Dobrý den,
koupil jsem si licenci na ESET a pokouším se odinstalovat z pc COMODO. Originální odinstalační nástroj Comoda ciscleanuptool_x64 nemůže z pc odebrat některé soubory. Pokud je chci smazat já, mám požádat Systém o oprávnění.
Můžete mi pomoct tyto soubory smazat? Posílám výpis logu nástroje comoda:
byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cmdres.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cmdwrhlp.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\SecurityProductInformation.ini' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\themes\default.set' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\themes\lycia.set' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\recognizers\proto_v10\recognizer_v12.2.2.7098.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\ProgramData\Comodo\Firewall Pro\cislogs.sdb' file. Error 32: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.. It will be removed after the system restart
Cannot remove 'C:\ProgramData\Comodo\Cis\lmdb\cmddata' file. Error 32: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.. It will be removed after the system restart
Cannot remove 'C:\ProgramData\Comodo\Cis\lmdb\cmddata-lock' file. Error 32: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.. It will be removed after the system restart
Cannot remove 'C:\ProgramData\Comodo\Cis\lmdb\cmdurl' file. Error 32: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.. It will be removed after the system restart
Cannot remove 'C:\ProgramData\Comodo\Cis\lmdb\cmdurl-lock' file. Error 32: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.. It will be removed after the system restart
Cannot remove 'C:\ProgramData\Comodo\Cis\lmdb\vcact' file. Error 32: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.. It will be removed after the system restart
Cannot remove 'C:\ProgramData\Comodo\Cis\lmdb\vcact-lock' file. Error 32: Proces nemá přístup k souboru, neboť jej právě využívá jiný proces.. It will be removed after the system restart
Cannot remove 'C:\ProgramData\Comodo\Cis\urldatas\url0e9da.bff' file. Error 5: Přístup byl odepřen.. It will be removed after the system restart
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cis.exe' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cmdcomps.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cmdhtml.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cmdres.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\cmdwrhlp.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\SecurityProductInformation.ini' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\themes\default.set' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\themes\lycia.set' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Program Files\COMODO\COMODO Internet Security\recognizers\proto_v10\recognizer_v12.2.2.7098.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Windows\System32\drivers\cmdguard.sys' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Windows\System32\drivers\cmderd.sys' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Windows\System32\guard64.dll' file. Error 5: Přístup byl odepřen.
Cannot remove 'C:\Windows\SysWOW64\guard32.dll' file. Error 5: Přístup byl odepřen.
127 of 151 files removed
Removing symlinks...
Symlinks removed
Removing MSI components...
Removing registry hives...
2 of 15 registry hives removed
Removing registry hives...
3 of 3 registry hives removed
Removing MSI components...
Removing scheduled tasks...
7 of 7 scheduled tasks removed
Removing Security Center entries...
Removing fake debuggers...
Press "Restart" to restart the computer.
Restartovat jsem to zkoušel několikrát, ale výpis je stále stejný.
Děkuji za pomoc
Hop
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Odebrání COMODO z pc
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118266
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odebrání COMODO z pc
Zdravím!
Jaký máte profil? Uživatelský, nebo administrátorský? V případě toho prvního nic neodinstalujete a pravdělodobně ani nenainstalujete. Instalovat a odinstalovávat (a zejména bezpečnostní software) lze pouze z admin profilu.
Jaký máte profil? Uživatelský, nebo administrátorský? V případě toho prvního nic neodinstalujete a pravdělodobně ani nenainstalujete. Instalovat a odinstalovávat (a zejména bezpečnostní software) lze pouze z admin profilu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odebrání COMODO z pc
Rudy, zdravím!
Jsem přihlášený v administrátorském účtu a aplikaci jsem Spouštěl jako správce.
Pavel
Jsem přihlášený v administrátorském účtu a aplikaci jsem Spouštěl jako správce.
Pavel
-
Rudy
- Site Admin
- Příspěvky: 118266
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odebrání COMODO z pc
Nemáte náhodou nainstalován nějaký soft od Seznemu (např. Lištičku)? Pokud ano, odinstalujte a potom zkuste odebrat Comodo.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odebrání COMODO z pc
Mám za to, že Lištičku apod. nemám, pro jistotu posílám logy FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-01-2021
Ran by Rodiče (administrator) on CERNY (Hewlett-Packard HP Compaq Elite 8300 CMT) (02-02-2021 17:55:44)
Running from C:\Users\Rodiče\Desktop
Loaded Profiles: Rodiče
Platform: Windows 10 Pro Version 20H2 19042.746 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\45.0.12.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe <6>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8515304 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1412840 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [337720 2020-11-12] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [3386576 2017-03-30] (Comodo Security Solutions, Inc. -> COMODO)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] () [File not signed]
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [669112 2019-10-31] (OpenVPN Inc. -> )
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-16] (InstallShield Software Corporation) [File not signed]
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp108: C:\Windows\System32\spool\prtprocs\x64\hpcpp108.DLL [331776 2011-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-26] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {15F4F9C7-4E3E-4349-BB63-E1330F88649F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {1A922295-6D45-416A-80AA-370468F1DBBD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {28C91802-C618-4BFA-8B69-187904119CAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-20] (Google Inc -> Google Inc.)
Task: {2EAF8668-2C97-4290-8304-7D47990DCEBD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-01-29] (Mozilla Corporation -> Mozilla Foundation)
Task: {3025E127-C2AA-47B6-A670-225C8697D9AF} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {33731E7A-5173-43C8-9F4C-B2046E7C3CA8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {35F1CD3C-3B4B-4B80-A335-707FC1F43B13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)
Task: {379863C0-F4D7-40EA-BD87-CEEF88AA539A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)
Task: {4352BE4A-2E61-4755-A19F-D95196E82FAE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {43FE50A8-8901-4CAF-94F2-4B8DF08BCEAA} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {59ABFCA9-C160-42DE-9472-83D2B0BEAC9C} - System32\Tasks\{23975B1A-3FCA-44C7-9D29-5E6AFDEF972C} => "c:\program files\mozilla firefox\firefox.exe" http://www.skype.com/go/downloading?sou ... tError=404
Task: {5FB470F4-A257-44A3-976B-01103DDC8F37} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {64A32AD2-82C3-4FAC-A9A6-78BDA1129B72} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {74B594A4-2F5B-4B76-8612-1391F2ECDB65} - System32\Tasks\EOSv3 Scheduler onLogOn => B:\90 Instalačky\ESETONLINE+++\esetonlinescanner_csy.exe
Task: {76D0193C-A8C8-45E7-84A2-334F3C2A8DB3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-20] (Google Inc -> Google Inc.)
Task: {88C3F148-979C-429B-9AEA-0D46BF37D28F} - System32\Tasks\{8DC598A0-9029-493A-8377-B3E75F50D0D6} => "c:\program files\mozilla firefox\firefox.exe" http://www.skype.com/go/downloading?sou ... tError=404
Task: {96151896-3C86-4E0E-8AA1-CE3A2AE1D717} - System32\Tasks\EOSv3 Scheduler onTime => B:\90 Instalačky\ESETONLINE+++\esetonlinescanner_csy.exe
Task: {9F1B7A5E-8CF1-427D-8C41-3BE2B287A240} - System32\Tasks\{5D8B0B83-F314-4505-A82A-A30DFA147452} => "c:\program files\mozilla firefox\firefox.exe" http://www.skype.com/go/downloading?sou ... tError=404
Task: {9FE69FA0-2523-4B93-B68F-7279EAE4A00C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A29DC9DB-80DF-44E7-9C6E-ECD06AB9174F} - System32\Tasks\Opera scheduled assistant Autoupdate 1583848455 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {A9A27D54-C5B7-4CB3-8855-040522290E56} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AE44F7E0-74B8-41B6-9107-673DC8A7178D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {B71DA69A-D024-4CF6-827F-084E777B7A9F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {CBDF52E0-E6B9-4BD0-9CED-9168C7E90BF8} - System32\Tasks\Opera scheduled Autoupdate 1583605369 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software)
Task: {CC57C5E7-60CA-47EB-9334-05527122873E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF8AB748-B8C3-4B89-B239-59EA796FCBE2} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {D49FBE05-85A4-4D79-81BD-02281D4CAB47} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [348256 2021-01-22] (HP Inc. -> HP Inc.)
Task: {D67A25F9-8CC2-41FD-9AE9-D7F20302CE52} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {D974EF11-DEFB-47CF-ADF9-4BF739F5E5C9} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {E290DEB3-DDA1-42B1-9AB3-082979D6AF47} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E5AD9E69-CA55-4396-9AA3-88AAC903B6BB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E64313D9-75C3-4D76-BB44-4EE47CF4C23B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7E8ACF2-9BE7-4BF1-A652-22F6265749D6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {FCB71EA4-24B0-4178-B37A-959C10795156} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6bee6bde-c9a9-4f7a-9f19-3dc69b035ed8}: [NameServer] 217.31.204.130,8.8.8.8
Tcpip\..\Interfaces\{6bee6bde-c9a9-4f7a-9f19-3dc69b035ed8}: [DhcpNameServer] 192.168.10.1
Edge:
=======
DownloadDir: C:\Users\Rodiče\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-1059776903-3361009417-470717186-1001 -> hxxp://www.papeweb.cz/
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-02-01]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Rodiče\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-26]
Edge DownloadDir: C:\Users\Rodiče\Downloads
Edge HomePage: Default -> hxxp://www.papeweb.cz/
Edge StartupUrls: Default -> "hxxp://www.papeweb.cz/"
FireFox:
========
FF DefaultProfile: go8exp2f.default
FF ProfilePath: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default [2021-02-02]
FF user.js: detected! => C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\user.js [2018-04-20]
FF DownloadDir: A:\Rodiče\Downloads
FF Homepage: Mozilla\Firefox\Profiles\go8exp2f.default -> hxxp://www.papeweb.cz
FF Extension: (Copyfish
Free OCR Software) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\copyfish@a9t9.com.xpi [2021-01-28]
FF Extension: (Firebug) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\firebug@software.joehewitt.com.xpi [2017-03-01] [Legacy]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\firefox@ghostery.com.xpi [2020-12-07]
FF Extension: (Mate Translate – translator, dictionary) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi [2020-11-20]
FF Extension: (View in Office Online Viewer) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\viewinofficeapps@huhsiaotao.xpi [2016-04-27] [Legacy]
FF Extension: (1-Click YouTube Video Downloader) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2018-04-13]
FF Extension: (ColorZilla) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2017-03-08]
FF Extension: (WAVE Evaluation Tool) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{9bbf6724-d709-492e-a313-bfed0415a224}.xpi [2020-11-12]
FF Extension: (Wood texture by Carolsia) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{a287e6f3-6577-41ba-8ee9-d0bbaf0d06c7}.xpi [2019-05-13]
FF Extension: (Google Meet Grid View) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{c972dc04-3d8e-4455-8316-6030a823a7e6}.xpi [2020-10-08]
FF Extension: (No Name) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-01-29]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1059776903-3361009417-470717186-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Rodiče\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-24] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default [2021-02-02]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://drive.google.com; hxxps://meet.google.com
CHR HomePage: Default -> hxxp://www.papeweb.cz/
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/1/#inbox","hxxp://www.papeweb.cz/"
CHR Extension: (Nordic Forest) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\amekpplpfocpmaimnmgfjoibodpjedie [2018-06-02]
CHR Extension: (Dokumenty) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-20]
CHR Extension: (Disk Google) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-08]
CHR Extension: (YouTube) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-20]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29]
CHR Extension: (Video Downloader professional) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-07-24]
CHR Extension: (MindMap) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdaeohpmcenmffofpikllphdhlkkocfa [2018-05-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-11]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-15]
CHR Extension: (Avast Online Security) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-04]
CHR Extension: (Text to MP3, Audio to Mail) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijgamcmigplkkdkhfcjmpjojlklnkgop [2018-05-01]
CHR Extension: (Výběr barvy) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcmgligingjhdnhdhgepemlckgcgmgaj [2019-03-12]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-24]
CHR Extension: (Video DownloadHelper) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-01-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (PDF Viewer) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2019-09-15]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-11-08]
CHR Extension: (Gmail) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-26]
CHR Extension: (Free Video Downloader) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppgadljdflpomdcdacknofppeejgmjdn [2018-05-01]
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-11-08]
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-22]
CHR HKU\S-1-5-21-1059776903-3361009417-470717186-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
Opera:
=======
OPR Profile: C:\Users\Rodiče\AppData\Roaming\Opera Software\Opera Stable [2021-01-31]
OPR StartupUrls: Opera Stable -> "hxxp://www.papeweb.cz/hodiny2","hxxps://docs.g ... li=1#gid=0"
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Rodiče\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-25]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [117176 2015-08-07] (Andrea Electronics -> Andrea Electronics Corporation)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-07-08] (Digital Wave Ltd -> Digital Wave Ltd)
S3 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Incorporated -> Foxit Software Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [118480 2017-03-30] (Comodo Security Solutions, Inc. -> COMODO)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 cmdvirth; "C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 googledrivefs3301; C:\WINDOWS\System32\DRIVERS\googledrivefs3301.sys [132456 2020-11-17] (Google LLC -> Google, Inc.)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [62208 2017-03-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tap_ovpnconnect; C:\WINDOWS\System32\drivers\tap_ovpnconnect.sys [39408 2019-10-31] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2021-01-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-02 17:55 - 2021-02-02 17:56 - 000031754 _____ C:\Users\Rodiče\Desktop\FRST.txt
2021-02-02 17:55 - 2021-02-02 17:55 - 000000000 ____D C:\Users\Rodiče\Desktop\FRST-OlderVersion
2021-02-02 16:34 - 2021-02-02 17:34 - 000004016 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2021-02-02 16:34 - 2021-02-02 16:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\COMODO
2021-02-02 16:28 - 2021-02-02 16:28 - 000000000 ____D C:\WINDOWS\pss
2021-02-02 16:24 - 2021-02-02 16:24 - 000000000 ____D C:\Program Files (x86)\COMODO
2021-02-02 16:24 - 2017-03-30 04:10 - 000307960 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2021-02-02 16:24 - 2017-03-30 04:10 - 000236792 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2021-02-02 16:24 - 2017-03-29 22:49 - 000062208 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2021-02-02 15:51 - 2021-02-02 15:51 - 000004197 _____ C:\Users\Rodiče\Desktop\comodo log.txt
2021-01-30 17:05 - 2021-01-30 17:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-29 12:59 - 2021-02-02 15:04 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-28 18:24 - 2021-01-30 09:39 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-01-24 22:13 - 2021-01-24 22:13 - 011321472 _____ (Tim Kosse) C:\Users\Rodiče\Downloads\FileZilla_3.52.2_win64-setup.exe
2021-01-24 20:21 - 2021-01-24 20:21 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-01-23 14:56 - 2021-01-23 14:57 - 000000779 _____ C:\Users\Rodiče\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-01-23 14:56 - 2021-01-23 14:56 - 015012440 _____ (ESET spol. s r.o.) C:\Users\Rodiče\Downloads\esetonlinescanner.exe
2021-01-23 08:08 - 2021-01-23 08:08 - 000000000 ____D C:\Program Files\net.downloadhelper.coapp
2021-01-22 22:09 - 2021-01-22 22:09 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-01-22 22:09 - 2021-01-22 22:09 - 000000916 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001440 _____ C:\Users\Public\Desktop\Free Screen Video Recorder.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001440 _____ C:\ProgramData\Desktop\Free Screen Video Recorder.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001408 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001408 _____ C:\ProgramData\Desktop\DVDVideoSoft Free Studio.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2021-01-22 22:01 - 2021-01-22 22:02 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\DVDVideoSoft
2021-01-13 23:38 - 2021-01-13 23:38 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 23:37 - 2021-01-13 23:37 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 23:37 - 2021-01-13 23:37 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-13 23:36 - 2021-01-13 23:36 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 23:36 - 2021-01-13 23:36 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-13 23:36 - 2021-01-13 23:36 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 23:36 - 2021-01-13 23:36 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 23:36 - 2021-01-13 23:36 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 23:36 - 2021-01-13 23:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 23:36 - 2021-01-13 23:36 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 23:35 - 2021-01-13 23:35 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-13 23:35 - 2021-01-13 23:35 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 23:35 - 2021-01-13 23:35 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 23:35 - 2021-01-13 23:35 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 23:35 - 2021-01-13 23:35 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-13 23:34 - 2021-01-13 23:34 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 23:34 - 2021-01-13 23:34 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 23:34 - 2021-01-13 23:34 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 23:34 - 2021-01-13 23:34 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-10 21:25 - 2021-01-10 21:25 - 011317568 _____ (Tim Kosse) C:\Users\Rodiče\Downloads\FileZilla_3.52.0.5_win64-setup.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-02 17:56 - 2020-11-08 10:09 - 000000000 ____D C:\FRST
2021-02-02 17:55 - 2020-11-08 10:09 - 002297856 _____ (Farbar) C:\Users\Rodiče\Desktop\FRST64.exe
2021-02-02 17:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-02 16:41 - 2020-06-22 01:58 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-02 16:41 - 2019-12-07 15:43 - 000716742 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-02 16:41 - 2019-12-07 15:43 - 000144920 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-02 16:41 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-02 16:34 - 2020-06-22 02:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-02 16:34 - 2020-06-22 01:53 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-02 16:34 - 2019-12-10 19:14 - 000017260 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2021-02-02 16:34 - 2019-12-10 19:14 - 000013367 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2021-02-02 16:34 - 2019-12-10 19:14 - 000006607 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2021-02-02 16:34 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-02-02 16:34 - 2018-04-23 08:59 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-02 16:34 - 2018-04-20 10:40 - 000000000 ____D C:\ProgramData\Comodo
2021-02-02 16:19 - 2018-04-20 11:18 - 000000000 ____D C:\Users\Rodiče\AppData\LocalLow\Mozilla
2021-02-02 15:39 - 2018-04-20 09:03 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-02-02 15:08 - 2018-04-20 10:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2021-02-02 15:04 - 2018-04-20 10:39 - 000000000 ____D C:\Program Files\Opera
2021-02-02 15:04 - 2018-04-20 10:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-02 15:03 - 2019-03-04 19:36 - 000007630 _____ C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2021-02-02 13:34 - 2020-06-22 02:00 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-01 23:40 - 2020-01-26 22:42 - 000006085 _____ C:\ProgramData\DisplaySessionContainer21.log_backup1
2021-02-01 23:26 - 2018-04-20 11:53 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\FileZilla
2021-02-01 22:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-01 22:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-01 20:06 - 2020-06-22 01:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-01 00:41 - 2020-01-25 23:52 - 000006103 _____ C:\ProgramData\DisplaySessionContainer20.log_backup1
2021-01-31 09:04 - 2018-04-20 06:12 - 000000000 ____D C:\Users\Rodiče\AppData\Local\Packages
2021-01-30 23:35 - 2019-12-20 08:14 - 000008093 _____ C:\ProgramData\DisplaySessionContainer19.log_backup1
2021-01-30 19:52 - 2020-06-04 12:32 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-30 19:52 - 2020-06-04 12:32 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-30 19:52 - 2020-06-04 12:32 - 000002274 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-01-30 17:05 - 2018-04-20 10:38 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-29 13:27 - 2018-07-19 09:08 - 000000000 ____D C:\Users\Rodiče\AppData\Local\ElevatedDiagnostics
2021-01-28 22:44 - 2019-12-19 08:11 - 000006091 _____ C:\ProgramData\DisplaySessionContainer17.log_backup1
2021-01-28 13:23 - 2018-08-02 14:40 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\vlc
2021-01-27 16:25 - 2018-08-20 07:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-01-26 23:43 - 2019-12-18 08:12 - 000007692 _____ C:\ProgramData\DisplaySessionContainer15.log_backup1
2021-01-26 18:40 - 2018-09-17 19:47 - 000001927 _____ C:\Users\Rodiče\Desktop\FileZilla Client.lnk
2021-01-26 18:40 - 2018-04-20 11:53 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2021-01-26 18:40 - 2018-04-20 11:53 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2021-01-26 00:46 - 2019-12-17 22:56 - 000008066 _____ C:\ProgramData\DisplaySessionContainer14.log_backup1
2021-01-26 00:24 - 2018-04-20 10:12 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-25 07:14 - 2019-12-17 08:21 - 000007682 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
2021-01-23 14:56 - 2019-06-04 22:04 - 000000651 _____ C:\Users\Rodiče\Desktop\ESET Online Scanner.lnk
2021-01-23 04:33 - 2019-12-16 23:09 - 000005704 _____ C:\ProgramData\DisplaySessionContainer12.log_backup1
2021-01-23 04:33 - 2019-05-25 17:56 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\audacity
2021-01-22 22:36 - 2019-12-15 22:58 - 000007574 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
2021-01-22 21:37 - 2019-12-15 00:00 - 000006111 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2021-01-19 23:44 - 2019-12-13 20:12 - 000008384 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2021-01-18 23:11 - 2019-12-13 08:11 - 000006106 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2021-01-18 13:55 - 2020-06-22 02:00 - 000004114 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1583605369
2021-01-18 13:55 - 2020-03-07 19:22 - 000001203 _____ C:\Users\Rodiče\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-01-18 13:16 - 2020-06-22 02:00 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-18 13:16 - 2020-06-22 02:00 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-16 23:04 - 2019-12-12 15:29 - 000006102 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2021-01-15 07:18 - 2019-12-10 21:46 - 000007688 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2021-01-14 12:42 - 2018-04-22 19:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-01-14 06:15 - 2020-06-22 01:53 - 000463568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 06:13 - 2020-06-22 01:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-14 06:12 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-14 06:12 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-14 06:12 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 23:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 23:34 - 2020-06-22 01:55 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-13 23:25 - 2018-04-20 11:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 23:22 - 2018-04-20 11:27 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-12 07:04 - 2019-12-14 17:40 - 000008067 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2021-01-10 23:06 - 2019-12-13 20:21 - 000006623 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2021-01-07 22:51 - 2019-12-12 23:42 - 000004926 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2021-01-07 00:22 - 2019-12-12 08:10 - 000006091 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2021-01-05 14:38 - 2020-12-13 19:33 - 000001571 _____ C:\Users\Rodiče\Desktop\++úkoly pro začátek 2021.lnk
2021-01-04 15:01 - 2018-05-21 21:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-01-03 22:56 - 2020-06-22 01:22 - 000000000 ____D C:\Users\Rodiče
==================== Files in the root of some directories ========
2019-12-10 20:23 - 2019-12-10 20:23 - 000009237 _____ () C:\Users\Rodiče\AppData\Local\recently-used.xbel
2019-03-04 19:36 - 2021-02-02 15:03 - 000007630 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-01-2021
Ran by Rodiče (02-02-2021 17:58:25)
Running from C:\Users\Rodiče\Desktop
Windows 10 Pro Version 20H2 19042.746 (X64) (2020-06-22 01:00:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1059776903-3361009417-470717186-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1059776903-3361009417-470717186-503 - Limited - Disabled)
Guest (S-1-5-21-1059776903-3361009417-470717186-501 - Limited - Disabled)
Rodiče (S-1-5-21-1059776903-3361009417-470717186-1001 - Administrator - Enabled) => C:\Users\Rodiče
WDAGUtilityAccount (S-1-5-21-1059776903-3361009417-470717186-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader 4.9 (HKLM\...\{3068BA02-E08D-475B-9F9D-45D1076BC5E8}) (Version: 4.9.0.3032 - Open Media LLC)
4K YouTube to MP3 3.8 (HKLM\...\{755CCB2F-61EE-4FF3-A23A-91D30925B292}) (Version: 3.8.0.3032 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{5737101A-27C4-408A-8A57-D1DC78DF84B4}) (Version: 8.2.1 - Hewlett-Packard) Hidden
7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
AVI ReComp 1.5.6 (HKLM-x32\...\AVI ReComp) (Version: 1.5.6 - Mateusz Gola (aka Prozac))
AviSynth 2.5 (HKLM-x32\...\Avisynth) (Version: - )
BIOVIA Draw 2019 (HKLM\...\{59F76C5F-3249-4CBA-8E6D-2475D99FD7E9}) (Version: 19.1.0.1792 - Dassault Systemes)
Blender (HKLM\...\{053A73FE-DBF8-4674-8EC0-63BD07615695}) (Version: 2.81.0 - Blender Foundation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
CD Ripper a WAV - MP3 Encoder (08.01.2008) (HKLM-x32\...\CD Ripper a WAV - MP3 Encoder_is1) (Version: - Radek Hemelík)
CorelDRAW Graphics Suite 12 (HKLM-x32\...\{505AFDC0-5E72-4928-8368-5DEA385E3647}) (Version: 12.0.0.536 - Corel Corporation)
FileZilla Client 3.52.2 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\FileZilla Client) (Version: 3.52.2 - Tim Kosse)
FormatFactory 4.2.5.0 (HKLM-x32\...\FormatFactory) (Version: 4.2.5.0 - Free Time)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.1.0.5096 - Foxit Software Inc.)
Free Screen Video Recorder (HKLM-x32\...\Free Screen Video Recorder_is1) (Version: 3.0.50.708 - Digital Wave Ltd)
FreeCommander XE (HKLM-x32\...\FreeCommander XE_is1) (Version: - Marek Jasinski)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 45.0.12.0 - Google LLC)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.104 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
HP LaserJet 100 color MFP M175 (HKLM-x32\...\{965D0289-10E1-45ec-B11F-A60AC9AE8D4D}) (Version: - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.34.31 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{CB239E79-564D-4204-923F-CB192A484B51}) (Version: 12.18.34.21 - HP Inc.)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
Inkscape 0.92.4 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.92.4.0 - Inkscape project)
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.1.413499.43 - Comodo)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
iTunes (HKLM\...\{E3736ECC-7DD6-4E3E-B3D3-C9281DCD4064}) (Version: 12.11.0.26 - Apple Inc.)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Lamer (HKLM-x32\...\Lamer) (Version: - )
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.6.0.0 - EditShare)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mount Blue - verze 1.0.11.0 (HKLM-x32\...\{121F184B-05AD-43F1-9F20-6075B9E6DFCA}_is1) (Version: 1.0.11.0 - Mount Blue s.r.o.)
Mozilla Firefox 85.0 (x64 cs) (HKLM\...\Mozilla Firefox 85.0 (x64 cs)) (Version: 85.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MuseScore 2 (HKLM-x32\...\{0317B5F7-01A3-4640-A491-456B453CCAB3}) (Version: 2.2.1 - Werner Schweer and Others)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA Ovladače grafiky 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
OpenShot Video Editor verze 2.5.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 - OpenShot Studios, LLC)
OpenVPN 2.4.8-I602-Win10 (HKLM\...\OpenVPN) (Version: 2.4.8-I602-Win10 - OpenVPN Technologies, Inc.)
Opera Stable 73.0.3856.344 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Opera 73.0.3856.344) (Version: 73.0.3856.344 - Opera Software)
PhotoFiltre 7 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\PhotoFiltre 7) (Version: - )
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.3.377 - Jan Fiala)
Python 3.7.1 (32-bit) (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\{850389b4-a056-4ecc-9c8d-e3ef594fc929}) (Version: 3.7.1150.0 - Python Software Foundation)
Python 3.7.1 Core Interpreter (32-bit) (HKLM-x32\...\{5439005C-640E-473B-8374-5AA6BA9F8780}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Development Libraries (32-bit) (HKLM-x32\...\{D1F1A0E0-328E-438D-A18C-ACE71BCE10B7}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Documentation (32-bit) (HKLM-x32\...\{DAB8D967-E729-443C-96A7-BFE581D8B0B0}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Executables (32-bit) (HKLM-x32\...\{FFE80953-6126-49BF-9CC0-57113A8AAA37}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 pip Bootstrap (32-bit) (HKLM-x32\...\{4CAAB4B2-69D4-437A-870B-9AB2D0703E56}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Standard Library (32-bit) (HKLM-x32\...\{E8A32F30-F5EC-4724-8F99-A51B69176B2F}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{AC008439-97C6-4079-B451-069A1AC86C9D}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Test Suite (32-bit) (HKLM-x32\...\{A9C09A2F-4ABC-41EF-B3F7-629C8178186B}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Utility Scripts (32-bit) (HKLM-x32\...\{D3397B2B-DC1F-4EDF-BFAE-827431206FB6}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{C3A1C6B1-9096-47A7-AB5C-09114002A996}) (Version: 3.7.6501.0 - Python Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Skype verze 8.68 (HKLM-x32\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Theophilos 3 (HKLM-x32\...\Theophilos_is1) (Version: - )
Trekker (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Trekker) (Version: - )
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VdhCoApp 1.6.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
VobSub 2.23 (HKLM-x32\...\VobSub) (Version: 2.23 - Gabest)
Vzum (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\6cfa0c5674100ff8) (Version: 1.0.0.18 - Vzum)
WinDirStat 1.1.2 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\WinDirStat) (Version: - )
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
Zoner Callisto 5 FREE (HKLM-x32\...\ZonerCallisto5_CZ_is1) (Version: 5.0.5000.16 - ZONER software)
Zoom (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2020-12-19] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-13] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-06-16] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.1.778.0_x64__v10z8vjag6ke6 [2020-12-19] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-01-19] (NVIDIA Corp.)
One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2020.1031.1.0_x64__8kea50m9krsh2 [2020-11-30] (Code Spark)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-04] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1059776903-3361009417-470717186-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-04-16] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\nvshext.dll [2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-04-16] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1_S-1-5-21-1059776903-3361009417-470717186-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.XVID] => C:\WINDOWS\system32\xvidvfw.dll [255488 2011-05-30] () [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [240640 2011-05-30] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-08-20 07:29 - 2021-01-15 21:28 - 002072064 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2018-08-20 07:29 - 2021-01-15 21:28 - 000310784 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2018-08-20 07:29 - 2021-01-15 21:28 - 006903808 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2018-04-20 09:39 - 2014-11-02 17:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2010-08-06 10:15 - 2010-08-06 10:15 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 10:15 - 2010-08-06 10:15 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2018-04-20 08:38 - 2018-01-28 16:00 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\SysWOW64\gsfkill.exe:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\SysWOW64\gsw32.exe:$CmdTcID [64]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 14:46 - 2017-09-29 14:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;%DRAW_DEPLOY_PATH%
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rodiče\Pictures\Na plochu\Tapeta galerie Windows Fotogalerie.jpg
DNS Servers: 217.31.204.130 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "Xvid"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "ISUSPM Startup"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "ApowerMirror"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A424BF02-E14C-499C-86DF-A53C8406AC13}] => (Allow) C:\Program Files\OpenShot Video Editor\openshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [{2A8E322D-DB09-4777-BEF8-85F717EA43AB}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{C7023315-ECCA-4F7E-8FEC-877FF993D65C}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{FEA261FE-9484-47ED-A0EC-85B6EF946330}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{68024909-6C88-4773-A383-06F4412E5059}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{091C8614-6FBB-470A-A911-10F112F7EFE6}] => (Allow) C:\Users\Rodiče\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{405CC631-D2A6-4B3D-B04A-C7524BFECE13}] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [{E0809370-AD30-4BC8-A7E7-4B4A6BF22DAA}] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [UDP Query User{A137714D-326C-4F7D-8C3B-BDA6F60E49C6}C:\program files (x86)\hyl\mountblueklient\mountblue.exe] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [TCP Query User{D2BE77D0-5E9C-4AD1-9FB1-2B796B5AC74E}C:\program files (x86)\hyl\mountblueklient\mountblue.exe] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [{47E164B0-E14E-4A19-9248-A0B0390FC906}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BCC24B5E-1A5C-44A0-87C3-C7EC762E27ED}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FFDC2B7D-7E31-48BF-B66E-0D5163414DE6}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{915F305A-8E8F-4541-8936-78BF3D713CCD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FB51D1B1-B172-455D-B426-0EAE3349B4B4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{82E3B009-B5F7-4ABA-8B3D-F0796690B078}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B01EDECA-3813-49A4-8F49-931AABD0B606}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{287E3077-3536-4B5B-99E5-BD4035269B15}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0F93161A-9644-42CF-A50B-BD908D9E919C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ED14C431-317F-428E-A999-01A0C4DC88BD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{278C48CF-B207-4578-B246-2A8495E93694}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{AEA61D1F-60B3-404D-BA29-46D4AA06C3DA}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{4EF614B8-A10D-4AC6-8677-23954132A09D}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{D24521B1-86ED-4FE5-B808-021313C25F05}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{6BDB7A01-0CBC-4576-8FA6-A687D85B88BB}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{A48932C8-0486-4FC2-ABFD-33D087394DA1}C:\program files\filezilla ftp client\filezilla.exe] => (Block) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project)
FirewallRules: [TCP Query User{F93F22C4-B743-4457-B7E6-7C4CE24AFF83}C:\program files\filezilla ftp client\filezilla.exe] => (Block) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project)
FirewallRules: [{A6F6588B-73F2-438B-A180-205ECC920811}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3EC23B7B-BE8E-4B16-A534-4050996ECC53}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3143047F-6615-484B-9D97-103DE5133A61}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7EBA3272-EF64-4CA3-8F02-5F6BE285DBF1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{517E4B45-F99F-4043-9D7A-E5A0393CBE16}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A1A4D9A7-CD12-4DF2-B388-2F8CDB8CD243}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7B44E337-2575-43D0-B925-33BAEE74D26B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{11C7A23E-C0D5-44B0-B1E5-6B25C11015E1}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0D46471C-0733-4378-9CD9-5FFE232EA38B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8CA02779-17D3-4190-8262-DA05BF7CF23B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{43A0604B-344B-43A8-BAE9-6DD18C98CF59}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C30328F3-A12D-48B4-972E-398C9A1D91C5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{332E273A-E1E2-4DAF-922E-69B6C24ADAFD}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{0A9D803B-2D36-46AE-8C7D-A39762274D38}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{D8CDEE9E-7D81-4A9F-A0F8-574AFB7318BD}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{B09C9A5D-F7AE-4A4A-A5BD-D9536F68E09D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8C919AD5-13C9-4345-A06E-FDEF626AA5C3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6AD7771F-252C-432A-A2DD-EF184CEA4DD3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7335558F-CB0F-445B-8CEE-9ABCADEEBE81}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CF627FC6-E633-4272-9FA9-7BE4D3610D53}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{08200A88-9ED9-458E-9A85-CDB876F8CB89}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2EBAC930-9787-4BFB-8E5D-414178F0FE0A}] => (Allow) C:\Program Files\Opera\73.0.3856.329\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{D1930168-BCD4-4603-89C3-319F9386E4A0}] => (Allow) C:\Program Files\Opera\73.0.3856.344\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{1A52CB29-EF5A-4E66-B918-898E3490FA4E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{9B225C30-6E64-4A03-80F3-D35D1A057AB3}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{09E6DCE9-64B2-4A74-87FE-9CF301BE9F8E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
13-01-2021 23:25:20 Instalační služba modulů systému Windows
23-01-2021 06:23:13 Naplánovaný kontrolní bod
01-02-2021 13:47:46 Naplánovaný kontrolní bod
02-02-2021 14:47:21 Removed COMODO Antivirus
==================== Faulty Device Manager Devices ============
Name: Myš Microsoft PS/2
Description: Myš Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: ========================
Application errors:
==================
Error: (02/02/2021 04:34:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: app_updater.exe, verze: 1.1.5.708, časové razítko: 0x5d22f5b2
Název chybujícího modulu: zlib1.dll, verze: 1.2.8.0, časové razítko: 0x5190dfa0
Kód výjimky: 0xc0000005
Posun chyby: 0x00003650
ID chybujícího procesu: 0xef8
Čas spuštění chybující aplikace: 0x01d6f978eb889018
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
ID zprávy: e1b51396-891e-4c9e-a5ad-8563bc844431
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (02/02/2021 04:34:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Digital Wave Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/02/2021 04:34:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CmdAgentProt neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (02/02/2021 04:34:16 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby SecurityHealthService s argumenty Není k dispozici za účelem spuštění serveru:
{8C9C0DB7-2CBA-40F1-AFE0-C55740DD91A0}
Error: (02/02/2021 04:33:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Digital Wave Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/02/2021 04:33:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CmdAgentProt neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (02/02/2021 04:33:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CmdAgentProt neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (02/02/2021 04:33:00 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2147500053.
Error: (02/02/2021 04:28:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Digital Wave Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Windows Defender:
===================================
Date: 2021-02-02 15:51:31.1990000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.331.53.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17800.5
Kód chyby: 0x8024001e
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2020-11-27 16:57:40.7800000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.323.1129.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17400.5
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2020-11-27 16:57:40.7800000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.323.1129.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17400.5
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
CodeIntegrity:
===================================
Date: 2021-02-02 17:57:05.8250000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:57:05.8200000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-02-02 17:57:05.6960000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:57:05.6900000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-02-02 17:55:17.5040000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:55:17.4980000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-02-02 17:54:24.4060000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:54:24.3990000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Hewlett-Packard K01 v02.90 07/16/2013
Motherboard: Hewlett-Packard 3396
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 54%
Total physical RAM: 8136.5 MB
Available physical RAM: 3727.86 MB
Total Virtual: 10440.5 MB
Available Virtual: 5006.28 MB
==================== Drives ================================
Drive a: (disk_250) (Fixed) (Total:232.88 GB) (Free:194.8 GB) NTFS
Drive b: (disk_2T) (Fixed) (Total:1863.01 GB) (Free:480.42 GB) NTFS
Drive c: () (Fixed) (Total:465.16 GB) (Free:261.81 GB) NTFS
Drive d: (disk_cerveny_500G) (Fixed) (Total:465.76 GB) (Free:18.68 GB) NTFS
Drive g: (Google Drive) (Fixed) (Total:465.16 GB) (Free:248.72 GB) FAT32
\\?\Volume{7115fa8c-d32f-4963-995c-145ef639c47d}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{a84dd0c2-2be1-4595-bdfe-1a13267aa4c3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 13D30A3E)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 227117F8)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 4C0C2488)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-01-2021
Ran by Rodiče (administrator) on CERNY (Hewlett-Packard HP Compaq Elite 8300 CMT) (02-02-2021 17:55:44)
Running from C:\Users\Rodiče\Desktop
Loaded Profiles: Rodiče
Platform: Windows 10 Pro Version 20H2 19042.746 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Andrea Electronics -> Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\45.0.12.0\crashpad_handler.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <18>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe <6>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenVPN Inc. -> ) C:\Program Files\OpenVPN\bin\openvpn-gui.exe
(OpenVPN Inc. -> The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <2>
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe <5>
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8515304 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1412840 2015-08-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [337720 2020-11-12] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [3386576 2017-03-30] (Comodo Security Solutions, Inc. -> COMODO)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] () [File not signed]
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91016584 2021-01-15] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [669112 2019-10-31] (OpenVPN Inc. -> )
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-16] (InstallShield Software Corporation) [File not signed]
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3154456 2020-11-25] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [153600 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\45.0.12.0\GoogleDriveFS.exe [54694824 2021-01-29] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\hpcpp108: C:\Windows\System32\spool\prtprocs\x64\hpcpp108.DLL [331776 2011-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\HP Standard TCP/IP Port: C:\WINDOWS\system32\HpTcpMon.dll [331264 2009-09-16] (Hewlett Packard) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /t REG_SZ /d "C:\Program Files\OpenVPN\bin\openvpn-gui.exe" /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-26] (Google LLC -> Google LLC)
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {15F4F9C7-4E3E-4349-BB63-E1330F88649F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {1A922295-6D45-416A-80AA-370468F1DBBD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {28C91802-C618-4BFA-8B69-187904119CAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-20] (Google Inc -> Google Inc.)
Task: {2EAF8668-2C97-4290-8304-7D47990DCEBD} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-01-29] (Mozilla Corporation -> Mozilla Foundation)
Task: {3025E127-C2AA-47B6-A670-225C8697D9AF} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {33731E7A-5173-43C8-9F4C-B2046E7C3CA8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {35F1CD3C-3B4B-4B80-A335-707FC1F43B13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [135000 2020-06-22] (HP Inc. -> HP Inc.)
Task: {379863C0-F4D7-40EA-BD87-CEEF88AA539A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)
Task: {4352BE4A-2E61-4755-A19F-D95196E82FAE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - resources updates => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [665944 2020-08-07] (HP Inc. -> HP Inc.)
Task: {43FE50A8-8901-4CAF-94F2-4B8DF08BCEAA} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {59ABFCA9-C160-42DE-9472-83D2B0BEAC9C} - System32\Tasks\{23975B1A-3FCA-44C7-9D29-5E6AFDEF972C} => "c:\program files\mozilla firefox\firefox.exe" http://www.skype.com/go/downloading?sou ... tError=404
Task: {5FB470F4-A257-44A3-976B-01103DDC8F37} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {64A32AD2-82C3-4FAC-A9A6-78BDA1129B72} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {74B594A4-2F5B-4B76-8612-1391F2ECDB65} - System32\Tasks\EOSv3 Scheduler onLogOn => B:\90 Instalačky\ESETONLINE+++\esetonlinescanner_csy.exe
Task: {76D0193C-A8C8-45E7-84A2-334F3C2A8DB3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-20] (Google Inc -> Google Inc.)
Task: {88C3F148-979C-429B-9AEA-0D46BF37D28F} - System32\Tasks\{8DC598A0-9029-493A-8377-B3E75F50D0D6} => "c:\program files\mozilla firefox\firefox.exe" http://www.skype.com/go/downloading?sou ... tError=404
Task: {96151896-3C86-4E0E-8AA1-CE3A2AE1D717} - System32\Tasks\EOSv3 Scheduler onTime => B:\90 Instalačky\ESETONLINE+++\esetonlinescanner_csy.exe
Task: {9F1B7A5E-8CF1-427D-8C41-3BE2B287A240} - System32\Tasks\{5D8B0B83-F314-4505-A82A-A30DFA147452} => "c:\program files\mozilla firefox\firefox.exe" http://www.skype.com/go/downloading?sou ... tError=404
Task: {9FE69FA0-2523-4B93-B68F-7279EAE4A00C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A29DC9DB-80DF-44E7-9C6E-ECD06AB9174F} - System32\Tasks\Opera scheduled assistant Autoupdate 1583848455 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Program Files\Opera\assistant" $(Arg0)
Task: {A9A27D54-C5B7-4CB3-8855-040522290E56} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AE44F7E0-74B8-41B6-9107-673DC8A7178D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {B71DA69A-D024-4CF6-827F-084E777B7A9F} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {CBDF52E0-E6B9-4BD0-9CED-9168C7E90BF8} - System32\Tasks\Opera scheduled Autoupdate 1583605369 => C:\Program Files\Opera\launcher.exe [1776280 2021-01-14] (Opera Software AS -> Opera Software)
Task: {CC57C5E7-60CA-47EB-9334-05527122873E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF8AB748-B8C3-4B89-B239-59EA796FCBE2} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {D49FBE05-85A4-4D79-81BD-02281D4CAB47} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [348256 2021-01-22] (HP Inc. -> HP Inc.)
Task: {D67A25F9-8CC2-41FD-9AE9-D7F20302CE52} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
Task: {D974EF11-DEFB-47CF-ADF9-4BF739F5E5C9} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe
Task: {E290DEB3-DDA1-42B1-9AB3-082979D6AF47} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {E5AD9E69-CA55-4396-9AA3-88AAC903B6BB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E64313D9-75C3-4D76-BB44-4EE47CF4C23B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7E8ACF2-9BE7-4BF1-A652-22F6265749D6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506648 2020-08-20] (HP Inc. -> HP Inc.)
Task: {FCB71EA4-24B0-4178-B37A-959C10795156} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.10.1
Tcpip\..\Interfaces\{6bee6bde-c9a9-4f7a-9f19-3dc69b035ed8}: [NameServer] 217.31.204.130,8.8.8.8
Tcpip\..\Interfaces\{6bee6bde-c9a9-4f7a-9f19-3dc69b035ed8}: [DhcpNameServer] 192.168.10.1
Edge:
=======
DownloadDir: C:\Users\Rodiče\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-1059776903-3361009417-470717186-1001 -> hxxp://www.papeweb.cz/
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-02-01]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Rodiče\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-26]
Edge DownloadDir: C:\Users\Rodiče\Downloads
Edge HomePage: Default -> hxxp://www.papeweb.cz/
Edge StartupUrls: Default -> "hxxp://www.papeweb.cz/"
FireFox:
========
FF DefaultProfile: go8exp2f.default
FF ProfilePath: C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default [2021-02-02]
FF user.js: detected! => C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\user.js [2018-04-20]
FF DownloadDir: A:\Rodiče\Downloads
FF Homepage: Mozilla\Firefox\Profiles\go8exp2f.default -> hxxp://www.papeweb.cz
FF Extension: (Copyfish
Free OCR Software) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\copyfish@a9t9.com.xpi [2021-01-28]FF Extension: (Firebug) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\firebug@software.joehewitt.com.xpi [2017-03-01] [Legacy]
FF Extension: (Ghostery – Privacy Ad Blocker) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\firefox@ghostery.com.xpi [2020-12-07]
FF Extension: (Mate Translate – translator, dictionary) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi [2020-11-20]
FF Extension: (View in Office Online Viewer) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\viewinofficeapps@huhsiaotao.xpi [2016-04-27] [Legacy]
FF Extension: (1-Click YouTube Video Downloader) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2018-04-13]
FF Extension: (ColorZilla) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326}.xpi [2017-03-08]
FF Extension: (WAVE Evaluation Tool) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{9bbf6724-d709-492e-a313-bfed0415a224}.xpi [2020-11-12]
FF Extension: (Wood texture by Carolsia) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{a287e6f3-6577-41ba-8ee9-d0bbaf0d06c7}.xpi [2019-05-13]
FF Extension: (Google Meet Grid View) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{c972dc04-3d8e-4455-8316-6030a823a7e6}.xpi [2020-10-08]
FF Extension: (No Name) - C:\Users\Rodiče\AppData\Roaming\Mozilla\Firefox\Profiles\go8exp2f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-01-29]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2018-04-08] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1059776903-3361009417-470717186-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Rodiče\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-24] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default [2021-02-02]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://drive.google.com; hxxps://meet.google.com
CHR HomePage: Default -> hxxp://www.papeweb.cz/
CHR StartupUrls: Default -> "hxxps://mail.google.com/mail/u/1/#inbox","hxxp://www.papeweb.cz/"
CHR Extension: (Nordic Forest) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\amekpplpfocpmaimnmgfjoibodpjedie [2018-06-02]
CHR Extension: (Dokumenty) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-04-20]
CHR Extension: (Disk Google) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-08]
CHR Extension: (YouTube) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-04-20]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-01-29]
CHR Extension: (Video Downloader professional) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2020-07-24]
CHR Extension: (MindMap) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdaeohpmcenmffofpikllphdhlkkocfa [2018-05-08]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-11]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-01-15]
CHR Extension: (Avast Online Security) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-06-04]
CHR Extension: (Text to MP3, Audio to Mail) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijgamcmigplkkdkhfcjmpjojlklnkgop [2018-05-01]
CHR Extension: (Výběr barvy) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcmgligingjhdnhdhgepemlckgcgmgaj [2019-03-12]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-24]
CHR Extension: (Video DownloadHelper) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2021-01-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (PDF Viewer) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2019-09-15]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-11-08]
CHR Extension: (Gmail) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-26]
CHR Extension: (Free Video Downloader) - C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppgadljdflpomdcdacknofppeejgmjdn [2018-05-01]
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-11-08]
CHR Profile: C:\Users\Rodiče\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-22]
CHR HKU\S-1-5-21-1059776903-3361009417-470717186-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
Opera:
=======
OPR Profile: C:\Users\Rodiče\AppData\Roaming\Opera Software\Opera Stable [2021-01-31]
OPR StartupUrls: Opera Stable -> "hxxp://www.papeweb.cz/hodiny2","hxxps://docs.g ... li=1#gid=0"
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Rodiče\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-25]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AERTFilters; C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE [117176 2015-08-07] (Andrea Electronics -> Andrea Electronics Corporation)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [441664 2019-07-08] (Digital Wave Ltd -> Digital Wave Ltd)
S3 FoxitReaderService; C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Incorporated -> Foxit Software Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [379736 2020-08-20] (HP Inc. -> HP Inc.)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [118480 2017-03-30] (Comodo Security Solutions, Inc. -> COMODO)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [24192 2018-03-06] (OpenVPN Technologies, Inc. -> )
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [66488 2019-10-31] (OpenVPN Inc. -> The OpenVPN Project)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13172752 2020-01-22] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2021-01-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 cmdvirth; "C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2020-12-24] (Comodo Security Solutions, Inc. -> COMODO)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus2.sys [159600 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 googledrivefs3301; C:\WINDOWS\System32\DRIVERS\googledrivefs3301.sys [132456 2020-11-17] (Google LLC -> Google, Inc.)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [62208 2017-03-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [167280 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [39920 2019-10-23] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 tap_ovpnconnect; C:\WINDOWS\System32\drivers\tap_ovpnconnect.sys [39408 2019-10-31] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2021-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2021-01-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2021-01-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-02 17:55 - 2021-02-02 17:56 - 000031754 _____ C:\Users\Rodiče\Desktop\FRST.txt
2021-02-02 17:55 - 2021-02-02 17:55 - 000000000 ____D C:\Users\Rodiče\Desktop\FRST-OlderVersion
2021-02-02 16:34 - 2021-02-02 17:34 - 000004016 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2021-02-02 16:34 - 2021-02-02 16:34 - 000000000 ____D C:\WINDOWS\system32\Tasks\COMODO
2021-02-02 16:28 - 2021-02-02 16:28 - 000000000 ____D C:\WINDOWS\pss
2021-02-02 16:24 - 2021-02-02 16:24 - 000000000 ____D C:\Program Files (x86)\COMODO
2021-02-02 16:24 - 2017-03-30 04:10 - 000307960 _____ (COMODO) C:\WINDOWS\system32\iseguard64.dll
2021-02-02 16:24 - 2017-03-30 04:10 - 000236792 _____ (COMODO) C:\WINDOWS\SysWOW64\iseguard32.dll
2021-02-02 16:24 - 2017-03-29 22:49 - 000062208 _____ (COMODO) C:\WINDOWS\system32\Drivers\isedrv.sys
2021-02-02 15:51 - 2021-02-02 15:51 - 000004197 _____ C:\Users\Rodiče\Desktop\comodo log.txt
2021-01-30 17:05 - 2021-01-30 17:05 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-29 12:59 - 2021-02-02 15:04 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-28 18:24 - 2021-01-30 09:39 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-01-24 22:13 - 2021-01-24 22:13 - 011321472 _____ (Tim Kosse) C:\Users\Rodiče\Downloads\FileZilla_3.52.2_win64-setup.exe
2021-01-24 20:21 - 2021-01-24 20:21 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2021-01-23 14:56 - 2021-01-23 14:57 - 000000779 _____ C:\Users\Rodiče\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-01-23 14:56 - 2021-01-23 14:56 - 015012440 _____ (ESET spol. s r.o.) C:\Users\Rodiče\Downloads\esetonlinescanner.exe
2021-01-23 08:08 - 2021-01-23 08:08 - 000000000 ____D C:\Program Files\net.downloadhelper.coapp
2021-01-22 22:09 - 2021-01-22 22:09 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2021-01-22 22:09 - 2021-01-22 22:09 - 000000916 _____ C:\ProgramData\Desktop\VLC media player.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001440 _____ C:\Users\Public\Desktop\Free Screen Video Recorder.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001440 _____ C:\ProgramData\Desktop\Free Screen Video Recorder.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001408 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000001408 _____ C:\ProgramData\Desktop\DVDVideoSoft Free Studio.lnk
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2021-01-22 22:02 - 2021-01-22 22:02 - 000000000 ____D C:\Program Files (x86)\DVDVideoSoft
2021-01-22 22:01 - 2021-01-22 22:02 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\DVDVideoSoft
2021-01-13 23:38 - 2021-01-13 23:38 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 23:37 - 2021-01-13 23:37 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 23:37 - 2021-01-13 23:37 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 23:37 - 2021-01-13 23:37 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 23:37 - 2021-01-13 23:37 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 23:37 - 2021-01-13 23:37 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 23:37 - 2021-01-13 23:37 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-13 23:36 - 2021-01-13 23:36 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 23:36 - 2021-01-13 23:36 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-13 23:36 - 2021-01-13 23:36 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 23:36 - 2021-01-13 23:36 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 23:36 - 2021-01-13 23:36 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 23:36 - 2021-01-13 23:36 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 23:36 - 2021-01-13 23:36 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 23:35 - 2021-01-13 23:35 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-13 23:35 - 2021-01-13 23:35 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 23:35 - 2021-01-13 23:35 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 23:35 - 2021-01-13 23:35 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 23:35 - 2021-01-13 23:35 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 23:35 - 2021-01-13 23:35 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-13 23:34 - 2021-01-13 23:34 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 23:34 - 2021-01-13 23:34 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 23:34 - 2021-01-13 23:34 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 23:34 - 2021-01-13 23:34 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-10 21:25 - 2021-01-10 21:25 - 011317568 _____ (Tim Kosse) C:\Users\Rodiče\Downloads\FileZilla_3.52.0.5_win64-setup.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-02-02 17:56 - 2020-11-08 10:09 - 000000000 ____D C:\FRST
2021-02-02 17:55 - 2020-11-08 10:09 - 002297856 _____ (Farbar) C:\Users\Rodiče\Desktop\FRST64.exe
2021-02-02 17:51 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-02 16:41 - 2020-06-22 01:58 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-02 16:41 - 2019-12-07 15:43 - 000716742 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-02 16:41 - 2019-12-07 15:43 - 000144920 _____ C:\WINDOWS\system32\perfc005.dat
2021-02-02 16:41 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-02 16:34 - 2020-06-22 02:00 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-02 16:34 - 2020-06-22 01:53 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-02 16:34 - 2019-12-10 19:14 - 000017260 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2021-02-02 16:34 - 2019-12-10 19:14 - 000013367 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2021-02-02 16:34 - 2019-12-10 19:14 - 000006607 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2021-02-02 16:34 - 2019-12-07 10:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-02-02 16:34 - 2018-04-23 08:59 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-02-02 16:34 - 2018-04-20 10:40 - 000000000 ____D C:\ProgramData\Comodo
2021-02-02 16:19 - 2018-04-20 11:18 - 000000000 ____D C:\Users\Rodiče\AppData\LocalLow\Mozilla
2021-02-02 15:39 - 2018-04-20 09:03 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-02-02 15:08 - 2018-04-20 10:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2021-02-02 15:04 - 2018-04-20 10:39 - 000000000 ____D C:\Program Files\Opera
2021-02-02 15:04 - 2018-04-20 10:38 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-02 15:03 - 2019-03-04 19:36 - 000007630 _____ C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
2021-02-02 13:34 - 2020-06-22 02:00 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-02-01 23:40 - 2020-01-26 22:42 - 000006085 _____ C:\ProgramData\DisplaySessionContainer21.log_backup1
2021-02-01 23:26 - 2018-04-20 11:53 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\FileZilla
2021-02-01 22:26 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-01 22:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-01 20:06 - 2020-06-22 01:53 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-01 00:41 - 2020-01-25 23:52 - 000006103 _____ C:\ProgramData\DisplaySessionContainer20.log_backup1
2021-01-31 09:04 - 2018-04-20 06:12 - 000000000 ____D C:\Users\Rodiče\AppData\Local\Packages
2021-01-30 23:35 - 2019-12-20 08:14 - 000008093 _____ C:\ProgramData\DisplaySessionContainer19.log_backup1
2021-01-30 19:52 - 2020-06-04 12:32 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-30 19:52 - 2020-06-04 12:32 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-01-30 19:52 - 2020-06-04 12:32 - 000002274 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-01-30 17:05 - 2018-04-20 10:38 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-29 13:27 - 2018-07-19 09:08 - 000000000 ____D C:\Users\Rodiče\AppData\Local\ElevatedDiagnostics
2021-01-28 22:44 - 2019-12-19 08:11 - 000006091 _____ C:\ProgramData\DisplaySessionContainer17.log_backup1
2021-01-28 13:23 - 2018-08-02 14:40 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\vlc
2021-01-27 16:25 - 2018-08-20 07:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2021-01-26 23:43 - 2019-12-18 08:12 - 000007692 _____ C:\ProgramData\DisplaySessionContainer15.log_backup1
2021-01-26 18:40 - 2018-09-17 19:47 - 000001927 _____ C:\Users\Rodiče\Desktop\FileZilla Client.lnk
2021-01-26 18:40 - 2018-04-20 11:53 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2021-01-26 18:40 - 2018-04-20 11:53 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2021-01-26 00:46 - 2019-12-17 22:56 - 000008066 _____ C:\ProgramData\DisplaySessionContainer14.log_backup1
2021-01-26 00:24 - 2018-04-20 10:12 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-25 07:14 - 2019-12-17 08:21 - 000007682 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
2021-01-23 14:56 - 2019-06-04 22:04 - 000000651 _____ C:\Users\Rodiče\Desktop\ESET Online Scanner.lnk
2021-01-23 04:33 - 2019-12-16 23:09 - 000005704 _____ C:\ProgramData\DisplaySessionContainer12.log_backup1
2021-01-23 04:33 - 2019-05-25 17:56 - 000000000 ____D C:\Users\Rodiče\AppData\Roaming\audacity
2021-01-22 22:36 - 2019-12-15 22:58 - 000007574 _____ C:\ProgramData\DisplaySessionContainer11.log_backup1
2021-01-22 21:37 - 2019-12-15 00:00 - 000006111 _____ C:\ProgramData\DisplaySessionContainer10.log_backup1
2021-01-19 23:44 - 2019-12-13 20:12 - 000008384 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2021-01-18 23:11 - 2019-12-13 08:11 - 000006106 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2021-01-18 13:55 - 2020-06-22 02:00 - 000004114 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1583605369
2021-01-18 13:55 - 2020-03-07 19:22 - 000001203 _____ C:\Users\Rodiče\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2021-01-18 13:16 - 2020-06-22 02:00 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-18 13:16 - 2020-06-22 02:00 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-16 23:04 - 2019-12-12 15:29 - 000006102 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2021-01-15 07:18 - 2019-12-10 21:46 - 000007688 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2021-01-14 12:42 - 2018-04-22 19:05 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-01-14 06:15 - 2020-06-22 01:53 - 000463568 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 06:13 - 2020-06-22 01:00 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-14 06:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-14 06:12 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-14 06:12 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-14 06:12 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-14 06:12 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 23:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 23:34 - 2020-06-22 01:55 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-13 23:25 - 2018-04-20 11:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 23:22 - 2018-04-20 11:27 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-12 07:04 - 2019-12-14 17:40 - 000008067 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2021-01-10 23:06 - 2019-12-13 20:21 - 000006623 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2021-01-07 22:51 - 2019-12-12 23:42 - 000004926 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
2021-01-07 00:22 - 2019-12-12 08:10 - 000006091 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2021-01-05 14:38 - 2020-12-13 19:33 - 000001571 _____ C:\Users\Rodiče\Desktop\++úkoly pro začátek 2021.lnk
2021-01-04 15:01 - 2018-05-21 21:49 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-01-03 22:56 - 2020-06-22 01:22 - 000000000 ____D C:\Users\Rodiče
==================== Files in the root of some directories ========
2019-12-10 20:23 - 2019-12-10 20:23 - 000009237 _____ () C:\Users\Rodiče\AppData\Local\recently-used.xbel
2019-03-04 19:36 - 2021-02-02 15:03 - 000007630 _____ () C:\Users\Rodiče\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-01-2021
Ran by Rodiče (02-02-2021 17:58:25)
Running from C:\Users\Rodiče\Desktop
Windows 10 Pro Version 20H2 19042.746 (X64) (2020-06-22 01:00:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1059776903-3361009417-470717186-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1059776903-3361009417-470717186-503 - Limited - Disabled)
Guest (S-1-5-21-1059776903-3361009417-470717186-501 - Limited - Disabled)
Rodiče (S-1-5-21-1059776903-3361009417-470717186-1001 - Administrator - Enabled) => C:\Users\Rodiče
WDAGUtilityAccount (S-1-5-21-1059776903-3361009417-470717186-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader 4.9 (HKLM\...\{3068BA02-E08D-475B-9F9D-45D1076BC5E8}) (Version: 4.9.0.3032 - Open Media LLC)
4K YouTube to MP3 3.8 (HKLM\...\{755CCB2F-61EE-4FF3-A23A-91D30925B292}) (Version: 3.8.0.3032 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{5737101A-27C4-408A-8A57-D1DC78DF84B4}) (Version: 8.2.1 - Hewlett-Packard) Hidden
7-Zip 18.01 (x64) (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
AVI ReComp 1.5.6 (HKLM-x32\...\AVI ReComp) (Version: 1.5.6 - Mateusz Gola (aka Prozac))
AviSynth 2.5 (HKLM-x32\...\Avisynth) (Version: - )
BIOVIA Draw 2019 (HKLM\...\{59F76C5F-3249-4CBA-8E6D-2475D99FD7E9}) (Version: 19.1.0.1792 - Dassault Systemes)
Blender (HKLM\...\{053A73FE-DBF8-4674-8EC0-63BD07615695}) (Version: 2.81.0 - Blender Foundation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
CD Ripper a WAV - MP3 Encoder (08.01.2008) (HKLM-x32\...\CD Ripper a WAV - MP3 Encoder_is1) (Version: - Radek Hemelík)
CorelDRAW Graphics Suite 12 (HKLM-x32\...\{505AFDC0-5E72-4928-8368-5DEA385E3647}) (Version: 12.0.0.536 - Corel Corporation)
FileZilla Client 3.52.2 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\FileZilla Client) (Version: 3.52.2 - Tim Kosse)
FormatFactory 4.2.5.0 (HKLM-x32\...\FormatFactory) (Version: 4.2.5.0 - Free Time)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.1.0.5096 - Foxit Software Inc.)
Free Screen Video Recorder (HKLM-x32\...\Free Screen Video Recorder_is1) (Version: 3.0.50.708 - Digital Wave Ltd)
FreeCommander XE (HKLM-x32\...\FreeCommander XE_is1) (Version: - Marek Jasinski)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 45.0.12.0 - Google LLC)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.104 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
HP LaserJet 100 color MFP M175 (HKLM-x32\...\{965D0289-10E1-45ec-B11F-A60AC9AE8D4D}) (Version: - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.34.31 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{CB239E79-564D-4204-923F-CB192A484B51}) (Version: 12.18.34.21 - HP Inc.)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
Inkscape 0.92.4 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.92.4.0 - Inkscape project)
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.1.413499.43 - Comodo)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
iTunes (HKLM\...\{E3736ECC-7DD6-4E3E-B3D3-C9281DCD4064}) (Version: 12.11.0.26 - Apple Inc.)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
Lamer (HKLM-x32\...\Lamer) (Version: - )
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 14.6.0.0 - EditShare)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mount Blue - verze 1.0.11.0 (HKLM-x32\...\{121F184B-05AD-43F1-9F20-6075B9E6DFCA}_is1) (Version: 1.0.11.0 - Mount Blue s.r.o.)
Mozilla Firefox 85.0 (x64 cs) (HKLM\...\Mozilla Firefox 85.0 (x64 cs)) (Version: 85.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Kombustor 3.5.0 (HKLM\...\{9598DA62-2AE8-426D-9C86-BEA96AC6721E}_is1) (Version: - MSI Co., LTD)
MuseScore 2 (HKLM-x32\...\{0317B5F7-01A3-4640-A491-456B453CCAB3}) (Version: 2.2.1 - Werner Schweer and Others)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (HKLM\...\{90150000-001F-0405-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (HKLM\...\{90150000-001F-041B-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
NVIDIA Ovladače grafiky 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
OpenShot Video Editor verze 2.5.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.5.1 - OpenShot Studios, LLC)
OpenVPN 2.4.8-I602-Win10 (HKLM\...\OpenVPN) (Version: 2.4.8-I602-Win10 - OpenVPN Technologies, Inc.)
Opera Stable 73.0.3856.344 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Opera 73.0.3856.344) (Version: 73.0.3856.344 - Opera Software)
PhotoFiltre 7 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\PhotoFiltre 7) (Version: - )
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
PSPad editor (HKLM-x32\...\PSPad editor_is1) (Version: 5.0.3.377 - Jan Fiala)
Python 3.7.1 (32-bit) (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\{850389b4-a056-4ecc-9c8d-e3ef594fc929}) (Version: 3.7.1150.0 - Python Software Foundation)
Python 3.7.1 Core Interpreter (32-bit) (HKLM-x32\...\{5439005C-640E-473B-8374-5AA6BA9F8780}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Development Libraries (32-bit) (HKLM-x32\...\{D1F1A0E0-328E-438D-A18C-ACE71BCE10B7}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Documentation (32-bit) (HKLM-x32\...\{DAB8D967-E729-443C-96A7-BFE581D8B0B0}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Executables (32-bit) (HKLM-x32\...\{FFE80953-6126-49BF-9CC0-57113A8AAA37}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 pip Bootstrap (32-bit) (HKLM-x32\...\{4CAAB4B2-69D4-437A-870B-9AB2D0703E56}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Standard Library (32-bit) (HKLM-x32\...\{E8A32F30-F5EC-4724-8F99-A51B69176B2F}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{AC008439-97C6-4079-B451-069A1AC86C9D}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Test Suite (32-bit) (HKLM-x32\...\{A9C09A2F-4ABC-41EF-B3F7-629C8178186B}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python 3.7.1 Utility Scripts (32-bit) (HKLM-x32\...\{D3397B2B-DC1F-4EDF-BFAE-827431206FB6}) (Version: 3.7.1150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{C3A1C6B1-9096-47A7-AB5C-09114002A996}) (Version: 3.7.6501.0 - Python Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Skype verze 8.68 (HKLM-x32\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
TAP-Windows 9.24.2 (HKLM\...\TAP-Windows) (Version: 9.24.2 - OpenVPN Technologies, Inc.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.2.2756 - TeamViewer)
Theophilos 3 (HKLM-x32\...\Theophilos_is1) (Version: - )
Trekker (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\Trekker) (Version: - )
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VdhCoApp 1.6.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
VobSub 2.23 (HKLM-x32\...\VobSub) (Version: 2.23 - Gabest)
Vzum (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\6cfa0c5674100ff8) (Version: 1.0.0.18 - Vzum)
WinDirStat 1.1.2 (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\WinDirStat) (Version: - )
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
Zoner Callisto 5 FREE (HKLM-x32\...\ZonerCallisto5_CZ_is1) (Version: 5.0.5000.16 - ZONER software)
Zoom (HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-08] (Autodesk Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2020-12-19] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-13] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-06-16] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.1.778.0_x64__v10z8vjag6ke6 [2020-12-19] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-01-19] (NVIDIA Corp.)
One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2020.1031.1.0_x64__8kea50m9krsh2 [2020-11-30] (Code Spark)
Rozšíření pro video MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-10-04] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1059776903-3361009417-470717186-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files (x86)\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-04-16] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\45.0.12.0\drivefsext.dll [2021-01-29] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_90685a092bcf58c7\nvshext.dll [2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2018-04-16] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1_S-1-5-21-1059776903-3361009417-470717186-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files (x86)\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.XVID] => C:\WINDOWS\system32\xvidvfw.dll [255488 2011-05-30] () [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [240640 2011-05-30] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-08-20 07:29 - 2021-01-15 21:28 - 002072064 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll
2018-08-20 07:29 - 2021-01-15 21:28 - 000310784 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libegl.dll
2018-08-20 07:29 - 2021-01-15 21:28 - 006903808 _____ () [File not signed] C:\Program Files (x86)\Microsoft\Skype for Desktop\libglesv2.dll
2018-04-20 09:39 - 2014-11-02 17:45 - 000029184 _____ () [File not signed] C:\Program Files (x86)\PSPad editor\pspshellx64.dll
2009-09-16 17:44 - 2009-09-16 17:44 - 000153088 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hptcpmib.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000331264 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\HpTcpMon.dll
2009-09-16 10:44 - 2009-09-16 10:44 - 000132096 _____ (Hewlett Packard) [File not signed] C:\WINDOWS\System32\hpzjrd01.dll
2010-08-06 10:15 - 2010-08-06 10:15 - 000071680 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzinw12.dll
2010-08-06 10:15 - 2010-08-06 10:15 - 000089600 _____ (Hewlett-Packard) [File not signed] c:\windows\system32\hpzipm12.dll
2018-04-20 08:38 - 2018-01-28 16:00 - 000075776 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2009-09-16 17:45 - 2009-09-16 17:45 - 000317440 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\System32\HPTcpMUI.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\SysWOW64\gsfkill.exe:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\SysWOW64\gsw32.exe:$CmdTcID [64]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2020-04-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-05-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-15] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 14:46 - 2017-09-29 14:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;%DRAW_DEPLOY_PATH%
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rodiče\Pictures\Na plochu\Tapeta galerie Windows Fotogalerie.jpg
DNS Servers: 217.31.204.130 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "Xvid"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "ISUSPM Startup"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "ApowerMirror"
HKU\S-1-5-21-1059776903-3361009417-470717186-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A424BF02-E14C-499C-86DF-A53C8406AC13}] => (Allow) C:\Program Files\OpenShot Video Editor\openshot-qt.exe (OpenShot Studios, LLC) [File not signed]
FirewallRules: [{2A8E322D-DB09-4777-BEF8-85F717EA43AB}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{C7023315-ECCA-4F7E-8FEC-877FF993D65C}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{FEA261FE-9484-47ED-A0EC-85B6EF946330}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{68024909-6C88-4773-A383-06F4412E5059}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{091C8614-6FBB-470A-A911-10F112F7EFE6}] => (Allow) C:\Users\Rodiče\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{405CC631-D2A6-4B3D-B04A-C7524BFECE13}] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [{E0809370-AD30-4BC8-A7E7-4B4A6BF22DAA}] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [UDP Query User{A137714D-326C-4F7D-8C3B-BDA6F60E49C6}C:\program files (x86)\hyl\mountblueklient\mountblue.exe] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [TCP Query User{D2BE77D0-5E9C-4AD1-9FB1-2B796B5AC74E}C:\program files (x86)\hyl\mountblueklient\mountblue.exe] => (Allow) C:\program files (x86)\hyl\mountblueklient\mountblue.exe (HYL) [File not signed]
FirewallRules: [{47E164B0-E14E-4A19-9248-A0B0390FC906}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BCC24B5E-1A5C-44A0-87C3-C7EC762E27ED}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FFDC2B7D-7E31-48BF-B66E-0D5163414DE6}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{915F305A-8E8F-4541-8936-78BF3D713CCD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FB51D1B1-B172-455D-B426-0EAE3349B4B4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{82E3B009-B5F7-4ABA-8B3D-F0796690B078}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B01EDECA-3813-49A4-8F49-931AABD0B606}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{287E3077-3536-4B5B-99E5-BD4035269B15}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0F93161A-9644-42CF-A50B-BD908D9E919C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ED14C431-317F-428E-A999-01A0C4DC88BD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{278C48CF-B207-4578-B246-2A8495E93694}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{AEA61D1F-60B3-404D-BA29-46D4AA06C3DA}] => (Allow) C:\Program Files\Lightworks\ntcardvt.exe (EditShare EMEA (X-Edit Limited) -> Editshare EMEA)
FirewallRules: [{4EF614B8-A10D-4AC6-8677-23954132A09D}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{D24521B1-86ED-4FE5-B808-021313C25F05}] => (Allow) C:\Program Files\Lightworks\lightworks.exe (EditShare EMEA (X-Edit Limited) -> )
FirewallRules: [{6BDB7A01-0CBC-4576-8FA6-A687D85B88BB}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{A48932C8-0486-4FC2-ABFD-33D087394DA1}C:\program files\filezilla ftp client\filezilla.exe] => (Block) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project)
FirewallRules: [TCP Query User{F93F22C4-B743-4457-B7E6-7C4CE24AFF83}C:\program files\filezilla ftp client\filezilla.exe] => (Block) C:\program files\filezilla ftp client\filezilla.exe (Tim Kosse -> FileZilla Project)
FirewallRules: [{A6F6588B-73F2-438B-A180-205ECC920811}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3EC23B7B-BE8E-4B16-A534-4050996ECC53}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3143047F-6615-484B-9D97-103DE5133A61}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7EBA3272-EF64-4CA3-8F02-5F6BE285DBF1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{517E4B45-F99F-4043-9D7A-E5A0393CBE16}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A1A4D9A7-CD12-4DF2-B388-2F8CDB8CD243}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7B44E337-2575-43D0-B925-33BAEE74D26B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{11C7A23E-C0D5-44B0-B1E5-6B25C11015E1}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0D46471C-0733-4378-9CD9-5FFE232EA38B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8CA02779-17D3-4190-8262-DA05BF7CF23B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{43A0604B-344B-43A8-BAE9-6DD18C98CF59}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{C30328F3-A12D-48B4-972E-398C9A1D91C5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{332E273A-E1E2-4DAF-922E-69B6C24ADAFD}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{0A9D803B-2D36-46AE-8C7D-A39762274D38}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{D8CDEE9E-7D81-4A9F-A0F8-574AFB7318BD}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{B09C9A5D-F7AE-4A4A-A5BD-D9536F68E09D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8C919AD5-13C9-4345-A06E-FDEF626AA5C3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6AD7771F-252C-432A-A2DD-EF184CEA4DD3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7335558F-CB0F-445B-8CEE-9ABCADEEBE81}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CF627FC6-E633-4272-9FA9-7BE4D3610D53}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{08200A88-9ED9-458E-9A85-CDB876F8CB89}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2EBAC930-9787-4BFB-8E5D-414178F0FE0A}] => (Allow) C:\Program Files\Opera\73.0.3856.329\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{D1930168-BCD4-4603-89C3-319F9386E4A0}] => (Allow) C:\Program Files\Opera\73.0.3856.344\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{1A52CB29-EF5A-4E66-B918-898E3490FA4E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{9B225C30-6E64-4A03-80F3-D35D1A057AB3}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{09E6DCE9-64B2-4A74-87FE-9CF301BE9F8E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
13-01-2021 23:25:20 Instalační služba modulů systému Windows
23-01-2021 06:23:13 Naplánovaný kontrolní bod
01-02-2021 13:47:46 Naplánovaný kontrolní bod
02-02-2021 14:47:21 Removed COMODO Antivirus
==================== Faulty Device Manager Devices ============
Name: Myš Microsoft PS/2
Description: Myš Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: ========================
Application errors:
==================
Error: (02/02/2021 04:34:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: app_updater.exe, verze: 1.1.5.708, časové razítko: 0x5d22f5b2
Název chybujícího modulu: zlib1.dll, verze: 1.2.8.0, časové razítko: 0x5190dfa0
Kód výjimky: 0xc0000005
Posun chyby: 0x00003650
ID chybujícího procesu: 0xef8
Čas spuštění chybující aplikace: 0x01d6f978eb889018
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
ID zprávy: e1b51396-891e-4c9e-a5ad-8563bc844431
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (02/02/2021 04:34:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Digital Wave Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/02/2021 04:34:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CmdAgentProt neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (02/02/2021 04:34:16 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: Služba DCOM zjistila chybu 1115 při pokusu o spuštění služby SecurityHealthService s argumenty Není k dispozici za účelem spuštění serveru:
{8C9C0DB7-2CBA-40F1-AFE0-C55740DD91A0}
Error: (02/02/2021 04:33:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Digital Wave Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (02/02/2021 04:33:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CmdAgentProt neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (02/02/2021 04:33:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CmdAgentProt neuspěla při spuštění v důsledku následující chyby:
V systému Windows nelze ověřit digitální podpis tohoto souboru. Při nedávné změně hardwaru nebo softwaru mohl být nainstalován nesprávně podepsaný nebo poškozený soubor nebo soubor škodlivého softwaru z neznámého zdroje.
Error: (02/02/2021 04:33:00 PM) (Source: Microsoft-Windows-Bits-Client) (EventID: 16392) (User: NT AUTHORITY)
Description: Službu BITS se nezdařilo spustit. Chyba 2147500053.
Error: (02/02/2021 04:28:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Digital Wave Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Windows Defender:
===================================
Date: 2021-02-02 15:51:31.1990000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.331.53.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17800.5
Kód chyby: 0x8024001e
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2020-11-27 16:57:40.7800000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.323.1129.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17400.5
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2020-11-27 16:57:40.7800000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.323.1129.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17400.5
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
CodeIntegrity:
===================================
Date: 2021-02-02 17:57:05.8250000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:57:05.8200000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-02-02 17:57:05.6960000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:57:05.6900000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-02-02 17:55:17.5040000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:55:17.4980000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-02-02 17:54:24.4060000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\iseguard64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-02-02 17:54:24.3990000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Hewlett-Packard K01 v02.90 07/16/2013
Motherboard: Hewlett-Packard 3396
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 54%
Total physical RAM: 8136.5 MB
Available physical RAM: 3727.86 MB
Total Virtual: 10440.5 MB
Available Virtual: 5006.28 MB
==================== Drives ================================
Drive a: (disk_250) (Fixed) (Total:232.88 GB) (Free:194.8 GB) NTFS
Drive b: (disk_2T) (Fixed) (Total:1863.01 GB) (Free:480.42 GB) NTFS
Drive c: () (Fixed) (Total:465.16 GB) (Free:261.81 GB) NTFS
Drive d: (disk_cerveny_500G) (Fixed) (Total:465.76 GB) (Free:18.68 GB) NTFS
Drive g: (Google Drive) (Fixed) (Total:465.16 GB) (Free:248.72 GB) FAT32
\\?\Volume{7115fa8c-d32f-4963-995c-145ef639c47d}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{a84dd0c2-2be1-4595-bdfe-1a13267aa4c3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Size: 1863 GB) (Disk ID: 13D30A3E)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 227117F8)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 4C0C2488)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118266
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odebrání COMODO z pc
Zkusíme vyčistit. Otevřte poznámkový blok a zkopírujte do něj:
Pak zkuste znovu tu odinstalaci. Pokud znovu vyhodí chybu, zkuste odinstalaci v nouz. režimu. Popř. zkuste tento postup: https://wikifixes.com/cs/errors/0x/%20e ... gJQr_D_BwE .
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
C:\Program Files\Bonjour
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {28C91802-C618-4BFA-8B69-187904119CAF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-20] (Google Inc -> Google Inc.)
Task: {76D0193C-A8C8-45E7-84A2-334F3C2A8DB3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-04-20] (Google Inc -> Google Inc.)
C:\DumpStack.log.tmp
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
AlternateDataStreams: C:\WINDOWS\SysWOW64\gsfkill.exe:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\SysWOW64\gsw32.exe:$CmdTcID [64]
EmptyTemp:
End
Pak zkuste znovu tu odinstalaci. Pokud znovu vyhodí chybu, zkuste odinstalaci v nouz. režimu. Popř. zkuste tento postup: https://wikifixes.com/cs/errors/0x/%20e ... gJQr_D_BwE .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Odebrání COMODO z pc
Rudy,
vyčistil jsem fixlistem a odinstalace nešla nijak...
V nouzovém režimu jsem spustil:
odinstalační aplikaci Comoda, ta už toho zvládla více a nechal ji podruhé restartovat
CCleanerem jsem vyčistil registry - tam toho ještě bylo.. a odmazal Comodo po spuštění (předtím tam nebylo vidět)
ve Správci úloh zastavil, co šlo
znovu spustil odinstalační aplikaci Comoda a nechal ji podruhé restartovat
a po druhém restartu již ne do nouzového režimu mi zahlásila, že Comodo completed odinstaled
Děkuji za pomoc, přidaliji logy po vyčištění fixlistem a po odinstalaci Comoda
vyčistil jsem fixlistem a odinstalace nešla nijak...
V nouzovém režimu jsem spustil:
odinstalační aplikaci Comoda, ta už toho zvládla více a nechal ji podruhé restartovat
CCleanerem jsem vyčistil registry - tam toho ještě bylo.. a odmazal Comodo po spuštění (předtím tam nebylo vidět)
ve Správci úloh zastavil, co šlo
znovu spustil odinstalační aplikaci Comoda a nechal ji podruhé restartovat
a po druhém restartu již ne do nouzového režimu mi zahlásila, že Comodo completed odinstaled
Děkuji za pomoc, přidaliji logy po vyčištění fixlistem a po odinstalaci Comoda
Re: Odebrání COMODO z pc
Rudy,
opět srdečně děkuji a přeji Vám pevné zdraví a
Boží požehnání pro Vaši skvělou práci a do Vašeho osobního života
S pozdravem
Pavel Papežík
opět srdečně děkuji a přeji Vám pevné zdraví a
Boží požehnání pro Vaši skvělou práci a do Vašeho osobního života
S pozdravem
Pavel Papežík
-
Rudy
- Site Admin
- Příspěvky: 118266
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Odebrání COMODO z pc
Děkuji a jsem rád, že se vám to podařilo. Byla to systémová chyba, která až tolik není v naší kompetenci. Jsme bezpečnostní fórum. Bylo třeba Googlit. Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?