Zdravím,
prosím o kontrolu logu. PC se zpomalil ve startu - než najede do WIN10, tak to trvá dlouho. I po najetí je vidět, že něco na pozadí "chroustá" a trvá 2-3 minuty, než se s ním dá pracovat.
Děkuji Vám za pomoc.
FRST.txt:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-03-2025
Ran by Zbyse (administrator) on ZBYSEK (11-03-2025 08:18:55)
Running from C:\Users\Zbyse\Desktop\FRST64.exe
Loaded Profiles: Zbyse
Platform: Microsoft Windows 10 Home Version 22H2 19045.5555 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(services.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_e64b097e1b71c7b9\Display.NvContainer\NVDisplay.Container.exe <2>
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2501.1.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] (Samsung Electronics CO., LTD. -> )
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\Run: [MicrosoftEdgeAutoLaunch_D1548DDA36BFF9FBCE51AAEDDC45F532] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4291112 2025-03-05] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {5c26ec55-19f1-11ec-bfd8-7085c2c9ac09} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL G:\ShelExec.exe "SJIi_v86_i4_.pdf"
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fab-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fce-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
HKLM\...\Windows x64\Print Processors\Canon MG5700 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCS.DLL [30208 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\hpcpp101: C:\Windows\System32\spool\prtprocs\x64\hpcpp101.dll [323584 2010-09-23] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\KOAYTA_P: C:\Windows\System32\spool\prtprocs\x64\KOAYTA_P.DLL [50176 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> KONICA MINOLTA, INC.)
HKLM\...\Windows x64\Print Processors\sxj2mPC: C:\Windows\System32\spool\prtprocs\x64\sxj2mpc.dll [43520 2018-04-15] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\C364SeriesPS Language Monitor: C:\Windows\system32\KOAYTA_L.DLL [25600 2016-02-15] (Microsoft Windows Hardware Compatibility Publisher -> KONICA MINOLTA, INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5700 series: C:\Windows\system32\CNMLMCS.DLL [406528 2015-03-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\sxj2m Langmon: C:\Windows\system32\sxj2mlm.dll [34304 2018-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\133.0.6943.142\Installer\chrmstp.exe [2025-02-28] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {E66F7941-4DEA-4594-BA0C-723135093A53} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (No File)
Task: {D890469C-0F84-4077-B8B5-5056FFC3D2AC} - System32\Tasks\Core Temp Autostart Zbyse => C:\Program Files\Core Temp\Core Temp.exe [1040136 2023-09-24] (ALCPU -> ALCPU)
Task: {F33D43B9-204A-44B4-8308-188DEC964BE6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
Task: {5D60EDC9-C200-4A63-85B5-8BFC2ED05AAC} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_Zbyse => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe /AUTORUN (No File)
Task: {CEB24D8A-BC89-4EC3-96F8-D849D997AFF9} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [78288 2025-01-20] (HP Inc. -> HP Inc.)
Task: {D16CD6B9-F79E-4726-AE0F-EB258C26D18A} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [78288 2025-01-20] (HP Inc. -> HP Inc.)
Task: {20B837C3-8C5E-4C1A-B232-7C3EC412A172} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314456 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CEBC528-D1D3-4C44-8306-65BE879B6FCC} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314456 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7F063311-D6D5-4F82-AF1B-51ABFEA341B8} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28895416 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {DB0912E9-3D7B-4A29-A597-862FA0215A6E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28895416 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {7BEC569D-606E-4C1B-8F59-31C871813EAE} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314456 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {33B8A9F5-081A-4852-9E1B-403B6620A7BD} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [314456 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {5653ACA3-064A-4519-8DC4-7E9AA59D60FB} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [197256 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C16DD7E-96DE-470F-80C2-F936E3E9233B} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4488544 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF6F99DE-6049-413B-8379-49E1F2779929} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16\OLicenseHeartbeat.exe [90272 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {5EE19846-2C2F-4F4D-997B-D460D188B439} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8DE84E9F-E6CB-4591-ABF6-30FDD0EA48A4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E403FF08-C11C-45B9-A6C7-CD5DB02C4405} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2FAC721D-24E5-4F74-ADCA-E2677B5AE170} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpCmdRun.exe [1732816 2025-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E881779D-C247-4016-8C57-C93C5B2EC20A} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3287072 2025-02-19] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{7b84de29-9e94-47a1-86cf-9f7dd9693fd1}: [DhcpNameServer] 195.178.72.150
Tcpip\..\Interfaces\{7b84de29-9e94-47a1-86cf-9f7dd9693fd1}: [DhcpDomain] mendelu.cz
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Default [2025-03-11]
Edge DownloadDir: Default -> E:\Temp
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (Dokumenty Google offline) - C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-26]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2025-02-26]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Edge relevant text changes) - C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Extension: (Authenticator: 2FA Client) - C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ocglkepbibnalbgmbachknglpdipeoio [2024-09-03]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
Edge Profile: C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Profile 1 [2024-10-29]
Edge Extension: (Dokumenty Google offline) - C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-10-29]hxxps://clients2.google.com/service/update2/crx
Edge Extension: (Edge relevant text changes) - C:\Users\Zbyse\AppData\Local\Microsoft\Edge\User Data\Profile 1\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-10-29]hxxps://edge.microsoft.com/extensionwebstorebase/v1/crx
FireFox:
========
FF DefaultProfile: 0tuv6msh.default
FF ProfilePath: C:\Users\Zbyse\AppData\Roaming\Mozilla\Firefox\Profiles\0tuv6msh.default [2020-09-16]
FF Extension: (AutocompletePro - Your handy search suggestions tool) - C:\Users\Zbyse\AppData\Roaming\Mozilla\Firefox\Profiles\0tuv6msh.default\Extensions\support@predictad.com [2020-09-16] [Legacy] [not signed]
FF ProfilePath: C:\Users\Zbyse\AppData\Roaming\Mozilla\Firefox\Profiles\4dg4nxqj.default-release [2022-05-30]
FF Extension: (No Name) - C:\Users\Zbyse\AppData\Roaming\Mozilla\Firefox\Profiles\4dg4nxqj.default-release\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-11-25]
FF Extension: (момина сълза) - C:\Users\Zbyse\AppData\Roaming\Mozilla\Firefox\Profiles\4dg4nxqj.default-release\Extensions\{ef25de4a-293f-411f-88ca-e9328e7dc670}.xpi [2020-04-17]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Default [2025-03-11]
CHR DownloadDir: E:\Temp
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://tinder.com; hxxps://www.facebook.com; hxxps://www.netflix.com; hxxps://www.viry.cz
CHR Extension: (Authenticator) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhghoamapcdpbohphigoooaddinpkbai [2024-08-29]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2025-03-03]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Dokumenty Google offline) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-27]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]hxxps://clients2.google.com/service/update2/crx
CHR Profile: C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-12-14]
CHR Profile: C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1 [2021-12-14]
CHR Extension: (Prezentace) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-12-14]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Dokumenty) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2021-12-14]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Disk Google) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-12-14]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (YouTube) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-12-14]hxxp://clients2.google.com/service/update2/crx
CHR Extension: (Tabulky) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-12-14]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Dokumenty Google offline) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-14]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-12-14]hxxps://clients2.google.com/service/update2/crx
CHR Extension: (Gmail) - C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-12-14]hxxps://clients2.google.com/service/update2/crx
CHR Profile: C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\System Profile [2021-12-14]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144464 2015-02-19] (Canon Inc. -> CANON INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13768944 2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2019-08-21] (FUTUREMARK INC -> Futuremark)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-01-20] (HP Inc. -> HP Inc.)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MpDefenderCoreService.exe [1926976 2025-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [File not signed]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_e64b097e1b71c7b9\Display.NvContainer\NVDisplay.Container.exe [1275032 2025-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\NisSrv.exe [4352456 2025-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25010.11-0\MsMpEng.exe [270056 2025-03-04] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 ALSysIO; C:\Temp\ALSysIO64.sys [43528 2025-03-11] (Microsoft Windows Hardware Compatibility Publisher -> Arthur Liberman)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [36928 2022-09-16] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [280064 2022-10-04] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [147968 2022-03-23] (Microsoft Corporation) [File not signed]
S3 causbaudio; C:\WINDOWS\System32\drivers\causbaudio.sys [374824 2019-08-27] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 causbaudioks; C:\WINDOWS\System32\drivers\causbaudioks.sys [53800 2019-08-27] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 CLVirtualBus01; C:\WINDOWS\System32\drivers\CLVirtualBus01.sys [103176 2014-11-05] (CyberLink Corp. -> CyberLink)
S3 DE_USBAUDIO; C:\WINDOWS\system32\drivers\de_usbaudio.sys [154696 2018-01-25] (Microsoft Windows Hardware Compatibility Publisher -> D&M Holdings Inc.)
S3 ds2waudio; C:\WINDOWS\System32\drivers\ds2waudio.sys [366776 2018-09-05] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 ds2waudioks; C:\WINDOWS\system32\DRIVERS\ds2waudioks.sys [53432 2018-09-05] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 KslD; C:\WINDOWS\System32\drivers\wd\KslD.sys [278944 2025-02-20] (Microsoft Windows -> Microsoft Corporation)
R2 mi2c; C:\WINDOWS\system32\drivers\mi2c.sys [20784 2020-08-13] (AOC International (Europe) GmbH -> Nicomsoft Ltd.)
S3 RtlWlanu; C:\WINDOWS\System32\drivers\rtwlanu.sys [9860088 2019-07-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20016 2025-03-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601520 2025-03-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [100768 2025-03-04] (Microsoft Windows -> Microsoft Corporation)
S2 AMDRyzenMasterDriverV13; \??\C:\Program Files\AMD\RyzenMaster\bin\AMDRyzenMasterDriver.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
Error Reading file: "C:\ProgramData\Desktop\WinSCP.lnk"
Error Reading file: "C:\ProgramData\Desktop\VLC media player.lnk"
Error Reading file: "C:\ProgramData\Desktop\Topaz Photo AI.lnk"
Error Reading file: "C:\ProgramData\Desktop\PotPlayer 64 bit.lnk"
Error Reading file: "C:\ProgramData\Desktop\OpenOffice 4.1.13.lnk"
Error Reading file: "C:\ProgramData\Desktop\NVIDIA.lnk"
Error Reading file: "C:\ProgramData\Desktop\Microsoft Edge.lnk"
Error Reading file: "C:\ProgramData\Desktop\LibreOffice 7.3.lnk"
Error Reading file: "C:\ProgramData\Desktop\Krita.lnk"
Error Reading file: "C:\ProgramData\Desktop\ImgBurn.lnk"
Error Reading file: "C:\ProgramData\Desktop\Hybrid.lnk"
Error Reading file: "C:\ProgramData\Desktop\GraphPad Prism 8.lnk"
Error Reading file: "C:\ProgramData\Desktop\GIMP 2.10.38.lnk"
Error Reading file: "C:\ProgramData\Desktop\foobar2000.lnk"
Error Reading file: "C:\ProgramData\Desktop\desktop.ini"
Error Reading file: "C:\ProgramData\Desktop\CPUID CPU-Z.lnk"
Error Reading file: "C:\ProgramData\Desktop\Canon Quick Menu.lnk"
Error Reading file: "C:\ProgramData\Desktop\Audacity.lnk"
Error Reading file: "C:\ProgramData\Desktop\AIMP.lnk"
Error Reading file: "C:\ProgramData\Desktop\3DMark2001 SE.lnk"
Error Reading file: "C:\ProgramData\Desktop\3DMark06.lnk"
Error Reading file: "C:\ProgramData\Desktop\3DMark03.lnk"
Error Reading file: "C:\ProgramData\Desktop\3DMark Vantage.lnk"
Error Reading file: "C:\ProgramData\Desktop\3DMark 11.lnk"
2025-03-11 08:18 - 2025-03-11 08:19 - 000022271 _____ C:\Users\Zbyse\Desktop\FRST.txt
2025-03-10 13:54 - 2025-03-10 13:54 - 000668479 _____ C:\Users\Zbyse\Documents\IMG_20250310_0001.pdf
2025-03-10 10:09 - 2025-03-10 10:09 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2025-03-04 14:12 - 2025-03-04 14:12 - 000000884 _____ C:\Users\Zbyse\AppData\Local\recently-used.xbel
2025-03-04 14:11 - 2025-03-04 14:11 - 000000906 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.10.38.lnk
2025-03-04 14:11 - 2025-03-04 14:11 - 000000894 _____ C:\Users\Public\Desktop\GIMP 2.10.38.lnk
2025-03-04 13:15 - 2025-03-04 13:15 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2025-03-04 13:10 - 2025-02-27 02:14 - 002072432 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2025-03-04 13:10 - 2025-02-27 02:14 - 002072432 _____ C:\WINDOWS\system32\vulkaninfo.exe
2025-03-04 13:10 - 2025-02-27 02:14 - 001614192 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-03-04 13:10 - 2025-02-27 02:14 - 001614192 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2025-03-04 13:10 - 2025-02-27 02:14 - 001576848 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2025-03-04 13:10 - 2025-02-27 02:14 - 001576848 _____ C:\WINDOWS\system32\vulkan-1.dll
2025-03-04 13:10 - 2025-02-27 02:14 - 001389968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2025-03-04 13:10 - 2025-02-27 02:14 - 001389968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2025-03-04 13:10 - 2025-02-27 02:14 - 000478376 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2025-03-04 13:10 - 2025-02-27 02:14 - 000374424 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2025-03-04 13:10 - 2025-02-27 02:10 - 001183896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2025-03-04 13:10 - 2025-02-27 02:10 - 000670376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvofapi64.dll
2025-03-04 13:10 - 2025-02-27 02:10 - 000505496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvofapi.dll
2025-03-04 13:10 - 2025-02-27 02:09 - 025643160 _____ C:\WINDOWS\system32\nvidia-pcc.exe
2025-03-04 13:10 - 2025-02-27 02:09 - 001563776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2025-03-04 13:10 - 2025-02-27 02:09 - 001215608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2025-03-04 13:10 - 2025-02-27 02:09 - 000904880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2025-03-04 13:10 - 2025-02-27 02:08 - 019904120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2025-03-04 13:10 - 2025-02-27 02:08 - 002194584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2025-03-04 13:10 - 2025-02-27 02:08 - 001642152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2025-03-04 13:10 - 2025-02-27 02:08 - 001046184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2025-03-04 13:10 - 2025-02-27 02:08 - 000803992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2025-03-04 13:10 - 2025-02-27 02:08 - 000463528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2025-03-04 13:10 - 2025-02-27 02:07 - 019329144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2025-03-04 13:10 - 2025-02-27 02:07 - 007224976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2025-03-04 13:10 - 2025-02-27 02:07 - 005913768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2025-03-04 13:10 - 2025-02-27 02:07 - 005500024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcudadebugger.dll
2025-03-04 13:10 - 2025-02-27 02:07 - 003944064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2025-03-04 13:10 - 2025-02-27 02:07 - 000853144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2025-03-04 13:10 - 2025-02-27 02:05 - 005554848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2025-03-04 13:10 - 2025-02-27 02:05 - 004859568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2025-03-04 13:10 - 2025-02-25 10:43 - 000137714 _____ C:\WINDOWS\system32\nvinfo.pb
2025-02-27 14:13 - 2025-02-27 14:13 - 000000270 __RSH C:\ProgramData\ntuser.pol
2025-02-27 10:34 - 2025-02-27 10:34 - 000000000 ___HD C:\$WinREAgent
2025-02-21 08:50 - 2025-02-15 21:59 - 000125048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2025-02-13 10:55 - 2025-02-13 10:56 - 000713028 _____ C:\Users\Zbyse\Documents\IMG_20250213_0001.pdf
2025-02-13 10:19 - 2025-02-13 10:19 - 000720860 _____ C:\Users\Zbyse\Documents\Vypoved_Homecredit_Sladek.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-03-11 08:19 - 2024-01-09 08:06 - 000000000 ____D C:\FRST
2025-03-11 08:19 - 2019-09-17 15:20 - 000000000 ____D C:\Temp
2025-03-11 08:18 - 2020-01-06 11:03 - 002404352 _____ (Farbar) C:\Users\Zbyse\Desktop\FRST64.exe
2025-03-11 08:18 - 2019-11-29 14:38 - 000000000 ____D C:\Users\Zbyse\AppData\Roaming\TIDAL
2025-03-11 08:02 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-03-11 07:32 - 2020-06-24 14:57 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-03-11 07:32 - 2019-12-07 15:41 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2025-03-11 07:32 - 2019-12-07 15:41 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2025-03-11 07:32 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2025-03-11 07:25 - 2020-06-24 14:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-03-11 07:25 - 2020-06-24 14:53 - 000008192 ___SH C:\DumpStack.log.tmp
2025-03-11 07:25 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-03-11 07:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-03-11 07:25 - 2019-09-17 14:59 - 000000000 ____D C:\ProgramData\NVIDIA
2025-03-10 15:11 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-03-10 14:33 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2025-03-10 14:28 - 2020-06-24 14:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-03-10 13:46 - 2019-09-23 17:09 - 000000000 ____D C:\Users\Zbyse\AppData\Roaming\Microsoft\Word
2025-03-10 12:44 - 2019-10-31 11:36 - 000000000 ____D C:\Users\Zbyse\AppData\Roaming\Microsoft\Excel
2025-03-10 11:46 - 2019-09-17 15:02 - 000000000 ____D C:\Users\Zbyse\AppData\Local\Packages
2025-03-10 10:09 - 2019-09-23 17:04 - 000000000 ____D C:\Program Files\Microsoft Office
2025-03-10 10:06 - 2020-08-27 11:37 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-03-10 10:06 - 2020-08-27 11:37 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-03-07 09:57 - 2019-09-17 15:32 - 000000000 ____D C:\Users\Zbyse\AppData\Local\D3DSCache
2025-03-07 09:10 - 2020-08-27 11:37 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-03-07 09:10 - 2020-08-27 11:37 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-03-06 08:43 - 2019-09-17 19:57 - 000000000 ____D C:\Users\Zbyse\AppData\Local\NVIDIA
2025-03-05 08:53 - 2019-10-18 11:04 - 000000000 ____D C:\Users\Zbyse\AppData\Roaming\Microsoft\PowerPoint
2025-03-05 07:44 - 2021-12-16 10:12 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-03-04 14:13 - 2019-10-11 16:12 - 000000000 ____D C:\Users\Zbyse\AppData\Local\gtk-2.0
2025-03-04 14:13 - 2019-09-17 21:03 - 000000000 ____D C:\Users\Zbyse\AppData\Local\babl-0.1
2025-03-04 14:11 - 2019-09-18 15:37 - 000000000 ____D C:\Users\Zbyse\AppData\Local\CrashDumps
2025-03-04 13:12 - 2023-10-18 14:04 - 000000000 ____D C:\Users\Zbyse\AppData\LocalLow\NVIDIA
2025-03-04 13:09 - 2024-07-26 10:18 - 000003834 _____ C:\WINDOWS\system32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-03-04 13:09 - 2024-07-26 10:18 - 000001394 _____ C:\Users\Public\Desktop\NVIDIA.lnk
2025-03-04 13:09 - 2019-09-17 14:59 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-03-04 08:16 - 2019-09-17 14:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2025-02-28 08:17 - 2019-09-17 15:20 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-02-27 12:56 - 2022-04-22 07:09 - 000000000 ____D C:\Users\Zbyse\AppData\Local\Rufus
2025-02-27 12:15 - 2020-06-24 14:53 - 000636464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-02-27 12:14 - 2019-12-07 15:42 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-02-27 12:14 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-02-27 12:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-02-27 12:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2025-02-27 12:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-02-27 12:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-02-27 12:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-02-27 12:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-02-27 12:14 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2025-02-27 11:50 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-02-27 10:45 - 2020-06-24 14:56 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-02-21 09:59 - 2019-09-21 18:15 - 000000000 ____D C:\Users\Zbyse\AppData\Roaming\foobar2000
2025-02-21 08:53 - 2019-12-13 09:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2025-02-20 11:24 - 2020-06-24 07:06 - 000000000 ____D C:\Users\Zbyse
2025-02-19 14:39 - 2024-06-26 13:13 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-02-19 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-02-19 14:39 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2025-02-19 09:06 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2025-02-19 07:34 - 2019-09-17 15:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-02-19 07:30 - 2019-09-17 15:36 - 209365816 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-02-19 01:24 - 2024-07-26 10:18 - 003108896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2025-02-19 01:24 - 2024-07-26 10:18 - 002398752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2025-02-19 01:24 - 2020-09-21 07:49 - 000271904 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2025-02-19 01:24 - 2020-09-21 07:49 - 000245792 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2025-02-19 01:05 - 2020-01-08 07:43 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2025-02-19 01:05 - 2019-09-17 19:57 - 000180760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2025-02-19 01:05 - 2019-09-17 19:57 - 000159768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2025-02-13 08:54 - 2024-04-04 06:15 - 000000000 ____D C:\Users\Zbyse\AppData\Roaming\audacity
2025-02-11 09:07 - 2020-06-24 14:58 - 000012643 _____ C:\WINDOWS\diagerr.xml
2025-02-11 09:07 - 2020-06-24 14:58 - 000011433 _____ C:\WINDOWS\diagwrn.xml
==================== Files in the root of some directories ========
2020-09-07 11:46 - 2024-09-18 11:28 - 000000128 _____ () C:\Users\Zbyse\AppData\Roaming\winscp.rnd
2019-10-03 23:02 - 2024-09-02 12:39 - 000045568 _____ () C:\Users\Zbyse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2024-04-12 08:37 - 2024-07-08 11:02 - 000007899 _____ () C:\Users\Zbyse\AppData\Local\krita-sysinfo.log
2024-04-12 08:37 - 2024-07-08 11:06 - 000090332 _____ () C:\Users\Zbyse\AppData\Local\krita.log
2024-06-04 08:42 - 2024-06-04 08:49 - 000061846 _____ () C:\Users\Zbyse\AppData\Local\kritacrash.log
2024-07-08 11:06 - 2024-07-08 11:06 - 000000158 _____ () C:\Users\Zbyse\AppData\Local\kritadisplayrc
2024-04-12 08:37 - 2024-07-08 11:06 - 000026945 _____ () C:\Users\Zbyse\AppData\Local\kritarc
2025-03-04 14:12 - 2025-03-04 14:12 - 000000884 _____ () C:\Users\Zbyse\AppData\Local\recently-used.xbel
2019-11-08 10:00 - 2019-11-08 10:00 - 000007675 _____ () C:\Users\Zbyse\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Addition.txt
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-03-2025
Ran by Zbyse (11-03-2025 08:20:47)
Running from C:\Users\Zbyse\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5555 (X64) (2020-06-24 13:59:01)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2494957700-3276753658-3270058956-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2494957700-3276753658-3270058956-503 - Limited - Disabled)
Guest (S-1-5-21-2494957700-3276753658-3270058956-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2494957700-3276753658-3270058956-504 - Limited - Disabled)
Zbyse (S-1-5-21-2494957700-3276753658-3270058956-1001 - Administrator - Enabled) => C:\Users\Zbyse
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
3DMark 11 (HKLM\...\{FD67BFA0-E205-47AA-BA09-123B3B72DB5E}) (Version: 1.0.132.0 - Futuremark) Hidden
3DMark 11 (HKLM-x32\...\{f9e83b9c-ab7e-4005-8f32-4ea69703a5e4}) (Version: 1.0.132.0 - Futuremark)
3DMark Vantage (HKLM-x32\...\{C40C3C3D-97CF-44B5-836C-766E374464B3}) (Version: 1.1.3 - Futuremark)
3DMark03 (HKLM-x32\...\{FF35F637-72B9-43BE-A281-06EB2854393A}) (Version: 3.6.2 - Futuremark Corporation)
3DMark06 (HKLM-x32\...\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}) (Version: 1.0.2 - Futuremark)
64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-000182435289}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AIMP (HKLM-x32\...\AIMP) (Version: 5.03.2398 - AIMP DevTeam)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 5.08.02.027 - Advanced Micro Devices, Inc.)
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.90 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.24.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.50.16.01 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{94dc9043-935f-4e10-ac8b-5ce0ac055188}) (Version: 5.08.02.027 - Advanced Micro Devices, Inc.) Hidden
Aplikace NVIDIA 11.0.2.337 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.2.337 - NVIDIA Corporation)
Audacity 3.7.1 (HKLM\...\Audacity_is1) (Version: 3.7.1 - Audacity Team)
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.6 - GPL Public release.)
Balanced (HKLM-x32\...\{EFD0705E-598B-46D4-8D5B-4539431764B8}) (Version: 2.02.0000 - Název společnosti:) Hidden
Blackmagic RAW Common Components (HKLM\...\{EA2A465C-C315-4C71-B3C2-87589F000DFE}) (Version: 2.6 - Blackmagic Design)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon MG5700 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series) (Version: 1.01 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
Common Desktop Agent (HKLM\...\{A38002C3-BA08-466A-A813-7F9D578B13A1}) (Version: 1.62.0 - OEM) Hidden
Core Temp 1.18.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.18.1 - ALCPU)
CPUID CPU-Z 2.08 (HKLM\...\CPUID CPU-Z_is1) (Version: 2.08 - CPUID, Inc.)
Excel (HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel)
ffdshow v1.3.4532 [2014-07-17] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4532.0 - )
foobar2000 v1.4.8 (HKLM-x32\...\foobar2000) (Version: 1.4.8 - Peter Pawlowski)
Futuremark SystemInfo (HKLM-x32\...\{3324DFF8-F84D-4761-94B2-B30610FC987F}) (Version: 5.21.735.0 - Futuremark)
GIMP 2.10.38-1 (HKLM\...\GIMP-2_is1) (Version: 2.10.38 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 133.0.6943.142 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
GraphPad Prism 8.0.1.244 (HKLM\...\{1D0625E1-610F-499E-BA99-CAF230096AE1}) (Version: 8.1.244 - GraphPad Software Inc.)
Haali Media Splitter (HKLM-x32\...\HaaliMkx) (Version: - )
HD Tune Pro 5.00 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hybrid verze 0.2.6 (HKLM\...\{CE16C5A3-F700-4B35-A58C-99429D7E3240}}_is1) (Version: 0.2.6 - Selurs Software)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.5.0 - LIGHTNING UK!)
IrfanView 4.53 (64-bit) (HKLM\...\IrfanView64) (Version: 4.53 - Irfan Skiljan)
Krita (x64) 5.2.2 (HKLM\...\Krita_x64) (Version: 5.2.2.100 - Krita Foundation)
LibreOffice 7.3.2.2 (HKLM\...\{001D6695-F9B8-4CBD-AA92-FE8A58638060}) (Version: 7.3.2.2 - The Document Foundation)
MadOnion.com/3DMark2001 SE (HKLM-x32\...\{91B323B5-A79C-4D23-BD6D-046C565F9BCF}) (Version: - )
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.18526.20144 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 134.0.3124.51 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 133.0.3065.92 - Microsoft Corporation) Hidden
Microsoft Teams (HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\Teams) (Version: 1.7.00.156 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.31301 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
MKVToolNix 85.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 85.0.0 - Moritz Bunkus)
NVIDIA FrameView SDK 1.5.10819.35301613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10819.35301613 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 572.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 572.60 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Název společnosti:)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18526.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18526.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenOffice 4.1.13 (HKLM-x32\...\{BDD4545E-73E8-455E-B04F-CC31AF55FCEC}) (Version: 4.113.9810 - Apache Software Foundation)
OpenVINO AI Plugins for Audacity version v3.7.1-R4.2 (HKLM\...\{944D0498-C914-46E9-97E0-813B726CB0B0}_is1) (Version: v3.7.1-R4.2 - Intel Corporation)
Outlook (HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 24.12.16.0 - Kakao Corp.)
PowerPoint (HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint)
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 3.0.0.0 - Advanced Micro Devices, Inc.) Hidden
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.2.0.24753 - Microsoft Corporation)
TIDAL (HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\TIDAL) (Version: 2.38.6 - TIDAL Music AS)
Topaz Photo AI (HKLM\...\{0260C20A-D80D-46B3-A35E-B3770D37E4D1}) (Version: 1.2.6 - Topaz Labs LLC)
Topaz Video AI 3.2.0 (HKLM\...\Topaz Video AI_is1) (Version: 3.2.0 - Topaz Labs LLC)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
ViewSonic Windows 10 64bit Signed Files (HKLM-x32\...\{FC47C7A5-BE63-11D5-B7C9-005004566E4D}) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinSCP 5.21.3 (HKLM-x32\...\winscp3_is1) (Version: 5.21.3 - Martin Prikryl)
Word (HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word)
Xerox Easy Printer Manager (HKLM-x32\...\Xerox Easy Printer Manager) (Version: 1.03.97.00(21.04.2014) - Xerox Corporation.)
Xerox Easy Wireless Setup (HKLM-x32\...\Xerox Easy Wireless Setup) (Version: 3.70.18.0 - Xerox Corporation)
Xerox Phaser 3020 (HKLM-x32\...\Xerox Phaser 3020) (Version: V1.05 (18.08.2019) - Xerox Corporation)
Chrome apps:
============
Správce hesel Google (HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\d1688358ab77da88dd7bb645ea4ecf5c) (Version: 1.0 - Google\Chrome)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-28] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-18] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_157.1.1186.0_x64__v10z8vjag6ke6 [2025-01-20] (HP Inc.)
KONICA MINOLTA Print Experience -> C:\Program Files\WindowsApps\KONICAMINOLTAINC.KONICAMINOLTAPrintExperience_2.4.0.0_neutral__s63fsn2sety0r [2024-03-07] (KONICA MINOLTA INC)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-09-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-09-17] (Microsoft Corporation) [MS Ad]
Minecraft for Windows -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.21.6201.0_x64__8wekyb3d8bbwe [2025-02-27] (Microsoft Studios)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-03-04] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.183.0_x64__dt26b99r8h8gj [2019-09-21] (Realtek Semiconductor Corp)
Xerox Print and Scan Experience -> C:\Program Files\WindowsApps\XeroxCorp.PrintExperience_9.21.12.0_x64__f7egpvdyrs2a8 [2025-02-19] (Xerox Corp)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2494957700-3276753658-3270058956-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Zbyse\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.31301\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2494957700-3276753658-3270058956-1001_Classes\CLSID\{C78B614C-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Supgam\Altap Salamander 3.06 (x86 x64) 2015 CZ (Ml) Portable\utils\salextx64.dll (ALTAP) [File not signed]
CustomCLSID: HKU\S-1-5-21-2494957700-3276753658-3270058956-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\Zbyse\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2022-09-13] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2022-09-13] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_e64b097e1b71c7b9\nvshext.dll [2025-02-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2014-07-17] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Zbyse\Desktop\Zbysek - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Zbyse\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kajebgjangihfbkjfejcanhanjmmbcfd\Správce hesel Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Zbyse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm
ShortcutWithArgument: C:\Users\Zbyse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb
ShortcutWithArgument: C:\Users\Zbyse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf
ShortcutWithArgument: C:\Users\Zbyse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi
ShortcutWithArgument: C:\Users\Zbyse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Správce hesel Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
==================== Loaded Modules (Whitelisted) =============
2019-09-17 20:37 - 2015-02-27 12:41 - 000013312 _____ (ALTAP) [File not signed] C:\Supgam\Altap Salamander 3.06 (x86 x64) 2015 CZ (Ml) Portable\utils\salextx64.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-01-18 12:29 - 2010-01-18 12:29 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2021-03-12 09:20 - 2022-07-15 15:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2025-03-04 13:09 - 2025-03-04 13:09 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\PlugIns\NVIDIA app\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2024-07-26 10:18 - 2025-03-04 13:09 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA app\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-03-10] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\sharepoint.com -> hxxps://mendelu-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\Control Panel\Desktop\\Wallpaper -> E:\Temp\OIG (1)-topaz-enhance.jpg
DNS Servers: 195.178.72.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt640x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "CDAServer"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{F5062D17-AC66-463C-B42C-B3E83DFD09FC}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [TCP Query User{4FF1DA0B-B447-497C-BDA2-D166475F8B1A}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{5F71C097-994E-4D01-ABD4-A09A1759DE6D}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{1E6F2BAE-241D-4605-BF85-98F8327E0FA8}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{37A9844E-3C4C-4865-A4BE-3711C4C47D15}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{2BEF02A5-0E92-41D6-8CD3-86CB923D9C2A}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{B49601A7-E0A3-45C0-B8B3-08D832E57BAD}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{BBC745ED-B5F5-4B9D-B116-2A79B09D84FC}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{DCB57013-7E7E-46B3-8784-0E87791E01CE}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{36D0E6A5-0F2E-4B7F-AF46-20061B398087}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{0684B5CF-A2EC-40C9-B93C-FE0C647E795D}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{8D55E226-0B0B-42E2-8E91-462C32E78A44}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{E6C76674-2AAF-4318-A6DD-0C4DBBC83316}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{429AC320-BF8B-4EC6-97AC-B006C2D4F94E}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{51A085DF-1B57-4F19-873C-C6A4EA65307A}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [TCP Query User{900E9BFE-5ACC-4E56-AC3C-7122D4554686}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [{72A9F24F-D8FB-479E-B2EC-8B1B4F42C652}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{699D3457-8DFF-4684-8DBE-FF3B5A275F28}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [UDP Query User{656A8432-8B2F-4556-A72D-10EE7563F9DD}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{468B7DA4-ACD2-433C-B427-6EBBEDC66C0D}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{5B49C0DB-70DF-47FD-BD71-4AC611233BF7}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [TCP Query User{2BD0439F-3311-4D9F-9BBA-10E16C451A05}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [UDP Query User{13086F03-DE71-45DF-AF97-277280FF1274}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{CDE30A19-BA90-4A70-9EB4-E9B94C8AA2F5}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{078B6199-E716-4C34-B435-3EBBAACE8B7D}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [TCP Query User{0736597A-09BA-4129-993C-0AC16F93DB7C}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [{A87F8A31-595F-4CDD-A597-AF8420ECF19B}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9E0DFA78-BC12-432B-952B-75BF817A97F3}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9361BC58-D409-41FA-8E74-9BD8F24C4C8D}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [{F0C2F079-4C18-4A1E-9DA6-53F0ADAFC2CA}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [UDP Query User{286DD88D-781C-424E-92F2-E1A1A5F46B41}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{D9565BE1-BFFC-4396-9435-ACB77B3C1432}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [{FF291C7B-9DAA-4DE9-BBAB-D97FF0F48EAD}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{E98DB818-D172-4A6C-B292-024A8CFA779F}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{F0C4884B-57A2-43E3-974B-3A8C7EC4BDE8}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{43B1CAB6-7106-4047-982D-AF0D1BCC5A97}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{C8D3F541-F7A8-4167-9AA1-C6F3256B0262}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{DB734E83-920A-4EF7-B438-D418FD1E1378}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [UDP Query User{8D1A7DCF-D811-435A-A386-354B513414DB}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{207A6B3F-35D1-4222-ADF8-97C1F650C30C}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{54EBD3FE-F0B4-4FBA-A686-A7E5B98F20B8}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [UDP Query User{215B3198-AB6B-4EA6-B713-BBF92E9839B0}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [TCP Query User{D3E38367-B106-42E9-849D-477DE719F56C}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [UDP Query User{307ADE24-B2D0-4731-BF0B-D3F1EE9CE14E}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [TCP Query User{04CB5980-EE71-4BFB-AFC5-C992E5D2744D}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [UDP Query User{C70F578E-4209-49E0-9883-A08B1FAEF9DB}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [TCP Query User{DCC7AE71-B6A6-4849-BDEA-9C89AD3062C7}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [UDP Query User{FF0BDD95-FD5F-4DBA-9211-3C56248459BF}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [{18FB8698-4A3D-4F81-A239-038070860FB6}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{694AB8BC-A6FC-489D-94B6-B0AE689E9264}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{41D8C949-7317-4B47-9EFC-F76F989B9BCF}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{A92298DF-6249-4EB9-959C-70CBCB0BAD49}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{614BEC15-E0A1-4325-9103-B3C076A8DC86}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{E53D503D-C28A-41BF-B36F-F48B30010CAB}C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{C59209C3-108B-4D34-8D97-0681D2F8AA4B}C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{B52BA76B-73E1-47DF-8129-FA419D1385FB}C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{A6C8AE44-B635-451C-8348-7CCA5BF0FB77}C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\zbyse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{8FF8EF58-C6D7-4FEA-9B5D-BE42D7202CD8}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [UDP Query User{ABEC92DF-11CB-4DF7-9982-30F7FCD9A564}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [TCP Query User{0D42E7B5-7480-4C97-A4AA-D63B43C23275}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{D9684BD9-886A-4F2A-8153-30804C486863}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [{DE9E0C91-2EB3-442B-AF67-33DF6F2C2DE4}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{47B74C1E-B873-452F-B0F8-51E3810D2E88}] => (Allow) C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{DA66831C-0369-4530-9039-4D4EED4C01AD}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\Xerox.Application.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{1DD81FA2-5AE3-4F75-95F4-FDB799B92257}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\Xerox.Application.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{4BE1F19C-67D3-4BF4-B117-AF67E2DFF06F}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\Xerox.OrderSupplies.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{3C2A0B18-C728-478E-B060-7B70F1B6FCF6}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\Xerox.OrderSupplies.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{4565FC76-3ECF-4206-9522-A4875A1D1077}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\Xerox.Alert.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{85B2E362-C802-4C6A-BAC5-BA69B36E5C38}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\Xerox.Alert.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{F342A5A0-68CE-466A-A6C9-7F662F635CF0}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\uninstall.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{AF3D3DF7-3016-4858-B8F2-C77610988900}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\uninstall.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{154E2EDA-8F9D-498F-8B84-6DAB14D591A3}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\CDAS2PC\Xerox.CDAS2PC.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{B9D5825E-5F6A-4115-A378-AF4B12E1DA9F}] => (Allow) C:\Program Files (x86)\Xerox\Easy Printer Manager\CDAS2PC\Xerox.CDAS2PC.exe (Xerox Corporation.) [File not signed]
FirewallRules: [{BF4966BD-B580-49F0-8D77-35B5AD0259B6}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [{A7D1D346-050B-4AC8-AB99-5CA7FE417CB2}] => (Allow) C:\Program Files (x86)\Common Files\Common Desktop Agent\CDASrv.exe (Samsung Electronics CO., LTD. -> )
FirewallRules: [TCP Query User{A90AD6BB-D34C-43F0-8219-E0640D3792F2}C:\users\zbyse\appdata\local\tidal\app-2.33.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.33.2\tidal.exe => No File
FirewallRules: [UDP Query User{5C13C3B0-B545-48B2-91E1-55FE615DF069}C:\users\zbyse\appdata\local\tidal\app-2.33.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.33.2\tidal.exe => No File
FirewallRules: [TCP Query User{5BC1E969-8601-42B7-AE8D-C742CF2FF73C}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{70097FA6-6E0E-4A29-B12C-35FE8D0BC9AA}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [TCP Query User{CD7D8A20-57A8-4AC9-8A34-2C1ACD8A372A}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [UDP Query User{00E60597-F5B3-4389-BE8E-F6CE31868676}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{03C3E0E7-74D4-456C-B5E5-B936787F9330}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [UDP Query User{D4E00CD7-C9A6-4F56-92F0-E21039BFD900}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [TCP Query User{17AEE1C5-266E-4C3B-A643-8339C8E13AE6}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [UDP Query User{6F9B8528-626B-4919-9C17-DD0C5D65D867}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [TCP Query User{16A4160E-38EC-447F-85A2-5D176112CE5D}C:\program files (x86)\xerox\easy printer manager\xerox.application.exe] => (Allow) C:\program files (x86)\xerox\easy printer manager\xerox.application.exe (Xerox Corporation.) [File not signed]
FirewallRules: [UDP Query User{12015BA6-AB87-41D6-A03C-75235AB32A41}C:\program files (x86)\xerox\easy printer manager\xerox.application.exe] => (Allow) C:\program files (x86)\xerox\easy printer manager\xerox.application.exe (Xerox Corporation.) [File not signed]
FirewallRules: [TCP Query User{08EC285D-802F-4C05-9FF5-E2458911F063}C:\users\zbyse\appdata\local\tidal\app-2.34.5\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.5\tidal.exe => No File
FirewallRules: [UDP Query User{87E9FEBF-BC5A-4DC8-853C-9D69A30D2A14}C:\users\zbyse\appdata\local\tidal\app-2.34.5\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.5\tidal.exe => No File
FirewallRules: [TCP Query User{F7DE3631-9AE2-4DEA-99FA-10328D5D0EB0}C:\users\zbyse\appdata\local\tidal\app-2.35.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.35.0\tidal.exe => No File
FirewallRules: [UDP Query User{9034AE0B-EA45-42FC-B098-6A4F21656D0E}C:\users\zbyse\appdata\local\tidal\app-2.35.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.35.0\tidal.exe => No File
FirewallRules: [TCP Query User{D5AFE056-3B6E-47E3-8B3A-EBD125B39D08}C:\users\zbyse\appdata\local\tidal\app-2.36.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.36.2\tidal.exe => No File
FirewallRules: [UDP Query User{DDA2EBF3-1D50-4960-93E0-1940F5AF329E}C:\users\zbyse\appdata\local\tidal\app-2.36.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.36.2\tidal.exe => No File
FirewallRules: [TCP Query User{1ED15A1A-A18E-4044-804D-651101385DA8}F:\temp\agent_setup_windows\setup.exe] => (Allow) F:\temp\agent_setup_windows\setup.exe => No File
FirewallRules: [UDP Query User{518669F8-BC8B-407A-9713-A1A5BE8D68EF}F:\temp\agent_setup_windows\setup.exe] => (Allow) F:\temp\agent_setup_windows\setup.exe => No File
FirewallRules: [{17946966-5FF7-4E17-A940-89289FC5AA8A}] => (Allow) LPort=5353
FirewallRules: [{056646C2-2DF9-4CB0-B192-2226B014C020}] => (Allow) LPort=8090
FirewallRules: [{2F2068A5-6A4C-4F3C-AD3F-EB8EC06F944A}] => (Allow) C:\Program Files\Agent\Agent.exe (DEVELOPER IN A BOX -> Developerinabox)
FirewallRules: [{A86AB19A-AC4E-47D9-84FC-B280FB2860F5}] => (Allow) LPort=5353
FirewallRules: [{82106D82-2797-43BE-BA6A-F59469BDBC86}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A0B25D90-F7EF-4E11-BAD0-F828BC920163}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A7880436-9ADF-4204-BC98-04EE4BA458A2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{60A29CD6-CC59-45F3-8841-E004B67D1E8F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{811E418C-2619-4B31-A4E4-E96CAD9E0060}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{CB44E49C-7A43-4CFD-AA35-34E0D3FC4D09}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{FD1BD82F-A1BF-409F-A724-4314CC1251CB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{9AE61CBF-B605-48D4-A0E3-C4629072CFB7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{3B6B6AF6-84DA-4B72-964A-33652C19B3C0}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{01B65A4E-C4D8-4BAB-8EF0-C9A7A501D587}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
FirewallRules: [{BF317620-2C9F-4B87-8D53-DF5F00350BFB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{753A2B78-9E0D-47F8-813F-F24BE3EA08FB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6B7F2183-5892-43A4-AF05-5571C093AC8F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\133.0.3065.92\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6D277CA9-3B68-457D-9D89-9E523EA89B1A}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25031.805.3440.5290_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6CC71E91-1D3E-4FDE-B8B4-7F6339DDE461}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25031.805.3440.5290_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
10-03-2025 14:28:09 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (03/10/2025 02:33:02 PM) (Source: Universal Print) (EventID: 1) (User: )
Description: Failure response trying to get Device and Location Search Endpoints. HttpStatus=12007, Response: , TraceId: mcpmanagementservice.dll
Error: (03/10/2025 02:13:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Zaloha (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (03/10/2025 02:13:15 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Dokumenty (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (03/10/2025 02:13:14 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na TEMP (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (03/10/2025 12:26:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Zaloha (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (03/10/2025 12:26:15 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Dokumenty (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (03/10/2025 12:26:14 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na TEMP (F:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (03/10/2025 12:12:26 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Zaloha (E:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
System errors:
=============
Error: (03/11/2025 07:27:27 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zprostředkovatel monitorování Ochrany System Guard v režimu runtime byla ukončena s následující chybou:
%%3489660935
Error: (03/11/2025 07:27:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (03/11/2025 07:27:27 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).
Error: (03/11/2025 07:27:17 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {8018F647-BF07-55BB-82BE-A2D7049F7CE4} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/11/2025 07:25:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AMDRyzenMasterDriverV13 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedenou cestu.
Error: (03/10/2025 02:16:25 PM) (Source: volsnap) (EventID: 36) (User: )
Description: Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného uživatelem se nepodařilo zvětšit úložiště stínové kopie.
Error: (03/10/2025 10:02:43 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NZKPSTSNW4P-Microsoft.XboxGamingOverlay.
Error: (03/10/2025 10:01:08 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zprostředkovatel monitorování Ochrany System Guard v režimu runtime byla ukončena s následující chybou:
%%3489660935
Windows Defender:
================
Date: 2025-03-10 12:28:10
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-03-10 12:13:24
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-03-04 09:24:47
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-02-25 09:49:12
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-02-24 08:42:05
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2023-06-01 10:53:59
Description:
Antivirová ochrana v programu Microsoft Defender has encountered an error trying to restore an item from quarantine.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Name: HackTool:Win32/Patcher
Severity: Vysoké
Category: Nástroj
Error Code: 0x80508014
Error description: Položku v karanténě nelze obnovit.
Security intelligence Version: AV: 1.391.93.0, AS: 1.391.93.0
Engine Version: 1.1.23050.3
CodeIntegrity:
===============
Date: 2023-11-22 07:09:48
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-10-17 11:35:42
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-09-18 09:20:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. P4.20 08/03/2021
Motherboard: ASRock B450 Steel Legend
Processor: AMD Ryzen 5 3600 6-Core Processor
Percentage of memory in use: 28%
Total physical RAM: 16310.44 MB
Available physical RAM: 11594.97 MB
Total Virtual: 18742.44 MB
Available Virtual: 13003.89 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:445.33 GB) (Free:279.01 GB) (Model: CT480BX500SSD1) NTFS
Drive d: (Dokumenty) (Fixed) (Total:931.51 GB) (Free:593.98 GB) (Model: SAMSUNG HD103SJ) NTFS
Drive e: (Zaloha) (Fixed) (Total:931.51 GB) (Free:154.79 GB) (Model: SAMSUNG HD103SI) NTFS
Drive f: (TEMP) (Fixed) (Total:3726.01 GB) (Free:3313.38 GB) (Model: ST4000VN000-1H4168) NTFS
\\?\Volume{d08f8f59-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{d08f8f59-0000-0000-0000-40746f000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS
\\?\Volume{d08f8f59-0000-0000-0000-c0946f000000}\ () (Fixed) (Total:0.8 GB) (Free:0.34 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: D08F8F59)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=519 MB) - (Type=27)
Partition 4: (Not Active) - (Size=824 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: D5F0DDDD)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 0905F030)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Změna chování PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Změna chování PC
Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fab-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fce-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {F33D43B9-204A-44B4-8308-188DEC964BE6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
C:\Users\Zbyse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [UDP Query User{F5062D17-AC66-463C-B42C-B3E83DFD09FC}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [TCP Query User{4FF1DA0B-B447-497C-BDA2-D166475F8B1A}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{5F71C097-994E-4D01-ABD4-A09A1759DE6D}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{1E6F2BAE-241D-4605-BF85-98F8327E0FA8}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{37A9844E-3C4C-4865-A4BE-3711C4C47D15}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{2BEF02A5-0E92-41D6-8CD3-86CB923D9C2A}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{B49601A7-E0A3-45C0-B8B3-08D832E57BAD}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{BBC745ED-B5F5-4B9D-B116-2A79B09D84FC}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{DCB57013-7E7E-46B3-8784-0E87791E01CE}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{36D0E6A5-0F2E-4B7F-AF46-20061B398087}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{0684B5CF-A2EC-40C9-B93C-FE0C647E795D}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{8D55E226-0B0B-42E2-8E91-462C32E78A44}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{E6C76674-2AAF-4318-A6DD-0C4DBBC83316}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{429AC320-BF8B-4EC6-97AC-B006C2D4F94E}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{51A085DF-1B57-4F19-873C-C6A4EA65307A}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [TCP Query User{900E9BFE-5ACC-4E56-AC3C-7122D4554686}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [{72A9F24F-D8FB-479E-B2EC-8B1B4F42C652}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{699D3457-8DFF-4684-8DBE-FF3B5A275F28}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [UDP Query User{656A8432-8B2F-4556-A72D-10EE7563F9DD}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{468B7DA4-ACD2-433C-B427-6EBBEDC66C0D}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{5B49C0DB-70DF-47FD-BD71-4AC611233BF7}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [TCP Query User{2BD0439F-3311-4D9F-9BBA-10E16C451A05}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [UDP Query User{13086F03-DE71-45DF-AF97-277280FF1274}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{CDE30A19-BA90-4A70-9EB4-E9B94C8AA2F5}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{078B6199-E716-4C34-B435-3EBBAACE8B7D}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [TCP Query User{0736597A-09BA-4129-993C-0AC16F93DB7C}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [{A87F8A31-595F-4CDD-A597-AF8420ECF19B}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9E0DFA78-BC12-432B-952B-75BF817A97F3}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9361BC58-D409-41FA-8E74-9BD8F24C4C8D}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [{F0C2F079-4C18-4A1E-9DA6-53F0ADAFC2CA}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [UDP Query User{286DD88D-781C-424E-92F2-E1A1A5F46B41}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{D9565BE1-BFFC-4396-9435-ACB77B3C1432}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [{FF291C7B-9DAA-4DE9-BBAB-D97FF0F48EAD}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{E98DB818-D172-4A6C-B292-024A8CFA779F}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{F0C4884B-57A2-43E3-974B-3A8C7EC4BDE8}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{43B1CAB6-7106-4047-982D-AF0D1BCC5A97}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{C8D3F541-F7A8-4167-9AA1-C6F3256B0262}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{DB734E83-920A-4EF7-B438-D418FD1E1378}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [UDP Query User{8D1A7DCF-D811-435A-A386-354B513414DB}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{207A6B3F-35D1-4222-ADF8-97C1F650C30C}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{54EBD3FE-F0B4-4FBA-A686-A7E5B98F20B8}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [UDP Query User{215B3198-AB6B-4EA6-B713-BBF92E9839B0}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [TCP Query User{D3E38367-B106-42E9-849D-477DE719F56C}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [UDP Query User{307ADE24-B2D0-4731-BF0B-D3F1EE9CE14E}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [TCP Query User{04CB5980-EE71-4BFB-AFC5-C992E5D2744D}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [UDP Query User{C70F578E-4209-49E0-9883-A08B1FAEF9DB}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [TCP Query User{DCC7AE71-B6A6-4849-BDEA-9C89AD3062C7}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [UDP Query User{FF0BDD95-FD5F-4DBA-9211-3C56248459BF}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [{18FB8698-4A3D-4F81-A239-038070860FB6}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{694AB8BC-A6FC-489D-94B6-B0AE689E9264}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{41D8C949-7317-4B47-9EFC-F76F989B9BCF}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{0D42E7B5-7480-4C97-A4AA-D63B43C23275}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{D9684BD9-886A-4F2A-8153-30804C486863}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [TCP Query User{5BC1E969-8601-42B7-AE8D-C742CF2FF73C}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{70097FA6-6E0E-4A29-B12C-35FE8D0BC9AA}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [TCP Query User{CD7D8A20-57A8-4AC9-8A34-2C1ACD8A372A}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [UDP Query User{00E60597-F5B3-4389-BE8E-F6CE31868676}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{03C3E0E7-74D4-456C-B5E5-B936787F9330}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [UDP Query User{D4E00CD7-C9A6-4F56-92F0-E21039BFD900}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [TCP Query User{17AEE1C5-266E-4C3B-A643-8339C8E13AE6}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [UDP Query User{6F9B8528-626B-4919-9C17-DD0C5D65D867}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [{A7880436-9ADF-4204-BC98-04EE4BA458A2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{60A29CD6-CC59-45F3-8841-E004B67D1E8F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{811E418C-2619-4B31-A4E4-E96CAD9E0060}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{CB44E49C-7A43-4CFD-AA35-34E0D3FC4D09}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{FD1BD82F-A1BF-409F-A724-4314CC1251CB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{9AE61CBF-B605-48D4-A0E3-C4629072CFB7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{3B6B6AF6-84DA-4B72-964A-33652C19B3C0}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{01B65A4E-C4D8-4BAB-8EF0-C9A7A501D587}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Změna chování PC
Fix result of Farbar Recovery Scan Tool (x64) Version: 11-03-2025
Ran by Zbyse (12-03-2025 07:43:57) Run:1
Running from C:\Users\Zbyse\Desktop
Loaded Profiles: Zbyse
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fab-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fce-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {F33D43B9-204A-44B4-8308-188DEC964BE6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
C:\Users\Zbyse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [UDP Query User{F5062D17-AC66-463C-B42C-B3E83DFD09FC}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [TCP Query User{4FF1DA0B-B447-497C-BDA2-D166475F8B1A}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{5F71C097-994E-4D01-ABD4-A09A1759DE6D}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{1E6F2BAE-241D-4605-BF85-98F8327E0FA8}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{37A9844E-3C4C-4865-A4BE-3711C4C47D15}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{2BEF02A5-0E92-41D6-8CD3-86CB923D9C2A}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{B49601A7-E0A3-45C0-B8B3-08D832E57BAD}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{BBC745ED-B5F5-4B9D-B116-2A79B09D84FC}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{DCB57013-7E7E-46B3-8784-0E87791E01CE}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{36D0E6A5-0F2E-4B7F-AF46-20061B398087}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{0684B5CF-A2EC-40C9-B93C-FE0C647E795D}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{8D55E226-0B0B-42E2-8E91-462C32E78A44}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{E6C76674-2AAF-4318-A6DD-0C4DBBC83316}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{429AC320-BF8B-4EC6-97AC-B006C2D4F94E}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{51A085DF-1B57-4F19-873C-C6A4EA65307A}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [TCP Query User{900E9BFE-5ACC-4E56-AC3C-7122D4554686}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [{72A9F24F-D8FB-479E-B2EC-8B1B4F42C652}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{699D3457-8DFF-4684-8DBE-FF3B5A275F28}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [UDP Query User{656A8432-8B2F-4556-A72D-10EE7563F9DD}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{468B7DA4-ACD2-433C-B427-6EBBEDC66C0D}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{5B49C0DB-70DF-47FD-BD71-4AC611233BF7}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [TCP Query User{2BD0439F-3311-4D9F-9BBA-10E16C451A05}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [UDP Query User{13086F03-DE71-45DF-AF97-277280FF1274}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{CDE30A19-BA90-4A70-9EB4-E9B94C8AA2F5}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{078B6199-E716-4C34-B435-3EBBAACE8B7D}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [TCP Query User{0736597A-09BA-4129-993C-0AC16F93DB7C}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [{A87F8A31-595F-4CDD-A597-AF8420ECF19B}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9E0DFA78-BC12-432B-952B-75BF817A97F3}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9361BC58-D409-41FA-8E74-9BD8F24C4C8D}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [{F0C2F079-4C18-4A1E-9DA6-53F0ADAFC2CA}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [UDP Query User{286DD88D-781C-424E-92F2-E1A1A5F46B41}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{D9565BE1-BFFC-4396-9435-ACB77B3C1432}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [{FF291C7B-9DAA-4DE9-BBAB-D97FF0F48EAD}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{E98DB818-D172-4A6C-B292-024A8CFA779F}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{F0C4884B-57A2-43E3-974B-3A8C7EC4BDE8}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{43B1CAB6-7106-4047-982D-AF0D1BCC5A97}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{C8D3F541-F7A8-4167-9AA1-C6F3256B0262}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{DB734E83-920A-4EF7-B438-D418FD1E1378}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [UDP Query User{8D1A7DCF-D811-435A-A386-354B513414DB}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{207A6B3F-35D1-4222-ADF8-97C1F650C30C}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{54EBD3FE-F0B4-4FBA-A686-A7E5B98F20B8}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [UDP Query User{215B3198-AB6B-4EA6-B713-BBF92E9839B0}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [TCP Query User{D3E38367-B106-42E9-849D-477DE719F56C}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [UDP Query User{307ADE24-B2D0-4731-BF0B-D3F1EE9CE14E}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [TCP Query User{04CB5980-EE71-4BFB-AFC5-C992E5D2744D}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [UDP Query User{C70F578E-4209-49E0-9883-A08B1FAEF9DB}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [TCP Query User{DCC7AE71-B6A6-4849-BDEA-9C89AD3062C7}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [UDP Query User{FF0BDD95-FD5F-4DBA-9211-3C56248459BF}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [{18FB8698-4A3D-4F81-A239-038070860FB6}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{694AB8BC-A6FC-489D-94B6-B0AE689E9264}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{41D8C949-7317-4B47-9EFC-F76F989B9BCF}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{0D42E7B5-7480-4C97-A4AA-D63B43C23275}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{D9684BD9-886A-4F2A-8153-30804C486863}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [TCP Query User{5BC1E969-8601-42B7-AE8D-C742CF2FF73C}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{70097FA6-6E0E-4A29-B12C-35FE8D0BC9AA}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [TCP Query User{CD7D8A20-57A8-4AC9-8A34-2C1ACD8A372A}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [UDP Query User{00E60597-F5B3-4389-BE8E-F6CE31868676}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{03C3E0E7-74D4-456C-B5E5-B936787F9330}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [UDP Query User{D4E00CD7-C9A6-4F56-92F0-E21039BFD900}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [TCP Query User{17AEE1C5-266E-4C3B-A643-8339C8E13AE6}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [UDP Query User{6F9B8528-626B-4919-9C17-DD0C5D65D867}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [{A7880436-9ADF-4204-BC98-04EE4BA458A2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{60A29CD6-CC59-45F3-8841-E004B67D1E8F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{811E418C-2619-4B31-A4E4-E96CAD9E0060}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{CB44E49C-7A43-4CFD-AA35-34E0D3FC4D09}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{FD1BD82F-A1BF-409F-A724-4314CC1251CB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{9AE61CBF-B605-48D4-A0E3-C4629072CFB7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{3B6B6AF6-84DA-4B72-964A-33652C19B3C0}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{01B65A4E-C4D8-4BAB-8EF0-C9A7A501D587}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
EmptyTemp:
End
*****************
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd3b9fab-f3f1-11ea-bf73-7085c2c9ac09} => removed successfully
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd3b9fce-f3f1-11ea-bf73-7085c2c9ac09} => removed successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" Folder move:
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F33D43B9-204A-44B4-8308-188DEC964BE6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F33D43B9-204A-44B4-8308-188DEC964BE6}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984}" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Users\Zbyse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F5062D17-AC66-463C-B42C-B3E83DFD09FC}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4FF1DA0B-B447-497C-BDA2-D166475F8B1A}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5F71C097-994E-4D01-ABD4-A09A1759DE6D}C:\program files (x86)\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1E6F2BAE-241D-4605-BF85-98F8327E0FA8}C:\program files (x86)\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{37A9844E-3C4C-4865-A4BE-3711C4C47D15}F:\games\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2BEF02A5-0E92-41D6-8CD3-86CB923D9C2A}F:\games\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B49601A7-E0A3-45C0-B8B3-08D832E57BAD}F:\games\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BBC745ED-B5F5-4B9D-B116-2A79B09D84FC}F:\games\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DCB57013-7E7E-46B3-8784-0E87791E01CE}F:\games\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{36D0E6A5-0F2E-4B7F-AF46-20061B398087}F:\games\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0684B5CF-A2EC-40C9-B93C-FE0C647E795D}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8D55E226-0B0B-42E2-8E91-462C32E78A44}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E6C76674-2AAF-4318-A6DD-0C4DBBC83316}D:\hry\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{429AC320-BF8B-4EC6-97AC-B006C2D4F94E}D:\hry\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{51A085DF-1B57-4F19-873C-C6A4EA65307A}D:\hry\generation zero challenges\generationzero_f.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{900E9BFE-5ACC-4E56-AC3C-7122D4554686}D:\hry\generation zero challenges\generationzero_f.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{72A9F24F-D8FB-479E-B2EC-8B1B4F42C652}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{699D3457-8DFF-4684-8DBE-FF3B5A275F28}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{656A8432-8B2F-4556-A72D-10EE7563F9DD}D:\hry\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{468B7DA4-ACD2-433C-B427-6EBBEDC66C0D}D:\hry\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B49C0DB-70DF-47FD-BD71-4AC611233BF7}D:\hry\quake\winquake.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2BD0439F-3311-4D9F-9BBA-10E16C451A05}D:\hry\quake\winquake.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{13086F03-DE71-45DF-AF97-277280FF1274}D:\hry\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CDE30A19-BA90-4A70-9EB4-E9B94C8AA2F5}D:\hry\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{078B6199-E716-4C34-B435-3EBBAACE8B7D}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0736597A-09BA-4129-993C-0AC16F93DB7C}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A87F8A31-595F-4CDD-A597-AF8420ECF19B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9E0DFA78-BC12-432B-952B-75BF817A97F3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9361BC58-D409-41FA-8E74-9BD8F24C4C8D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0C2F079-4C18-4A1E-9DA6-53F0ADAFC2CA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{286DD88D-781C-424E-92F2-E1A1A5F46B41}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D9565BE1-BFFC-4396-9435-ACB77B3C1432}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FF291C7B-9DAA-4DE9-BBAB-D97FF0F48EAD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E98DB818-D172-4A6C-B292-024A8CFA779F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0C4884B-57A2-43E3-974B-3A8C7EC4BDE8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43B1CAB6-7106-4047-982D-AF0D1BCC5A97}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8D3F541-F7A8-4167-9AA1-C6F3256B0262}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB734E83-920A-4EF7-B438-D418FD1E1378}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8D1A7DCF-D811-435A-A386-354B513414DB}D:\ioquake3&ta\ioquake3.x86.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{207A6B3F-35D1-4222-ADF8-97C1F650C30C}D:\ioquake3&ta\ioquake3.x86.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{54EBD3FE-F0B4-4FBA-A686-A7E5B98F20B8}C:\supgam\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{215B3198-AB6B-4EA6-B713-BBF92E9839B0}C:\supgam\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D3E38367-B106-42E9-849D-477DE719F56C}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{307ADE24-B2D0-4731-BF0B-D3F1EE9CE14E}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{04CB5980-EE71-4BFB-AFC5-C992E5D2744D}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C70F578E-4209-49E0-9883-A08B1FAEF9DB}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DCC7AE71-B6A6-4849-BDEA-9C89AD3062C7}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FF0BDD95-FD5F-4DBA-9211-3C56248459BF}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{18FB8698-4A3D-4F81-A239-038070860FB6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{694AB8BC-A6FC-489D-94B6-B0AE689E9264}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{41D8C949-7317-4B47-9EFC-F76F989B9BCF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0D42E7B5-7480-4C97-A4AA-D63B43C23275}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D9684BD9-886A-4F2A-8153-30804C486863}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5BC1E969-8601-42B7-AE8D-C742CF2FF73C}C:\program files\blackmagic design\davinci resolve\resolve.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{70097FA6-6E0E-4A29-B12C-35FE8D0BC9AA}C:\program files\blackmagic design\davinci resolve\resolve.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CD7D8A20-57A8-4AC9-8A34-2C1ACD8A372A}C:\program files\blackmagic design\davinci resolve\fuscript.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{00E60597-F5B3-4389-BE8E-F6CE31868676}C:\program files\blackmagic design\davinci resolve\fuscript.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{03C3E0E7-74D4-456C-B5E5-B936787F9330}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D4E00CD7-C9A6-4F56-92F0-E21039BFD900}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{17AEE1C5-266E-4C3B-A643-8339C8E13AE6}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6F9B8528-626B-4919-9C17-DD0C5D65D867}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A7880436-9ADF-4204-BC98-04EE4BA458A2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{60A29CD6-CC59-45F3-8841-E004B67D1E8F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{811E418C-2619-4B31-A4E4-E96CAD9E0060}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CB44E49C-7A43-4CFD-AA35-34E0D3FC4D09}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD1BD82F-A1BF-409F-A724-4314CC1251CB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9AE61CBF-B605-48D4-A0E3-C4629072CFB7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3B6B6AF6-84DA-4B72-964A-33652C19B3C0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{01B65A4E-C4D8-4BAB-8EF0-C9A7A501D587}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 637350387 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 224332340 B
Windows/system/drivers => 37050137 B
Edge => 0 B
Chrome => 4231849884 B
Firefox => 382842660 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Zbyse => 161810720 B
RecycleBin => 2391552 B
EmptyTemp: => 5.3 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 12-03-2025 07:59:06)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 07:59:06 ====
Ran by Zbyse (12-03-2025 07:43:57) Run:1
Running from C:\Users\Zbyse\Desktop
Loaded Profiles: Zbyse
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fab-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\...\MountPoints2: {bd3b9fce-f3f1-11ea-bf73-7085c2c9ac09} - "F:\Setup.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {F33D43B9-204A-44B4-8308-188DEC964BE6} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984} => C:\Program Files (x86)\Google\GoogleUpdater\135.0.7023.0\updater.exe [5745760 2025-02-19] (Google LLC -> Google LLC)
C:\DumpStack.log.tmp
C:\Users\Zbyse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
FirewallRules: [UDP Query User{F5062D17-AC66-463C-B42C-B3E83DFD09FC}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [TCP Query User{4FF1DA0B-B447-497C-BDA2-D166475F8B1A}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{5F71C097-994E-4D01-ABD4-A09A1759DE6D}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{1E6F2BAE-241D-4605-BF85-98F8327E0FA8}C:\program files (x86)\far cry primal\bin\fcprimal.exe] => (Allow) C:\program files (x86)\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{37A9844E-3C4C-4865-A4BE-3711C4C47D15}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{2BEF02A5-0E92-41D6-8CD3-86CB923D9C2A}F:\games\far cry primal\bin\fcprimal.exe] => (Allow) F:\games\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{B49601A7-E0A3-45C0-B8B3-08D832E57BAD}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{BBC745ED-B5F5-4B9D-B116-2A79B09D84FC}F:\games\doom 3 bfg\doom3bfg.exe] => (Allow) F:\games\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{DCB57013-7E7E-46B3-8784-0E87791E01CE}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{36D0E6A5-0F2E-4B7F-AF46-20061B398087}F:\games\quake 3 arena\quake3\quake3.exe] => (Allow) F:\games\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{0684B5CF-A2EC-40C9-B93C-FE0C647E795D}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{8D55E226-0B0B-42E2-8E91-462C32E78A44}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{E6C76674-2AAF-4318-A6DD-0C4DBBC83316}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [TCP Query User{429AC320-BF8B-4EC6-97AC-B006C2D4F94E}D:\hry\doom 3 bfg\doom3bfg.exe] => (Allow) D:\hry\doom 3 bfg\doom3bfg.exe => No File
FirewallRules: [UDP Query User{51A085DF-1B57-4F19-873C-C6A4EA65307A}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [TCP Query User{900E9BFE-5ACC-4E56-AC3C-7122D4554686}D:\hry\generation zero challenges\generationzero_f.exe] => (Allow) D:\hry\generation zero challenges\generationzero_f.exe => No File
FirewallRules: [{72A9F24F-D8FB-479E-B2EC-8B1B4F42C652}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [{699D3457-8DFF-4684-8DBE-FF3B5A275F28}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7x64\steamwebhelper.exe => No File
FirewallRules: [UDP Query User{656A8432-8B2F-4556-A72D-10EE7563F9DD}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [TCP Query User{468B7DA4-ACD2-433C-B427-6EBBEDC66C0D}D:\hry\far cry primal\bin\fcprimal.exe] => (Allow) D:\hry\far cry primal\bin\fcprimal.exe => No File
FirewallRules: [UDP Query User{5B49C0DB-70DF-47FD-BD71-4AC611233BF7}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [TCP Query User{2BD0439F-3311-4D9F-9BBA-10E16C451A05}D:\hry\quake\winquake.exe] => (Allow) D:\hry\quake\winquake.exe => No File
FirewallRules: [UDP Query User{13086F03-DE71-45DF-AF97-277280FF1274}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [TCP Query User{CDE30A19-BA90-4A70-9EB4-E9B94C8AA2F5}D:\hry\quake 3 arena\quake3\quake3.exe] => (Allow) D:\hry\quake 3 arena\quake3\quake3.exe => No File
FirewallRules: [UDP Query User{078B6199-E716-4C34-B435-3EBBAACE8B7D}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [TCP Query User{0736597A-09BA-4129-993C-0AC16F93DB7C}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe] => (Allow) C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe => No File
FirewallRules: [{A87F8A31-595F-4CDD-A597-AF8420ECF19B}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9E0DFA78-BC12-432B-952B-75BF817A97F3}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013Game.exe => No File
FirewallRules: [{9361BC58-D409-41FA-8E74-9BD8F24C4C8D}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [{F0C2F079-4C18-4A1E-9DA6-53F0ADAFC2CA}] => (Allow) D:\HRY\Farming Simulator 2013\FarmingSimulator2013.exe => No File
FirewallRules: [UDP Query User{286DD88D-781C-424E-92F2-E1A1A5F46B41}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [TCP Query User{D9565BE1-BFFC-4396-9435-ACB77B3C1432}D:\programy\µtorrent\utorrent.exe] => (Allow) D:\programy\µtorrent\utorrent.exe => No File
FirewallRules: [{FF291C7B-9DAA-4DE9-BBAB-D97FF0F48EAD}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{E98DB818-D172-4A6C-B292-024A8CFA779F}] => (Allow) D:\Programy\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{F0C4884B-57A2-43E3-974B-3A8C7EC4BDE8}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{43B1CAB6-7106-4047-982D-AF0D1BCC5A97}] => (Allow) D:\Programy\Steam\Steam.exe => No File
FirewallRules: [{C8D3F541-F7A8-4167-9AA1-C6F3256B0262}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [{DB734E83-920A-4EF7-B438-D418FD1E1378}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => No File
FirewallRules: [UDP Query User{8D1A7DCF-D811-435A-A386-354B513414DB}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{207A6B3F-35D1-4222-ADF8-97C1F650C30C}D:\ioquake3&ta\ioquake3.x86.exe] => (Allow) D:\ioquake3&ta\ioquake3.x86.exe => No File
FirewallRules: [TCP Query User{54EBD3FE-F0B4-4FBA-A686-A7E5B98F20B8}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [UDP Query User{215B3198-AB6B-4EA6-B713-BBF92E9839B0}C:\supgam\quake 3 arena\quake3\quake3.exe] => (Allow) C:\supgam\quake 3 arena\quake3\quake3.exe () [File not signed]
FirewallRules: [TCP Query User{D3E38367-B106-42E9-849D-477DE719F56C}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [UDP Query User{307ADE24-B2D0-4731-BF0B-D3F1EE9CE14E}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe => No File
FirewallRules: [TCP Query User{04CB5980-EE71-4BFB-AFC5-C992E5D2744D}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [UDP Query User{C70F578E-4209-49E0-9883-A08B1FAEF9DB}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe => No File
FirewallRules: [TCP Query User{DCC7AE71-B6A6-4849-BDEA-9C89AD3062C7}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [UDP Query User{FF0BDD95-FD5F-4DBA-9211-3C56248459BF}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe => No File
FirewallRules: [{18FB8698-4A3D-4F81-A239-038070860FB6}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\Zoom.exe => No File
FirewallRules: [{694AB8BC-A6FC-489D-94B6-B0AE689E9264}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [{41D8C949-7317-4B47-9EFC-F76F989B9BCF}] => (Allow) C:\Users\Zbyse\AppData\Roaming\Zoom\bin\airhost.exe => No File
FirewallRules: [TCP Query User{0D42E7B5-7480-4C97-A4AA-D63B43C23275}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [UDP Query User{D9684BD9-886A-4F2A-8153-30804C486863}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe] => (Allow) C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe => No File
FirewallRules: [TCP Query User{5BC1E969-8601-42B7-AE8D-C742CF2FF73C}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [UDP Query User{70097FA6-6E0E-4A29-B12C-35FE8D0BC9AA}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe => No File
FirewallRules: [TCP Query User{CD7D8A20-57A8-4AC9-8A34-2C1ACD8A372A}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [UDP Query User{00E60597-F5B3-4389-BE8E-F6CE31868676}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe => No File
FirewallRules: [TCP Query User{03C3E0E7-74D4-456C-B5E5-B936787F9330}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [UDP Query User{D4E00CD7-C9A6-4F56-92F0-E21039BFD900}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe => No File
FirewallRules: [TCP Query User{17AEE1C5-266E-4C3B-A643-8339C8E13AE6}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [UDP Query User{6F9B8528-626B-4919-9C17-DD0C5D65D867}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe] => (Allow) C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe => No File
FirewallRules: [{A7880436-9ADF-4204-BC98-04EE4BA458A2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe => No File
FirewallRules: [{60A29CD6-CC59-45F3-8841-E004B67D1E8F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe => No File
FirewallRules: [{811E418C-2619-4B31-A4E4-E96CAD9E0060}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe => No File
FirewallRules: [{CB44E49C-7A43-4CFD-AA35-34E0D3FC4D09}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe => No File
FirewallRules: [{FD1BD82F-A1BF-409F-A724-4314CC1251CB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe => No File
FirewallRules: [{9AE61CBF-B605-48D4-A0E3-C4629072CFB7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe => No File
FirewallRules: [{3B6B6AF6-84DA-4B72-964A-33652C19B3C0}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{01B65A4E-C4D8-4BAB-8EF0-C9A7A501D587}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe => No File
EmptyTemp:
End
*****************
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd3b9fab-f3f1-11ea-bf73-7085c2c9ac09} => removed successfully
HKU\S-1-5-21-2494957700-3276753658-3270058956-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bd3b9fce-f3f1-11ea-bf73-7085c2c9ac09} => removed successfully
"C:\WINDOWS\system32\GroupPolicy\Machine" Folder move:
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F33D43B9-204A-44B4-8308-188DEC964BE6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F33D43B9-204A-44B4-8308-188DEC964BE6}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem135.0.7023.0{F9695E8E-1069-4123-9414-345ED498F984}" => removed successfully
Could not move "C:\DumpStack.log.tmp" => Scheduled to move on reboot.
C:\Users\Zbyse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{F5062D17-AC66-463C-B42C-B3E83DFD09FC}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{4FF1DA0B-B447-497C-BDA2-D166475F8B1A}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5F71C097-994E-4D01-ABD4-A09A1759DE6D}C:\program files (x86)\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{1E6F2BAE-241D-4605-BF85-98F8327E0FA8}C:\program files (x86)\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{37A9844E-3C4C-4865-A4BE-3711C4C47D15}F:\games\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2BEF02A5-0E92-41D6-8CD3-86CB923D9C2A}F:\games\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{B49601A7-E0A3-45C0-B8B3-08D832E57BAD}F:\games\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{BBC745ED-B5F5-4B9D-B116-2A79B09D84FC}F:\games\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{DCB57013-7E7E-46B3-8784-0E87791E01CE}F:\games\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{36D0E6A5-0F2E-4B7F-AF46-20061B398087}F:\games\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0684B5CF-A2EC-40C9-B93C-FE0C647E795D}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8D55E226-0B0B-42E2-8E91-462C32E78A44}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{E6C76674-2AAF-4318-A6DD-0C4DBBC83316}D:\hry\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{429AC320-BF8B-4EC6-97AC-B006C2D4F94E}D:\hry\doom 3 bfg\doom3bfg.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{51A085DF-1B57-4F19-873C-C6A4EA65307A}D:\hry\generation zero challenges\generationzero_f.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{900E9BFE-5ACC-4E56-AC3C-7122D4554686}D:\hry\generation zero challenges\generationzero_f.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{72A9F24F-D8FB-479E-B2EC-8B1B4F42C652}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{699D3457-8DFF-4684-8DBE-FF3B5A275F28}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{656A8432-8B2F-4556-A72D-10EE7563F9DD}D:\hry\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{468B7DA4-ACD2-433C-B427-6EBBEDC66C0D}D:\hry\far cry primal\bin\fcprimal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{5B49C0DB-70DF-47FD-BD71-4AC611233BF7}D:\hry\quake\winquake.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{2BD0439F-3311-4D9F-9BBA-10E16C451A05}D:\hry\quake\winquake.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{13086F03-DE71-45DF-AF97-277280FF1274}D:\hry\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CDE30A19-BA90-4A70-9EB4-E9B94C8AA2F5}D:\hry\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{078B6199-E716-4C34-B435-3EBBAACE8B7D}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0736597A-09BA-4129-993C-0AC16F93DB7C}C:\program files\signalyst\hqplayer desktop 3\hqplayer-desktop.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A87F8A31-595F-4CDD-A597-AF8420ECF19B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9E0DFA78-BC12-432B-952B-75BF817A97F3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9361BC58-D409-41FA-8E74-9BD8F24C4C8D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0C2F079-4C18-4A1E-9DA6-53F0ADAFC2CA}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{286DD88D-781C-424E-92F2-E1A1A5F46B41}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D9565BE1-BFFC-4396-9435-ACB77B3C1432}D:\programy\µtorrent\utorrent.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FF291C7B-9DAA-4DE9-BBAB-D97FF0F48EAD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E98DB818-D172-4A6C-B292-024A8CFA779F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0C4884B-57A2-43E3-974B-3A8C7EC4BDE8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43B1CAB6-7106-4047-982D-AF0D1BCC5A97}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C8D3F541-F7A8-4167-9AA1-C6F3256B0262}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DB734E83-920A-4EF7-B438-D418FD1E1378}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{8D1A7DCF-D811-435A-A386-354B513414DB}D:\ioquake3&ta\ioquake3.x86.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{207A6B3F-35D1-4222-ADF8-97C1F650C30C}D:\ioquake3&ta\ioquake3.x86.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{54EBD3FE-F0B4-4FBA-A686-A7E5B98F20B8}C:\supgam\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{215B3198-AB6B-4EA6-B713-BBF92E9839B0}C:\supgam\quake 3 arena\quake3\quake3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D3E38367-B106-42E9-849D-477DE719F56C}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{307ADE24-B2D0-4731-BF0B-D3F1EE9CE14E}C:\users\zbyse\appdata\local\tidal\app-2.21.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{04CB5980-EE71-4BFB-AFC5-C992E5D2744D}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{C70F578E-4209-49E0-9883-A08B1FAEF9DB}C:\users\zbyse\appdata\local\tidal\app-2.23.0\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{DCC7AE71-B6A6-4849-BDEA-9C89AD3062C7}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FF0BDD95-FD5F-4DBA-9211-3C56248459BF}C:\users\zbyse\appdata\local\tidal\app-2.24.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{18FB8698-4A3D-4F81-A239-038070860FB6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{694AB8BC-A6FC-489D-94B6-B0AE689E9264}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{41D8C949-7317-4B47-9EFC-F76F989B9BCF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0D42E7B5-7480-4C97-A4AA-D63B43C23275}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D9684BD9-886A-4F2A-8153-30804C486863}C:\supgam\spintires 3.3.2016-komplet+cz+mapy+auta\spintires.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{5BC1E969-8601-42B7-AE8D-C742CF2FF73C}C:\program files\blackmagic design\davinci resolve\resolve.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{70097FA6-6E0E-4A29-B12C-35FE8D0BC9AA}C:\program files\blackmagic design\davinci resolve\resolve.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CD7D8A20-57A8-4AC9-8A34-2C1ACD8A372A}C:\program files\blackmagic design\davinci resolve\fuscript.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{00E60597-F5B3-4389-BE8E-F6CE31868676}C:\program files\blackmagic design\davinci resolve\fuscript.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{03C3E0E7-74D4-456C-B5E5-B936787F9330}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{D4E00CD7-C9A6-4F56-92F0-E21039BFD900}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{17AEE1C5-266E-4C3B-A643-8339C8E13AE6}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{6F9B8528-626B-4919-9C17-DD0C5D65D867}C:\users\zbyse\appdata\local\tidal\app-2.34.2\tidal.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A7880436-9ADF-4204-BC98-04EE4BA458A2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{60A29CD6-CC59-45F3-8841-E004B67D1E8F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{811E418C-2619-4B31-A4E4-E96CAD9E0060}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CB44E49C-7A43-4CFD-AA35-34E0D3FC4D09}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FD1BD82F-A1BF-409F-A724-4314CC1251CB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9AE61CBF-B605-48D4-A0E3-C4629072CFB7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3B6B6AF6-84DA-4B72-964A-33652C19B3C0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{01B65A4E-C4D8-4BAB-8EF0-C9A7A501D587}" => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 637350387 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 224332340 B
Windows/system/drivers => 37050137 B
Edge => 0 B
Chrome => 4231849884 B
Firefox => 382842660 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 0 B
Zbyse => 161810720 B
RecycleBin => 2391552 B
EmptyTemp: => 5.3 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 12-03-2025 07:59:06)
C:\DumpStack.log.tmp => Could not move
==== End of Fixlog 07:59:06 ====
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Změna chování PC
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Změna chování PC
Děkuji.
Popravdě se zrychlilo načítání programů a práce v Chromu - asi vyčištěním cache...ale nabíhání WIN10 je stále dlouhé. Nemáte nějaký nápad, jak to urychlit?
Děkuji.
Popravdě se zrychlilo načítání programů a práce v Chromu - asi vyčištěním cache...ale nabíhání WIN10 je stále dlouhé. Nemáte nějaký nápad, jak to urychlit?
Děkuji.
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Změna chování PC
Do přík. řádku napište:
V záložkách "Služby" a "Po spuštění" odstraňte zatržítka u všech ne-microsoftích položek (s vyjímkou ovladačů a antiviru). Nastavení uožte a restartujte PC.
a odentrujtemsconfig
V záložkách "Služby" a "Po spuštění" odstraňte zatržítka u všech ne-microsoftích položek (s vyjímkou ovladačů a antiviru). Nastavení uožte a restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Změna chování PC
Provedeno a je to lepší.
Moc Vám děkuji za pomoc!
Moc Vám děkuji za pomoc!
-
Rudy
- Site Admin
- Příspěvky: 119310
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Změna chování PC
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?