Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-10-2021
Ran by novyk (administrator) on LAPTOP-9DQ79I9M (LENOVO 81C7) (12-10-2021 11:45:25)
Running from C:\Users\novyk\Downloads
Loaded Profiles: novyk
Platform: Microsoft Windows 10 Home Version 20H2 19042.1237 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0334672.inf_amd64_1baddce1129fddd6\B334632\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Conexant Systems LLC -> Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Conexant Systems, Inc. -> Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Conexant Systems, Inc. -> Conexant Systems, Inc.) C:\Windows\System32\SASrv.exe
(Conexant Systems, Inc.) [File not signed] C:\Program Files\CONEXANT\SAII\CxUtilSvc.exe
(Facebook, Inc. -> Facebook, Inc.) C:\Users\novyk\AppData\Local\Programs\Messenger\Messenger.exe <6>
(Fortemedia Inc -> ) C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <23>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_69d915519e0a2ac8\aesm_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_dc7123fc81a12ed5\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_dc7123fc81a12ed5\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_dc7123fc81a12ed5\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_dc7123fc81a12ed5\IntelCpHeciSvc.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.Amd64.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\Lenovo.Vantage.AddinHost.exe <3>
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\LenovoUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\novyk\AppData\Local\Microsoft\OneDrive\21.180.0905.0007\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_4.1.6.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCopyAccelerator.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [914344 2017-06-14] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [603992 2017-06-23] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM\...\Run: [ForteConfig] => C:\Program Files\Conexant\ForteConfig\fmapp.exe [49056 2010-10-26] (Fortemedia Inc -> )
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1832280 2017-06-07] (Conexant Systems, Inc. -> Conexant Systems, Inc.)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [665568 2018-06-29] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [870368 2018-06-29] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1318024 2020-01-15] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3412696 2021-02-05] (Valve -> Valve Corporation)
HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\Run: [Adobe Reader Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AdobeCollabSync.exe [5397216 2021-09-25] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\Run: [EPSDNMON] => ""
HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\Run: [Facebook.MessengerDesktop] => C:\Users\novyk\AppData\Local\Programs\Messenger\Messenger.exe messenger://openAtLogin
HKLM\...\Windows x64\Print Processors\Canon MG3600 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCT.DLL [30208 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG3600 series: C:\WINDOWS\system32\CNMLMCT.DLL [406528 2015-03-12] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\EPSON PC-FAX Driver2 64Monitor: C:\WINDOWS\system32\EFXLM16A.DLL [182784 2018-06-29] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON WF-C5710 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBSHE.DLL [183296 2016-12-21] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EpsonNet Print Port: C:\WINDOWS\system32\enppmon.dll [500736 2016-09-14] (SEIKO EPSON CORPORATION) [File not signed]
HKLM\...\Print\Monitors\HP B011 Status Monitor: C:\WINDOWS\system32\hpinkstsB011LM.dll [328552 2012-01-11] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\KX Language Monitor: C:\WINDOWS\system32\KXPLM64.DLL [134784 2019-03-31] (Microsoft Windows Hardware Compatibility Publisher -> KYOCERA Document Solutions Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\94.0.4606.81\Installer\chrmstp.exe [2021-10-08] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {05EED915-69CD-47C7-93AD-AD5D867A847B} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {14EE69B1-3A00-49F8-B1B3-4984E68936CF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {15F20BF5-D0CC-4CB6-8D8A-559AF5316997} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {1802D7C1-6B2D-48DF-975D-45F3D8D1E803} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-05-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1B19F034-198C-4602-BF9E-68A19ECD433E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\b8098379-20cf-4796-9f16-26548ef1ea74 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {25845268-10D9-4139-AC64-5B9642AB6F57} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\26001770-04c3-43c8-885d-6c233d30f0e5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {268A3877-99A7-499D-8FD2-0008F9137230} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {302D33B1-7090-4825-B482-D020602555BF} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62440 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {57F41F3E-F93D-4814-8A3B-89DC93451813} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {5A7E8C88-F8FB-479B-9D18-79BB6CBB0A21} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\49a3ad14-21a0-4647-af3a-83e3125c39dd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {5FE25B7B-EFB8-48C7-BE11-5EC049F0F91A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {67493855-1B14-4E7A-8A1A-5D6E56655A19} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6e2936ea-6090-4ee3-b576-a4d595315a7d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {681A0486-7C37-49D9-9B2E-DAE04FFBB6FE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6BBF6ECF-B0A9-4278-A0D6-210885F7005A} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\ScheduleEventAction.exe [26664 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
Task: {732B7235-8368-428C-A8DD-7491960AF92D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {808886CF-B885-4F6F-BF2A-9122AD507483} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21976976 2021-09-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {8D174A4D-19BC-48BE-947E-F55BFA80661C} - System32\Tasks\EPSON WF-C5710 Series Update {EE8E0D04-54B0-4E03-BCD0-A605EA1EDBA4} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSHE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {942A85BB-E587-4E51-88BE-DEDC628F0334} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A8690AC-C3CA-4CEA-A0BC-FAF948D338C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-21] (Google Inc -> Google Inc.)
Task: {A630AE73-ADA9-4B7F-8B89-02B4CDBC05F6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-10-21] (Google Inc -> Google Inc.)
Task: {CB0E996D-67ED-4AB4-A116-35276D72D7CF} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe
Task: {DBB80EE3-C3DA-4AD9-AC9B-67A8F7034C2D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {E1107649-FE45-479D-B5C3-9261D2914FC0} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e99c159b-03c7-4650-9046-f1d175bc8114 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
Task: {E597E8EE-214A-420E-82AD-A035EDDBDD75} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MpCmdRun.exe [884544 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E64BE6E2-627C-4AE3-946A-1B0A6F32FAEA} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144456 2021-07-15] (Lenovo -> Lenovo Group Ltd.)
Task: {FCC4FB2C-5C2C-45C1-B1A9-190881CE974F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [110440 2021-10-08] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\EPSON WF-C5710 Series Update {EE8E0D04-54B0-4E03-BCD0-A605EA1EDBA4}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSSHE.EXE:/EXE:{EE8E0D04-54B0-4E03-BCD0-A605EA1EDBA4} /F:UpdateWORKGROUP\LAPTOP-9DQ79I9M$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 78.156.32.2 8.8.8.8
Tcpip\..\Interfaces\{b5faec51-91c8-4ec1-a5d5-7b58b666c7fc}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{dd1548fa-ab59-4755-94f1-34a8194a1f6d}: [DhcpNameServer] 78.156.32.2 8.8.8.8
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\novyk\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-12]
Edge Notifications: Default -> hxxps://ovbmail.cz
FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [
e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2020-11-09] [Legacy] [not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-09-25] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default [2021-10-12]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://ke-utc.appspot.com; hxxps://mail.ovbmail.cz; hxxps://notification-time.com; hxxps://ovbmail.cz; hxxps://web.skype.com; hxxps://
www.dedoles.cz; hxxps://
www.facebook.com; hxxps://
www.megaknihy.cz; hxxps://
www.vimvic.cz; hxxps://
www.wunderlist.com
CHR Extension: (Prezentace) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-10-21]
CHR Extension: (Dokumenty) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-21]
CHR Extension: (Disk Google) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-21]
CHR Extension: (Slate) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmhmcmgkegfffbbfobhjpdbimgmoohap [2019-05-29]
CHR Extension: (Tabulky) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-10-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-09-23]
CHR Extension: (OneNote Web Clipper) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gojbdfnpnhogfdgjbigejoaolejmgdhk [2021-07-25]
CHR Extension: (VratnePenize.cz Připomínáček) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiekfaemafmplemocgimeccahephhdgf [2021-04-19]
CHR Extension: (FormApps Extension) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2020-08-18]
CHR Extension: (Fair AdBlocker) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgblnfidahcdcjddiepkckcfdhpknnjh [2021-03-17]
CHR Extension: (Přihlášení do aplikace Partner24) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcimcldmgjgkdhdgifbfiblffdhddbpa [2020-08-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\novyk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-24]
CHR Profile: C:\Users\novyk\AppData\Local\Google\Chrome\User Data\System Profile [2018-10-22]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9250696 2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
R2 CxUtilSvc; C:\Program Files\Conexant\SAII\CxUtilSvc.exe [132096 2016-04-28] (Conexant Systems, Inc.) [File not signed]
S2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [194048 2017-03-07] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2017-08-23] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81896 2021-08-12] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.8.23.0\LenovoVantageService.exe [31248 2021-07-21] (Lenovo -> Lenovo Group Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\NisSrv.exe [2855512 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2109.6-0\MsMpEng.exe [128392 2021-10-06] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 BHTPCRDR; C:\WINDOWS\System32\drivers\bhtpcrdr.sys [174408 2018-01-26] (BayHub Technology Inc. -> BayHubTech/O2Micro)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 SNP2UVCW10; C:\WINDOWS\system32\DRIVERS\snUVCg2.sys [1710128 2017-11-05] (Sonix Technology CO., LTD -> Sonix Tech. Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [434424 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86264 2021-10-06] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-12 11:45 - 2021-10-12 11:45 - 000023779 _____ C:\Users\novyk\Downloads\FRST.txt
2021-10-12 11:45 - 2021-10-12 11:45 - 000000000 ____D C:\FRST
2021-10-12 11:44 - 2021-10-12 11:45 - 002310656 _____ (Farbar) C:\Users\novyk\Downloads\FRST64.exe
2021-10-08 15:09 - 2021-10-08 15:09 - 000095633 _____ C:\Users\novyk\Downloads\Potvrzeni_o_celkovem_doplaceni_pujcky.pdf
2021-10-07 19:13 - 2021-10-07 19:13 - 000094313 _____ C:\Users\novyk\OneDrive\Dokumenty\hotovcová uniqa.pdf
2021-10-07 19:09 - 2021-10-07 19:09 - 000100573 _____ C:\Users\novyk\OneDrive\Dokumenty\hotovcová výpověď čsob.pdf
2021-10-07 19:00 - 2021-10-07 19:00 - 000554659 _____ C:\Users\novyk\Downloads\Modelace (7).pdf
2021-10-07 18:59 - 2021-10-07 18:59 - 000554199 _____ C:\Users\novyk\Downloads\Modelace 400.pdf
2021-10-07 17:06 - 2021-10-07 17:06 - 000262786 _____ C:\Users\novyk\Downloads\032325205889_20161214 (2).pdf
2021-10-07 15:52 - 2021-10-07 15:53 - 002161166 _____ C:\Users\novyk\OneDrive\Dokumenty\img20211007_15531601.pdf
2021-10-07 14:36 - 2021-10-07 14:36 - 000115956 _____ C:\Users\novyk\OneDrive\Dokumenty\img20211007_14365958.pdf
2021-10-07 14:35 - 2021-10-07 14:36 - 002125796 _____ C:\Users\novyk\OneDrive\Dokumenty\img20211007_14362764.pdf
2021-10-05 18:33 - 2021-10-05 18:33 - 000075798 _____ C:\Users\novyk\Downloads\control_tools_platby (6).pdf
2021-10-05 18:05 - 2021-10-05 18:05 - 000057895 _____ C:\Users\novyk\Downloads\SbernaListina-2021-10-05 (1).pdf
2021-10-05 17:57 - 2021-10-05 18:01 - 000000000 ____D C:\Users\novyk\OneDrive\Dokumenty\kája
2021-10-05 10:49 - 2021-10-05 10:49 - 000057913 _____ C:\Users\novyk\Downloads\SbernaListina-2021-10-05.pdf
2021-10-04 19:04 - 2021-10-04 19:04 - 000528556 _____ C:\Users\novyk\Downloads\Modelace (6).pdf
2021-10-04 11:39 - 2021-10-04 11:39 - 000200208 _____ C:\Users\novyk\Downloads\Modelace (5).pdf
2021-10-04 11:32 - 2021-10-04 11:32 - 000127032 _____ C:\Users\novyk\Downloads\OVB Newsletter 092021 Hypoteční podpora.pdf
2021-10-04 11:31 - 2021-10-04 11:31 - 000164140 _____ C:\Users\novyk\Downloads\Calc-9000078708-001.pdf
2021-10-03 18:35 - 2021-10-03 18:35 - 001435172 _____ C:\Users\novyk\Downloads\Modelový příklad - vlastní nabídka.pdf
2021-10-01 10:28 - 2021-10-01 10:28 - 001921443 _____ C:\Users\novyk\Downloads\Ruzickova_KNZ_2FX_nabidka_211001_102350.pdf
2021-10-01 09:25 - 2021-10-01 09:25 - 000299067 _____ C:\Users\novyk\Downloads\Chratstna_KNZ_2FX_modelace_211001_092052.pdf
2021-09-30 14:11 - 2021-09-30 14:37 - 000367913 _____ C:\Users\novyk\Downloads\PA-2007-tofill-IDppCT-2009.pdf
2021-09-30 14:09 - 2021-09-30 14:09 - 002488619 _____ C:\Users\novyk\Downloads\032326054854_20170629_1221.PDF
2021-09-30 11:32 - 2021-09-30 11:32 - 000384893 _____ C:\Users\novyk\Downloads\sport-01 (5).pdf
2021-09-26 16:45 - 2021-09-26 16:45 - 000201861 _____ C:\Users\novyk\Downloads\4106849_ProvizniVypis_2021009.pdf
2021-09-26 16:42 - 2021-09-26 16:42 - 000198062 _____ C:\Users\novyk\Downloads\4104808_ProvizniVypis_2021009.pdf
2021-09-26 16:39 - 2021-09-26 16:39 - 000198909 _____ C:\Users\novyk\Downloads\4109713_ProvizniVypis_2021009.pdf
2021-09-26 10:13 - 2021-09-26 10:13 - 000318525 _____ C:\Users\novyk\Downloads\467751_ProvizniVypis_2021009 (1).pdf
2021-09-26 10:12 - 2021-09-26 10:12 - 000199934 _____ C:\Users\novyk\Downloads\467751_ProvizniVypis_2021009.pdf
2021-09-23 17:08 - 2021-09-23 17:08 - 004752630 _____ C:\Users\novyk\Downloads\032346640709_20210203_0743.PDF
2021-09-23 17:08 - 2021-09-23 17:08 - 004390597 _____ C:\Users\novyk\Downloads\032346760662_20210302_1318.PDF
2021-09-23 14:37 - 2021-09-23 14:38 - 001887322 _____ C:\Users\novyk\OneDrive\Dokumenty\pov a hav procházka.pdf
2021-09-23 14:26 - 2021-09-23 14:26 - 000187707 _____ C:\Users\novyk\Downloads\Navrh pojistne smlouvy.pdf
2021-09-23 14:26 - 2021-09-23 14:26 - 000067300 _____ C:\Users\novyk\Downloads\Prozatimni Zelena karta na 30 dnu.pdf
2021-09-23 11:28 - 2021-09-23 11:28 - 000059624 _____ C:\Users\novyk\Downloads\SU Potvrzeni o prijmu (1).pdf
2021-09-21 17:17 - 2021-09-21 17:17 - 000637572 _____ C:\Users\novyk\Downloads\816c672946a7797ab74f8f494d7fae53ea0d43ff.pdf
2021-09-21 17:17 - 2021-09-21 17:17 - 000347810 _____ C:\Users\novyk\Downloads\9dd939b492bfce09af8b898282ce1d6a570f020e.pdf
2021-09-21 11:44 - 2021-09-21 11:44 - 000197069 _____ C:\Users\novyk\Downloads\4105618_ProvizniVypis_2021007.pdf
2021-09-20 11:20 - 2021-09-20 11:20 - 000239728 _____ C:\Users\novyk\Downloads\Kalkulace.pdf
2021-09-19 18:55 - 2021-09-19 18:55 - 000208634 _____ C:\Users\novyk\OneDrive\Dokumenty\img20210919_18550741.pdf
2021-09-19 18:48 - 2021-09-20 11:20 - 001311377 _____ C:\Users\novyk\Downloads\VZOR aktuální Žádost o povýšení na VR3 - duben 2020.pdf
2021-09-17 17:25 - 2021-09-17 17:25 - 001313608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-09-17 17:25 - 2021-09-17 17:25 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-09-17 17:25 - 2021-09-17 17:25 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2021-09-17 17:25 - 2021-09-17 17:25 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2021-09-17 17:25 - 2021-09-17 17:25 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshom.ocx
2021-09-17 17:25 - 2021-09-17 17:25 - 000011355 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-09-17 17:24 - 2021-09-17 17:24 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2021-09-17 17:24 - 2021-09-17 17:24 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-09-17 17:24 - 2021-09-17 17:24 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2021-09-17 17:24 - 2021-09-17 17:24 - 001823304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-09-17 17:24 - 2021-09-17 17:24 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-09-17 17:24 - 2021-09-17 17:24 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-09-17 17:24 - 2021-09-17 17:24 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-09-17 17:24 - 2021-09-17 17:24 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-09-17 17:24 - 2021-09-17 17:24 - 000426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-09-17 17:24 - 2021-09-17 17:24 - 000272384 _____ C:\WINDOWS\system32\TpmTool.exe
2021-09-17 17:24 - 2021-09-17 17:24 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2021-09-17 17:24 - 2021-09-17 17:24 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-09-17 17:24 - 2021-09-17 17:24 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2021-09-17 17:24 - 2021-09-17 17:24 - 000098816 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-09-17 16:59 - 2021-09-17 16:59 - 000000000 ___HD C:\$WinREAgent
2021-09-16 14:26 - 2021-09-16 14:26 - 000260294 _____ C:\Users\novyk\OneDrive\Dokumenty\img20210916_14263184.pdf
2021-09-16 14:26 - 2021-09-16 14:26 - 000184090 _____ C:\Users\novyk\OneDrive\Dokumenty\img20210916_14265047.pdf
2021-09-16 11:05 - 2021-09-16 11:05 - 000314994 _____ C:\Users\novyk\Downloads\Propouštěcí zpráva Lucie Chrastná.pdf
2021-09-16 10:51 - 2021-09-16 10:51 - 000238515 _____ C:\Users\novyk\Downloads\Smlouva o úvěru.pdf
2021-09-15 15:37 - 2021-09-15 15:37 - 000577526 _____ C:\Users\novyk\Downloads\Dotaznik-20210915153043.pdf
2021-09-15 13:44 - 2021-09-15 13:44 - 000198517 _____ C:\Users\novyk\Downloads\7faagv.pdf
2021-09-15 13:43 - 2021-09-15 13:43 - 000320195 _____ C:\Users\novyk\OneDrive\Dokumenty\l mezrova 2.pdf
2021-09-15 13:31 - 2021-09-15 13:31 - 000501845 _____ C:\Users\novyk\OneDrive\Dokumenty\l mezrová.pdf
2021-09-14 12:37 - 2021-09-14 12:37 - 001269009 _____ C:\Users\novyk\Downloads\Pruvodce_NEMEM (1).pdf
2021-09-14 12:15 - 2021-09-14 12:15 - 000001430 ____C C:\Users\novyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-09-14 11:44 - 2021-09-14 11:44 - 000083158 _____ C:\Users\novyk\Downloads\control_tools_platby (5).pdf
2021-09-14 11:35 - 2021-09-14 11:35 - 000075567 _____ C:\Users\novyk\Downloads\control_tools_platby.pdf
2021-09-13 10:12 - 2021-09-13 10:13 - 001439767 _____ C:\Users\novyk\OneDrive\Dokumenty\technická změna horáčková.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-12 11:46 - 2020-11-02 17:13 - 000000000 ____D C:\Users\novyk\AppData\Local\Messenger
2021-10-12 11:45 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-10-12 11:30 - 2020-11-02 17:13 - 000000000 ____D C:\Users\novyk\AppData\Roaming\Messenger
2021-10-12 10:58 - 2018-10-21 10:42 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-12 10:14 - 2021-04-23 10:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-12 09:33 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-12 09:33 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-12 09:31 - 2020-06-05 01:30 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-12 09:30 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-11 20:53 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-11 20:12 - 2021-04-23 10:44 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-11 20:12 - 2019-12-07 16:41 - 000717850 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-11 20:12 - 2019-12-07 16:41 - 000144992 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-11 20:06 - 2018-10-21 10:24 - 000000000 ___RD C:\Users\novyk\OneDrive
2021-10-11 20:06 - 2018-10-21 10:21 - 000000000 __SHD C:\Users\novyk\IntelGraphicsProfiles
2021-10-11 20:05 - 2021-04-23 10:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-11 20:05 - 2021-04-23 10:32 - 000008192 ___SH C:\DumpStack.log.tmp
2021-10-11 20:05 - 2021-01-30 12:58 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2021-10-11 20:05 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-11 20:04 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-10-11 20:04 - 2017-09-18 06:55 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2021-10-10 15:45 - 2021-04-26 10:31 - 000003490 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d7381bed0d38ec
2021-10-10 15:45 - 2021-04-23 10:40 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-10 15:44 - 2020-08-24 06:51 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-10 15:44 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-08 11:31 - 2018-11-25 13:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-08 11:29 - 2018-12-04 20:31 - 000000000 ___DC C:\Users\novyk\AppData\Local\D3DSCache
2021-10-08 10:47 - 2018-10-21 10:42 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-02 21:01 - 2018-10-21 15:41 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-10-01 13:53 - 2021-04-23 10:40 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-01 13:53 - 2021-04-23 10:40 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-09-30 15:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-09-30 14:08 - 2021-04-23 10:40 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-999221373-863377304-1418600672-1001
2021-09-30 14:08 - 2021-04-22 17:02 - 000002384 ____C C:\Users\novyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-09-27 23:14 - 2021-04-22 17:02 - 000000000 ____D C:\Users\novyk
2021-09-23 14:24 - 2018-12-04 12:19 - 000000000 ___DC C:\Users\novyk\AppData\Local\ElevatedDiagnostics
2021-09-19 16:37 - 2021-04-23 10:32 - 000579928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-09-19 16:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-09-19 16:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2021-09-16 23:25 - 2018-10-22 14:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-09-16 23:23 - 2018-10-22 14:42 - 135637312 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-09-15 13:53 - 2021-04-23 10:40 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
==================== Files in the root of some directories ========
2018-10-22 01:31 - 2018-10-22 01:32 - 000007605 ____C () C:\Users\novyk\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2021
Ran by novyk (12-10-2021 11:46:58)
Running from C:\Users\novyk\Downloads
Microsoft Windows 10 Home Version 20H2 19042.1237 (X64) (2021-04-23 08:40:35)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-999221373-863377304-1418600672-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-999221373-863377304-1418600672-503 - Limited - Disabled)
Guest (S-1-5-21-999221373-863377304-1418600672-501 - Limited - Disabled)
novyk (S-1-5-21-999221373-863377304-1418600672-1001 - Administrator - Enabled) => C:\Users\novyk
WDAGUtilityAccount (S-1-5-21-999221373-863377304-1418600672-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 21.007.20095 - Adobe Systems Incorporated)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2017.0526.2129.36859 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 17.12 - Advanced Micro Devices, Inc.)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
AXA Studio (HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\be3a3e1a435c5997) (Version: 5.139.834.0 - AXA životní pojišťovna a.s.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Branding64 (HKLM\...\{892FF45E-11A8-4D3A-A153-1B04972C480C}) (Version: 1.00.0007 - Advanced Micro Devices, Inc.) Hidden
ČSOBP Kalkulátory 1.27.0.x (HKLM-x32\...\Kalkulátory_is1) (Version: - )
Document Capture Pro (HKLM-x32\...\{24D371AC-05D4-4EB1-8D07-A75354CAAD15}) (Version: 3.00.0000 - Seiko Epson Corporation)
Dolby Audio X2 Windows API SDK (HKLM\...\{82C288CC-A96D-43E3-9119-944DABF5DD61}) (Version: 0.8.0.74 - Dolby Laboratories, Inc.)
eModel - MetLife (HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\eModel) (Version: 3.0.0.23 - MetLife)
Epson Event Manager (HKLM-x32\...\{F4830CF1-1706-4F5A-AD73-319D1F052E4D}) (Version: 3.11.0050 - Seiko Epson Corporation)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 2.44.00 - Seiko Epson Corporation)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - Seiko Epson Corporation)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
EPSON Scan PDF EXtensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.02 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation)
EPSON WF-C5710 Series Printer Uninstall (HKLM\...\EPSON WF-C5710 Series) (Version: - Seiko Epson Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
FLEXI SmartClient (HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\6ed8a04184c5e4e7) (Version: 2.5.73.58779 - Kooperativa)
FormApps Signing Extension (HKLM-x32\...\{2ADAFEB7-56C5-497F-8960-67DA46A81838}) (Version: 2.27.0.46 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 94.0.4606.81 - Google LLC)
Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1068 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4749 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Kodi (HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\Kodi) (Version: - XBMC Foundation)
Kyocera Product Library (HKLM\...\Kyocera Product Library) (Version: 5.0.1120 - KYOCERA Document Solutions Inc.)
KYOCERA Status Monitor 5 (HKLM\...\{24EE7F6D-C648-463f-9E71-DC5FD2258D17}) (Version: 5.0.6015 - KYOCERA Document Solutions Inc.)
Lenovo Utility (HKLM\...\{12ABAC82-7D83-4CB8-9DD2-434DC9AF2942}_is1) (Version: 3.0.0.20 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.8.23.0 - Lenovo Group Ltd.)
Lenovo Yoga Mode Control (Inf Install) (HKLM\...\ACPIVPC) (Version: 15.11.28.173 - Lenovo)
Messenger 97.11.116 (HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 97.11.116 - Facebook, Inc.)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14430.20270 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 94.0.992.47 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 94.0.992.31 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\OneDriveSetup.exe) (Version: 21.180.0905.0007 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{3DEE814D-F1DB-315D-E627-63B6B600643A}) (Version: 1.00.0000 - Název společnosti:)
OEM Application Profile (HKLM-x32\...\{B7832167-3E08-F91C-F066-3A2186E6D891}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14430.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22899 - Microsoft Corporation)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22a - Ghisler Software GmbH)
UNIQA Podpurný software verze 1.0 (HKLM-x32\...\UNIQA Podpurný software_is1) (Version: 1.0 - UNIQA pojišťovna, a.s.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-2) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\ZoomUMX) (Version: 5.4.9 (59931.0110) - Zoom Video Communications, Inc.)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Canon Office Printer Utility -> C:\Program Files\WindowsApps\34791E63.CanonOfficePrinterUtility_12.7.0.0_x64__6e5tt8cgb93ep [2020-07-21] (Canon Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-31] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-09-24] (HP Inc.)
KYOCERA Print Center -> C:\Program Files\WindowsApps\A97ECD55.KYOCERAPrintCenter_3.0.10719.0_x64__kqmhh0ktdt7dg [2021-08-11] (KYOCERA Document Solutions Inc)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2021-08-06] (LENOVO INCORPORATED.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2108.22.0_x64__k1h2ywk1493x8 [2021-09-02] (LENOVO INC.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-04-23] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-04-23] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-06] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.17.3402.0_x64__8wekyb3d8bbwe [2021-10-07] (Microsoft Studios)
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2021-08-06] (Plex)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0 [2021-10-01] (Spotify AB) [Startup Task]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-09-18] (LENOVO INCORPORATED.)
WinZip Universal -> C:\Program Files\WindowsApps\WinZipComputing.WinZipUniversal_1.5.13516.0_x64__3ykzqggjzj4z0 [2021-08-06] (WinZip Computing)
Wunderlist: To-Do List & Tasks -> C:\Program Files\WindowsApps\6Wunderkinder.Wunderlist_3.6.43.0_x64__b4cwydgxqx59r [2020-05-01] (6 Wunderkinder GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-05-26] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_dc7123fc81a12ed5\igfxDTCM.dll [2019-02-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\novyk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Das WeltAuto.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=hdopgdflfiaebldammmnnapcgimcghaf
==================== Loaded Modules (Whitelisted) =============
2021-04-07 19:13 - 2021-04-06 00:08 - 054230528 ____C () [File not signed] \\?\C:\Users\novyk\AppData\Local\Programs\Messenger\resources\app.asar.unpacked\build\addon.node
2021-04-07 19:14 - 2021-04-06 00:08 - 000763392 ____C () [File not signed] \\?\C:\Users\novyk\AppData\Local\Programs\Messenger\resources\app.asar.unpacked\build\keytar.node
2021-04-07 19:14 - 2021-04-06 00:08 - 000750080 ____C () [File not signed] \\?\C:\Users\novyk\AppData\Local\Programs\Messenger\resources\app.asar.unpacked\build\logging.node
2021-04-07 19:14 - 2021-04-06 00:08 - 001037824 ____C () [File not signed] \\?\C:\Users\novyk\AppData\Local\Programs\Messenger\resources\app.asar.unpacked\build\spellchecker_win.node
2021-04-07 19:14 - 2021-04-06 00:08 - 001218560 ____C () [File not signed] \\?\C:\Users\novyk\AppData\Local\Programs\Messenger\resources\app.asar.unpacked\build\systeminfo.node
2021-04-07 19:14 - 2021-04-06 00:08 - 000523776 ____C () [File not signed] \\?\C:\Users\novyk\AppData\Local\Programs\Messenger\resources\app.asar.unpacked\build\windows.data.xml.dom.node
2021-04-07 19:14 - 2021-04-06 00:08 - 000681984 ____C () [File not signed] \\?\C:\Users\novyk\AppData\Local\Programs\Messenger\resources\app.asar.unpacked\build\windows.ui.notifications.node
2016-09-14 22:00 - 2016-09-14 22:00 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000191488 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-10-30 11:26 - 2017-07-05 20:36 - 001168384 _____ (Conexant Systems, Inc.) [File not signed] [File is in use] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll
2021-01-30 13:11 - 2021-01-30 13:11 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2021-01-30 13:11 - 2021-01-30 13:11 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2021-07-20 12:57 - 2020-05-30 15:58 - 001280000 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\WINDOWS\System32\enppmon.dll
2021-05-31 19:26 - 2020-11-03 05:08 - 000954864 _____ (SQLite Development Team) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2016-09-14 22:01 - 2016-09-14 22:01 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 000912384 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2016-09-14 22:00 - 2016-09-14 22:00 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-999221373-863377304-1418600672-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-999221373-863377304-1418600672-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-999221373-863377304-1418600672-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-999221373-863377304-1418600672-1001 -> DefaultScope {DA438AB9-AA6E-46C2-8CD9-18B4853CAA0A} URL =
SearchScopes: HKU\S-1-5-21-999221373-863377304-1418600672-1001 -> {DA438AB9-AA6E-46C2-8CD9-18B4853CAA0A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-01] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-10-08 13:35 - 2019-10-08 13:35 - 000000375 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;c:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;c:\Program Files\Intel\Intel(R) Management Engine Components\DAL;c:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;c:\Program Files\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-999221373-863377304-1418600672-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\novyk\OneDrive\Plocha\202268436_10219923681782756_2148147288417763182_n.jpg
DNS Servers: 78.156.32.2 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run32: => "FUFAXRCV"
HKLM\...\StartupApproved\Run32: => "FUFAXSTM"
HKLM\...\StartupApproved\Run32: => "EEventManager"
HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-999221373-863377304-1418600672-1001\...\StartupApproved\Run: => "Facebook.MessengerDesktop"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{BE29FA8B-3153-4AD8-B3DE-629C179FE7ED}C:\users\novyk\appdata\local\programs\messenger\messenger.exe] => (Allow) C:\users\novyk\appdata\local\programs\messenger\messenger.exe (Facebook, Inc. -> Facebook, Inc.)
FirewallRules: [TCP Query User{A6A78E3C-E568-465C-AB44-8A5660B3DDE0}C:\users\novyk\appdata\local\programs\messenger\messenger.exe] => (Allow) C:\users\novyk\appdata\local\programs\messenger\messenger.exe (Facebook, Inc. -> Facebook, Inc.)
FirewallRules: [UDP Query User{1CBCAB2E-A2E4-4E4E-8A20-B6C6342E1392}C:\users\novyk\appdata\local\programs\messenger\messenger.exe] => (Allow) C:\users\novyk\appdata\local\programs\messenger\messenger.exe (Facebook, Inc. -> Facebook, Inc.)
FirewallRules: [TCP Query User{FAF06199-117A-4E45-96E9-27C290A95E1B}C:\users\novyk\appdata\local\programs\messenger\messenger.exe] => (Allow) C:\users\novyk\appdata\local\programs\messenger\messenger.exe (Facebook, Inc. -> Facebook, Inc.)
FirewallRules: [{84BFF7FD-632C-47A0-B1A7-A2C61518BD56}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{D0ED8A9D-4956-4108-957E-A2DC5F60121B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{2E1D7337-8D25-4519-950A-343402200B4A}] => (Allow) D:\SteamLibrary\steamapps\common\FlatOut2\FlatOut2.exe () [File not signed]
FirewallRules: [{0AD6B2F6-C96F-4F0A-ACDA-CD695F1B7A65}] => (Allow) D:\SteamLibrary\steamapps\common\FlatOut2\FlatOut2.exe () [File not signed]
FirewallRules: [{B11BE23B-4EB3-485E-B314-945873BA94F5}] => (Allow) C:\Users\novyk\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{9B3BAF88-C217-4E15-82B6-80DA65E0D2EA}] => (Allow) C:\Users\novyk\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{FA3D979F-A9F9-45A9-AD20-736C4ADC4058}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{F75EBF81-FAD0-4E9F-B566-37CF38DDEDE7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{8DA79782-4700-4EC4-AB19-FCA572447393}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DB43DCC6-45AA-442A-8A0B-D6E21ED2A8F9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E99BEE00-A062-4A33-A974-C9A41BE856DA}] => (Allow) C:\Users\novyk\AppData\Local\Temp\WF-C5710\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{59EA5252-7F21-4E59-8E6B-98D57FB7A2E2}] => (Allow) C:\Users\novyk\AppData\Local\Temp\WF-C5710\Network\EpsonNetSetup\ENEasyApp.exe => No File
FirewallRules: [{CA7E14EB-E66D-4E51-A908-86F70385178D}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{6A05D24F-0FD4-426C-A390-E12527C17D24}] => (Allow) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{91C8A33F-63A2-48AD-B3EA-0B7C58102A34}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{33A41825-917E-40AC-9A94-4CC8A07DFBF3}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{62EB2E3F-5B31-46B1-908A-3972007B0EEE}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9EEA3B59-925B-4946-A9BF-BA90F80961C0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AC632156-4EA2-420C-AA46-BF0E16072F8F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5248D288-0572-4609-87A3-5D7D1E77960C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A7F010FE-F7EE-4B1D-AE79-51E10CE48A4E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{D4DEEFEB-2F6E-4758-8626-A3595C98938A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [UDP Query User{65838A0E-D23E-49D6-A4FC-3AEA3D5837B5}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
FirewallRules: [{0251A12B-562E-44BC-8997-DCAAC8F49E65}] => (Allow) LPort=9422
FirewallRules: [{7AD55399-C17C-444C-8AD8-1E7245DCF73D}] => (Allow) LPort=9245
FirewallRules: [{39E7D826-DA40-4FE3-B483-894256A41239}] => (Allow) LPort=9246
FirewallRules: [{9126C554-FC8A-4448-8E86-5F270042D135}] => (Allow) LPort=9247
FirewallRules: [{69933D09-6FA8-484C-AD69-CDED8F6A6FE1}] => (Allow) LPort=3702
FirewallRules: [{79210052-448A-4532-B2E3-6CC988C0BE18}] => (Allow) LPort=9244
FirewallRules: [{CE0478AB-4100-4D15-AE57-0C0211AD230A}] => (Allow) LPort=9444
FirewallRules: [{564CF28F-681E-4796-BC36-1731AAB9BA6D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{20FB407F-7057-4AD6-AFCF-D56B13420FE6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D22327DB-92B1-4462-88F2-59FB7C9F3B2A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B78A3901-F330-4E4C-97BF-E2B5D6C9488D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{90E46644-8EC9-4814-8C3A-ED9E47B860D3}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\94.0.992.31\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{86D9DD7B-44A4-4964-9EAC-4FCCF7229B25}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{65DFDAE3-4688-4BE0-AA0C-B1A9C7DF48DE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D92ADFA1-971D-4FE2-B75B-6ABEADE77944}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6EF4876D-3846-4986-8293-569EC1082DB6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{08A5204D-93BC-4C6B-829B-2CB628CFFFA8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{2CCB6F4B-2D30-40C6-BDA3-4EE0B9D9A94F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5A00CF41-642F-473E-B085-D526EEF28AF6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4E22B0EB-9286-453A-B170-3E340C11738F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.169.612.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{96FBF170-15CA-4D23-90C9-D7A4772C0120}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4597B011-3329-4891-91CC-A96E19BE3C6E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:118 GB) (Free:47.04 GB) (40%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/11/2021 08:05:42 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem Nezdařila se fáze obnovení..
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Vypínání indexovacího modulu (HRESULT : 0x80040d23) (0x80040d23)
Error: (10/11/2021 08:05:42 PM) (Source: Windows Search Service) (EventID: 3602) (User: )
Description: Ve fázi obnovování služby Windows Search došlo k chybě s ID 1. Restartujte službu. Pokud tato chyba potrvá, vytvořte index znovu.
Kontext: aplikace , katalog SystemIndex
Podrobnosti:
Vypínání indexovacího modulu (HRESULT : 0x80040d23) (0x80040d23)
Error: (10/11/2021 08:04:46 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (10/08/2021 11:29:05 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.19041.746, časové razítko: 0x6be51595
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1202, časové razítko: 0xc9db1934
Kód výjimky: 0xc00001ad
Posun chyby: 0x000000000010be3e
ID chybujícího procesu: 0x22c8
Čas spuštění chybující aplikace: 0x01d7bc26f00514d3
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: c0fe028a-5c46-4511-91e9-b43a1df556ed
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/08/2021 11:29:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.19041.746, časové razítko: 0x6be51595
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1202, časové razítko: 0xc9db1934
Kód výjimky: 0xc00001ad
Posun chyby: 0x000000000010be3e
ID chybujícího procesu: 0x24cc
Čas spuštění chybující aplikace: 0x01d7bc26ef670c06
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: b8f17a02-5321-498e-9519-6fb867550ae5
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/08/2021 11:29:03 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.19041.746, časové razítko: 0x6be51595
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1202, časové razítko: 0xc9db1934
Kód výjimky: 0xc00001ad
Posun chyby: 0x000000000010be3e
ID chybujícího procesu: 0xae8
Čas spuštění chybující aplikace: 0x01d7bc26eec22525
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 1efba7ea-b134-4b8e-ab52-5bf2340760a8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/08/2021 11:29:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.19041.746, časové razítko: 0x6be51595
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1202, časové razítko: 0xc9db1934
Kód výjimky: 0xc00001ad
Posun chyby: 0x000000000010be3e
ID chybujícího procesu: 0x3bc4
Čas spuštění chybující aplikace: 0x01d7bc26ee00d7df
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 1c4d7be1-e940-4bd3-9d80-9136c5a690ba
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/08/2021 11:29:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.19041.746, časové razítko: 0x6be51595
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1202, časové razítko: 0xc9db1934
Kód výjimky: 0xc00001ad
Posun chyby: 0x000000000010be3e
ID chybujícího procesu: 0x104
Čas spuštění chybující aplikace: 0x01d7bc26d70854f9
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: e778370d-c3dc-43da-9b9e-108e48b573ef
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/11/2021 08:06:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Dolby DAX2 API Service bylo dosaženo časového limitu (45000 ms).
Error: (10/11/2021 08:05:10 PM) (Source: Netwtw06) (EventID: 5010) (User: )
Description: Intel(R) Dual Band Wireless-AC 8265 : Síťový adaptér vrátil ovladači neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (10/08/2021 11:32:25 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Dolby DAX2 API Service bylo dosaženo časového limitu (45000 ms).
Error: (10/08/2021 11:31:29 AM) (Source: Netwtw06) (EventID: 5010) (User: )
Description: Intel(R) Dual Band Wireless-AC 8265 : Síťový adaptér vrátil ovladači neplatnou hodnotu.
5010 - Driver DBG_ASSERT - instead of BSOD
Error: (10/08/2021 10:49:39 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace antimalwarové platformy programu Microsoft Defender Antivirus – KB4052623 (verze 4.18.2109.6).
Error: (10/08/2021 10:47:15 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService byla neočekávaně ukončena. Tento stav nastal již 2krát.
Error: (10/07/2021 01:18:03 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Aktualizace antimalwarové platformy programu Microsoft Defender Antivirus – KB4052623 (verze 4.18.2109.6).
Error: (10/06/2021 06:21:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.
Cesta k modulu: C:\WINDOWS\system32\IntelWifiIhv06.dll
Kód chyby: 21
Windows Defender:
================
Date: 2021-10-06 14:06:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9CE20F8C-1421-42D6-984D-6BFDDAAF6F40}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-10-04 10:10:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {3B798FAF-FB8C-4A3E-AAD8-958F7A107192}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-10-03 14:08:10
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5ED14B92-3CCE-4757-9EDC-EFDFE4F47992}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-10-02 11:31:51
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0FE35285-0630-403C-ADFD-7120D113A3ED}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2021-10-01 16:13:38
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {85BB3F9D-54BC-451E-BF2C-F90C7169B0EF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
==================== Memory info ===========================
BIOS: LENOVO 6PCN21WW 06/21/2018
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz
Percentage of memory in use: 83%
Total physical RAM: 7845.64 MB
Available physical RAM: 1299.59 MB
Total Virtual: 13477.64 MB
Available Virtual: 4296.68 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:118 GB) (Free:47.04 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:931.39 GB) (Free:851.33 GB) NTFS
\\?\Volume{9ef14345-e51f-475d-916d-7ada28dd6197}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.51 GB) NTFS
\\?\Volume{e00c3e37-89c2-41cc-8b0e-2adc5317187f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 2D685601)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 9AE9B333)
Partition: GPT.
==================== End of Addition.txt =======================