VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosím o kontrolu logů z důvodu problému. Děkuji

https://forum.viry.cz:443/viewtopic.php?t=159589

Stránka 1 z 1

Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 21 dub 2024 12:23
od Zaplos
Prosím o kontrolu logu. Divné chování PC. Konkrétně mizející ikon a souborů na ploše. Dále zásadní problém s unikem hesel. Unik hesel jak z klientů např. steam tak i z internetového prohlížeče. PC projeto antivirovým programem.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by ada25 (administrator) on DESKTOP-7QV4VV7 (MSI MS-7850) (21-04-2024 13:10:09)
Running from C:\Users\ada25\OneDrive\Plocha\FRST64.exe
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: "D:\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\NIWebServiceContainer.exe <6>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> com.logitech) C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe <2>
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\epmd.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\inet_gethost.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\lib\os_mon-2.7\priv\bin\win32sysinfo.exe
(C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erl.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe <6>
(D:\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\109.0.5097.45\opera_crashreporter.exe
(D:\STEAM\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(explorer.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE
(explorer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe
(explorer.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe
(explorer.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\opera.exe <38>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Driver Booster\Pub\imsctadn.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.062.0326.0002\Microsoft.SharePoint.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [File not signed] C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nipxism.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nitsusvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\MAX\nimxs.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\PXI\nipxicms.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files\UGREEN\WifiAutoInstall\WifiAutoInstallSrv.exe
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(spool\drivers\x64\3\CNAP2LAK.EXE ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABCSWK.EXE
(spool\drivers\x64\3\CNAP2LAK.EXE ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Valve Corp. -> Valve Corporation) D:\STEAM\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3952720 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [460736 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [NI Device Monitor] => D:\Bin\NI\NI Device Monitor\DeviceMonitor.exe [350392 2022-07-06] (National Instruments Corporation -> National Instruments)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (No File)
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37448168 2024-04-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Steam] => D:\STEAM\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [342816 2021-06-30] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Opera Browser Assistant] => D:\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\WINDOWS\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [181248 2022-12-19] (pdfforge GmbH) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\sweaw.exe: [{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb] -> GOG.com Star Wars Empire at War
HKLM\Software\...\AppCompatFlags\InstalledSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb [2014-12-16]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk [2023-04-02]
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2023-04-02]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2022 Rychlé spuštění.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS 2022 Rychlé spuštění.lnk -> C:\Windows\Installer\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Nástroj pro stahování na pozadí.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS Nástroj pro stahování na pozadí.lnk -> C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {BE932A40-B029-4BFA-9A34-EFB732062E1C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {F500350B-4650-41B7-B53E-ABA0F4FB5DE3} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5225408 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {8B80024D-E365-4DAF-BD72-65923AAA8B4E} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [7991232 2024-04-03] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {A75A7F32-BCA4-4DDD-B8D1-B29411233605} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2385856 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {A5CE9DBD-06EA-4E2B-A10A-7C15B7951575} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe [160744 2023-09-13] (IObit CO., LTD -> IObit)
Task: {96CDD2E3-09BA-4CC4-BE82-084AE657371A} - System32\Tasks\Driver Booster SkipUAC (ada25) => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\DriverBooster.exe [8974312 2023-09-13] (IObit CO., LTD -> IObit)
Task: {1FB328C7-429B-4F1E-85E7-385118C3103D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\AutoUpdate.exe [2524648 2023-09-01] (IObit CO., LTD -> IObit)
Task: {91F66314-56E7-4D98-8389-079266DCB0E7} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2020-08-18] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
Task: {218630FD-4E57-46DA-9791-0919E339F61C} - System32\Tasks\iTop Christmas Task (One-Time) => "C:\Program Files (x86)\iTop VPN\Pub\itopxmas.exe" -> C:\Program Files (x86)\iTop VPN\Pub\\/vpn
Task: {310378DF-7965-4BD6-B9EB-C756D99FCBB9} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Users\ada25\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (No File)
Task: {52630604-5973-4D9A-9928-AFCC8E0D103C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D37CD80-5267-4154-B6E5-2FE6C63C43F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D4C306C-29A3-4517-92DB-D7A3B9E601A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B6A6218-EBB3-4D37-98F6-6AA2CDE65EFA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2681923-F313-4EC2-BD4C-1D52D400185F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE6389FF-F339-484F-A016-833FB8262136} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {BF34656D-0A07-435E-94A1-9612022E667D} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {E48533AE-56C6-46A0-A76C-273455E8B3CB} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {76D0119A-90B5-4672-9F0D-70BE0485BA61} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-18] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {711CE0E4-ACDC-4662-B8B9-F984FED067B5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9103DD21-D5C6-497D-B1FD-C199596A096D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {0A7767B6-AD74-4AA9-B866-FD1BDDD502A2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17D41EE8-5497-4F9B-AAE0-BDE08EAC86B7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EA9EA6E3-F7C0-4880-A70C-BE26F0237F7B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9F76FD8F-16E1-4F6A-92B3-13B949D11454} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C032932D-7D7E-4AA2-A8B9-36617F424CE9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {30D465C3-6038-4685-AD22-ED85DCEE01E1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17BE535B-2A86-40B2-BDEB-8C6F8C1CA668} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E488311-1132-406D-898D-7C76766A2D39} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {39427038-6E03-4A11-84B2-1A49AE7781B2} - System32\Tasks\Opera scheduled assistant Autoupdate 1708073729 => D:\Opera\launcher.exe [1581984 2024-04-15] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Opera\assistant" $(Arg0)
Task: {B3FF31CD-F272-42F8-AF5B-ADDA78EECAC4} - System32\Tasks\Opera scheduled Autoupdate 1708073724 => D:\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-11] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28928 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [32000 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{7db3175c-54ea-4223-9cfa-2c9e7a93822c}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}\A51607C6564716C6F66796F526: [DhcpNameServer] 192.168.254.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-21]
Edge DownloadDir: Default -> D:\Stažené soubory
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.messenger.com,*"; hxxps://www.messenger.com
Edge Extension: (Dokumenty Google offline) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-20]

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\ada25\AppData\Local\Google\Chrome\User Data\Default [2022-12-19]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Save to Google Drive) - C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi [2024-03-20]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2179105441-594047520-2276817619-1001) OperaStable - "D:\Opera\opera.exe"

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [802752 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2348984 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1238456 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9164216 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
S3 CoordinatorServiceHost; D:\Solid\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [79576 2022-03-18] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-07-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncHelper.exe [3512232 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 gpibenumsvc; D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe [29888 2022-10-01] (National Instruments Corporation -> National Instruments Corporation)
S3 JKIUpdate; C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe [1492064 2022-12-19] (James Kring, Inc. -> JKI)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [59648 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [71424 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 mxssvr; D:\Bin\NI\MAX\nimxs.exe [97960 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 NI SystemLink Message Bus; C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe [468992 2022-01-19] () [File not signed]
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [64272 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83208 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [593136 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [340192 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [423160 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [533264 2022-07-06] (National Instruments Corporation -> National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [400608 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [182512 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxicmsvc; D:\Bin\NI\PXI\nipxicms.exe [337104 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [26304 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [881888 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [27328 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [101112 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [64256 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [750328 2021-07-12] (National Instruments Corporation -> National Instruments Corporation)
R2 nitsusvc; C:\WINDOWS\SysWOW64\nitsusvc.exe [21688 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [35504 2022-11-23] (National Instruments Corporation -> )
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\OneDriveUpdaterService.exe [3852200 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19145472 2024-04-17] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-05-05] (SolidWorks) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WifiAutoInstallSrv; C:\Program Files\UGREEN\WifiAutoInstall\WifiAutoInstallSrv.exe [118720 2021-11-29] (Realtek Semiconductor Corp. -> Realtek)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MSSQL$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S4 SQLAgent$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i TEW_SQLEXPRESS [X]
S2 SQLTELEMETRY$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service TEW_SQLEXPRESS [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 108B; C:\WINDOWS\System32\drivers\108B.sys [3822496 2019-01-16] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20528 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [230448 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [379960 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [292920 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84536 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27760 2024-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28728 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [268856 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [548912 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [93752 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69176 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [935992 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [695864 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [201784 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306232 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BattMonDRV; C:\WINDOWS\System32\drivers\BattMonDRV.sys [23728 2017-10-24] (Luculent Systems, LLC -> Luculent Systems, LLC)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrausbbus; C:\WINDOWS\System32\drivers\dtultrausbbus.sys [59344 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [38744 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [25376 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [53592 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [25416 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [25384 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [32352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [25400 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [32344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [25408 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [792352 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2023-01-06] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [150328 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [44904 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [34624 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [25360 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niSynck; C:\WINDOWS\System32\drivers\niSynckl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitsuk; C:\WINDOWS\System32\drivers\nitsukl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [25424 2022-07-07] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S4 RsFx0600; C:\WINDOWS\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7706960 2021-11-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three months (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-21 13:10 - 2024-04-21 13:10 - 000048586 _____ C:\Users\ada25\OneDrive\Plocha\FRST.txt
2024-04-21 13:08 - 2024-04-21 13:10 - 000000000 ____D C:\FRST
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
2024-04-21 11:51 - 2024-04-21 11:51 - 000000231 _____ C:\WINDOWS\pxisys.ini
2024-04-21 11:51 - 2024-04-21 11:51 - 000000222 _____ C:\WINDOWS\pxiesys.ini
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Roaming\com.logitech
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Local\flutter_webview_windows
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\ai_overlay_tmp
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ___HD C:\$AV_AVG
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ____D C:\Users\ada25\AppData\Local\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Free.lnk
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\AVG
2024-04-17 20:19 - 2024-04-17 20:18 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-04-17 20:18 - 2024-04-17 20:19 - 000000000 ____D C:\Program Files\AVG
2024-04-17 20:18 - 2024-04-17 20:18 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-04-17 20:18 - 2024-04-17 20:18 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-04-16 22:34 - 2024-04-16 22:34 - 000000202 _____ C:\Users\ada25\OneDrive\Plocha\Workers & Resources Soviet Republic.url
2024-04-16 20:55 - 2024-04-16 20:55 - 000000000 ___HD C:\$WinREAgent
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-10 23:04 - 2024-04-10 23:04 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-09 12:13 - 2024-04-09 12:13 - 000000000 ____D C:\Program Files\UGREEN
2024-04-09 12:13 - 2021-11-29 11:46 - 007706960 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2024-03-31 15:37 - 2024-03-31 15:41 - 003025205 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce1.pdf
2024-03-25 01:18 - 2024-03-25 01:52 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Mount and Blade II Bannerlord
2024-03-25 01:18 - 2024-03-25 01:18 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2024-03-25 01:17 - 2024-03-25 01:17 - 000000927 _____ C:\Users\ada25\OneDrive\Plocha\Mount & Blade II Bannerlord.lnk
2024-03-25 01:17 - 2024-03-25 01:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2024-03-22 14:48 - 2024-03-22 15:26 - 003025214 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce.pdf
2024-03-22 13:34 - 2024-03-22 13:34 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Battle Brothers
2024-03-21 22:51 - 2024-03-21 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle Brothers [GOG.com]
2024-03-21 16:09 - 2024-03-21 16:53 - 000016088 _____ C:\Users\ada25\OneDrive\Plocha\ASA.xlsx
2024-03-21 11:52 - 2024-03-21 11:52 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Rarykos
2024-03-21 11:51 - 2024-03-21 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Falling - Battle Tactics [GOG.com]
2024-03-20 23:13 - 2024-04-17 20:34 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows NT
2024-03-20 23:13 - 2024-03-20 23:13 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Java
2024-03-20 22:40 - 2024-04-18 09:53 - 156762112 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-03-20 22:31 - 2024-03-20 22:40 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2024-03-20 22:14 - 2024-03-20 22:14 - 000000094 _____ C:\Users\ada25\OneDrive\Dokumenty\JTmykIijufzOYVSKE.txt
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ___HD C:\ProgramData\DNTException
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Roaming\public sols
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi
2024-03-20 20:43 - 2024-03-20 20:43 - 000001345 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2024-03-20 20:43 - 2024-03-20 20:43 - 000000000 ____D C:\Users\ada25\AppData\Local\PCHealthCheck
2024-03-20 20:01 - 2024-03-20 20:01 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Ludeon Studios
2024-03-20 19:59 - 2024-03-20 19:59 - 000000000 ____D C:\ProgramData\GOG.com
2024-03-13 05:19 - 2024-04-20 17:33 - 000002738 _____ C:\WINDOWS\system32\Tasks\IObit StpSale (One-Time)
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Timberborn
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Mechanistry
2024-03-12 15:11 - 2024-03-12 15:11 - 000013484 _____ C:\Users\ada25\OneDrive\Plocha\konec.STL
2024-03-12 14:52 - 2024-03-12 14:52 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\tttttt.STL
2024-03-12 14:50 - 2024-03-12 14:52 - 000069328 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.SLDPRT
2024-03-12 14:50 - 2024-03-12 14:50 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.STL
2024-03-12 14:34 - 2024-03-12 14:34 - 000004484 _____ C:\Users\ada25\OneDrive\Plocha\pppp.STL
2024-03-12 14:26 - 2024-03-12 14:26 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcc.STL
2024-03-12 14:25 - 2024-03-12 14:25 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcio.STL
2024-02-22 17:23 - 2024-02-22 16:57 - 000163804 _____ C:\Users\ada25\OneDrive\Plocha\Completed_Data_Series.xlsx
2024-02-22 17:23 - 2024-02-22 12:56 - 000120992 _____ C:\Users\ada25\OneDrive\Plocha\Final_Smoothed_Curves.xlsx
2024-02-22 16:04 - 2024-02-22 16:04 - 000154117 _____ C:\Users\ada25\OneDrive\Plocha\Sešit3.xlsx
2024-02-22 12:36 - 2024-02-22 12:36 - 000141516 _____ C:\Users\ada25\OneDrive\Plocha\Sešit2.xlsx
2024-02-22 11:38 - 2024-02-22 11:38 - 000153783 _____ C:\Users\ada25\OneDrive\Plocha\Sešit1.xlsx
2024-02-16 10:55 - 2024-04-20 17:33 - 000003626 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1708073729
2024-02-16 10:55 - 2024-04-20 17:33 - 000003502 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1708073724
2024-02-16 10:55 - 2024-04-15 18:33 - 000000718 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-03-15 18:05 - 000000718 _____ C:\Users\ada25\OneDrive\Plocha\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-02-16 10:55 - 000000000 ____D C:\Users\ada25\AppData\Local\Opera Software
2024-02-16 10:53 - 2024-02-16 10:53 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Opera Software
2024-02-06 02:23 - 2024-02-06 02:23 - 001449068 _____ C:\Users\ada25\OneDrive\Plocha\Ř-j- - GEUNIR_DL_ (SK).pdf

