-D0C3D2343DBE}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD.exe => No File
FirewallRules: [{A94DEDF2-1178-486A-A498-E56D376E5C41}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\ShareModule32\Kernel\DMS\CLMSServerPDVD22.exe => No File
FirewallRules: [{0FC3E53A-563A-40AC-B86C-4212B607ED38}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD22Agent.exe => No File
FirewallRules: [{57E78C4B-2BB5-4818-988E-936B46DC52B7}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Movie\PowerDVDMovie.exe => No File
FirewallRules: [{F83CFE81-530A-4EBF-8EDA-1496CEDADCA7}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\CastingStation.exe => No File
FirewallRules: [{4975C5A5-2C4D-4DDA-A54D-63E219A08E71}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe => No File
FirewallRules: [{8D4264C2-8A7C-4ABB-A29B-C9470CB43B89}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\dynamic_transcode.exe => No File

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

Re: microsoft

#11 Příspěvek od Reysanger »

Fix result of Farbar Recovery Scan Tool (x64) Version: 03-02-2023
Ran by Jirka (04-02-2023 18:17:07) Run:1
Running from C:\Users\Jirka\Desktop
Loaded Profiles: Jirka
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKU\S-1-5-21-2147776618-328994716-1476381886-1002\...\Run: [20f2c92f05b0a2d284081b5631e280ea] => "D:\PlayerFab\liveUpdate.exe" --run_mode=background_check (No File)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\51.0.9.0\GoogleDriveFS.exe --startup_mode (No File)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {3ef97c13-8dc5-40f5-bf98-371099feea89} - no filepath
Task: {97b83383-1faa-45ee-abbd-da36f47f95b3} - no filepath
Task: {C13CBD02-5712-4E7C-8BDA-7FA8A8C9C78B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe -check plugin (No File)
Task: {d96d353b-9530-4b06-8ec6-1e0c2ec03067} - no filepath
Task: {F5FC87BE-46B5-4513-B459-C3A9348AB0D5} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2147776618-328994716-1476381886-500 => C:\Users\Jirka\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe (No File)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
C:\DumpStack.log.tmp
hellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => -> No File
AlternateDataStreams: C:\Users\Jirka:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Jirka\Data aplikací:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jirka\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\Jirka\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Jirka\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
FirewallRules: [TCP Query User{F943FC76-8FB8-4272-A028-0F7FBD66C49C}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{3DDEEB2D-B3C7-4D57-9E95-C7B967A3246D}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\jirka\appdata\roaming\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{6B2201AD-2AA3-4A5A-AA6F-46FC4BDD42E3}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Block) D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{DF99E149-A95A-43BF-A905-5AEA46AA543C}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe] => (Block) D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{6631CA31-75DC-45F8-8D01-137C6C3F832D}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe] => (Allow) C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe => No File
FirewallRules: [UDP Query User{F4E76A33-1FBB-4FEC-B858-BF8455DC403C}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe] => (Allow) C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe => No File
irewallRules: [TCP Query User{BD9B5272-AA7B-481E-9641-8B91BBA8675E}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [UDP Query User{54583F5F-889C-447A-A268-0448F9FA4116}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [TCP Query User{31A9786A-AFE6-4C9A-A00A-44FBC0593815}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [UDP Query User{98C15C73-32BB-4C50-B45F-5B8CC5D20E67}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [TCP Query User{35BFF6E3-453F-4DA3-B6B8-42950F3E9877}C:\program files\dogecoin\dogecoin-qt.exe] => (Allow) C:\program files\dogecoin\dogecoin-qt.exe => No File
FirewallRules: [UDP Query User{F8898BCD-C3F5-4290-9C7C-7138CBDEED0F}C:\program files\dogecoin\dogecoin-qt.exe] => (Allow) C:\program files\dogecoin\dogecoin-qt.exe => No File
FirewallRules: [TCP Query User{FA4CC01B-9266-49DB-A079-F58B00C6500E}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe] => (Allow) E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe => No File
FirewallRules: [UDP Query User{74891D5F-AD57-46F2-9EDB-84F9CB42C7D6}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe] => (Allow) E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe => No File
FirewallRules: [TCP Query User{338577F3-3565-4015-ACE4-D22412FBEFD4}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe] => (Block) E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe => No File
FirewallRules: [UDP Query User{4A0C8E98-3291-46EE-9A1C-77352BB3CEEC}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe] => (Block) E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe => No File
FirewallRules: [{721B0FCC-66E3-449E-B6E2-0E8859D57CCB}] => (Allow) D:\Steamp\steamapps\common\Gladio and Glory\Gladio and Glory\Gladio and Glory.exe => No File
FirewallRules: [{87D8EDCF-8FF2-4229-9984-7F1470D20685}] => (Allow) D:\Steamp\steamapps\common\Gladio and Glory\Gladio and Glory\Gladio and Glory.exe => No File
FirewallRules: [TCP Query User{CCB87B87-4D9A-4E52-9A10-B55D8FDBDA89}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [UDP Query User{33BAA319-990C-40AE-BF81-C016A8093DDE}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe => No File
FirewallRules: [TCP Query User{E7A06F18-A26B-46CD-8640-37826BEE9959}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [UDP Query User{FBD52A69-E1C4-463B-823B-ABA4988D555A}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe => No File
FirewallRules: [{2B48E2BF-38A1-40C2-B962-1A4AAE881032}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\Orqa FPV.SkyDive.exe => No File
FirewallRules: [{954CCF3E-4FAB-49B1-B320-BA28117AFFBE}] => (Allow) D:\Steamp\steamapps\common\Orqa FPV.SkyDive\Orqa FPV.SkyDive.exe => No File
FirewallRules: [TCP Query User{C0BA5164-0806-4058-905E-9D368B302FE3}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [UDP Query User{82FFB38D-C0E6-4CD0-AE1F-7B68422796A8}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe] => (Allow) C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe => No File
FirewallRules: [TCP Query User{010006A1-CA4E-4572-AF52-3388B13F1277}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{C7C0DD16-4B5C-4BAE-A25D-7A93112F304D}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [TCP Query User{DA5DDE84-BE6C-466F-A83E-489922C4388A}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [UDP Query User{12B8582E-0CB1-48A3-876C-6B94483C56D7}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe => No File
FirewallRules: [{2F0241C1-B7DE-4191-855C-BE03EF1D37F6}] => (Allow) D:\Steamp\steamapps\common\SWD7Demo\SWD7_Demo\Binaries\Win64\SWD7-Win64-Shipping.exe => No File
FirewallRules: [{EB921942-4578-4606-8F49-B65B2267BEF9}] => (Allow) D:\Steamp\steamapps\common\SWD7Demo\SWD7_Demo\Binaries\Win64\SWD7-Win64-Shipping.exe => No File
FirewallRules: [TCP Query User{0263186A-50F8-41FD-8F09-BE835D224FE9}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe => No File
FirewallRules: [UDP Query User{9897449C-784C-4584-9AEA-B4020CB2F6F4}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe] => (Allow) D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe => No File
FirewallRules: [TCP Query User{27E40EB8-8E23-4FBB-964F-D7515EE0DB17}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\jirka\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [UDP Query User{5664AA3E-5CC8-4682-A9F7-F4DDE3AB5C09}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe] => (Allow) C:\users\jirka\appdata\local\gamecenter\gamecenter.exe => No File
FirewallRules: [TCP Query User{D3B71723-4A6D-4F4B-8CC9-22E196AB503F}D:\steamp\steamapps\common\new world\bin64\newworld.exe] => (Allow) D:\steamp\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [UDP Query User{AD16206C-5F07-45C5-87FA-39323AEAD758}D:\steamp\steamapps\common\new world\bin64\newworld.exe] => (Allow) D:\steamp\steamapps\common\new world\bin64\newworld.exe => No File
FirewallRules: [TCP Query User{0903754F-6415-4E5E-870E-ED010B0A4250}D:\steamp\steamapps\common\battlefield 4\bf4.exe] => (Allow) D:\steamp\steamapps\common\battlefield 4\bf4.exe => No File
FirewallRules: [UDP Query User{AB53A4A3-817C-4956-84D2-EB441A7A4F1E}D:\steamp\steamapps\common\battlefield 4\bf4.exe] => (Allow) D:\steamp\steamapps\common\battlefield 4\bf4.exe => No File
FirewallRules: [TCP Query User{F273ABCC-2A8F-45A3-8349-1092807129F5}D:\steamp\steamapps\common\battlefield v\bfv.exe] => (Allow) D:\steamp\steamapps\common\battlefield v\bfv.exe => No File
FirewallRules: [UDP Query User{85D69B72-A0B1-47E7-AE10-4E9C6B9B4D57}D:\steamp\steamapps\common\battlefield v\bfv.exe] => (Allow) D:\steamp\steamapps\common\battlefield v\bfv.exe => No File
FirewallRules: [TCP Query User{33CC939E-25D8-4D3E-9D49-AB4028853E4E}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steamp\steamapps\common\battlefield 2042\bf2042.exe => No File
FirewallRules: [UDP Query User{FFC22252-53DA-448E-9632-447F6CBC20B6}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe] => (Allow) D:\steamp\steamapps\common\battlefield 2042\bf2042.exe => No File
FirewallRules: [TCP Query User{B30775E8-8459-48A9-BC76-066C41D68391}E:\jirka\hry\crsed\launcher.exe] => (Allow) E:\jirka\hry\crsed\launcher.exe => No File
FirewallRules: [UDP Query User{E1AEAD39-E24E-4A40-B6D5-B149C5ED2E27}E:\jirka\hry\crsed\launcher.exe] => (Allow) E:\jirka\hry\crsed\launcher.exe => No File
FirewallRules: [TCP Query User{57F28B68-26EE-4418-8E93-2962AEAC6FE9}E:\jirka\hry\crsed\win64\cuisine_royale.exe] => (Allow) E:\jirka\hry\crsed\win64\cuisine_royale.exe => No File
FirewallRules: [UDP Query User{20E6369D-F27B-4225-ACD0-B2BE76775D77}E:\jirka\hry\crsed\win64\cuisine_royale.exe] => (Allow) E:\jirka\hry\crsed\win64\cuisine_royale.exe => No File
FirewallRules: [TCP Query User{668DE0FF-88E2-4B02-A63F-FACE5A97911F}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe] => (Allow) E:\jirka\hry\diablo iii - eternal collection\yuzu.exe => No File
FirewallRules: [UDP Query User{D1E18B8A-7CE4-4F07-BCEF-D191793615F8}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe] => (Allow) E:\jirka\hry\diablo iii - eternal collection\yuzu.exe => No File
FirewallRules: [TCP Query User{10124BAC-6FC0-46C6-B41B-83850BD52C8F}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => No File
FirewallRules: [UDP Query User{FF07401D-52DB-4CA5-BEEC-6A9F43F832CA}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe] => (Allow) D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe => No File
FirewallRules: [TCP Query User{59651423-211E-4A24-8752-9701CA2E78B8}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe => No File
FirewallRules: [UDP Query User{5F9F38B7-8FB1-4F9E-BFDA-115591187FEA}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe] => (Allow) D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe => No File
FirewallRules: [{B56F48F0-7D17-48B4-8610-11758C7B76CA}] => (Allow) D:\Steamp\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [{8BAC073F-FE9D-43B1-B27C-1A7D2D1F1E46}] => (Allow) D:\Steamp\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe => No File
FirewallRules: [TCP Query User{D9AB8084-01AC-480A-ABEA-DC3C313848C0}D:\games\wrc generations - the fia wrc official game\wrcg.exe] => (Allow) D:\games\wrc generations - the fia wrc official game\wrcg.exe => No File
FirewallRules: [UDP Query User{E5425873-B859-48AD-A1F3-89223738325A}D:\games\wrc generations - the fia wrc official game\wrcg.exe] => (Allow) D:\games\wrc generations - the fia wrc official game\wrcg.exe => No File
FirewallRules: [TCP Query User{0DAF4482-53DB-4DB0-A3DF-CB878CDBE66C}D:\playerfab\playerfab server.exe] => (Allow) D:\playerfab\playerfab server.exe => No File
FirewallRules: [UDP Query User{4196B96E-5F34-4290-8143-11A89F2F0514}D:\playerfab\playerfab server.exe] => (Allow) D:\playerfab\playerfab server.exe => No File
FirewallRules: [TCP Query User{6104BC45-DED1-453A-94F1-40E8CD28C934}D:\playerfab\playerfab.exe] => (Allow) D:\playerfab\playerfab.exe => No File
FirewallRules: [UDP Query User{E5303CB6-3ACD-4C88-8656-1A8605EBDAA3}D:\playerfab\playerfab.exe] => (Allow) D:\playerfab\playerfab.exe => No File
FirewallRules: [{B4EAA6DF-33D6-4EC7-9793-D0C3D2343DBE}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD.exe => No File
FirewallRules: [{A94DEDF2-1178-486A-A498-E56D376E5C41}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\ShareModule32\Kernel\DMS\CLMSServerPDVD22.exe => No File
FirewallRules: [{0FC3E53A-563A-40AC-B86C-4212B607ED38}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\PowerDVD22Agent.exe => No File
FirewallRules: [{57E78C4B-2BB5-4818-988E-936B46DC52B7}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Movie\PowerDVDMovie.exe => No File
FirewallRules: [{F83CFE81-530A-4EBF-8EDA-1496CEDADCA7}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\CastingStation.exe => No File
FirewallRules: [{4975C5A5-2C4D-4DDA-A54D-63E219A08E71}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\CLMediaServer\clmediaserver.exe => No File
FirewallRules: [{8D4264C2-8A7C-4ABB-A29B-C9470CB43B89}] => (Allow) C:\Program Files\CyberLink\PowerDVD22\Common\dynamic_transcode.exe => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => removed successfully
"HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => removed successfully
"HKU\S-1-5-21-2147776618-328994716-1476381886-1002\Software\Microsoft\Windows\CurrentVersion\Run\\20f2c92f05b0a2d284081b5631e280ea" => removed successfully
"HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleDriveFS" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3ef97c13-8dc5-40f5-bf98-371099feea89}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97b83383-1faa-45ee-abbd-da36f47f95b3}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C13CBD02-5712-4E7C-8BDA-7FA8A8C9C78B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C13CBD02-5712-4E7C-8BDA-7FA8A8C9C78B}" => removed successfully
C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Flash Player NPAPI Notifier" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{d96d353b-9530-4b06-8ec6-1e0c2ec03067}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F5FC87BE-46B5-4513-B459-C3A9348AB0D5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F5FC87BE-46B5-4513-B459-C3A9348AB0D5}" => removed successfully
C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2147776618-328994716-1476381886-500 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OneDrive Standalone Update Task-S-1-5-21-2147776618-328994716-1476381886-500" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
hellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File => Error: No automatic fix found for this entry.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\DriveFS 28 or later => removed successfully
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\DriveFS 28 or later => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\DriveFS 28 or later => removed successfully
C:\Users\Jirka => ":Heroes & Generals" ADS removed successfully
C:\Users\Jirka\Data aplikací => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS removed successfully
C:\Users\Jirka\Data aplikací => ":6699d3ee8dd9cf775caae782c8f44f03" ADS removed successfully
"C:\Users\Jirka\AppData\Roaming" => ":00e481b5e22dbe1f649fcddd505d3eb7" ADS not found.
"C:\Users\Jirka\AppData\Roaming" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F943FC76-8FB8-4272-A028-0F7FBD66C49C}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3DDEEB2D-B3C7-4D57-9E95-C7B967A3246D}C:\users\jirka\appdata\roaming\utorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6B2201AD-2AA3-4A5A-AA6F-46FC4BDD42E3}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DF99E149-A95A-43BF-A905-5AEA46AA543C}D:\steamp\steamapps\common\conqueror's blade\gamecenter\gamecenter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6631CA31-75DC-45F8-8D01-137C6C3F832D}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F4E76A33-1FBB-4FEC-B858-BF8455DC403C}C:\users\jirka\appdata\local\programs\spacemesh\node\go-spacemesh.exe" => removed successfully
irewallRules: [TCP Query User{BD9B5272-AA7B-481E-9641-8B91BBA8675E}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe] => (Block) C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe => No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{54583F5F-889C-447A-A268-0448F9FA4116}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_farmer.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{31A9786A-AFE6-4C9A-A00A-44FBC0593815}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{98C15C73-32BB-4C50-B45F-5B8CC5D20E67}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.5\resources\app.asar.unpacked\daemon\start_full_node.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{35BFF6E3-453F-4DA3-B6B8-42950F3E9877}C:\program files\dogecoin\dogecoin-qt.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F8898BCD-C3F5-4290-9C7C-7138CBDEED0F}C:\program files\dogecoin\dogecoin-qt.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FA4CC01B-9266-49DB-A079-F58B00C6500E}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{74891D5F-AD57-46F2-9EDB-84F9CB42C7D6}E:\jirka\hry\steamapps\common\beyond the wire\wiregame\binaries\win64\wiregame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{338577F3-3565-4015-ACE4-D22412FBEFD4}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4A0C8E98-3291-46EE-9A1C-77352BB3CEEC}E:\martin\hry\stronghold warlords\stronghold warlords the art of war\bin\win32_release\strongholdwarlords.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{721B0FCC-66E3-449E-B6E2-0E8859D57CCB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{87D8EDCF-8FF2-4229-9984-7F1470D20685}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CCB87B87-4D9A-4E52-9A10-B55D8FDBDA89}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{33BAA319-990C-40AE-BF81-C016A8093DDE}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_farmer.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E7A06F18-A26B-46CD-8640-37826BEE9959}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FBD52A69-E1C4-463B-823B-ABA4988D555A}C:\users\jirka\appdata\local\chia-blockchain\app-1.1.6\resources\app.asar.unpacked\daemon\start_full_node.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2B48E2BF-38A1-40C2-B962-1A4AAE881032}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{954CCF3E-4FAB-49B1-B320-BA28117AFFBE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C0BA5164-0806-4058-905E-9D368B302FE3}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{82FFB38D-C0E6-4CD0-AE1F-7B68422796A8}C:\users\jirka\appdata\local\webtorrent\app-0.24.0\webtorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{010006A1-CA4E-4572-AF52-3388B13F1277}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C7C0DD16-4B5C-4BAE-A25D-7A93112F304D}D:\steamp\steamapps\common\pubg_test\tslgame\binaries\win64\tslgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DA5DDE84-BE6C-466F-A83E-489922C4388A}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{12B8582E-0CB1-48A3-876C-6B94483C56D7}D:\steamp\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2F0241C1-B7DE-4191-855C-BE03EF1D37F6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EB921942-4578-4606-8F49-B65B2267BEF9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0263186A-50F8-41FD-8F09-BE835D224FE9}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{9897449C-784C-4584-9AEA-B4020CB2F6F4}D:\steamp\steamapps\common\naraka bladepoint\narakabladepoint.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{27E40EB8-8E23-4FBB-964F-D7515EE0DB17}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5664AA3E-5CC8-4682-A9F7-F4DDE3AB5C09}C:\users\jirka\appdata\local\gamecenter\gamecenter.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D3B71723-4A6D-4F4B-8CC9-22E196AB503F}D:\steamp\steamapps\common\new world\bin64\newworld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AD16206C-5F07-45C5-87FA-39323AEAD758}D:\steamp\steamapps\common\new world\bin64\newworld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0903754F-6415-4E5E-870E-ED010B0A4250}D:\steamp\steamapps\common\battlefield 4\bf4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AB53A4A3-817C-4956-84D2-EB441A7A4F1E}D:\steamp\steamapps\common\battlefield 4\bf4.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{F273ABCC-2A8F-45A3-8349-1092807129F5}D:\steamp\steamapps\common\battlefield v\bfv.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{85D69B72-A0B1-47E7-AE10-4E9C6B9B4D57}D:\steamp\steamapps\common\battlefield v\bfv.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{33CC939E-25D8-4D3E-9D49-AB4028853E4E}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FFC22252-53DA-448E-9632-447F6CBC20B6}D:\steamp\steamapps\common\battlefield 2042\bf2042.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{B30775E8-8459-48A9-BC76-066C41D68391}E:\jirka\hry\crsed\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E1AEAD39-E24E-4A40-B6D5-B149C5ED2E27}E:\jirka\hry\crsed\launcher.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{57F28B68-26EE-4418-8E93-2962AEAC6FE9}E:\jirka\hry\crsed\win64\cuisine_royale.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{20E6369D-F27B-4225-ACD0-B2BE76775D77}E:\jirka\hry\crsed\win64\cuisine_royale.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{668DE0FF-88E2-4B02-A63F-FACE5A97911F}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D1E18B8A-7CE4-4F07-BCEF-D191793615F8}E:\jirka\hry\diablo iii - eternal collection\yuzu.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{10124BAC-6FC0-46C6-B41B-83850BD52C8F}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FF07401D-52DB-4CA5-BEEC-6A9F43F832CA}D:\steamp\steamapps\common\hell let loose\hll\binaries\win64\hll-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{59651423-211E-4A24-8752-9701CA2E78B8}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5F9F38B7-8FB1-4F9E-BFDA-115591187FEA}D:\steamp\steamapps\common\arma reforger\armareforgersteam.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B56F48F0-7D17-48B4-8610-11758C7B76CA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8BAC073F-FE9D-43B1-B27C-1A7D2D1F1E46}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D9AB8084-01AC-480A-ABEA-DC3C313848C0}D:\games\wrc generations - the fia wrc official game\wrcg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E5425873-B859-48AD-A1F3-89223738325A}D:\games\wrc generations - the fia wrc official game\wrcg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0DAF4482-53DB-4DB0-A3DF-CB878CDBE66C}D:\playerfab\playerfab server.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4196B96E-5F34-4290-8143-11A89F2F0514}D:\playerfab\playerfab server.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{6104BC45-DED1-453A-94F1-40E8CD28C934}D:\playerfab\playerfab.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E5303CB6-3ACD-4C88-8656-1A8605EBDAA3}D:\playerfab\playerfab.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B4EAA6DF-33D6-4EC7-9793-D0C3D2343DBE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A94DEDF2-1178-486A-A498-E56D376E5C41}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0FC3E53A-563A-40AC-B86C-4212B607ED38}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{57E78C4B-2BB5-4818-988E-936B46DC52B7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F83CFE81-530A-4EBF-8EDA-1496CEDADCA7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4975C5A5-2C4D-4DDA-A54D-63E219A08E71}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8D4264C2-8A7C-4ABB-A29B-C9470CB43B89}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 333783591 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 895142461 B
Windows/system/drivers => 103737538 B
Edge => 239065 B
Chrome => 200704 B
Firefox => 2071907850 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 168962 B
LocalService => 189570 B
NetworkService => 901886 B
Jirka => 205398924 B

RecycleBin => 0 B
EmptyTemp: => 3.4 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 04-02-2023 18:24:49)

C:\DumpStack.log.tmp => Could not move

==== End of Fixlog 18:24:49 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: microsoft

#12 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Reysanger
Návštěvník
Návštěvník
Příspěvky: 36
Registrován: 17 čer 2011 18:45

Re: microsoft

#13 Příspěvek od Reysanger »

Už to neukazuje nic v Historii ochrany, děkuji.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: microsoft

#14 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno