Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-02-2022 01
Ran by DetialStav (16-02-2022 06:43:38)
Running from C:\Users\DetialStav\Desktop
Microsoft Windows 10 Home Version 21H2 19044.1526 (X64) (2021-01-22 14:45:27)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-696771267-3938895601-123810913-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-696771267-3938895601-123810913-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-696771267-3938895601-123810913-1000 - Limited - Disabled) => C:\Users\defaultuser0
DetialStav (S-1-5-21-696771267-3938895601-123810913-1001 - Administrator - Enabled) => C:\Users\DetialStav
Guest (S-1-5-21-696771267-3938895601-123810913-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-696771267-3938895601-123810913-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Autodesk DWG TrueView 2022 - English (HKLM\...\{D7A6621A-1A6A-3DAC-BBD2-9EB566035195}) (Version: 24.1.51.0 - Autodesk, Inc.)
Avira Privacy Pal (HKLM-x32\...\{F2BC8305-DFBE-4C02-A906-9BBD8EE299A3}_is1) (Version: 1.9.1.1886 - Avira Operations GmbH & Co. KG)
Beurer HealthManager (HKLM-x32\...\{C4CB9A23-A813-48B7-851E-140F3AE3F8AD}) (Version: 3.13.1.0 - Název společnosti:) Hidden
Beurer HealthManager (HKLM-x32\...\Beurer HealthManager) (Version: 3.13.1.0 - Název společnosti:)
BorrowCD 4.0.5 (HKLM-x32\...\BorrowCD4_is1) (Version: 4.0.5 - UFO & XTreem development)
Canon iP4600 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4600_series) (Version:  - )
Canon MF Scan Utility (HKLM-x32\...\Canon_MF_Scan_Utility) (Version: 1.10.0.0 - CANON INC.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
CardioExpert (HKLM-x32\...\{E17C4E04-13C0-400B-91FC-891A00A9BF58}) (Version: 2.20.35 - beurer)
CCleaner (HKLM\...\CCleaner) (Version: 5.89 - Piriform)
dm CEWE fotosvet (HKLM-x32\...\dm CEWE fotosvet) (Version: 7.1.4 - CEWE Stiftung u Co. KGaA)
eObčanka (HKLM\...\{45F6BE7F-4C79-4E99-A6C8-63919DFF6F87}) (Version: 3.1.1.19123 - MONET+, a.s. pro Ministerstvo vnitra České republiky)
Flipper Graph Control (HKLM-x32\...\FlpGrfCtrl) (Version: 2.80 - ProWorks Corporation)
FORM studio (HKLM-x32\...\FSCZ_is1) (Version:  - KASTNER software s.r.o.)
FormApps Signing Extension (HKLM-x32\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
FormatFactory 4.4.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.0.0 - Free Time)
Free RAR Extract Frog (HKLM-x32\...\Free RAR Extract Frog) (Version: 3.20 - Philipp Winterberg)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 98.0.4758.82 - Google LLC)
HP CASL Framework (HKLM-x32\...\{5094249B-9542-4536-AE76-B769EE085C99}) (Version: 7.0.5.1 - HP)
HP DeskJet 3700 series Nápověda (HKLM-x32\...\{295D0212-82EF-4A9B-9523-754A430DE721}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP PC Hardware Diagnostics Windows (HKLM-x32\...\{02E639C2-2C8A-4A55-8DFF-43666B46E8F3}) (Version: 1.5.6.0 - HP Inc.)
HP Photo Creations (HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\HP Photo Creations) (Version: 1.0.0.22192 - HP)
HP Support Solutions Framework (HKLM-x32\...\{6E46D147-D977-4034-BEE6-B2EB5A4BE2E3}) (Version: 12.18.34.21 - HP Inc.)
HWiNFO64 Version 6.04 (HKLM\...\HWiNFO64_is1) (Version: 6.04 - Martin Malík - REALiX)
iCloud Outlook (HKLM\...\{F054257C-600A-4918-B730-F6829E491781}) (Version: 13.0.0.201 - Apple Inc.)
Intel Driver && Support Assistant (HKLM-x32\...\{9E0D27E1-B7C9-4D9E-BADF-67CC919A9EAC}) (Version: 21.7.50.3 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{88B98508-2D8F-46F1-90AD-557BE40C7067}) (Version: 2.4.07642 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.4.11000.6436 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5070 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00002120-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.120.2.1 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{60212f27-7b67-4ebb-bb56-547d825dc13f}) (Version: 21.7.50.3 - Intel)
Intel® Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Kontrola stavu osobního počítače s Windows (HKLM\...\{D18FE9D2-2F54-4C68-A2DE-A59D4A80A9BC}) (Version: 3.1.2109.29003 - Microsoft Corporation)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.10.26.0 - Lenovo Group Ltd.)
LibreOffice 7.1 Help Pack (Czech) (HKLM\...\{FCFEBF70-63DA-4557-8121-C720C093DF21}) (Version: 7.1.1.2 - The Document Foundation)
LibreOffice 7.1.2.2 (HKLM\...\{07426A34-E0CD-4EC4-843B-F7A47C7BC835}) (Version: 7.1.2.2 - The Document Foundation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.50 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29112 (HKLM-x32\...\{0f770e99-3916-4b0c-8f9b-83822826bcbf}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation)
MKVToolNix 62.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 62.0.0 - Moritz Bunkus)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 97.0 (x64 cs)) (Version: 97.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 97.0.0.8068 - Mozilla)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.0 - pdfforge GmbH)
PROFIT 2022.01 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version:  - LPsoft)
Program Půjčovna (HKLM-x32\...\Program Pujcovna_is1) (Version:  - www.programpujcovna.cz)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.28.615.2018 - Realtek)
RTS Stavitel+ 2015 (HKLM-x32\...\RTS Stavitel +_is1) (Version: 2015 - RTS, a.s.)
Signer 5.2 (HKLM-x32\...\{A3516568-BFF3-43C0-84A6-ABA553D12887}) (Version: 5.2 - Asseco Central Europe, a. s.)
Sticky Password 8.2.2.11 (HKLM-x32\...\Sticky Password_is1) (Version: 8.2 - Lamantine Software)
StormWare GLX DEMO (HKLM-x32\...\{B9BD13BA-13DB-4D6A-A2AC-C5D1C1FE2853}) (Version: 5.1.11500.50 - StormWare)
STORMWARE PDF Printer 10.1.0.1871 (HKLM\...\STORMWARE PDF Printer_is1) (Version: 10.1.0.1871 - STORMWARE)
STORMWARE POHODA CZ Premium (HKLM-x32\...\{03A0D93E-D1FE-4745-A42E-3C34A816EFCB}) (Version: 11700.156 - STORMWARE)
StormWare Tax CZ DEMO (HKLM-x32\...\{280740A2-ADA0-490A-A3B7-8785C26085B8}) (Version: 5.1.6401.22 - StormWare)
Studie vylepšování produktu HP DeskJet 3700 series (HKLM\...\{6AAADA27-F5F3-439F-86BA-9B01548DE34C}) (Version: 40.12.1161.1896 - HP Inc.)
Sweet Home 3D version 5.4 (HKLM\...\Sweet Home 3D_is1) (Version: 5.4 - eTeks)
Tenda Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.12.0 - Tenda)
Teta CEWE fotosvet (HKLM-x32\...\Teta CEWE fotosvet) (Version: 7.1.5 - CEWE Stiftung u Co. KGaA)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
Vectr 0.1.16 (only current user) (HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\55a00374-b784-5618-85d4-8365e83580f0) (Version: 0.1.16 - Vectr Labs)
WinUtilities 6.2 (HKLM-x32\...\WinUtilities) (Version: 6.2 - YL Software)
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{D948C85E-9164-4C8A-834D-D9F75A974B20}) (Version: 40.12.1161.1896 - HP Inc.)

Packages:
=========
AC Datovka Lite -> C:\Program Files\WindowsApps\58916B58.DatovkaLite_1.0.0.38_neutral__4n7w5evdhemmt [2016-10-02] (AutoCont CZ a.s.)
AutoCAD Mobile -> C:\Program Files\WindowsApps\89006A2E.AutoCAD360_8.17.0.0_x64__tf1gferkr813w [2022-02-04] (Autodesk Inc.)
BreeZip -> C:\Program Files\WindowsApps\3138AweZip.AweZip_1.4.8.0_x86__ffd303wmbhcjt [2021-12-13] (BreeZip) [MS Ad]
CADReader International -> C:\Program Files\WindowsApps\9912df09.CADReaderInternational_1.8.9.0_x86__p41zx96v6k45t [2021-10-20] (北京广联达云图梦想科技有限公司)
Canon Office Printer Utility -> C:\Program Files\WindowsApps\34791E63.CanonOfficePrinterUtility_12.7.0.0_x64__6e5tt8cgb93ep [2020-10-14] (Canon Inc.)
CorelCAD 2021 -> C:\Program Files\WindowsApps\CorelCorporation.63710AB63BA4C_21.2.3521.0_x64__wbjqpk9xt50t4 [2021-11-22] (Corel Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.11.277.0_x64__rz1tebttyb220 [2022-01-21] (Dolby Laboratories)
Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20900.902.0_x64__rz1tebttyb220 [2021-04-19] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-09-23] (Microsoft Corporation)
Drawboard PDF -> C:\Program Files\WindowsApps\DRAWBOARD.DRAWBOARDPDF_6.10.5.0_x64__gqbn7fs4pywxm [2022-02-14] (Drawboard)
Fast Player for DVD -> C:\Program Files\WindowsApps\VirtualPulse.FastPlayerforDVD_1.203.42.0_x64__nh7p8cqfc4t04 [2021-12-27] (Virtual Pulse)
FastZip: Zip, RAR & 7Z Extractor -> C:\Program Files\WindowsApps\5259FreeSoftwareApps.FastZipZipRAR7ZExtractor_1.1.14.0_x64__nzrphq7phantj [2022-01-19] (Free Software Apps)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_134.1.221.0_x64__v10z8vjag6ke6 [2022-01-27] (HP Inc.)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_13.0.201.0_x86__nzyj5cx40ttqa [2021-12-03] (Apple Inc.) [Startup Task]
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2112.10.0_x64__k1h2ywk1493x8 [2022-01-19] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-01-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-01-22] (Microsoft Corporation) [MS Ad]
PDF Viewer and Reader -> C:\Program Files\WindowsApps\22450.PDFViewerandReader_1.5.0.0_x64__0aqw1zw0x2snt [2022-01-19] (韵华软件)
RAR Opener -> C:\Program Files\WindowsApps\DeviceDoctor.RAROpener_1.3.48.0_x64__mkdtfchztkfbm [2022-01-19] (Tiny Opener)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.27.254.0_x64__dt26b99r8h8gj [2021-10-06] (Realtek Semiconductor Corp)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-30] (Microsoft Corporation)
Synaptics TouchPad -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynHPConsumerDApp_19005.35054.0.0_x64__807d65c4rvak2 [2020-09-21] (Synaptics Incorporated)
Video Maker - VideoShow -> C:\Program Files\WindowsApps\39691Videopix.VideoMaker-VideoShow_1.1.70.0_x64__dxz7h1qnd1pge [2021-12-13] (Videopix)
Word Mobile -> C:\Program Files\WindowsApps\Microsoft.Office.Word_16001.14326.20784.0_x64__8wekyb3d8bbwe [2022-02-09] (Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-696771267-3938895601-123810913-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel)
CustomCLSID: HKU\S-1-5-21-696771267-3938895601-123810913-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2022 - English\dwgviewr.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-696771267-3938895601-123810913-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2022 - English\en-US\dwgviewrficn.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-696771267-3938895601-123810913-1001_Classes\CLSID\{7BD33735-5E1E-44FE-B677-C71578F98B9F} -> [iCloud Drive] => C:\Users\DetialStav\iCloudDrive [2021-12-03 11:18]
CustomCLSID: HKU\S-1-5-21-696771267-3938895601-123810913-1001_Classes\CLSID\{85DC512A-82FE-44AC-88F7-8E00813253AD} -> [Fotky na iCloudu] => C:\Users\DetialStav\Pictures\iCloud Photos\Photos [2021-12-03 11:18]
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2021-01-29] (Autodesk, Inc. -> Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2021-01-29] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2021-04-13 12:36 - 2021-04-13 12:36 - 005745664 ____C () [File not signed] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module.dll
2022-02-15 08:32 - 2022-02-15 08:32 - 000160256 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\2b5d1b4e110ba35279211045bca67616\BRIDGECommon.ni.dll
2022-02-15 08:33 - 2022-02-15 08:33 - 000120832 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\a9c496d6c136889659e5a47c92785d80\BridgeExtension.ni.dll
2022-02-15 08:33 - 2022-02-15 08:33 - 000348160 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\80bd0c29f35658ed2897f913286359a4\CleanStartController.ni.dll
2017-06-09 05:59 - 2013-10-04 08:42 - 000210944 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\STORMWARE\PDF Printer\Ports\STORMWARE\bzpdf.dll
2017-01-19 17:25 - 2009-05-01 11:51 - 001069056 ____C (Cisco Systems, Inc.) [File not signed] C:\Program Files (x86)\Tenda\Common\CiscoEapFast.dll
2022-02-15 08:33 - 2022-02-15 08:33 - 000801792 _____ (CodePlex Community) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Microsoft.Wb2e8627a#\72afd32fad5a2feac111da73aef266e5\Microsoft.Win32.TaskScheduler.ni.dll
2022-02-15 08:33 - 2022-02-15 08:33 - 000134656 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\5258780f0c459d9f0c3a2fe7d0d4a23d\CommonPortable.ni.dll
2018-05-03 18:39 - 2018-05-03 18:39 - 000117248 _____ (pdfforge GmbH) [File not signed] C:\WINDOWS\System32\pdfcmon.dll
2021-03-24 18:16 - 2021-03-24 18:16 - 000073728 _____ (Python Software Foundation) [File not signed] C:\Program Files\LibreOffice\program\python-core-3.8.8\lib\_socket.pyd
2021-03-24 18:16 - 2021-03-24 18:16 - 000020992 _____ (Python Software Foundation) [File not signed] C:\Program Files\LibreOffice\program\python-core-3.8.8\lib\select.pyd
2021-05-21 14:04 - 2021-05-21 14:04 - 000130048 ____C (Sam Grogan) [File not signed] [File is in use] C:\Program Files (x86)\Intel\Driver and Support Assistant\NotifyIconWin32.dll
2021-03-24 19:49 - 2021-03-24 19:49 - 000476160 _____ (The Document Foundation) [File not signed] C:\Program Files\LibreOffice\program\pyuno.pyd

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========


==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2018-02-20 16:34 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-696771267-3938895601-123810913-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-696771267-3938895601-123810913-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\DetialStav\Pictures\AB35F813-EB7B-45DD-BEA4-4FA381C5AE2F.jpeg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "USB Gamepad"
HKLM\...\StartupApproved\Run32: => "USB Gamepad"
HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\StartupApproved\Run: => "OneDriveSetup"
HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\StartupApproved\Run: => "StickyPassword"
HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\StartupApproved\Run: => "electron.app.Honey Miner"
HKU\S-1-5-21-696771267-3938895601-123810913-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{42B6459A-544E-4C02-B445-950E123A3B61}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{A3035E39-F3E8-4EB0-9A8A-E144C9952082}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4BF8DD9F-F7FD-4FAB-957D-E2D01E70310F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D1CFD65D-52D8-42CB-AACE-D89A45DD3926}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{BD2D7751-196D-405E-AD80-978EE0C4E62E}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{1CE2B8B4-475C-4EF8-80E3-59885CD4F1DF}] => (Allow) C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{C64D5578-7B3B-44CE-ACC1-57AF1CA3CA88}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{718B92B5-8EF8-41EF-8EE6-D90B0D561C4C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{EA515DD2-AD7B-422B-8025-AC8A7996F759}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{5928D87B-4619-4FE3-9F2D-B01BB629E9C9}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{36CCD0F2-E79B-4FE6-ADDB-570ED465FE09}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{AAEB96ED-D022-49D6-A53E-60F6EACF9567}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{0BE22F3B-1803-47AB-8AD4-793EE81A05B3}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{1B97E084-9C4D-49A5-B9D9-EFBE87D51A57}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{47B0F018-724C-4804-B5D8-763F6C1CFB5D}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [{18223FFA-A8E1-485B-9880-FD68D7D4910E}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [{F3A8C2B6-B6D6-4394-913B-82102F2B4D52}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{4CC1BE2B-2C95-4FE4-8C5B-4248C23C71CA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{866ECC03-0E13-4CAD-A41E-A2A8193131DA}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{874888EE-EB47-4932-BFCF-B35C39BF264A}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5702392F-96D6-46EF-9DBC-F1039A9C92C5}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{C81B38B9-EACE-446D-A3E2-8954B4DA6E28}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{0A94298C-ED4B-487C-979B-14C29DD1D0E9}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{0ACCA68F-1CAC-4B49-A413-6DBD24DD739A}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{6CFED497-ED28-4F12-9F9E-5CF6C0633CB1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{3610A386-2B14-4172-9295-A791FA040069}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{BED0B751-976D-47AF-B801-A587FF09EACB}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{ADD61008-2384-4777-BE3C-0532E47E220F}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{C1AF19BC-ECE4-418D-A2A9-79D0A8E4DC73}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{960D9E25-37FD-4C36-B5C9-504371C5EF64}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1751D7E-6300-4007-BEB7-BFD503638E93}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0C7FF04E-8312-40F9-A230-7B11DD9BA3AC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{872EE36F-DB36-4FFF-BD22-64D9CFC3D953}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{835F5ABE-8D80-4AF0-9387-5C3EF2689F74}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

15-02-2022 09:05:54 Naplánovaný kontrolní bod
16-02-2022 06:15:51 Restore Point Created by FRST

==================== Faulty Device Manager Devices ============

Name: MF642C/643C/644C
Description: MF642C/643C/644C
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (02/16/2022 06:22:39 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-LDKMV3C$ přes https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Wed, 16 Feb 2022 05:22:37 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6b290267-d21e-44c4-8739-1182f7fc03ea

Metoda: GET(890ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (02/16/2022 06:16:01 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (02/16/2022 06:15:51 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
   Shromažďování dat modulu pro zápis

Kontext:
   ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
   Název modulu pro zápis: System Writer
   ID instance modulu pro zápis: {5a30253f-2d06-4ddb-955d-bb28462bfbe0}

Error: (02/15/2022 09:06:01 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (02/14/2022 09:24:10 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Bubbles.scr verze 10.0.19041.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2e20

Čas spuštění: 01d8217c09875656

Čas ukončení: 2155

Cesta k aplikaci: C:\Windows\System32\Bubbles.scr

ID hlášení: 52234133-c81a-4c71-bb01-64be8fc06421

Úplný název balíčku s chybou: 

ID aplikace relativní podle balíčku s chybou: 

Typ zablokování: Unknown

Error: (02/11/2022 07:42:21 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-LDKMV3C$ přes https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 11 Feb 2022 06:42:11 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 8ba9df87-3c35-4299-8b0f-7b62a145b387

Metoda: GET(31140ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (02/11/2022 07:13:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (02/11/2022 07:10:20 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-LDKMV3C$ přes https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep se nepovedla:

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 11 Feb 2022 06:10:19 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 811f232f-af19-4c6c-b51c-345c1e89178f

Metoda: GET(42828ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)


System errors:
=============
Error: (02/16/2022 06:19:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-LDKMV3C)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/16/2022 06:15:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (02/16/2022 06:15:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService byla neočekávaně ukončena. Tento stav nastal již 2krát.

Error: (02/16/2022 06:15:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Interface Foundation Service byla neočekávaně ukončena. Tento stav nastal již 2krát.

Error: (02/16/2022 06:15:44 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba HP Support Solutions Framework Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/16/2022 06:15:44 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP JumpStart Bridge byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (02/16/2022 06:15:44 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Driver & Support Assistant Updater byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (02/16/2022 06:15:44 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) PROSet/Wireless Zero Configuration Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2022-02-15 10:43:19
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08C5103A-AD39-4108-9837-11E282747AC4}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-15 07:42:45
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {32C63C63-7052-4490-8DDB-A262DBDDC1EE}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-15 06:31:05
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FA9DCDA2-C955-4B5E-80E3-8D8317167145}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-15 05:59:00
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2896AFD7-9EB7-4514-97C9-3BB4B8B4197B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2022-02-14 10:13:11
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0D22A5F8-22D9-477F-9896-57337A9D94EC}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
﻿Event[0]:

Date: 2022-02-16 05:45:35
Description: 
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací: 
Předchozí verze bezpečnostních informací: 1.359.227.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.18900.3
Kód chyby: 0x80072f8f
Popis chyby: Došlo k chybě zabezpečení. 

==================== Memory info =========================== 

BIOS: LENOVO AYCN25WW 05/14/2021
Motherboard: LENOVO LNVNB161216
Processor: AMD A4-9125 RADEON R3, 4 COMPUTE CORES 2C+2G 
Percentage of memory in use: 91%
Total physical RAM: 3471.98 MB
Available physical RAM: 290.33 MB
Total Virtual: 10383.98 MB
Available Virtual: 4997.37 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.15 GB) (Free:126.04 GB) NTFS

\\?\Volume{6086a457-5322-4e57-bc6c-11236a12684e}\ (Obnovení) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{fef0ec5f-a966-493a-9ee8-775e2b5bebf0}\ () (Fixed) (Total:0.87 GB) (Free:0.28 GB) NTFS
\\?\Volume{81d1e8fb-3180-4169-aec8-6a8a6a0f0e06}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Partition Table ====================

==================== End of Addition.txt =======================