==================== Three months (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-21 13:01 - 2022-12-17 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-21 12:25 - 2022-12-17 15:23 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-21 11:51 - 2023-10-12 18:27 - 000000000 ____D C:\Users\ada25\AppData\Local\LogiOptionsPlus
2024-04-21 11:51 - 2022-12-17 15:16 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-20 17:33 - 2023-10-06 10:33 - 000002750 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (ada25)
2024-04-20 17:33 - 2023-10-06 10:33 - 000002572 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2024-04-20 17:33 - 2023-10-06 10:33 - 000002558 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2024-04-20 17:33 - 2023-04-02 17:30 - 000002820 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceCheckTask
2024-04-20 17:33 - 2023-04-02 17:30 - 000002504 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceStartupTask
2024-04-20 17:33 - 2023-04-02 17:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\NI SSP Expiration Reminder
2024-04-20 17:33 - 2022-12-20 22:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-04-20 17:33 - 2022-12-19 15:59 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-20 17:33 - 2022-12-19 15:52 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-20 17:33 - 2022-12-18 02:11 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-18 02:11 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-20 17:33 - 2022-12-17 19:43 - 000002704 _____ C:\WINDOWS\system32\Tasks\iTop Christmas Task (One-Time)
2024-04-20 17:33 - 2022-12-17 19:12 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001
2024-04-20 17:33 - 2022-12-17 15:27 - 000003174 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2024-04-20 17:33 - 2022-12-17 15:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-20 17:33 - 2022-12-17 15:23 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-20 16:12 - 2023-01-06 14:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Word
2024-04-20 16:12 - 2022-12-17 19:10 - 000000000 ____D C:\Users\ada25\AppData\Local\Packages
2024-04-20 15:36 - 2022-12-19 16:01 - 000000000 ____D C:\Users\ada25\AppData\Local\CrashDumps
2024-04-20 03:45 - 2022-12-17 15:23 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-19 12:06 - 2022-12-17 19:10 - 000000000 ____D C:\ProgramData\Packages
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-18 20:18 - 2022-12-19 15:33 - 000000000 ____D C:\Users\ada25\AppData\Local\Steam
2024-04-18 12:11 - 2023-06-06 13:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Kodi
2024-04-18 11:53 - 2022-12-19 16:51 - 000000000 ____D C:\Users\ada25\AppData\Local\Ubisoft Game Launcher
2024-04-18 11:21 - 2022-12-21 23:36 - 000002554 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2024-04-18 10:21 - 2022-12-17 15:30 - 002028514 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-18 10:21 - 2022-12-17 15:18 - 000832810 _____ C:\WINDOWS\system32\perfh005.dat
2024-04-18 10:21 - 2022-12-17 15:18 - 000193246 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-18 10:21 - 2022-12-17 15:15 - 000000000 ____D C:\WINDOWS\INF
2024-04-18 10:15 - 2022-12-20 20:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-18 10:15 - 2022-12-17 19:16 - 000000000 ____D C:\ProgramData\AVG
2024-04-18 10:15 - 2022-12-17 15:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-18 10:15 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-18 09:53 - 2022-12-17 15:12 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-18 02:16 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-04-18 00:48 - 2022-12-19 15:59 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-17 23:42 - 2022-12-25 15:52 - 000000000 ____D C:\Users\ada25\OneDrive\Plocha\Hry
2024-04-17 23:42 - 2022-12-20 20:29 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Teams
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-17 21:47 - 2022-12-17 19:13 - 000000000 ____D C:\Users\ada25\AppData\Local\D3DSCache
2024-04-17 21:45 - 2023-10-12 18:29 - 000000000 ____D C:\Users\ada25\AppData\Local\Deployment
2024-04-17 21:45 - 2022-12-17 19:07 - 000000000 ____D C:\Users\ada25
2024-04-17 20:19 - 2022-12-17 15:16 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-16 22:34 - 2022-12-19 15:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-04-16 11:48 - 2023-01-05 18:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Excel
2024-04-16 07:22 - 2022-12-19 15:44 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 10:08 - 2023-01-12 01:18 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-14 22:00 - 2023-05-05 19:21 - 000000000 ____D C:\Users\ada25\AppData\Local\SolidWorks
2024-04-14 21:59 - 2023-05-05 19:02 - 000000000 ____D C:\Users\ada25\AppData\Roaming\SOLIDWORKS
2024-04-14 19:54 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-12 17:38 - 2022-12-17 15:22 - 001725448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-12 17:37 - 2023-12-13 21:51 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-11 04:49 - 2022-12-17 15:12 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-11 04:47 - 2022-12-17 15:25 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-11 04:47 - 2022-12-15 03:03 - 000416842 __RSH C:\bootmgr
2024-04-10 23:53 - 2022-12-17 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 23:51 - 2022-12-17 19:18 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 23:04 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-10 22:54 - 2022-12-17 15:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-22 14:58 - 2022-12-23 16:51 - 000000000 ____D C:\Users\ada25\AppData\Roaming\utorrent

==================== Files in the root of some directories ========

2023-02-06 17:52 - 2024-01-20 16:07 - 000000000 _____ () C:\Users\ada25\AppData\Local\Temptable.xml

==================== SigCheckExt =========================

2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-01-15 11:23 - 2023-01-15 11:23 - 000060928 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\DAQmxAssistant_nimaglvu.dll
2004-02-23 20:42 - 2004-02-23 20:42 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


==================== BCD ================================

Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=C:
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale cs-CZ
inherit {bootloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
nx OptOut
bootmenupolicy Standard

Windows Boot Loader
-------------------
identifier {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale cs-cz
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Resume from Hibernate
---------------------
identifier {94642d77-7e0d-11ed-8928-f8388a7f6391}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Windows Memory Tester
---------------------
identifier {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostika paměti systému Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes

EMS Settings
------------
identifier {emssettings}
bootems No

Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Local

RAM Defects
-----------
identifier {badmemory}

Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}

Device options
--------------
identifier {9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume2
ramdisksdipath \Recovery\WindowsRE\boot.sdi

==================== End of FRST.txt ========================

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 21 dub 2024 12:26
od Rudy
Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 21 dub 2024 12:31
od Zaplos
# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-03-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-21-2024
# Duration: 00:00:01
# OS: Windows 10 (Build 19045.4291)
# Cleaned: 5
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\IObit\Advanced SystemCare
Deleted C:\Users\ada25\AppData\Roaming\IObit\Advanced SystemCare

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER

***** [ Registry ] *****

Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A5CE9DBD-06EA-4E2B-A10A-7C15B7951575}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1854 octets] - [21/04/2024 13:29:00]
AdwCleaner[S01].txt - [1915 octets] - [21/04/2024 13:30:11]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 21 dub 2024 14:50
od Rudy
Dejte nové logy FRST+Addition.

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 21 dub 2024 18:07
od Zaplos
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19.04.2024 01
Ran by ada25 (administrator) on DESKTOP-7QV4VV7 (MSI MS-7850) (21-04-2024 17:45:17)
Running from C:\Users\ada25\OneDrive\Plocha\FRST64.exe
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Platform: Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) Language: Čeština (Česko)
Default browser: "D:\Opera\opera.exe" -noautoupdate -- "%1"
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(audiodg.exe ->) (Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> com.logitech) C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logi_crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Logishrd\LogiOptionsPlus\logi_ai_prompt_builder\LogiAiPromptBuilder.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe <6>
(D:\Opera\opera.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNABCSWK.EXE
(D:\Opera\opera.exe ->) (CANON INC. -> CANON INC.) C:\Windows\System32\spool\drivers\x64\3\CNAP2RPK.EXE
(D:\Opera\opera.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\109.0.5097.45\opera_crashreporter.exe
(D:\STEAM\steam.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe <8>
(explorer.exe ->) (Opera Norway AS -> Opera Software) D:\Opera\opera.exe <27>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (Valve Corp. -> Valve Corporation) D:\STEAM\steam.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Program Files\National Instruments\Shared\roco\niroco.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\nidevldu.exe
(services.exe ->) (National Instruments Corporation -> National Instruments Corporation) D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Valve Corp. -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\steamservice.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2022-05-26] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [CNAP2 Launcher] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE [226784 2010-10-15] (CANON INC. -> CANON INC.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3952720 2022-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [460736 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [NI Device Monitor] => D:\Bin\NI\NI Device Monitor\DeviceMonitor.exe [350392 2022-07-06] (National Instruments Corporation -> National Instruments)
HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default (No File)
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [37448168 2024-04-11] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Steam] => D:\STEAM\steam.exe [4384104 2024-03-06] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\ada25\AppData\Local\Microsoft\Teams\Update.exe [2591296 2024-01-09] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4082112 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [NIRegistrationWizard] => C:\Program Files (x86)\National Instruments\Shared\RegistrationWizard\Bin\RegistrationWizard.exe [342816 2021-06-30] (National Instruments Corporation -> National Instruments Corporation)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Run: [Opera Browser Assistant] => D:\Opera\assistant\browser_assistant.exe [3996064 2024-03-04] (Opera Norway AS -> Opera Software)
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\CNAP2 Monitor: C:\WINDOWS\system32\CNAP2LMD.DLL [486400 2012-09-03] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [181248 2022-12-19] (pdfforge GmbH) [File not signed]
HKLM\Software\...\AppCompatFlags\Custom\sweaw.exe: [{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb] -> GOG.com Star Wars Empire at War
HKLM\Software\...\AppCompatFlags\InstalledSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{6e6e6e61-b17e-44be-805a-c4a599fa56a3}.sdb [2014-12-16]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting (64-bit).lnk [2023-04-02]
ShortcutTarget: NI Error Reporting (64-bit).lnk -> C:\Program Files\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NI Error Reporting.lnk [2023-04-02]
ShortcutTarget: NI Error Reporting.lnk -> C:\Program Files (x86)\National Instruments\Shared\NI Error Reporting\nierserver.exe (National Instruments Corporation -> National Instruments Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2022 Rychlé spuštění.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS 2022 Rychlé spuštění.lnk -> C:\Windows\Installer\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Nástroj pro stahování na pozadí.lnk [2023-05-05]
ShortcutTarget: SOLIDWORKS Nástroj pro stahování na pozadí.lnk -> C:\Program Files (x86)\Common Files\Manažer instalací SOLIDWORKS\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {BE932A40-B029-4BFA-9A34-EFB732062E1C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {F500350B-4650-41B7-B53E-ABA0F4FB5DE3} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5225408 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {8B80024D-E365-4DAF-BD72-65923AAA8B4E} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [7991232 2024-04-03] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {A75A7F32-BCA4-4DDD-B8D1-B29411233605} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2385856 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies)
Task: {58148A02-0E4A-4E7F-BBF2-94B18C10B72A} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\Scheduler.exe [160744 2023-09-13] (IObit CO., LTD -> IObit)
Task: {96CDD2E3-09BA-4CC4-BE82-084AE657371A} - System32\Tasks\Driver Booster SkipUAC (ada25) => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\DriverBooster.exe [8974312 2023-09-13] (IObit CO., LTD -> IObit)
Task: {1FB328C7-429B-4F1E-85E7-385118C3103D} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\11.0.0\AutoUpdate.exe [2524648 2023-09-01] (IObit CO., LTD -> IObit)
Task: {91F66314-56E7-4D98-8389-079266DCB0E7} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2020-08-18] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
Task: {218630FD-4E57-46DA-9791-0919E339F61C} - System32\Tasks\iTop Christmas Task (One-Time) => "C:\Program Files (x86)\iTop VPN\Pub\itopxmas.exe" -> C:\Program Files (x86)\iTop VPN\Pub\\/vpn
Task: {310378DF-7965-4BD6-B9EB-C756D99FCBB9} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Users\ada25\AppData\Local\Programs\Messenger\MessengerHelper.exe --lassie (No File)
Task: {52630604-5973-4D9A-9928-AFCC8E0D103C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7D37CD80-5267-4154-B6E5-2FE6C63C43F4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6D4C306C-29A3-4517-92DB-D7A3B9E601A1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B6A6218-EBB3-4D37-98F6-6AA2CDE65EFA} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A2681923-F313-4EC2-BD4C-1D52D400185F} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE6389FF-F339-484F-A016-833FB8262136} - System32\Tasks\NI SSP Expiration Reminder => C:\Program Files (x86)\National Instruments\Shared\SSP Notifier\SSP Notifier.exe [168272 2020-11-18] (National Instruments Corporation -> National Instruments)
Task: {BF34656D-0A07-435E-94A1-9612022E667D} - System32\Tasks\NIUpdateServiceCheckTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {E48533AE-56C6-46A0-A76C-273455E8B3CB} - System32\Tasks\NIUpdateServiceStartupTask => C:\Program Files (x86)\National Instruments\Shared\Update Service\NIUpdateService.exe [279760 2021-07-01] (National Instruments Corporation -> National Instruments Corporation)
Task: {76D0119A-90B5-4672-9F0D-70BE0485BA61} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2022-03-18] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {711CE0E4-ACDC-4662-B8B9-F984FED067B5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9103DD21-D5C6-497D-B1FD-C199596A096D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {0A7767B6-AD74-4AA9-B866-FD1BDDD502A2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17D41EE8-5497-4F9B-AAE0-BDE08EAC86B7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {EA9EA6E3-F7C0-4880-A70C-BE26F0237F7B} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {9F76FD8F-16E1-4F6A-92B3-13B949D11454} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {C032932D-7D7E-4AA2-A8B9-36617F424CE9} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {30D465C3-6038-4685-AD22-ED85DCEE01E1} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1655336 2022-12-07] (Nvidia Corporation -> NVIDIA Corporation)
Task: {17BE535B-2A86-40B2-BDEB-8C6F8C1CA668} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {9E488311-1132-406D-898D-7C76766A2D39} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4206512 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {39427038-6E03-4A11-84B2-1A49AE7781B2} - System32\Tasks\Opera scheduled assistant Autoupdate 1708073729 => D:\Opera\launcher.exe [1581984 2024-04-15] (Opera Norway AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="D:\Opera\assistant" $(Arg0)
Task: {B3FF31CD-F272-42F8-AF5B-ADDA78EECAC4} - System32\Tasks\Opera scheduled Autoupdate 1708073724 => D:\Opera\autoupdate\opera_autoupdate.exe [5668768 2024-04-11] (Opera Norway AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [28928 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll [32000 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
Winsock: Catalog5-x64 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{7db3175c-54ea-4223-9cfa-2c9e7a93822c}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}: [DhcpNameServer] 192.168.254.1
Tcpip\..\Interfaces\{85109b7f-54fd-4e0b-86c9-82db250808aa}\A51607C6564716C6F66796F526: [DhcpNameServer] 192.168.254.1

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default [2024-04-21]
Edge DownloadDir: Default -> D:\Stažené soubory
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.messenger.com,*"; hxxps://www.messenger.com
Edge Extension: (Dokumenty Google offline) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-20]
Edge Extension: (Edge relevant text changes) - C:\Users\ada25\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-03-20]

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> D:\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-04-11] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR Profile: C:\Users\ada25\AppData\Local\Google\Chrome\User Data\Default [2022-12-19]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Save to Google Drive) - C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi [2024-03-20]
CHR HKLM-x32\...\Chrome\Extension: [aegnopegbbhjeeiganiajffnalhlkkjb]

Opera:
=======
OPR DefaultProfile: Default
StartMenuInternet: (HKU\S-1-5-21-2179105441-594047520-2276817619-1001) OperaStable - "D:\Opera\opera.exe"

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [802752 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2348984 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1238456 2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [9164216 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2024-04-17] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AzureAttestService; C:\Program Files\Microsoft\AzureAttestService\AzureAttestService.dll [151288 2019-07-24] (Microsoft Windows -> Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-16] (Microsoft Corporation -> Microsoft Corporation)
S3 CoordinatorServiceHost; D:\Solid\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe [79576 2022-03-18] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corporation)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [943528 2023-07-20] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [934352 2022-07-11] (Epic Games Inc. -> Epic Games, Inc.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncHelper.exe [3512232 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 gpibenumsvc; D:\Bin\NI\NI-488.2\Bin\gpibenumsvc.exe [29888 2022-10-01] (National Instruments Corporation -> National Instruments Corporation)
S3 JKIUpdate; C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe [1492064 2022-12-19] (James Kring, Inc. -> JKI)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [59648 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [71424 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 mxssvr; D:\Bin\NI\MAX\nimxs.exe [97960 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S2 NI SystemLink Message Bus; C:\Program Files\National Instruments\Shared\Skyline\RabbitMQ\erl-24.0\erts-12.0\bin\erlsrv.exe [468992 2022-01-19] () [File not signed]
S2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [64272 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [83208 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
R2 niauth; C:\Program Files (x86)\National Instruments\Shared\niauth\niauth_daemon.exe [593136 2022-01-11] (National Instruments Corporation -> National Instruments Corporation)
R2 nidevldu; C:\WINDOWS\SysWOW64\nidevldu.exe [340192 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [423160 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI-VISA\niLxiDiscovery.exe [533264 2022-07-06] (National Instruments Corporation -> National Instruments Corporation)
S2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [400608 2022-09-27] (National Instruments Corporation -> National Instruments Corporation)
R2 NINetworkDiscovery; C:\Program Files (x86)\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe [182512 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxicmsvc; D:\Bin\NI\PXI\nipxicms.exe [337104 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nipxirmu; C:\WINDOWS\SysWOW64\nipxism.exe [26304 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 niroco; C:\Program Files\National Instruments\Shared\roco\niroco.exe [881888 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nisds; C:\Program Files\National Instruments\Shared\Sync Domain\nisds.exe [27328 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
R2 NiSvcLoc; C:\Program Files (x86)\National Instruments\Shared\niSvcLoc\nisvcloc.exe [101112 2021-07-07] (National Instruments Corporation -> National Instruments Corporation)
S2 NISystemWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [64256 2022-01-10] (National Instruments Corporation -> National Instruments Corporation)
S2 NITaggerService; C:\Program Files (x86)\National Instruments\Shared\Tagger\tagsrv.exe [750328 2021-07-12] (National Instruments Corporation -> National Instruments Corporation)
S2 nitsusvc; C:\WINDOWS\SysWOW64\nitsusvc.exe [21688 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S4 NIWebServer; C:\Program Files\National Instruments\Shared\Web Server\httpd.exe [35504 2022-11-23] (National Instruments Corporation -> )
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.062.0326.0002\OneDriveUpdaterService.exe [3852200 2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [19145472 2024-04-17] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522184 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2023-05-05] (SolidWorks) [File not signed]
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 WifiAutoInstallSrv; C:\Program Files\UGREEN\WifiAutoInstall\WifiAutoInstallSrv.exe [118720 2021-11-29] (Realtek Semiconductor Corp. -> Realtek)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 MSSQL$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe" -sTEW_SQLEXPRESS [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
S3 Rockstar Service; "C:\Program Files\Rockstar Games\Launcher\RockstarService.exe" [X]
S4 SQLAgent$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE" -i TEW_SQLEXPRESS [X]
S2 SQLTELEMETRY$TEW_SQLEXPRESS; "C:\ProgramData\SOLIDWORKS Electrical\MSSQL15.TEW_SQLEXPRESS\MSSQL\Binn\sqlceip.exe" -Service TEW_SQLEXPRESS [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 108B; C:\WINDOWS\System32\drivers\108B.sys [3822496 2019-01-16] (Microsoft Windows Hardware Compatibility Publisher -> C-MEDIA Inc.)
R0 avgArDisk; C:\WINDOWS\System32\drivers\avgArDisk.sys [20528 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [230448 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [379960 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [292920 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [84536 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [27760 2024-04-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [28728 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [268856 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\WINDOWS\System32\drivers\avgNetHub.sys [548912 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [93752 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [69176 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [935992 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [695864 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [201784 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [306232 2024-04-17] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BattMonDRV; C:\WINDOWS\System32\drivers\BattMonDRV.sys [23728 2017-10-24] (Luculent Systems, LLC -> Luculent Systems, LLC)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [42256 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtultrausbbus; C:\WINDOWS\System32\drivers\dtultrausbbus.sys [59344 2020-08-23] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18816 2022-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S3 lvalarmk; C:\WINDOWS\System32\drivers\lvalarmk.sys [38744 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdcck; C:\WINDOWS\System32\drivers\nicdcckl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicdrk; C:\WINDOWS\System32\drivers\nicdrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicmrk; C:\WINDOWS\System32\drivers\nicmrkl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicondrk; C:\WINDOWS\System32\drivers\nicondrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nicsrk; C:\WINDOWS\System32\drivers\nicsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nidimk; C:\WINDOWS\System32\drivers\nidimkl.sys [25376 2023-01-12] (National Instruments Corporation -> National Instruments Corporation)
S3 nidmxfk; C:\WINDOWS\System32\drivers\nidmxfkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nidsark; C:\WINDOWS\System32\drivers\nidsarkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niemrk; C:\WINDOWS\System32\drivers\niemrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niesrk; C:\WINDOWS\System32\drivers\niesrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NIEthernetDeviceEnumerator; C:\WINDOWS\System32\drivers\niede.sys [53592 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nifdrk; C:\WINDOWS\System32\drivers\nifdrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nifslk; C:\WINDOWS\System32\drivers\nifslkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nihorbrk; C:\WINDOWS\System32\drivers\nihorbrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nilmsk; C:\WINDOWS\System32\drivers\nilmskl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimdbgk; C:\WINDOWS\System32\drivers\nimdbgkl.sys [25416 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
R3 nimru2k; C:\WINDOWS\System32\drivers\nimru2kl.sys [25384 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nimsdrk; C:\WINDOWS\System32\drivers\nimsdrkl.sys [25424 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nimstsk; C:\WINDOWS\System32\drivers\nimstskl.sys [32352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 nimxdfk; C:\WINDOWS\System32\drivers\nimxdfkl.sys [25400 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nimxpk; C:\WINDOWS\System32\drivers\nimxpkl.sys [32344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 ninshsdk; C:\WINDOWS\System32\drivers\ninshsdkl.sys [15200 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\System32\drivers\niorbkl.sys [25408 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [792352 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [25416 2023-01-07] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [19288 2023-01-06] (National Instruments Corporation -> National Instruments Corporation)
R0 nipcibrd; C:\WINDOWS\System32\drivers\nipcibrd.sys [150328 2023-01-11] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxifpk; C:\WINDOWS\System32\drivers\nipxifpk.sys [44904 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 nipxigpk; C:\WINDOWS\System32\drivers\nipxigpk.sys [34624 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
R2 nipxirmk; C:\WINDOWS\System32\drivers\nipxirmkl.sys [25360 2023-01-13] (National Instruments Corporation -> National Instruments Corporation)
S3 niraptrk; C:\WINDOWS\System32\drivers\niraptrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niscdk; C:\WINDOWS\System32\drivers\niscdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisdigk; C:\WINDOWS\System32\drivers\nisdigkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nisftk; C:\WINDOWS\System32\drivers\nisftkl.sys [15184 2015-01-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nispdk; C:\WINDOWS\System32\drivers\nispdkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nissrk; C:\WINDOWS\System32\drivers\nissrkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc2k; C:\WINDOWS\System32\drivers\nistc2kl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistc3rk; C:\WINDOWS\System32\drivers\nistc3rkl.sys [25344 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nistcrk; C:\WINDOWS\System32\drivers\nistcrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niswdk; C:\WINDOWS\System32\drivers\niswdkl.sys [25352 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niSynck; C:\WINDOWS\System32\drivers\niSynckl.sys [25400 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitfurk; C:\WINDOWS\System32\drivers\nitfurkl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitiork; C:\WINDOWS\System32\drivers\nitiorkl.sys [25384 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nitsuk; C:\WINDOWS\System32\drivers\nitsukl.sys [25408 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 niufurk; C:\WINDOWS\System32\drivers\niufurkl.sys [25392 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [25424 2022-07-07] (National Instruments Corporation -> National Instruments Corporation)
S3 niwfrk; C:\WINDOWS\System32\drivers\niwfrkl.sys [25360 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixfmrrk; C:\WINDOWS\System32\drivers\nixfmrrkl.sys [25376 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
S3 nixsrk; C:\WINDOWS\System32\drivers\nixsrkl.sys [25368 2023-01-14] (National Instruments Corporation -> National Instruments Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
S4 RsFx0600; C:\WINDOWS\System32\DRIVERS\RsFx0600.sys [286976 2019-09-24] (Microsoft Corporation -> Microsoft Corporation)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [7706960 2021-11-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2021-03-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [20936 2024-04-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [601376 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-10] (Microsoft Windows -> Microsoft Corporation)
S3 usb6xxxk; system32\drivers\usb6xxxkl.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three months (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-21 13:42 - 2024-04-21 15:51 - 000002632 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2024-04-21 13:28 - 2024-04-21 13:30 - 000000000 ____D C:\AdwCleaner
2024-04-21 13:27 - 2024-04-21 13:27 - 008790880 _____ (Malwarebytes) C:\Users\ada25\OneDrive\Plocha\adwcleaner.exe
2024-04-21 13:18 - 2024-04-21 13:18 - 000019824 _____ C:\Users\ada25\OneDrive\Plocha\Addition.zip
2024-04-21 13:15 - 2024-04-21 13:15 - 000063481 _____ C:\Users\ada25\OneDrive\Plocha\Shortcut.txt
2024-04-21 13:13 - 2024-04-21 13:15 - 000082043 _____ C:\Users\ada25\OneDrive\Plocha\Addition.txt
2024-04-21 13:10 - 2024-04-21 17:45 - 000044187 _____ C:\Users\ada25\OneDrive\Plocha\FRST.txt
2024-04-21 13:08 - 2024-04-21 17:45 - 000000000 ____D C:\FRST
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe
2024-04-21 11:51 - 2024-04-21 11:51 - 000000231 _____ C:\WINDOWS\pxisys.ini
2024-04-21 11:51 - 2024-04-21 11:51 - 000000222 _____ C:\WINDOWS\pxiesys.ini
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Roaming\com.logitech
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\AppData\Local\flutter_webview_windows
2024-04-17 21:45 - 2024-04-17 21:45 - 000000000 ____D C:\Users\ada25\ai_overlay_tmp
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-17 21:44 - 2024-04-17 21:44 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ___HD C:\$AV_AVG
2024-04-17 20:20 - 2024-04-17 20:20 - 000000000 ____D C:\Users\ada25\AppData\Local\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000002071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Free.lnk
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVG
2024-04-17 20:19 - 2024-04-17 20:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\AVG
2024-04-17 20:19 - 2024-04-17 20:18 - 000314816 _____ (Gen Digital Inc.) C:\WINDOWS\system32\avgBoot.exe
2024-04-17 20:18 - 2024-04-17 20:19 - 000000000 ____D C:\Program Files\AVG
2024-04-17 20:18 - 2024-04-17 20:18 - 000050976 _____ (Avast Software) C:\WINDOWS\system32\icarus_rvrt.exe
2024-04-17 20:18 - 2024-04-17 20:18 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-04-16 22:34 - 2024-04-16 22:34 - 000000202 _____ C:\Users\ada25\OneDrive\Plocha\Workers & Resources Soviet Republic.url
2024-04-16 20:55 - 2024-04-16 20:55 - 000000000 ___HD C:\$WinREAgent
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-11 04:47 - 2024-04-11 04:47 - 000020861 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-10 23:04 - 2024-04-10 23:04 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-09 12:13 - 2024-04-09 12:13 - 000000000 ____D C:\Program Files\UGREEN
2024-04-09 12:13 - 2021-11-29 11:46 - 007706960 _____ (Realtek Semiconductor Corporation ) C:\WINDOWS\system32\Drivers\rtwlanu.sys
2024-03-31 15:37 - 2024-03-31 15:41 - 003025205 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce1.pdf
2024-03-25 01:18 - 2024-03-25 01:52 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Mount and Blade II Bannerlord
2024-03-25 01:18 - 2024-03-25 01:18 - 000000000 ____D C:\ProgramData\Mount and Blade II Bannerlord
2024-03-25 01:17 - 2024-03-25 01:17 - 000000927 _____ C:\Users\ada25\OneDrive\Plocha\Mount & Blade II Bannerlord.lnk
2024-03-25 01:17 - 2024-03-25 01:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2024-03-22 14:48 - 2024-03-22 15:26 - 003025214 _____ C:\Users\ada25\OneDrive\Plocha\Diplomová práce.pdf
2024-03-22 13:34 - 2024-03-22 13:34 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Battle Brothers
2024-03-21 22:51 - 2024-03-21 22:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle Brothers [GOG.com]
2024-03-21 16:09 - 2024-03-21 16:53 - 000016088 _____ C:\Users\ada25\OneDrive\Plocha\ASA.xlsx
2024-03-21 11:52 - 2024-03-21 11:52 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Rarykos
2024-03-21 11:51 - 2024-03-21 11:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winter Falling - Battle Tactics [GOG.com]
2024-03-20 23:13 - 2024-04-17 20:34 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows NT
2024-03-20 23:13 - 2024-03-20 23:13 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Java
2024-03-20 22:40 - 2024-04-18 09:53 - 156762112 _____ C:\WINDOWS\system32\config\SOFTWARE
2024-03-20 22:31 - 2024-03-20 22:40 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2024-03-20 22:14 - 2024-03-20 22:14 - 000000094 _____ C:\Users\ada25\OneDrive\Dokumenty\JTmykIijufzOYVSKE.txt
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ___HD C:\ProgramData\DNTException
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Roaming\public sols
2024-03-20 22:14 - 2024-03-20 22:14 - 000000000 ____D C:\Users\ada25\AppData\Local\ekchodpdlojphcfcjenmfdinjpelmddi
2024-03-20 20:43 - 2024-03-20 20:43 - 000001345 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2024-03-20 20:43 - 2024-03-20 20:43 - 000000000 ____D C:\Users\ada25\AppData\Local\PCHealthCheck
2024-03-20 20:01 - 2024-03-20 20:01 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Ludeon Studios
2024-03-20 19:59 - 2024-03-20 19:59 - 000000000 ____D C:\ProgramData\GOG.com
2024-03-13 05:19 - 2024-04-21 17:44 - 000002738 _____ C:\WINDOWS\system32\Tasks\IObit StpSale (One-Time)
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\OneDrive\Dokumenty\Timberborn
2024-03-12 16:45 - 2024-03-12 16:45 - 000000000 ____D C:\Users\ada25\AppData\LocalLow\Mechanistry
2024-03-12 15:11 - 2024-03-12 15:11 - 000013484 _____ C:\Users\ada25\OneDrive\Plocha\konec.STL
2024-03-12 14:52 - 2024-03-12 14:52 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\tttttt.STL
2024-03-12 14:50 - 2024-03-12 14:52 - 000069328 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.SLDPRT
2024-03-12 14:50 - 2024-03-12 14:50 - 000005484 _____ C:\Users\ada25\OneDrive\Plocha\rrrrr.STL
2024-03-12 14:34 - 2024-03-12 14:34 - 000004484 _____ C:\Users\ada25\OneDrive\Plocha\pppp.STL
2024-03-12 14:26 - 2024-03-12 14:26 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcc.STL
2024-03-12 14:25 - 2024-03-12 14:25 - 000003884 _____ C:\Users\ada25\OneDrive\Plocha\pcio.STL
2024-02-22 17:23 - 2024-02-22 16:57 - 000163804 _____ C:\Users\ada25\OneDrive\Plocha\Completed_Data_Series.xlsx
2024-02-22 17:23 - 2024-02-22 12:56 - 000120992 _____ C:\Users\ada25\OneDrive\Plocha\Final_Smoothed_Curves.xlsx
2024-02-22 16:04 - 2024-02-22 16:04 - 000154117 _____ C:\Users\ada25\OneDrive\Plocha\Sešit3.xlsx
2024-02-22 12:36 - 2024-02-22 12:36 - 000141516 _____ C:\Users\ada25\OneDrive\Plocha\Sešit2.xlsx
2024-02-22 11:38 - 2024-02-22 11:38 - 000153783 _____ C:\Users\ada25\OneDrive\Plocha\Sešit1.xlsx
2024-02-16 10:55 - 2024-04-21 17:44 - 000003626 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1708073729
2024-02-16 10:55 - 2024-04-21 17:44 - 000003502 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1708073724
2024-02-16 10:55 - 2024-04-15 18:33 - 000000718 _____ C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-03-15 18:05 - 000000718 _____ C:\Users\ada25\OneDrive\Plocha\Prohlížeč Opera.lnk
2024-02-16 10:55 - 2024-02-16 10:55 - 000000000 ____D C:\Users\ada25\AppData\Local\Opera Software
2024-02-16 10:53 - 2024-02-16 10:53 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Opera Software
2024-02-06 02:23 - 2024-02-06 02:23 - 001449068 _____ C:\Users\ada25\OneDrive\Plocha\Ř-j- - GEUNIR_DL_ (SK).pdf

==================== Three months (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-21 17:44 - 2023-10-06 10:33 - 000002750 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (ada25)
2024-04-21 17:44 - 2023-10-06 10:33 - 000002558 _____ C:\WINDOWS\system32\Tasks\Driver Booster Update
2024-04-21 17:44 - 2023-04-02 17:30 - 000002820 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceCheckTask
2024-04-21 17:44 - 2023-04-02 17:30 - 000002504 _____ C:\WINDOWS\system32\Tasks\NIUpdateServiceStartupTask
2024-04-21 17:44 - 2023-04-02 17:20 - 000003194 _____ C:\WINDOWS\system32\Tasks\NI SSP Expiration Reminder
2024-04-21 17:44 - 2022-12-20 22:12 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2024-04-21 17:44 - 2022-12-19 15:59 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-21 17:44 - 2022-12-19 15:52 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-21 17:44 - 2022-12-18 02:11 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-18 02:11 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-21 17:44 - 2022-12-17 19:43 - 000002704 _____ C:\WINDOWS\system32\Tasks\iTop Christmas Task (One-Time)
2024-04-21 17:44 - 2022-12-17 19:12 - 000003066 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2179105441-594047520-2276817619-1001
2024-04-21 17:44 - 2022-12-17 15:27 - 000003174 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2024-04-21 17:44 - 2022-12-17 15:23 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-21 17:44 - 2022-12-17 15:23 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-21 16:51 - 2022-12-17 15:16 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-21 16:37 - 2023-10-12 18:27 - 000000000 ____D C:\Users\ada25\AppData\Local\LogiOptionsPlus
2024-04-21 15:47 - 2022-12-17 15:15 - 000000000 ____D C:\WINDOWS\INF
2024-04-21 15:37 - 2022-12-17 15:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-21 13:42 - 2022-11-16 16:59 - 000131664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2024-04-21 13:39 - 2022-12-17 19:43 - 000000000 ____D C:\ProgramData\ProductData
2024-04-21 13:30 - 2022-12-17 19:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\IObit
2024-04-21 13:30 - 2022-12-17 19:41 - 000000000 ____D C:\ProgramData\IObit
2024-04-21 13:30 - 2022-12-17 15:23 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-20 16:12 - 2023-01-06 14:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Word
2024-04-20 16:12 - 2022-12-17 19:10 - 000000000 ____D C:\Users\ada25\AppData\Local\Packages
2024-04-20 15:36 - 2022-12-19 16:01 - 000000000 ____D C:\Users\ada25\AppData\Local\CrashDumps
2024-04-20 03:45 - 2022-12-17 15:23 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-04-19 12:06 - 2022-12-17 19:10 - 000000000 ____D C:\ProgramData\Packages
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-19 12:06 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-18 20:18 - 2022-12-19 15:33 - 000000000 ____D C:\Users\ada25\AppData\Local\Steam
2024-04-18 12:11 - 2023-06-06 13:19 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Kodi
2024-04-18 11:53 - 2022-12-19 16:51 - 000000000 ____D C:\Users\ada25\AppData\Local\Ubisoft Game Launcher
2024-04-18 11:21 - 2022-12-21 23:36 - 000002554 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2024-04-18 10:21 - 2022-12-17 15:30 - 002028514 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-18 10:21 - 2022-12-17 15:18 - 000832810 _____ C:\WINDOWS\system32\perfh005.dat
2024-04-18 10:21 - 2022-12-17 15:18 - 000193246 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-18 10:15 - 2022-12-20 20:29 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-18 10:15 - 2022-12-17 19:16 - 000000000 ____D C:\ProgramData\AVG
2024-04-18 10:15 - 2022-12-17 15:23 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-18 10:15 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-18 09:53 - 2022-12-17 15:12 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-04-18 02:16 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-04-18 00:48 - 2022-12-19 15:59 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-17 23:42 - 2022-12-25 15:52 - 000000000 ____D C:\Users\ada25\OneDrive\Plocha\Hry
2024-04-17 23:42 - 2022-12-20 20:29 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Teams
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-04-17 23:11 - 2022-12-17 15:16 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-17 21:47 - 2022-12-17 19:13 - 000000000 ____D C:\Users\ada25\AppData\Local\D3DSCache
2024-04-17 21:45 - 2023-10-12 18:29 - 000000000 ____D C:\Users\ada25\AppData\Local\Deployment
2024-04-17 21:45 - 2022-12-17 19:07 - 000000000 ____D C:\Users\ada25
2024-04-17 20:19 - 2022-12-17 15:16 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-04-16 22:34 - 2022-12-19 15:39 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2024-04-16 11:48 - 2023-01-05 18:41 - 000000000 ____D C:\Users\ada25\AppData\Roaming\Microsoft\Excel
2024-04-16 07:22 - 2022-12-19 15:44 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-15 10:08 - 2023-01-12 01:18 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-14 22:00 - 2023-05-05 19:21 - 000000000 ____D C:\Users\ada25\AppData\Local\SolidWorks
2024-04-14 21:59 - 2023-05-05 19:02 - 000000000 ____D C:\Users\ada25\AppData\Roaming\SOLIDWORKS
2024-04-14 19:54 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\appcompat
2024-04-12 17:38 - 2022-12-17 15:22 - 001725448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-12 17:37 - 2023-12-13 21:51 - 000000000 ____D C:\WINDOWS\InboxApps
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-12 17:37 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-11 04:49 - 2022-12-17 15:12 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-11 04:47 - 2022-12-17 15:25 - 003017216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-11 04:47 - 2022-12-15 03:03 - 000416842 __RSH C:\bootmgr
2024-04-10 23:53 - 2022-12-17 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-10 23:51 - 2022-12-17 19:18 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-10 23:04 - 2022-12-17 15:16 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-04-10 22:54 - 2022-12-17 15:23 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-03-22 14:58 - 2022-12-23 16:51 - 000000000 ____D C:\Users\ada25\AppData\Roaming\utorrent

==================== Files in the root of some directories ========

2023-02-06 17:52 - 2024-01-20 16:07 - 000000000 _____ () C:\Users\ada25\AppData\Local\Temptable.xml

==================== SigCheckExt =========================

2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) C:\WINDOWS\system32\pdfcmon.dll
2023-01-15 11:23 - 2023-01-15 11:23 - 000060928 _____ (National Instruments Corporation) C:\WINDOWS\SysWOW64\DAQmxAssistant_nimaglvu.dll
2004-02-23 20:42 - 2004-02-23 20:42 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msstdfmt.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll
2006-07-11 17:35 - 2006-07-11 17:35 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2024-04-21 13:05 - 2024-04-21 13:05 - 002394112 _____ (Farbar) C:\Users\ada25\OneDrive\Plocha\FRST64.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)


==================== BCD ================================

Windows Boot Manager
--------------------
identifier {bootmgr}
device partition=C:
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Windows Boot Loader
-------------------
identifier {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 10
locale cs-CZ
inherit {bootloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
displaymessageoverride Recovery
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {94642d77-7e0d-11ed-8928-f8388a7f6391}
nx OptOut
bootmenupolicy Standard

Windows Boot Loader
-------------------
identifier {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
device ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale cs-cz
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume2]\Recovery\WindowsRE\Winre.wim,{9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Resume from Hibernate
---------------------
identifier {94642d77-7e0d-11ed-8928-f8388a7f6391}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
recoverysequence {9b8c0f48-e181-11ea-a4a4-8c9ea88999eb}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No

Windows Memory Tester
---------------------
identifier {memdiag}
device partition=C:
path \boot\memtest.exe
description Diagnostika paměti systému Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes

EMS Settings
------------
identifier {emssettings}
bootems No

Debugger Settings
-----------------
identifier {dbgsettings}
debugtype Local

RAM Defects
-----------
identifier {badmemory}

Global Settings
---------------
identifier {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Boot Loader Settings
--------------------
identifier {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Hypervisor Settings
-------------------
identifier {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Resume Loader Settings
----------------------
identifier {resumeloadersettings}
inherit {globalsettings}

Device options
--------------
identifier {9b8c0f49-e181-11ea-a4a4-8c9ea88999eb}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume2
ramdisksdipath \Recovery\WindowsRE\boot.sdi

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by ada25 (21-04-2024 17:47:32)
Running from C:\Users\ada25\OneDrive\Plocha
Microsoft Windows 10 Pro Version 22H2 19045.4291 (X64) (2022-12-17 13:26:16)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

ada25 (S-1-5-21-2179105441-594047520-2276817619-1001 - Administrator - Enabled) => C:\Users\ada25
Administrator (S-1-5-21-2179105441-594047520-2276817619-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2179105441-594047520-2276817619-503 - Limited - Disabled)
defaultuser100001 (S-1-5-21-2179105441-594047520-2276817619-1005 - Limited - Enabled)
Guest (S-1-5-21-2179105441-594047520-2276817619-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2179105441-594047520-2276817619-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\uTorrent) (Version: 3.6.0.47016 - BitTorrent Limited)
3DEXPERIENCE Marketplace for SOLIDWORKS (HKLM\...\{0060450C-5B44-424B-BD42-559F2A5D820A}) (Version: 6.31.534 - Dassault Systemes SolidWorks Corp)
7-Zip 22.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2201-000001000000}) (Version: 22.01.00.0 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.002.20687 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Age of the Ring Mod version 7.2 (HKLM-x32\...\AOTR7.2_is1) (Version: 7.2 - AotR staff)
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft)
Autodesk Fusion 360 (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.15995 - Autodesk, Inc.)
AVG AntiVirus Free (HKLM\...\AVG Antivirus) (Version: 24.3.8975.1651 - AVG)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa CW1 (02/13/2013 1.0.0.0) (HKLM\...\B10CCB939D59F72AA817B257D84328FC4A1DC752) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK2 (02/13/2013 1.0.0.0) (HKLM\...\E6CFEF5357DD0E2F987E98779FD6603959DA391B) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK3 Multi Material 2.0 upgrade (02/13/2013 1.0.0.0) (HKLM\...\FA562E43945E7D9CAC76A811E49088FF2255A11A) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Prusa i3 Plus MK3 3D printer (02/13/2013 1.0.0.0) (HKLM\...\890B56493F7CACBCA0E70EA8EBFD9A18BC780C34) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - UltiMachine 3D Printer (RAMBo) (02/13/2013 1.0.0.0) (HKLM\...\D77EC126405DC217C7BF7DA6669B51E297D5CF23) (Version: 02/13/2013 1.0.0.0 - UltiMachine)
Battle Brothers - Beasts & Exploration (HKLM-x32\...\1262476412_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Blazing Deserts (HKLM-x32\...\1354029796_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Of Flesh and Faith (HKLM-x32\...\1763378047_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Kraken Banner (HKLM-x32\...\1478596696_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Nordic Banner (HKLM-x32\...\1439127300_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Support the Developers & Southern Banner (HKLM-x32\...\1138065447_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Supporter Edition Upgrade (HKLM-x32\...\1353924604_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers - Warriors of the North (HKLM-x32\...\2092450271_is1) (Version: 1.5.0.14 - GOG.com)
Battle Brothers (HKLM-x32\...\1590012242_is1) (Version: 1.5.0.14 - GOG.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Browser for SQL Server 2019 (HKLM-x32\...\{5E366957-8D78-4BB5-A790-96F97A9766BD}) (Version: 15.0.2000.5 - Microsoft Corporation)
Canon LBP6000/LBP6018 (HKLM\...\Canon LBP6000/LBP6018) (Version: - )
Driver Booster 11 (HKLM-x32\...\Driver Booster_is1) (Version: 11.0.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{20235E2B-1E9F-473D-A215-B2467F1F06E3}) (Version: 1.3.51.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{19695986-25CE-41AC-9C6F-54794653EDBA}) (Version: 2.0.36.0 - Epic Games, Inc.)
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
IVI Shared Components Package (32-bit) (HKLM-x32\...\{B21F9C33-EE41-40FD-A9AB-C0857E8039E0}) (Version: 3.0.2828.0 - IVI Foundation) Hidden
IVI Shared Components Package (64-bit) (HKLM\...\{7F1BE37B-5909-4345-8DD9-8115E82276FE}) (Version: 3.0.2828.0 - IVI Foundation) Hidden
Kodi (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Kodi) (Version: 20.1.0.0 - XBMC Foundation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{4F81B8ED-D6B5-497F-AAEC-9DECD42CB03D}) (Version: 3.9.2402.14001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.70.551909 - Logitech)
LogiOptionsPlusExcelAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\D52016B639D322F0325F55AC8907516FD53F5818E7B50B28B546FC509A1A3244) (Version: 1.70.1909.0 - Logitech)
LogiOptionsPlusPowerPointAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\C0A659DFDE5A2520D6EF4CD194E81B1E46054910AAE5ED4E27CDE54B31A749FA) (Version: 1.70.1909.0 - Logitech)
LogiOptionsPlusWordAddin (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\5CBD44E2723BB1841697EE65F4F6FB6DBF7D5E594165632D89494C75F6F61A13) (Version: 1.70.1909.0 - Logitech)
Microsoft .NET Host - 6.0.12 (x64) (HKLM\...\{E215AA9E-5DF2-44BC-9D6F-E1A1B0C348FB}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.12 (x64) (HKLM\...\{0712F23C-FBAC-436C-9DDB-125F32D15033}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.12 (x64) (HKLM\...\{1BF67DC1-8BB5-4AF5-BE20-3B53D9532D01}) (Version: 48.51.51943 - Microsoft Corporation) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.17425.20176 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 124.0.2478.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.97 - Microsoft Corporation)
Microsoft ODBC Driver 17 for SQL Server (HKLM\...\{787F8536-654C-4DD4-AD3F-22B529F8F339}) (Version: 17.4.0.1 - Microsoft Corporation)
Microsoft OLE DB Driver for SQL Server (HKLM\...\{9AA0AFFA-EDB6-4B66-9FD7-BBC828D88B47}) (Version: 18.2.3.0 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.062.0326.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{9D93D367-A2CC-4378-BD63-79EF3FE76C78}) (Version: 11.4.7462.6 - Microsoft Corporation)
Microsoft SQL Server 2019 (64-bit) (HKLM\...\Microsoft SQL Server SQL2019) (Version: - Microsoft Corporation)
Microsoft SQL Server 2019 RsFx Driver (HKLM\...\{5825CDC4-4E99-4CF9-91FE-DB60C0E2F5EA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Microsoft SQL Server 2019 Setup (English) (HKLM\...\{17DCED0E-5B27-453A-B2B4-E487B869B28A}) (Version: 15.0.4013.40 - Microsoft Corporation)
Microsoft SQL Server 2019 T-SQL Language Service (HKLM\...\{31D27B41-A051-49D8-907A-62E0F4A2188C}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Teams classic (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Teams) (Version: 1.6.00.35961 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.09203 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual Basic for Applications 7.1 (x64) (HKLM\...\{07C0BFE1-3291-409C-B96A-797340719C8F}) (Version: 7.1.10.96 - Microsoft Corporation) Hidden
Microsoft Visual Basic for Applications 7.1 (x64) English (HKLM\...\{826216B1-0F04-409B-A33E-C6A004AA1097}) (Version: 7.1.10.96 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{C931A1C6-A7BF-3737-874A-818881A37E1B}) (Version: 10.0.60915 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60910 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 (HKLM-x32\...\{ab213ab7-4792-4c6f-a3fa-8485d06c3475}) (Version: 14.0.23829 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2015 Finalizer (HKLM-x32\...\{F93E37BD-4053-37CA-A7BB-A5B74508006C}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2015 x64 Hosting Support (HKLM\...\{A8C30947-7C1B-3A31-8FD8-CEC6D3357D34}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2015 x86 Hosting Support (HKLM-x32\...\{11A9EF3E-6616-31B1-82BC-1080366FA34D}) (Version: 14.0.23829 - Microsoft Corporation) Hidden
Microsoft VSS Writer for SQL Server 2019 (HKLM\...\{2C33F4D4-E9A5-4DE1-ACFE-3A13464E6703}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM\...\{3E726676-B5F4-48DA-B9F9-78A15B7F8A70}) (Version: 48.51.52100 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.12 (x64) (HKLM-x32\...\{24b99d74-a81e-4765-aefe-be853ac47482}) (Version: 6.0.12.31928 - Microsoft Corporation)
Mount & Blade II Bannerlord v. 1.5.6.254632 (44130) (HKLM-x32\...\Mount & Blade II Bannerlord_is1) (Version: - )
NI IVI Shared Components Wrapper Bundle (HKLM-x32\...\{734b2eac-d7c4-495e-9b70-3a90140ce563}) (Version: 22.5.0.49164 - National Instruments) Hidden
NI Package Manager (HKLM\...\NI Package Manager) (Version: 23.0.0 - NI)
NI Software (HKLM-x32\...\NI Uninstaller) (Version: 23.0.0 - NI)
NVIDIA FrameView SDK 1.3.8107.31782123 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8107.31782123 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.26.0.160 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.26.0.160 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 536.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.23 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20176 - Microsoft Corporation) Hidden
Opera Stable 109.0.5097.45 (HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\Opera 109.0.5097.45) (Version: 109.0.5097.45 - Opera Software)
PDFCreator (HKLM\...\{8960FCDD-66D4-4180-A172-1AD0DD1A075A}) (Version: 5.0.3 - pdfforge GmbH)
Prusa3D verze 2.5.0 (HKLM\...\Prusa3D_is1) (Version: 2.5.0 - Prusa Research a.s.)
PrusaSlicer verze 2.5.0 (HKLM\...\PrusaSlicer_is1) (Version: 2.5.0 - Prusa Research s.r.o.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Rise of the Witch-King 2.02 (HKLM-x32\...\GameReplaysRotWK) (Version: - RotWK 2.02 Team)
SOLIDWORKS 2022 Czech Resources (HKLM\...\{053B4611-AFDF-4C03-BFBB-F8B1A281B70F}) (Version: 30.120.0046 - Název společnosti:) Hidden
SOLIDWORKS 2022 SP02 (HKLM\...\{26EA0056-4BAD-4F9E-BDCE-A72E25C7D06D}) (Version: 30.120.0046 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2022 SP02 (HKLM-x32\...\SolidWorks Installation Manager 20220-40200-1100-100) (Version: 30.2.0.46 - SolidWorks Corporation)
SOLIDWORKS CAM 2022 SP02 (HKLM\...\{46053718-2931-47EA-B678-6DF08370F2D4}) (Version: 30.20.0046 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2022 SP02 (HKLM\...\{809597D9-554F-4EFB-B0EC-B231924636E2}) (Version: 30.20.0037 - Společnost Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2019 Batch Parser (HKLM\...\{D459615B-83B0-408F-8F39-6CC07C277BA6}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{0FB552DD-543E-48E7-A6F4-2F8D82723C6A}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Common Files (HKLM\...\{5E4344C9-8B97-4ED9-8760-57E221C240F4}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{99B940D5-1A49-4B6C-B26C-6A88B2C061CA}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Connection Info (HKLM\...\{FD730873-33D1-4D1F-9AE0-E259586F8827}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{A60B3D8E-5311-4BF1-AF7A-D1AC15F9152E}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Services (HKLM\...\{E3E84B2C-FCF6-469F-9FE7-5E8934DB69AD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{619F0B6C-C802-422A-B4E5-294E61F68473}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Database Engine Shared (HKLM\...\{DE5B7937-D5B5-4157-BC30-BB87F021CFF0}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{814D5077-C93F-42E2-B875-717007C186B9}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 DMF (HKLM\...\{FC8DC283-4A85-467F-8D0E-2FE4606DCCA1}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{6213D6CB-D258-47A3-B1A0-EE1E5C080DCF}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects (HKLM\...\{A8581199-F913-443B-B058-8E8BF317E71C}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{8DDAEBCA-4267-4E16-9FE0-D87F21D36891}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 Shared Management Objects Extensions (HKLM\...\{C7E6D4B7-CB10-4239-BA04-D9339B39D0BD}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 SQL Diagnostics (HKLM\...\{28ED6838-D8E5-454C-A813-12C5EB447CAB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{2129312E-5204-4F3A-9039-B6D34DBB00FB}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
SQL Server 2019 XEvent (HKLM\...\{228C3DC2-695E-4FC7-87E4-6A9CE905DA9B}) (Version: 15.0.2000.5 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader Extreme HD (HKLM-x32\...\GOGPACKSTRONGHOLDCRUSADERHD_is1) (Version: 2.0.0.6 - GOG.com)
The Battle for Middle-earth (tm) II (HKLM-x32\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
The Lord of the Rings, The Rise of the Witch-king (HKLM-x32\...\{B931FB80-537A-4600-00AD-AC5DEDB6C25B}) (Version: - )
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 137.0.10799 - Ubisoft)
UGREEN Wireless Adapter (HKLM\...\{B8AA72D1-F1C3-4201-A951-3D89A7D422FF}_is1) (Version: 0.0.5.3 - UGREEN)
Ultimaker Cura 5.2.1 (HKLM-x32\...\Ultimaker Cura 5.2.1-5.2.1) (Version: 5.2.1 - Ultimaker B.V.)
UltiMaker Cura 5.3.0 (HKLM-x32\...\UltiMaker Cura 5.3.0-5.3.0) (Version: 5.3.0 - UltiMaker)
UniPDF 1.3.5 (HKLM-x32\...\UniPDF) (Version: 1.3.5 - UniPDF.com)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
VIPM 2023 (HKLM\...\{5EC9A06B-A771-4059-97A4-9F0FDAB409EB}) (Version: 23.1.2498 - JKI)
VISA Shared Components 5.12.0 (64-Bit) (HKLM\...\{452610CE-4A5B-4CFF-87F3-B6A49E621E5C}) (Version: 5.12.0300 - IVI Foundation) Hidden
VISA Shared Components 5.12.0 (64-Bit) (HKLM-x32\...\VISASharedComponents) (Version: 5.12 - IVI Foundation)
VISA.NET Shared Components 5.11.0 (64-Bit) (HKLM\...\{E518296D-57A9-434B-AB33-9928D9B5E09D}) (Version: 5.11.0301 - IVI Foundation) Hidden
VISA.NET Shared Components 5.11.0 (64-Bit) (HKLM-x32\...\VISANETSharedComponents5.11.0) (Version: 5.11.0301 - IVI Foundation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
VusApp (HKLM\...\{BBA26299-01B6-4BBE-9E0F-FB806C16E5D6}) (Version: 4.7.5 - public sols)
WinRAR 7.00 beta 3 64-bit (HKLM\...\WinRAR archiver) (Version: 7.00.3 - win.rar GmbH)
Winter Falling: Battle Tactics (HKLM-x32\...\1464460947_is1) (Version: 4.67 - GOG.com)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-03-16] ()
AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-07-15] (Microsoft Corporation)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-03-26] (Disney)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-02-15] (Microsoft Corporation)
Microsoft Copilot -> C:\Program Files\WindowsApps\Microsoft.Windows.Ai.Copilot.Provider_1.0.3.0_neutral__8wekyb3d8bbwe [2024-03-29] (Microsoft Corporation)
Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe [2024-04-19] (Microsoft) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.965.0_x64__56jybvy8sckqj [2024-03-26] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0 [2024-04-15] (Spotify AB) [Startup Task]
Vyhledávání na webu z Microsoft Bingu -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-03-13] (Microsoft Corporation)
YouTube -> C:\Program Files\WindowsApps\www.youtube.com-54E21B02_1.0.0.1_neutral__pd8mbgmqs65xy [2023-10-19] (www.youtube.com)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\ada25\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.09203\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{9A872070-0A06-11D1-90B7-00A024CE2744}\localserver32 -> C:\Program Files\National Instruments\LabVIEW 2023\LabVIEW.exe (National Instruments Corporation -> National Instruments Corporation)
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\ada25\AppData\Local\Autodesk\webdeploy\production\22e664d43fce268ac9bf1fa1cda69e4a9585c997\NPreview10.dll (Autodesk, Inc. -> )
CustomCLSID: HKU\S-1-5-21-2179105441-594047520-2276817619-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\ada25\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2022-10-04] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext32.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-31] (Malwarebytes) [File not signed]
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.062.0326.0002\FileSyncShell64.dll [2024-04-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_1ddf203f8d876fdf\nvshext.dll [2023-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2024-04-17] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\WINRAR\rarext32.dll [2023-12-15] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2022-07-15 19:00 - 2022-07-15 19:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2022-12-19 16:01 - 2022-12-19 16:01 - 000181248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-10] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-12-17 15:16 - 2022-12-17 15:15 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files (x86)\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\DTS\Binn\;C:\Program Files (x86)\Windows Kits\8.1\Windows Performance Toolkit\;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin\;C:\Program Files\IVI Foundation\VISA\Win64\Bin\;C:\Program Files (x86)\IVI Foundation\IVI\Bin\;C:\Program Files\IVI Foundation\IVI\Bin\;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin;D:\Program Files\dotnet\;C:\Program Files (x86)\National Instruments\Shared\LabVIEW CLI
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ada25\OneDrive\Obrázky\iTop Screen Recorder\Webcam Background\cambg_2.jpg
HKU\S-1-5-80-1122491841-3392631692-228128370-2991616343-3360392805\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-2079297812-3395903788-2019235919-340588434-3960611093\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-2318606733-4105731500-2265514868-2382646068-3090068018\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-477379030-3808530264-327016537-4126128720-1525570716\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-80-63272789-367670524-4235130887-501008514-333400210\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.254.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS 2022 Rychlé spuštění.lnk"
HKLM\...\StartupApproved\StartupFolder: => "SOLIDWORKS Nástroj pro stahování na pozadí.lnk"
HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller"
HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service "
HKLM\...\StartupApproved\Run32: => "NI Device Monitor"
HKLM\...\StartupApproved\Run32: => "TeamsMachineUninstallerLocalAppData"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_53BBEF3CAB961757D3D372C1521EBF2B"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "NIRegistrationWizard"
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C40528C0-2C4A-495D-9B7A-1F4F3600C550}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{62202678-34FC-421E-ACC8-2150114AB6E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B04A3537-6780-4496-9EBE-80FE4515BD60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0CC1C911-8400-4FD5-90A4-AC8A7FAB684F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{770CB664-B40E-43FB-A6FE-BA6E882C3125}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{96663BA2-3D67-419C-A7BE-E8A5DF0CC00E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{0788EA34-C003-4F6C-BFBD-8C985494D9E4}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F18393B6-8F3D-4D87-AFB3-094BD3515268}] => (Allow) D:\STEAM\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{5343D82C-7BD5-4728-98AE-0FAFFACFC895}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{FB52AF7E-3660-4026-B1C6-AE9A39142879}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{B0B4DBCB-41AF-48F4-A79D-06F2C100B20B}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{10F21132-1F2A-4B75-9197-01923D8FB5E8}] => (Allow) D:\STEAM\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{90F9E79E-903B-4AA4-B470-660E86F144F2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F8EC7C40-2F2A-42B6-B411-F8B763D17CD8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{94815BC1-4BEB-434B-A52C-DE0A7C3D83AF}] => (Allow) D:\STEAM\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{8BC19957-71FD-421E-A934-EC8C8CA44233}] => (Allow) D:\STEAM\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{774B1612-0FE2-4A2C-A686-CBE14E25BA3B}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{6D4226A0-46B4-459C-839A-2C561467BE95}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe (Ubisoft Entertainment -> )
FirewallRules: [{81ACA261-2BFC-465C-B4B5-1F7F49E2F64A}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{488CB66B-3C3B-455C-B5EB-09213E3D186D}] => (Allow) D:\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{325EE286-81E2-428A-B857-26100F8A8A72}C:\users\ada25\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ada25\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [UDP Query User{E7603850-88C7-49D6-81A3-890D1CA6F809}C:\users\ada25\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\ada25\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [{6E150C1D-8CC9-42E9-A78E-98F1B316F09F}] => (Allow) D:\STEAM\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [{EA7B9F33-88D9-4EC3-9F05-09FEB1D5BA9C}] => (Allow) D:\STEAM\steamapps\common\7 Days To Die\7dLauncher.exe () [File not signed]
FirewallRules: [TCP Query User{7839F4C9-F1D7-438A-8516-9A2A084BB111}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [UDP Query User{032BFB60-05C4-4B26-8E7C-C0EA7E0A92F4}D:\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\steam\steamapps\common\7 days to die\7daystodie.exe () [File not signed]
FirewallRules: [{83681199-A686-42D4-B1D2-3103CE3D4C7C}] => (Allow) D:\STEAM\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{CE9C8077-4ADD-4E34-BD79-36B09BBF2F3D}] => (Allow) D:\STEAM\steamapps\common\Kingdoms and Castles\KingdomsAndCastles.exe () [File not signed]
FirewallRules: [{ECAB1716-6EAC-4E5D-89A6-5BEF9D1D4B7F}] => (Allow) D:\STEAM\steamapps\common\Humankind\Humankind.exe (Amplitude Studios) [File not signed]
FirewallRules: [{9AA3F688-CE1C-4082-A16B-AC09E231A6A4}] => (Allow) D:\STEAM\steamapps\common\Humankind\Humankind.exe (Amplitude Studios) [File not signed]
FirewallRules: [{FE3F8D9C-5134-466B-B654-D8F0DEFCBADA}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) [File not signed]
FirewallRules: [{1E1EFA3F-D352-46E6-93C2-240C52C1C18C}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\Launcher.exe (Firaxis Games) [File not signed]
FirewallRules: [{5D4DE6A1-A605-451E-9B3F-A36750F37985}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [{B3ABD7A2-0663-4FBA-9DCA-B6C32382059D}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V\LaunchPad\LaunchPad.exe () [File not signed]
FirewallRules: [{8186F609-7F0B-4324-AB0C-4FB502EB0673}] => (Allow) LPort=8030
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [{B21B34A1-A843-4500-A811-D2F4B0B73D52}] => (Allow) D:\STEAM\steamapps\common\Team Fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [{0EA44D9E-D668-4E06-B0E3-408E2B92FF69}] => (Allow) D:\STEAM\steamapps\common\Team Fortress 2\hl2.exe (Valve Corp. -> )
FirewallRules: [TCP Query User{E58C4C22-A114-40AD-B700-3888E0423DE4}D:\ultimaker cura 5.2.1\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.2.1\ultimaker-cura.exe () [File not signed]
FirewallRules: [UDP Query User{ED900E79-D52B-4532-8EE2-784059D529D7}D:\ultimaker cura 5.2.1\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.2.1\ultimaker-cura.exe () [File not signed]
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{D6BC4D7B-4E04-4CC2-B157-1547FCB26FF3}C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe] => (Block) C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [UDP Query User{03EDC3CB-0C7D-4D1A-BEFB-FA4485548CCD}C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe] => (Block) C:\users\ada25\appdata\roaming\utorrent\updates\utorrent.exe (BitTorrent Inc -> BitTorrent Limited)
FirewallRules: [TCP Query User{F5F587B7-CA24-4FD5-B299-E07BAD4E6546}D:\ultimaker cura 5.3.0\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.3.0\ultimaker-cura.exe () [File not signed]
FirewallRules: [UDP Query User{E8CDC9C4-6AE3-4742-A1B4-0FE9F72C9F13}D:\ultimaker cura 5.3.0\ultimaker-cura.exe] => (Allow) D:\ultimaker cura 5.3.0\ultimaker-cura.exe () [File not signed]
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{E706E661-4DC4-444E-BB86-DFB06D900366}] => (Block) C:\Program Files (x86)\National Instruments\Shared\Offline Help Viewer\NIOfflineHelpViewer.exe (ZOOMIN SOFTWARE LTD -> Zoomin Ltd.)
FirewallRules: [{8A3BB187-468E-4D84-9792-02A814D0A23C}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{DF58609B-7294-4D7B-8E9A-A4EABA727F0B}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\nisvcloc\nisvcloc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{207645B5-6ED2-4EF0-B147-B41A0A67B6A5}] => (Allow) LPort=15673
FirewallRules: [{A9C2A7E2-75FE-4C61-8B15-6FCD44513AE3}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{C229CA86-D1D2-4089-A45B-2E31E803BAF1}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{4F08CF52-B016-4A68-944C-1304C9C0BE35}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{69AECB60-1A24-4C73-9A83-246304D12819}] => (Allow) C:\Program Files\JKI\VI Package Manager\VI Package Manager.exe (James Kring, Inc. -> JKI)
FirewallRules: [{9B97DD9E-B8EB-4585-9D75-5E41E75F643D}] => (Allow) C:\Program Files\JKI\VI Package Manager\support\JKIUpdate.exe (James Kring, Inc. -> JKI)
FirewallRules: [{B92D6391-D9FA-4072-8AB0-853229DEC27F}] => (Block) C:\Program Files (x86)\National Instruments\Shared\Offline Help Viewer\NIOfflineHelpViewer.exe (ZOOMIN SOFTWARE LTD -> Zoomin Ltd.)
FirewallRules: [{A0A5F258-9BBB-4925-B458-49057F7AD242}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{58062B4E-EC3C-4B2D-849D-316DF961B94F}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Game.exe (Illusion Softworks) [File not signed]
FirewallRules: [{AECB7EE1-FAE2-4153-950A-EFB2D76B963E}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{B36D7398-14B6-48B4-B4A4-07C80C541676}] => (Allow) D:\STEAM\steamapps\common\Mafia\Mafia\Setup.exe () [File not signed]
FirewallRules: [{F8B67FBE-2229-4661-BCE1-A0F124ECBB6B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CA3ED0CA-9B11-4461-BC99-828B5B777D9E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E0F00251-2FB7-430F-BF3F-BAF83D00A2C4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CB343D69-6175-483A-9BD7-B0066E1DF4EF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{62ADF150-5815-4BF2-B8E0-6DF291399EFE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{9E140625-9EE0-4C68-9D7C-376B8B86660C}D:\kodi\kodi.exe] => (Allow) D:\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{8A1C9B68-4B6D-4C30-A85E-4EE52F85F10D}D:\kodi\kodi.exe] => (Allow) D:\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [{4A267393-C0C7-41DC-898C-45B0B090A8E3}] => (Allow) D:\Hry\BME2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{58BC76DA-2DE4-43F0-AB97-38AA087E4CED}] => (Allow) D:\Hry\BME2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{7C72EDBC-F55B-4ACC-B7A6-170DB13E0680}] => (Allow) D:\Hry\BME2\BMEW2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [{146B6F63-87FB-47A1-BB51-4089C013AAC3}] => (Allow) D:\Hry\BME2\BMEW2\game.dat (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [TCP Query User{83200BDE-4097-4919-BC96-AA29C0FBA2CD}C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe () [File not signed]
FirewallRules: [UDP Query User{19817975-95DB-4947-BB69-51C4C250AD6D}C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\thronefall.early.access\thronefall.exe () [File not signed]
FirewallRules: [{C52CC41F-BCE3-471A-83F0-8C1509B5FFC8}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe (Firaxis Games) [File not signed]
FirewallRules: [{60CAC8F3-BFE5-4CDD-A930-80925A390313}] => (Allow) D:\STEAM\steamapps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe (Firaxis Games) [File not signed]
FirewallRules: [{3E6545A5-A228-4147-A573-5EE45E7B5E5E}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [TCP Query User{686CE735-6A97-4A20-A3E3-44063EF91336}C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{4891CFE0-8B22-4DC4-B72C-0A9C0441473D}C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\ada25\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{495D0BF4-735F-475C-93D0-9CEDDDBE1734}] => (Allow) D:\STEAM\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{E0A3243F-D7FF-4007-B5FC-5528C2E4D99F}] => (Allow) D:\STEAM\steamapps\common\Left 4 Dead 2\left4dead2.exe () [File not signed]
FirewallRules: [{525E4752-7A77-46B2-B96F-DDAEA5476661}] => (Allow) D:\STEAM\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{912CAD33-4E25-42F4-BEB0-B2432D2A16D4}] => (Allow) D:\STEAM\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe (Bethesda Softworks) [File not signed]
FirewallRules: [{8F18F20D-4A42-44C7-9E20-2313FD350C91}] => (Allow) D:\STEAM\steamapps\common\skyrim\skse_steam_boot.exe () [File not signed]
FirewallRules: [{C7E039DE-95C0-404C-A1B8-C00A55011A6A}] => (Allow) D:\STEAM\steamapps\common\skyrim\skse_steam_boot.exe () [File not signed]
FirewallRules: [TCP Query User{2F200DAC-6D95-4C39-9ED6-F3BD0335B3BA}D:\opera\opera.exe] => (Allow) D:\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{1479275E-0EF2-4033-BA11-E51C9A31C53C}D:\opera\opera.exe] => (Allow) D:\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{2049A4AB-3F32-410A-AB44-1BFF1FA425AC}C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe () [File not signed]
FirewallRules: [UDP Query User{2BE97B4D-B23C-4F7A-843E-CD5C600FE89F}C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\timberborn.v0.5.9.1\timberborn.v0.5.9.1\timberborn.exe () [File not signed]
FirewallRules: [{74D15131-2C8D-487C-B144-7D22ABB3BFC8}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
FirewallRules: [{7C2D3117-6A7E-4310-B2EA-18242BFBBCB1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0325C3AA-F612-4CE9-B672-A7215AE56AFD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{15C2CC8E-8041-4D30-BF78-ABAD143F43A6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.97\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{626E4ABD-5146-48BC-ACBD-7CEE9DE01D18}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6C77E69A-BAEA-4671-997A-74F9F595A46C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AD6165B2-C2DE-4814-88D3-CBAF9BED385B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0FAE0F09-EAC2-418A-A663-0CB460F1CC82}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.117.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D1F41E02-E874-4FB5-A759-B0118397FB2F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CEDCB8E9-65CE-4283-B1B4-3A774BCC7CC0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DF40460C-5C4E-4D6D-9498-316D120B84A0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B6AD2EC5-4AB0-44B0-A2DD-87F3097AA2B8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7302B0F4-E873-43DB-AB7B-DDED70E0B563}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7BA0D63E-186E-4E5E-BB39-79E9321ACFEB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{94A701C1-3B23-4BB8-B62A-6465AD5F0697}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{81BC5FE0-36FF-48FD-BEBE-D4FC06391EC5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{DA392895-5AE3-4774-8467-C718C2531431}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8443C64A-A66F-4350-8DEE-0773EABAFEAF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.235.663.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{357BA680-7E32-4C6C-9181-B4F2E437E17F}] => (Allow) D:\STEAM\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [{A0976DF3-635C-4E5E-B0E2-109FCED09DD8}] => (Allow) D:\STEAM\steamapps\common\SovietRepublic\SETUPAPPLICATION SOVIET.exe (3DIVISION) [File not signed]
FirewallRules: [{1AB3854E-23DB-4EBA-9AA6-4A97D0EA5B18}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{3F90E7ED-3089-456C-8049-6BE7E8FDC9CB}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{D5DE2EBA-4770-405F-AB78-73215743922C}] => (Allow) C:\Windows\SysWOW64\nitsusvc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{3378E521-E044-43A8-99A0-3594E2EBD7F8}] => (Allow) C:\Windows\SysWOW64\nitsusvc.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E7274C66-E16F-43CE-9539-2FC312357ADB}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C26E881-7CFE-4BD4-82F4-68D361C4176D}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24074.2321.2810.3500_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

21-04-2024 13:41:10 Driver Booster : USB Camera

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (04/21/2024 05:45:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 19.4.2024.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 13a4

Čas spuštění: 01da9402d52f391c

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Users\ada25\OneDrive\Plocha\FRST64.exe

ID hlášení: 553eddb0-880d-4793-8eae-74a21786818f

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Top level window is idle

Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1953

Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1953

Error: (04/20/2024 06:03:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: *** 2 potential causes identified (significant only if the same cause consistently appears)

Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1954

Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1954

Error: (04/20/2024 06:03:47 PM) (Source: niZeroconfService) (EventID: 100) (User: )
Description: Task Scheduling Error: *** Continuously busy for more than a second


System errors:
=============
Error: (04/21/2024 04:46:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7QV4VV7)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/21/2024 03:52:27 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7QV4VV7)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Configuration Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Application Web Server byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI System Web Server byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Time Synchronization byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NI Variable Engine byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/21/2024 01:30:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Logi Options+ byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.


Windows Defender:
================
Date: 2024-04-17 20:08:39
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {8B9C73E1-1CDB-4E17-8FFA-BB78620F1F2C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-04-16 07:20:24
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1BED9AA8-3C3C-4720-93E1-6685A7F8EA3E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-04-14 23:15:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {68333F97-2BF7-4D68-8D2D-802A9E833F95}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-04-12 03:11:33
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1EB83957-1F3F-4F18-AC71-FA2A1EBF6228}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-04-11 21:19:17
Description:
Řízený přístup ke složkám zablokoval pro C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe možnost upravit %userprofile%\OneDrive\Dokumenty.
Čas detekce: 2024-04-11T19:19:17.165Z
Uživatel: DESKTOP-7QV4VV7\ada25
Cesta: %userprofile%\OneDrive\Dokumenty
Název procesu: C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe
Verze bezpečnostních informací: 1.409.193.0
Verze modulu: 1.1.24030.4
Verze produktu: 4.18.24030.9
Event[0]:

Date: 2024-03-20 21:30:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender zjistilo chybu a bylo ukončeno.
ID prohledávání: {EA7EDFCB-D369-4033-AE89-F826D598F669}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Vlastní prohledávání
Uživatel: DESKTOP-7QV4VV7\ada25
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software.

Date: 2024-03-20 21:30:49
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender zjistilo chybu a bylo ukončeno.
ID prohledávání: {33444359-E36C-4FDF-959A-B03AFF5ECD9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Vlastní prohledávání
Uživatel: DESKTOP-7QV4VV7\ada25
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software.

Date: 2023-12-07 07:33:03
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.1729.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

Date: 2023-12-07 07:33:03
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.1729.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.

Date: 2023-11-07 17:49:40
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.401.134.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23100.2009
Kód chyby: 0x80072ee7
Popis chyby: Nelze rozpoznat název nebo adresu serveru.

CodeIntegrity:
===============
Date: 2024-04-21 17:47:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2024-04-21 17:47:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\aswidsagent.exe) attempted to load \Device\HarddiskVolume1\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2024-04-21 17:47:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2024-04-21 17:47:04
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume1\Program Files\National Instruments\Shared\mDNS Responder\nimdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. V2.9 03/30/2015
Motherboard: MSI B85-G41 PC Mate(MS-7850)
Processor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Percentage of memory in use: 70%
Total physical RAM: 8120 MB
Available physical RAM: 2370.71 MB
Total Virtual: 18360 MB
Available Virtual: 8562.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:108.26 GB) (Free:5.62 GB) (Model: TS128GSSD370S) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:931.51 GB) (Free:94.17 GB) (Model: Samsung SSD 870 EVO 1TB) NTFS
Drive f: (Nový svazek) (Fixed) (Total:464.43 GB) (Free:430.95 GB) (Model: HGST HTS 725050A7E630 SCSI Disk Device) NTFS

\\?\Volume{ad2ab7c0-eef8-4ca9-a578-551be683b00c}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{9cbce750-4c6d-4838-8573-da65e69465f1}\ () (Fixed) (Total:0.78 GB) (Free:0.31 GB) NTFS
\\?\Volume{29747412-0000-0000-0000-b0101b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.1 GB) NTFS
\\?\Volume{29747412-0000-0000-0000-70311b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.5 GB) NTFS
\\?\Volume{1c94712c-8d33-4322-ab9e-a5eae5cff5c5}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 29747412)
Partition 1: (Active) - (Size=108.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=523 MB) - (Type=27)
Partition 3: (Not Active) - (Size=523 MB) - (Type=27)
Partition 4: (Not Active) - (Size=10 GB) - (Type=0F Extended)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 352FEA05)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 69677AFB)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 21 dub 2024 19:02
od Rudy
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File

EmptyTemp:
End
Uložte do C:\Users\ada25\OneDrive\Plocha jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 22 dub 2024 05:09
od Zaplos
Fix result of Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01
Ran by ada25 (22-04-2024 06:05:11) Run:1
Running from C:\Users\ada25\OneDrive\Plocha
Loaded Profiles: ada25 & niroco & SQLTELEMETRY$TEW_SQLEXPRESS & lkClassAds & NINetworkDiscovery & niLXIDiscovery
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\...\RunOnce: [!BCILauncher] => C:\WINDOWS\Temp\MUBSTemp\BCILauncher.EXE [18464 2024-04-21] (Microsoft Corporation -> ) <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\...\MountPoints2: {3f163a51-f658-11ee-98ea-f44efce3160f} - "G:\Setup.exe"
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {8606BBC2-3906-4090-A2D3-2F42B66BCBF9} - System32\Tasks\IObit StpSale (One-Time) => "C:\Program Files (x86)\IObit\Driver Booster\Pub\Stpsale.exe" -> C:\Program Files (x86)\IObit\Driver Booster\Pub\\/stp
FirewallRules: [TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe] => (Block) C:\users\ada25\appdata\local\programs\opera\opera.exe => No File
FirewallRules: [{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [{995F0CCF-4E0B-4DDB-815A-848BE1937020}] => (Allow) C:\Users\ada25\AppData\Local\Temp\utorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe] => (Block) C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe => No File
FirewallRules: [TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe => No File
FirewallRules: [TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe] => (Block) C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe => No File
FirewallRules: [TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe] => (Allow) D:\hry\thelongdark\tld.exe => No File
FirewallRules: [TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe] => (Allow) D:\hry\gtav\gta5.exe => No File
FirewallRules: [{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{915C1B94-E901-42FA-9586-8460FBA2D4AC}] => (Allow) D:\Hry\game.dat => No File
FirewallRules: [{EFA35400-28E5-4420-B13B-12E627EF5236}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}] => (Allow) D:\Hry\lotr2\game.dat => No File
FirewallRules: [TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe] => (Allow) C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe => No File
FirewallRules: [TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe] => (Allow) C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe => No File
FirewallRules: [{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{7B013346-4014-4D81-94DB-5B43CB09530C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File
FirewallRules: [{14102B01-7502-476A-8AA7-5CE9E7E0172A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe => No File
FirewallRules: [{96FF7EE5-2E87-4375-930A-F6475869FD7E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe => No File
FirewallRules: [{FE793E28-0B5F-407A-8E62-4A541B19A9B2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{64885087-0088-46F2-B316-E71259D4A76B}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe => No File
FirewallRules: [{D58A11B5-DDC9-478F-B51F-A9648336CD13}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{199FDDF2-D080-4D27-B569-34A6CF0A142D}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe => No File
FirewallRules: [{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe => No File
FirewallRules: [{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}] => (Allow) C:\Program Files\LogiOptionsPlus\logivoice\logioptionsplus_logivoice => No File

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\!BCILauncher" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKU\S-1-5-21-2179105441-594047520-2276817619-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f163a51-f658-11ee-98ea-f44efce3160f} => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8606BBC2-3906-4090-A2D3-2F42B66BCBF9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8606BBC2-3906-4090-A2D3-2F42B66BCBF9}" => removed successfully
C:\WINDOWS\System32\Tasks\IObit StpSale (One-Time) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IObit StpSale (One-Time)" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0F476DAB-305C-4506-9206-02EFB55A5606}C:\users\ada25\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6F0F7D5E-1FE1-4835-857B-8B8E328E4741}C:\users\ada25\appdata\local\programs\opera\opera.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD16DF96-52AC-475E-A7E9-0B95CE8414AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{995F0CCF-4E0B-4DDB-815A-848BE1937020}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{93475624-4D12-424A-B720-6FE93A43C44E}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7B0AE05A-5010-4225-AEDE-2970DBA84754}C:\users\ada25\onedrive\plocha\airborne.kingdom.v1.10.1\airborne.kingdom.v1.10.1\airbornekingdom.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{52BA5844-6E03-4EC1-94BE-140B375402A2}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{26646741-24B6-45B7-929D-4331C20F3498}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{ABD907FA-8AAD-49C6-9084-A01FB4CB669E}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{7FB275C9-1087-4C37-900F-2C96FEACA07D}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\setupapplication soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{13C8F859-5BA0-46B9-A1BC-BD2C0AA059AA}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B74191B6-397F-4ADB-843D-9D061C422D5B}C:\users\ada25\onedrive\plocha\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{139F34A3-F94D-4FC1-82C3-74DD1728E94E}D:\hry\thelongdark\tld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B9A2C827-99B6-40B1-A5B9-44A70A38BA7F}D:\hry\thelongdark\tld.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{66ABC643-ECBA-4EBC-9836-C9D91C6921C7}D:\hry\gtav\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{48E5C5EB-536B-43B0-8F2D-D6D7CB780319}D:\hry\gtav\gta5.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E995EE2-9161-4DB7-8FE4-13D60E3D0C70}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{915C1B94-E901-42FA-9586-8460FBA2D4AC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EFA35400-28E5-4420-B13B-12E627EF5236}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0FBDE8A3-B45C-4DDB-9B4D-25734BC1029D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C81BF17D-87EB-4A1B-BCD9-92826460CC19}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DA1E38E6-8559-4389-A053-8F53146F241D}C:\users\ada25\onedrive\plocha\hry\workers.&.resources.soviet.republic.v0.8.8.17\workers.&.resources.soviet.republic.v0.8.8.17\soviet64.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{E463EC1F-9A9F-45D2-AD3C-74801D66195D}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D5BB84A0-8745-4C2F-BE7B-B58A4A562E75}C:\users\ada25\appdata\local\temp\rar$exa9720.37287\thronefall.early.access\thronefall.early.access\thronefall.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3D39EA9D-6EA3-429C-9F04-18AD9976DE1F}" => removed successfully
irewallRules: [{F2B414B0-1238-4463-ABFD-05AD8B2F1916}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe => No File => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7B013346-4014-4D81-94DB-5B43CB09530C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{14102B01-7502-476A-8AA7-5CE9E7E0172A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6577FCEE-45BD-41CC-AACB-A26D6A4916B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96FF7EE5-2E87-4375-930A-F6475869FD7E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3B7D8338-8C4F-4F0F-AC7E-9823DD2F2677}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FE793E28-0B5F-407A-8E62-4A541B19A9B2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{64885087-0088-46F2-B316-E71259D4A76B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D58A11B5-DDC9-478F-B51F-A9648336CD13}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{199FDDF2-D080-4D27-B569-34A6CF0A142D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B3F5DEB6-3D58-4F4D-9DFD-9BE9E4C2D9BF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{175B3634-CBFD-420E-96CE-AF80C9BCF2F0}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 128078427 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 215148537 B
Windows/system/drivers => 64633949 B
Edge => 0 B
Chrome => 5981590 B
Firefox => 0 B
Opera => 28248530 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1305419 B
systemprofile32 => 1305798 B
LocalService => 1415652 B
NetworkService => 1674450 B
ada25 => 217607197 B
niroco => 217607197 B
SQLTELEMETRY$TEW_SQLEXPRESS => 217607197 B
lkClassAds => 217607197 B
NINetworkDiscovery => 217607197 B
niLXIDiscovery => 217607197 B

RecycleBin => 0 B
EmptyTemp: => 1.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 06:05:50 ====

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 22 dub 2024 08:22
od Rudy
Smazáno. Nastala nějaká změna?

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 22 dub 2024 22:07
od Zaplos
Problém s ikonami jsem již nezaznamenal. Co se týče uniku hesel nemůžu momentálně říct jestli je tento problém vyřešen, toto zjistím nejspíše s větším odstupem času. Zatím děkuji

Re: Prosím o kontrolu logů z důvodu problému. Děkuji

Napsal: 23 dub 2024 08:15
od Rudy
OK. Únik hesel nemusí být spojen se zavirováním PC. Existují i jiné metodi. Zatím nemáte zač a případně se ozvěte. :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz