V neděli odstraněn Wacatac a znovu se objevily jiné viry, kromě výše uvedeného také Misleading:Win32/Lodi a Stalmitz
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27-02-2022
Ran by Miloslav Neužil (administrator) on DESKTOP-91G8VB2 (MSI MS-7977) (01-03-2022 19:20:55)
Running from C:\Users\Miloslav Neužil\Downloads
Loaded Profiles: Miloslav Neužil
Platform: Microsoft Windows 10 Pro Version 21H2 19044.1566 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\Logi\LogiBolt\LogiBolt.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\logi_crashpad_handler.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MpCopyAccelerator.exe
(Corel Corporation -> ) C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
(Corel Corporation -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTHKCtrl.exe
(Digital Wave Ltd -> Digital Wave Ltd) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
(explorer.exe ->) (Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(explorer.exe ->) (Daniel Redlich Software) [File not signed] C:\DosPrint\DOSPRINT.EXE
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Totalcmd\TOTALCMD64.EXE
(explorer.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.3407.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(explorer.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\LogiBolt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <14>
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (CodeGear) [File not signed] C:\Program Files (x86)\Embarcadero\RAD Studio\7.0\bin\BSQLServer.exe
(services.exe ->) (Corel Corporation -> ) C:\Windows\SysWOW64\PSIService.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2201.10-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (INTEL CORP) C:\Program Files\WindowsApps\appup.intelgraphicsexperience_1.100.3407.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxCalendarAppImm.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.xboxapp_48.78.15001.0_x64__8wekyb3d8bbwe\XboxApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1687616 2022-01-06] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\...\Run: [Corel Photo Downloader] => C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531784 2007-12-14] (Corel Corporation -> Corel, Inc.)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436704 2021-08-19] (Corel Corporation -> WinZip Computing, S.L.)
HKLM-x32\...\Run: [CTHelper] => C:\Windows\SysWOW64\CTHELPER.EXE* [29776 2018-08-14] () [File not signed]
HKLM-x32\...\Run: [Corel Photo Downloader] => C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531784 2007-12-14] (Corel Corporation -> Corel, Inc.)
HKLM-x32\...\Run: [Corel File Shell Monitor] => C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [16200 2008-01-15] (Corel Corporation -> )
HKLM-x32\...\Run: [Creative Hot Key Control] => C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTHKCtrl.exe [650752 2013-07-19] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [UpdReg] => C:\WINDOWS\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [707256 2021-12-15] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [PowerDVD16Agent] => C:\Program Files (x86)\CyberLink\PowerDVD16\PowerDVD16Agent.exe [525352 2016-08-17] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-21-1292141479-613030465-2163202204-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2618248 2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1292141479-613030465-2163202204-1001\...\Run: [MicrosoftEdgeAutoLaunch_43A2E249496E7690013CBADCF8C32222] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5
HKU\S-1-5-21-1292141479-613030465-2163202204-1001\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKU\S-1-5-21-1292141479-613030465-2163202204-1001\...\Run: [KKBirthday] => C:\Program Files (x86)\Kith and Kin Birthday Alert\KKBirthday.exe [2058752 2015-08-07] (SpanSoft) [File not signed]
HKU\S-1-5-21-1292141479-613030465-2163202204-1001\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe [1050232 2021-11-01] (Digital Wave Ltd -> Digital Wave Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2022-02-27]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
Startup: C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adresy.lnk [2022-02-28]
ShortcutTarget: Adresy.lnk -> C:\Program Files (x86)\NeuSoft\Adresy\Adresy.exe (NeuSoft) [File not signed]
Startup: C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dosprint.lnk [2021-05-13]
ShortcutTarget: Dosprint.lnk -> C:\DosPrint\DOSPRINT.EXE (Daniel Redlich Software) [File not signed]
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {06973360-16D2-496B-AA59-924FBF0120C3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {278EC72B-A484-40B0-9BB7-3176E8E15036} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {2A5DAC7F-4EAC-4951-AC0E-F9C11B31A489} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1009872 2021-11-02] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {44599B23-AAD1-4163-A10C-4BA4A3B74EC4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647376 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4EC5348D-10CD-40ED-AD23-F371C3019FA3} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339472 2022-02-03] (Nvidia Corporation -> NVIDIA Corporation)
Task: {4FC71049-D29C-464A-B792-F4BC92813D46} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {53973E3F-7DCC-4776-8548-3D523C433D82} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {6D63E7FC-BFD5-4A74-A5DF-95C6FFAEA856} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {73179102-8D7B-4389-8463-C08F9217C221} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1292141479-613030465-2163202204-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158856 2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {7380FD2E-42AC-445B-9057-F383BBCAAAE4} - System32\Tasks\Microsoft\Windows\SysResetDelayedCleanup => C:\WINDOWS\system32\ResetEngine.exe [20296 2022-02-26] (Microsoft Windows -> Microsoft Corporation)
Task: {89D47F45-4B7F-492C-800A-3EF3DA20A78D} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4158856 2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {92D16D37-014D-480C-B128-A00F06321C05} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {988E1600-0AE2-45F0-B39F-8B48A9506244} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1564424 2021-11-17] (Adobe Inc. -> Adobe Inc.)
Task: {98F04194-0777-415E-BF50-22A52B1C86A4} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {98F80DA6-02C6-4E67-AD40-1D9EB9821818} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [138600 2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {9A11CD3E-D801-48D1-B2BC-FE56BD191EF7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22880136 2022-02-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA1D297E-1633-4123-9195-E02953DA1F8B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {B3AF80F1-7648-4DA9-AD90-FFD3787729AB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B9C4D427-A18A-4689-A693-6730FD9A28A6} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1656320 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {BB70F0FD-5BD7-411B-A2FB-CD6FF7E3A747} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D098AC00-798C-4FA3-8B66-5B2E03B97952} - System32\Tasks\HPCustParticipation HP LaserJet MFP M129-M134 => C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\HPCustPartic.exe [6660744 2018-08-22] (Hewlett Packard -> HP Inc.)
Task: {E0851A21-DD77-47AB-807D-816E733F6B91} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [3158704 2021-08-19] (Corel Corporation -> Corel Corporation)
Task: {E14A7D87-F0AB-4A16-8062-590186DDF24F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E434E202-8A18-4C8C-93FB-E50EA98D5750} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906752 2022-01-28] (Nvidia Corporation -> NVIDIA Corporation)
Task: {FB0C0950-BC39-4907-AA16-07016FB6063E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MpCmdRun.exe [925848 2022-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0a698cd5-eccb-43aa-a39b-c3eda411c9cb}: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default [2022-03-01]
Edge HomePage: Default -> hxxps://www.seznam.cz/
Edge StartupUrls: Default -> "hxxps://www.seznam.cz/"
Edge Extension: (CacheList) - C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa [2022-02-26]
Edge Extension: (Podepisovací komponenta Signer) - C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bhlaechjbkikglhincgjdmhceppidngc [2022-02-26]
Edge Extension: (Easy Video Downloader) - C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\eaicplkoeceoelookkiaeekhodehdhde [2022-02-26]
Edge Extension: (Adblock Plus - free ad blocker) - C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmgoamodcdcjnbaobigkjelfplakmdhh [2022-02-26]
Edge Extension: (FormApps Extension) - C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2022-02-26]
Edge Extension: (Komponenta I.CA PKI Service) - C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kchhpancoebhkdgdafnifpkcacaopncp [2022-02-26]
FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-12-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [2022-02-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.321.2 -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [2022-02-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-11-17] (Adobe Inc. -> Adobe Inc.)
R2 BlackfishSQL; C:\Program Files (x86)\Embarcadero\RAD Studio\7.0\bin\BSQLServer.exe [65536 2009-08-01] (CodeGear) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12124536 2022-02-03] (Microsoft Corporation -> Microsoft Corporation)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-12-10] (Creative Technology Ltd) [File not signed]
S2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [457336 2021-11-01] (Digital Wave Ltd -> Digital Wave Ltd)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncHelper.exe [3380616 2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [260256 2022-02-27] (HP Inc. -> HP Inc.)
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [271920 2007-06-01] (Nero AG -> Nero AG)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\22.022.0130.0001\OneDriveUpdaterService.exe [3851128 2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
R2 ProtexisLicensing; C:\WINDOWS\SysWOW64\PSIService.exe [177704 2007-06-05] (Corel Corporation -> )
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6133448 2022-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ss_conn_launcher_service; C:\WINDOWS\System32\Samsung\EasySetup\ss_conn_launcher.exe [182128 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\NisSrv.exe [2909208 2022-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2201.10-0\MsMpEng.exe [128376 2022-02-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\System32\drivers\ssudbus2.sys [160376 2021-10-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 DSI_SiUSBXp_3_1; C:\WINDOWS\system32\drivers\DSI_SiUSBXp_3_1.sys [16384 2007-09-06] (Microsoft Windows Hardware Compatibility Publisher -> Silicon Laboratories)
S3 HP1210FAX; C:\WINDOWS\System32\Drivers\HPM1210FAX.sys [16896 2012-11-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 MpKsl7f4f8493; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EB50AEAF-B0FD-42A5-8891-DC6472487B3C}\MpKslDrv.sys [135440 2022-03-01] (Microsoft Windows -> Microsoft Corporation)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [19968 2012-11-08] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2021-11-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [65144 2021-10-08] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
S3 ss_conn_usb_driver2; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver2.sys [43376 2020-11-11] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2022-02-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [438520 2022-02-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [90360 2022-02-26] (Microsoft Windows -> Microsoft Corporation)
R2 {41E8078B-96D9-42DC-8789-A1CF102CD880}; C:\Program Files (x86)\CyberLink\PowerDVD16\Common\NavFilter\000.fcl [38168 2016-08-18] (CyberLink Corp. -> CyberLink Corp.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-03-01 19:20 - 2022-03-01 19:21 - 000024585 _____ C:\Users\Miloslav Neužil\Downloads\FRST.txt
2022-03-01 19:19 - 2022-03-01 19:19 - 002312192 _____ (Farbar) C:\Users\Miloslav Neužil\Downloads\FRST64.exe
2022-03-01 19:12 - 2022-03-01 19:21 - 000000000 ____D C:\FRST
2022-03-01 16:31 - 2022-03-01 16:31 - 000001408 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2022-03-01 16:25 - 2022-03-01 16:25 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2022-03-01 16:23 - 2022-03-01 16:25 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\DVDVideoSoft
2022-03-01 16:19 - 2022-03-01 16:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\123 Audio Video Merger
2022-03-01 16:05 - 2022-03-01 16:05 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Mp3tag
2022-03-01 16:03 - 2022-03-01 16:03 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\TagScanner
2022-03-01 16:02 - 2022-03-01 16:02 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Digiarty
2022-03-01 15:35 - 2022-03-01 15:35 - 006203574 _____ C:\Users\Miloslav Neužil\AppData\Roaming\ZBWallpaper.bmp
2022-03-01 13:29 - 2022-03-01 13:30 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Sony Channel Editor
2022-03-01 13:16 - 2022-03-01 13:16 - 000000000 ____D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2022-03-01 13:03 - 2022-03-01 13:07 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2022-03-01 13:03 - 2022-03-01 13:03 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\SolidDocuments
2022-03-01 13:02 - 2022-03-01 13:06 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2022-03-01 13:01 - 2022-03-01 13:03 - 000000000 ____D C:\ProgramData\Adobe
2022-03-01 13:01 - 2022-03-01 13:01 - 000000000 ____D C:\Program Files\Common Files\Adobe
2022-03-01 13:01 - 2022-03-01 13:01 - 000000000 ____D C:\Program Files\Adobe
2022-03-01 12:59 - 2022-03-01 15:37 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Adobe
2022-03-01 06:25 - 2022-03-01 06:25 - 000205288 _____ C:\Users\Miloslav Neužil\Downloads\desktop_cz.strings
2022-02-28 21:28 - 2022-02-28 21:28 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\WnSoft-WaveCache
2022-02-28 21:28 - 2022-02-28 21:28 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\PicturesToExe
2022-02-28 21:27 - 2022-02-28 21:27 - 000000808 _____ C:\Users\Public\Desktop\PicturesToExe 7.5.lnk
2022-02-28 21:27 - 2022-02-28 21:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PicturesToExe 7.5
2022-02-28 21:27 - 2013-04-22 15:19 - 000026384 _____ C:\WINDOWS\SysWOW64\PteVideo.dll
2022-02-28 15:44 - 2022-02-28 15:44 - 000000000 ____D C:\Users\Miloslav Neu§il
2022-02-28 15:44 - 2009-08-15 07:07 - 001292288 _____ C:\WINDOWS\SysWOW64\Rave77VCL140.bpl
2022-02-28 15:43 - 2022-02-28 15:45 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\CodeGear
2022-02-28 15:43 - 2022-02-28 15:43 - 000000000 __HDC C:\ProgramData\{A5F78495-1B06-4851-974A-B856FE422D45}
2022-02-28 15:41 - 2022-02-28 16:33 - 000000000 ____D C:\ProgramData\Embarcadero
2022-02-28 15:41 - 2022-02-28 15:41 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Embarcadero
2022-02-28 15:41 - 2022-02-28 15:41 - 000000000 ____D C:\Program Files (x86)\Embarcadero
2022-02-28 15:37 - 2022-02-28 15:44 - 000000000 ___HD C:\ProgramData\{5D2A2660-61FD-4FE8-A1DB-7338B81FFFF8}
2022-02-28 15:29 - 2022-02-28 15:29 - 000002369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD.lnk
2022-02-28 15:29 - 2022-02-28 15:29 - 000002357 _____ C:\Users\Public\Desktop\CyberLink PowerDVD 16.lnk
2022-02-28 15:03 - 2022-02-28 15:03 - 000000000 ____D C:\Users\Public\CyberLink
2022-02-28 15:02 - 2022-02-28 15:02 - 000000000 ____D C:\Program Files (x86)\CyberLink
2022-02-28 15:01 - 2022-02-28 15:01 - 000000000 ____D C:\ProgramData\Temp
2022-02-28 15:00 - 2022-02-28 15:04 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\CyberLink
2022-02-28 14:58 - 2022-02-28 14:58 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\CyberLink
2022-02-28 14:58 - 2022-02-28 14:58 - 000000000 ____D C:\ProgramData\PDVD
2022-02-28 14:58 - 2022-02-28 14:58 - 000000000 ____D C:\Program Files (x86)\NSIS Uninstall Information
2022-02-28 14:57 - 2022-02-28 15:28 - 000000000 ____D C:\ProgramData\SUPPORTDIR
2022-02-28 14:57 - 2022-02-28 15:09 - 000000000 ____D C:\ProgramData\install_backup
2022-02-28 14:57 - 2022-02-28 15:08 - 000000000 ____D C:\ProgramData\CyberLink
2022-02-28 14:57 - 2022-02-28 14:58 - 000000000 ____D C:\ProgramData\install_clap
2022-02-28 14:50 - 2022-02-28 14:52 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-28 14:50 - 2022-02-28 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2022-02-28 14:49 - 2022-02-28 14:54 - 000000000 ____D C:\Program Files\WinRAR
2022-02-28 14:46 - 2022-02-28 14:46 - 000165600 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2022-02-28 14:46 - 2022-02-28 14:46 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Sun
2022-02-28 14:46 - 2022-02-28 14:46 - 000000000 ____D C:\ProgramData\Oracle
2022-02-28 14:46 - 2022-02-28 14:46 - 000000000 ____D C:\Program Files (x86)\Java
2022-02-28 13:08 - 2022-02-28 13:08 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\WinRAR
2022-02-28 12:41 - 2022-02-28 12:41 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\AnyDesk
2022-02-28 12:09 - 2022-02-28 12:49 - 000001969 _____ C:\Users\Public\Desktop\Prosba o vzdálenou pomoc.lnk
2022-02-28 12:09 - 2022-02-28 12:49 - 000001940 _____ C:\Users\Public\Desktop\PC DENT.lnk
2022-02-28 12:08 - 2022-02-28 12:58 - 000000000 ____D C:\Program Files (x86)\Dialog MIS
2022-02-28 12:08 - 2022-02-28 12:49 - 000000000 ____D C:\ProgramData\Dialog.Goblin
2022-02-28 11:49 - 2022-03-01 15:28 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2022-02-28 05:07 - 2022-02-28 05:07 - 000000000 ____D C:\Program Files (x86)\NMSigner
2022-02-28 05:02 - 2022-02-28 05:02 - 000000000 ____D C:\Program Files\UNP
2022-02-27 19:37 - 2022-02-27 19:37 - 000000000 ____D C:\ProgramData\Creative
2022-02-27 19:32 - 2022-02-27 19:32 - 000000000 ____D C:\WINDOWS\system32\Defaults
2022-02-27 19:32 - 2015-12-18 21:23 - 000012288 _____ (Creative Technology Limited) C:\WINDOWS\system32\INRES.DLL
2022-02-27 19:32 - 2015-12-18 21:18 - 000010240 _____ (Creative Technology Ltd) C:\WINDOWS\system32\CTDCRES.DLL
2022-02-27 19:32 - 2000-05-11 01:00 - 000090112 ____N (Creative Technology Ltd.) C:\WINDOWS\Updreg.EXE
2022-02-27 19:31 - 2022-02-27 19:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2022-02-27 19:31 - 2022-02-27 19:31 - 000000000 ____D C:\Program Files\Creative
2022-02-27 19:31 - 2006-10-06 14:17 - 000053248 ____N (Creative Technology Ltd ) C:\WINDOWS\Ctregrun.exe
2022-02-27 19:31 - 2003-06-12 23:25 - 000007062 _____ C:\WINDOWS\SysWOW64\audiopid.vxd
2022-02-27 19:30 - 2022-02-28 15:29 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2022-02-27 19:30 - 2022-02-27 19:32 - 000000000 ____D C:\Program Files (x86)\Creative
2022-02-27 19:21 - 2022-02-27 19:23 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\WinZip
2022-02-27 19:21 - 2022-02-27 19:21 - 000003702 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 2
2022-02-27 19:21 - 2022-02-27 19:21 - 000003700 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 3
2022-02-27 19:21 - 2022-02-27 19:21 - 000003700 _____ C:\WINDOWS\system32\Tasks\WinZip Update Notifier 1
2022-02-27 19:21 - 2022-02-27 19:21 - 000002047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip.lnk
2022-02-27 19:21 - 2022-02-27 19:21 - 000001874 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Image Manager.lnk
2022-02-27 19:21 - 2022-02-27 19:21 - 000001870 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip PDF Express.lnk
2022-02-27 19:21 - 2022-02-27 19:21 - 000001858 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Secure Backup.lnk
2022-02-27 19:21 - 2022-02-27 19:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2022-02-27 19:20 - 2022-02-27 19:22 - 000000000 ____D C:\ProgramData\WinZip
2022-02-27 19:20 - 2022-02-27 19:21 - 000000000 ____D C:\Program Files\WinZip
2022-02-27 19:19 - 2022-02-27 19:19 - 000000000 ____D C:\ProgramData\UniqueId
2022-02-27 19:13 - 2022-02-27 19:14 - 000001158 _____ C:\Users\Miloslav Neužil\Desktop\Mince a bankovky.lnk
2022-02-27 18:49 - 2022-02-27 18:49 - 000001970 _____ C:\Users\Miloslav Neužil\Desktop\8H Series.lnk
2022-02-27 18:49 - 2022-02-27 18:49 - 000000000 ____D C:\Program Files (x86)\8H Series
2022-02-27 18:16 - 2022-02-27 18:16 - 000000000 ____D C:\Program Files\Uninstall
2022-02-27 18:14 - 2022-02-27 18:48 - 000005441 _____ C:\WINDOWS\8H Series Uninstall Log.txt
2022-02-27 18:06 - 2022-02-27 18:06 - 000000000 ____D C:\WINDOWS\8H Series
2022-02-27 18:05 - 2022-02-27 18:49 - 000035649 _____ C:\WINDOWS\8H Series Setup Log.txt
2022-02-27 09:39 - 2022-02-27 09:40 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Steam
2022-02-27 09:33 - 1999-06-21 05:10 - 000183808 _____ C:\WINDOWS\SysWOW64\BDEADMIN.CPL
2022-02-27 09:33 - 1999-01-20 05:01 - 000210032 _____ C:\WINDOWS\SysWOW64\DBCLIENT.DLL
2022-02-27 09:31 - 2022-03-01 13:23 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\CrashDumps
2022-02-27 09:30 - 2022-02-27 09:31 - 000001613 _____ C:\Users\Miloslav Neužil\Desktop\Adresy a telefony.lnk
2022-02-27 09:29 - 2022-02-27 09:30 - 000000000 ____D C:\Program Files (x86)\NeuSoft
2022-02-27 09:08 - 2022-03-01 15:26 - 000000000 ____D C:\ProgramData\KKBirthday
2022-02-27 08:58 - 2022-02-27 12:25 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\NVIDIA Corporation
2022-02-27 08:58 - 2022-02-27 08:58 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2022-02-27 08:58 - 2022-02-27 08:58 - 000001403 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2022-02-27 08:58 - 2022-02-27 08:58 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\NVIDIA
2022-02-27 08:58 - 2022-02-27 08:58 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2022-02-27 08:58 - 2022-01-28 12:50 - 002859520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2022-02-27 08:58 - 2022-01-28 12:50 - 002201800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2022-02-27 08:58 - 2022-01-28 12:50 - 001295872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2022-02-27 08:58 - 2022-01-21 13:22 - 000082432 _____ C:\WINDOWS\system32\FvSDK_x64.dll
2022-02-27 08:58 - 2022-01-21 13:22 - 000071168 _____ C:\WINDOWS\SysWOW64\FvSDK_x86.dll
2022-02-27 08:58 - 2021-11-23 08:38 - 000168648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2022-02-27 08:58 - 2021-11-23 08:38 - 000144584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2022-02-27 08:58 - 2021-11-02 19:47 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2022-02-27 08:56 - 2022-02-27 08:58 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2022-02-27 08:52 - 2022-03-01 15:35 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\ZoomBrowser EX
2022-02-27 08:47 - 2022-03-01 15:29 - 000000000 ____D C:\ProgramData\ZoomBrowser
2022-02-27 08:47 - 2022-02-27 08:48 - 000000000 ____D C:\Program Files (x86)\Canon
2022-02-27 08:47 - 2022-02-27 08:47 - 000001369 _____ C:\Users\Public\Desktop\ZoomBrowser EX.lnk
2022-02-27 08:43 - 2022-02-27 08:43 - 000000096 _____ C:\Users\Miloslav Neužil\AppData\Local\X-Plane_xdd_11.prf
2022-02-27 08:34 - 2022-02-27 08:34 - 000000405 _____ C:\Users\Miloslav Neužil\Desktop\Control Panel (2).lnk
2022-02-27 08:30 - 2022-03-01 16:23 - 000000000 ____D C:\ProgramData\Package Cache
2022-02-27 08:03 - 2022-02-27 08:07 - 000000986 _____ C:\Users\Miloslav Neužil\Desktop\JUC.lnk
2022-02-27 06:38 - 2022-02-28 11:50 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2022-02-27 06:38 - 2022-02-28 11:50 - 000002090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-02-27 06:38 - 2022-02-27 06:38 - 000000000 ___RD C:\Users\Default\OneDrive
2022-02-27 06:38 - 2022-02-27 06:38 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2022-02-27 06:37 - 2022-02-27 06:37 - 000002477 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk
2022-02-27 06:37 - 2022-02-27 06:37 - 000002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2022-02-27 06:37 - 2022-02-27 06:37 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2022-02-27 06:37 - 2022-02-27 06:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2022-02-27 06:32 - 2022-02-27 06:37 - 000000000 ____D C:\Program Files\Microsoft Office
2022-02-27 06:32 - 2022-02-27 06:32 - 000000000 ____D C:\Program Files\Microsoft Office 15
2022-02-27 06:28 - 2022-02-27 06:28 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Ahead
2022-02-27 06:27 - 2022-02-27 06:27 - 000000000 ____D C:\ProgramData\Ahead
2022-02-27 06:25 - 2022-02-27 06:25 - 000000000 ____D C:\ProgramData\Nero
2022-02-27 06:25 - 2022-02-27 06:25 - 000000000 ____D C:\Program Files (x86)\Nero
2022-02-27 06:14 - 2022-02-27 06:17 - 000000000 ____D C:\Program Files (x86)\Kith and Kin Birthday Alert
2022-02-27 06:14 - 2022-02-27 06:14 - 000001149 _____ C:\Users\Public\Desktop\KK Birthday Alert.lnk
2022-02-27 06:13 - 2022-02-27 06:18 - 000000000 ____D C:\ProgramData\KKPro
2022-02-27 06:13 - 2022-02-27 06:17 - 000000000 ____D C:\Program Files (x86)\Kith and Kin Pro V3
2022-02-27 06:13 - 2022-02-27 06:13 - 000001083 _____ C:\Users\Public\Desktop\Kith and Kin Pro V3.lnk
2022-02-27 05:58 - 2022-02-27 05:58 - 000000057 _____ C:\ProgramData\Ament.ini
2022-02-27 05:56 - 2022-02-27 05:56 - 000001248 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\I.R.I.S OCR Registration.lnk
2022-02-27 05:55 - 2022-02-27 05:55 - 000003782 _____ C:\WINDOWS\system32\Tasks\HPCustParticipation HP LaserJet MFP M129-M134
2022-02-27 05:53 - 2022-02-27 05:56 - 000000000 ____D C:\Program Files (x86)\HP
2022-02-27 05:53 - 2022-02-27 05:53 - 000001294 _____ C:\Users\Public\Desktop\HP LaserJet MFP M129-M134-HP Scan.lnk
2022-02-27 05:53 - 2022-02-27 05:53 - 000000000 ____D C:\Program Files\HP
2022-02-27 05:49 - 2022-02-27 05:55 - 000000000 ____D C:\ProgramData\HP
2022-02-27 05:38 - 2022-02-27 05:38 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2022-02-27 05:35 - 2022-02-27 06:00 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\HP
2022-02-27 05:27 - 2022-03-01 13:24 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Corel
2022-02-27 05:27 - 2022-03-01 13:20 - 000000848 ___SH C:\WINDOWS\SysWOW64\KGyGaAvL.sys
2022-02-27 05:27 - 2022-02-27 05:27 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Corel
2022-02-27 05:26 - 2022-02-28 15:27 - 000000000 ____D C:\ProgramData\Corel
2022-02-27 05:26 - 2022-02-27 05:26 - 000002453 _____ C:\Users\Public\Desktop\Corel Paint Shop Pro Photo X2.lnk
2022-02-27 05:25 - 2022-02-27 05:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Spool
2022-02-27 05:25 - 2022-02-27 05:25 - 000000000 ____D C:\Program Files (x86)\Corel
2022-02-26 21:17 - 2022-02-26 21:17 - 000000335 _____ C:\Users\Miloslav Neužil\Desktop\computer.lnk
2022-02-26 21:13 - 2022-02-27 08:43 - 000000112 _____ C:\Users\Miloslav Neužil\AppData\Local\X-Plane_drm_11.prf
2022-02-26 21:13 - 2022-02-26 21:15 - 000000093 _____ C:\Users\Miloslav Neužil\AppData\Local\X-Plane 11 Preferences.prf
2022-02-26 21:13 - 2022-02-26 21:13 - 000000016 _____ C:\Users\Miloslav Neužil\AppData\Local\x-plane_install_11.txt
2022-02-26 20:48 - 2022-03-01 06:16 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\PlaceholderTileLogoFolder
2022-02-26 20:41 - 2022-02-26 20:41 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Logishrd
2022-02-26 20:39 - 2022-02-26 20:39 - 000000000 ____D C:\Program Files\Logitech
2022-02-26 20:30 - 2022-02-26 20:30 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Logitech
2022-02-26 20:13 - 2022-02-26 20:13 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\GHISLER
2022-02-26 19:20 - 2022-02-26 19:20 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Comms
2022-02-26 19:20 - 2022-02-26 19:20 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2022-02-26 19:17 - 2022-02-26 19:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-02-26 19:16 - 2022-02-28 12:13 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\D3DSCache
2022-02-26 19:11 - 2022-03-01 15:28 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\LogiBolt
2022-02-26 19:11 - 2022-02-26 19:11 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\CEF
2022-02-26 19:11 - 2022-02-26 19:11 - 000000000 ____D C:\Program Files\Logi
2022-02-26 19:10 - 2022-02-28 11:50 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1292141479-613030465-2163202204-1001
2022-02-26 19:10 - 2022-02-26 19:10 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\PeerDistRepub
2022-02-26 19:09 - 2022-02-26 20:40 - 000000000 ____D C:\ProgramData\Logishrd
2022-02-26 19:06 - 2022-02-26 19:06 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2022-02-26 19:04 - 2022-02-26 19:06 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Publishers
2022-02-26 19:03 - 2022-03-01 06:16 - 000000000 ____D C:\ProgramData\Packages
2022-02-26 19:02 - 2022-03-01 13:03 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Adobe
2022-02-26 19:02 - 2022-03-01 13:03 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\Packages
2022-02-26 19:02 - 2022-02-27 09:35 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\VirtualStore
2022-02-26 19:02 - 2022-02-26 19:38 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Local\ConnectedDevicesPlatform
2022-02-26 19:02 - 2022-02-26 19:02 - 004931577 ____H C:\WINDOWS\{00000005-00000000-00000000-00001102-00000008-10241102}.BAK
2022-02-26 19:02 - 2022-02-26 19:02 - 000000020 ___SH C:\Users\Miloslav Neužil\ntuser.ini
2022-02-26 18:44 - 2022-02-26 18:44 - 000000000 _SHDL C:\Users\Default\AppData\Local\Data aplikací
2022-02-26 18:44 - 2022-02-26 18:44 - 000000000 _SHDL C:\ProgramData\Šablony
2022-02-26 18:44 - 2022-02-26 18:44 - 000000000 _SHDL C:\ProgramData\Plocha
2022-02-26 18:44 - 2022-02-26 18:44 - 000000000 _SHDL C:\ProgramData\Nabídka Start
2022-02-26 18:44 - 2022-02-26 18:44 - 000000000 _SHDL C:\ProgramData\Dokumenty
2022-02-26 18:44 - 2022-02-26 18:44 - 000000000 _SHDL C:\ProgramData\Data aplikací
2022-02-26 18:42 - 2022-02-28 15:29 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-02-26 18:25 - 2022-02-26 19:02 - 000000000 ____D C:\Users\Miloslav Neužil
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Šablony
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Soubory cookie
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Poslední
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Okolní tiskárny
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Okolní síť
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Nabídka Start
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Dokumenty
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Documents\Obrázky
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Documents\Hudba
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Documents\Filmy
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\Data aplikací
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2022-02-26 18:25 - 2022-02-26 18:25 - 000000000 _SHDL C:\Users\Miloslav Neužil\AppData\Local\Data aplikací
2022-02-26 18:18 - 2022-03-01 15:29 - 000000000 ____D C:\ProgramData\NVIDIA
2022-02-26 18:18 - 2022-02-27 09:02 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2022-02-26 18:17 - 2022-03-01 15:28 - 000033800 _____ C:\WINDOWS\system32\BMXStateBkp-{00000005-00000000-00000000-00001102-00000008-10241102}.rfx
2022-02-26 18:17 - 2022-03-01 15:28 - 000033800 _____ C:\WINDOWS\system32\BMXState-{00000005-00000000-00000000-00001102-00000008-10241102}.rfx
2022-02-26 18:17 - 2022-03-01 15:28 - 000029040 _____ C:\WINDOWS\system32\BMXCtrlState-{00000005-00000000-00000000-00001102-00000008-10241102}.rfx
2022-02-26 18:17 - 2022-03-01 15:28 - 000029040 _____ C:\WINDOWS\system32\BMXBkpCtrlState-{00000005-00000000-00000000-00001102-00000008-10241102}.rfx
2022-02-26 18:17 - 2022-03-01 15:28 - 000011564 _____ C:\WINDOWS\system32\DVCState-{00000005-00000000-00000000-00001102-00000008-10241102}.rfx
2022-02-26 18:17 - 2022-02-26 19:27 - 004931577 _____ C:\WINDOWS\{00000005-00000000-00000000-00001102-00000008-10241102}.CDF
2022-02-26 18:17 - 2022-02-26 18:17 - 000466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll
2022-02-26 18:17 - 2022-02-26 18:17 - 000445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll
2022-02-26 18:17 - 2022-02-26 18:17 - 000123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll
2022-02-26 18:17 - 2022-02-26 18:17 - 000109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll
2022-02-26 18:17 - 2022-02-26 18:17 - 000000159 ___RH C:\WINDOWS\ctfile.rfc
2022-02-26 18:17 - 2022-02-26 18:17 - 000000000 ____D C:\WINDOWS\system32\lxss
2022-02-26 18:17 - 2022-02-26 18:17 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2022-02-26 18:17 - 2022-02-26 18:17 - 000000000 ____D C:\Program Files (x86)\OpenAL
2022-02-26 18:17 - 2009-03-26 14:48 - 000190976 _____ C:\WINDOWS\system32\APOMgr64.DLL
2022-02-26 18:17 - 2009-03-26 14:46 - 000148480 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL
2022-02-26 18:17 - 2009-02-06 18:53 - 000089088 _____ C:\WINDOWS\system32\CmdRtr64.DLL
2022-02-26 18:17 - 2009-02-06 18:52 - 000073728 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL
2022-02-26 18:15 - 2022-02-26 19:09 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2022-02-26 18:14 - 2022-02-26 18:24 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-02-26 18:14 - 2022-02-26 18:24 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-02-26 18:14 - 2022-02-26 18:14 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2022-02-26 18:14 - 2022-02-26 18:14 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2022-02-26 18:14 - 2022-02-26 18:14 - 000000000 ____D C:\WINDOWS\system32\DAX2
2022-02-26 18:14 - 2022-02-26 18:14 - 000000000 ____D C:\WINDOWS\system32\data
2022-02-26 18:14 - 2022-02-26 18:14 - 000000000 ____D C:\Program Files\Realtek
2022-02-26 18:13 - 2022-02-26 18:13 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2022-02-26 18:12 - 2022-02-28 15:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-02-26 18:12 - 2022-02-26 19:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2022-02-26 18:02 - 2022-02-28 15:22 - 000313424 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-02-26 18:02 - 2022-02-26 18:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-02-26 18:00 - 2022-02-26 19:01 - 000000000 ____D C:\WINDOWS\Panther
2022-02-26 17:48 - 2022-02-26 17:48 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2022-02-26 17:44 - 2022-02-26 17:44 - 000000000 ____D C:\WINDOWS\SystemTemp
2022-02-26 17:44 - 2022-02-26 17:44 - 000000000 ____D C:\ProgramData\ssh
2022-02-26 17:41 - 2022-02-26 17:41 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 002371072 _____ C:\WINDOWS\system32\rdpnano.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000672768 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-02-26 17:41 - 2022-02-26 17:41 - 000523776 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-02-26 17:41 - 2022-02-26 17:41 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-02-26 17:41 - 2022-02-26 17:41 - 000480256 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000464384 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-02-26 17:41 - 2022-02-26 17:41 - 000195584 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000170496 _____ C:\WINDOWS\system32\DeviceUpdateCenterCsp.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000158208 _____ C:\WINDOWS\system32\uwfcsp.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000045880 _____ C:\WINDOWS\system32\HvSocket.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000040960 _____ C:\WINDOWS\system32\uwfservicingapi.dll
2022-02-26 17:41 - 2022-02-26 17:41 - 000011821 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-02-26 17:40 - 2022-02-26 17:40 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 002295296 _____ (Digimarc) C:\WINDOWS\system32\DMRCDecoder.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 002260480 _____ (The ICU Project) C:\WINDOWS\system32\icu.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 002111488 _____ (Digimarc) C:\WINDOWS\SysWOW64\DMRCDecoder.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 001864192 _____ (The ICU Project) C:\WINDOWS\SysWOW64\icu.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 001164288 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2022-02-26 17:40 - 2022-02-26 17:40 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000657464 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000611960 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000468440 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000240640 _____ C:\WINDOWS\SysWOW64\CoreMas.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000223744 _____ C:\WINDOWS\SysWOW64\TpmTool.exe
2022-02-26 17:40 - 2022-02-26 17:40 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2022-02-26 17:40 - 2022-02-26 17:40 - 000098304 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2022-02-26 17:40 - 2022-02-26 17:40 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-02-26 17:40 - 2022-02-26 17:40 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000048640 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000047472 _____ C:\WINDOWS\SysWOW64\umpdc.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000039936 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000029696 _____ (The ICU Project) C:\WINDOWS\system32\icuuc.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000025088 _____ (The ICU Project) C:\WINDOWS\system32\icuin.dll
2022-02-26 17:40 - 2022-02-26 17:40 - 000010752 _____ C:\WINDOWS\SysWOW64\agentactivationruntimestarter.exe
2022-02-26 17:40 - 2022-02-26 17:40 - 000001370 _____ C:\WINDOWS\system32\ThirdPartyNoticesBySHS.txt
2022-02-26 17:39 - 2022-02-26 17:39 - 004227116 _____ C:\WINDOWS\system32\DefaultHrtfs.bin
2022-02-26 17:39 - 2022-02-26 17:39 - 000706536 _____ C:\WINDOWS\system32\TextShaping.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000287232 _____ C:\WINDOWS\system32\CoreMas.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000272896 _____ C:\WINDOWS\system32\TpmTool.exe
2022-02-26 17:39 - 2022-02-26 17:39 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000162816 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-02-26 17:39 - 2022-02-26 17:39 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000064552 _____ C:\WINDOWS\system32\umpdc.dll
2022-02-26 17:39 - 2022-02-26 17:39 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2022-02-26 17:23 - 2022-02-26 17:23 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2022-02-26 17:23 - 2022-02-26 17:23 - 000000000 ____D C:\Program Files\Reference Assemblies
2022-02-26 17:23 - 2022-02-26 17:23 - 000000000 ____D C:\Program Files\MSBuild
2022-02-26 17:23 - 2022-02-26 17:23 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2022-02-26 17:23 - 2022-02-26 17:23 - 000000000 ____D C:\Program Files (x86)\MSBuild
2022-02-26 17:20 - 2022-02-26 17:20 - 000000000 ____D C:\WINDOWS\system32\Samsung
2022-02-26 17:19 - 2022-02-26 17:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2022-02-26 16:48 - 2022-02-26 18:41 - 000000000 ___HD C:\$SysReset
2022-02-22 16:02 - 2022-02-22 16:02 - 000275752 _____ C:\Users\Miloslav Neužil\Downloads\UK-4763015-21041000--[3505].pdf
2022-02-17 18:45 - 2022-02-27 05:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Paint Shop Pro Photo X2
2022-02-17 10:57 - 2022-02-17 10:57 - 000000000 ____D C:\CyberLink
2022-02-16 12:19 - 2022-02-16 12:22 - 000000000 ___HD C:\$WinREAgent
2022-02-15 18:25 - 2022-02-15 18:25 - 000000000 ____D C:\Users\Miloslav Neužil\Documents\Corel
2022-02-15 17:07 - 2022-02-10 07:18 - 000127968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2022-02-15 17:07 - 2022-02-10 07:18 - 000040920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhdap64.dll
2022-02-15 17:02 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2022-02-15 17:02 - 2022-02-10 19:42 - 001905936 _____ C:\WINDOWS\system32\vulkaninfo.exe
2022-02-15 17:02 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2022-02-15 17:02 - 2022-02-10 19:42 - 001478416 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2022-02-15 17:02 - 2022-02-10 19:42 - 001467840 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2022-02-15 17:02 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2022-02-15 17:02 - 2022-02-10 19:42 - 001432336 _____ C:\WINDOWS\system32\vulkan-1.dll
2022-02-15 17:02 - 2022-02-10 19:42 - 001209280 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2022-02-15 17:02 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2022-02-15 17:02 - 2022-02-10 19:42 - 001145616 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2022-02-15 17:02 - 2022-02-10 19:39 - 001531872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2022-02-15 17:02 - 2022-02-10 19:39 - 001176704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2022-02-15 17:02 - 2022-02-10 19:39 - 000797112 _____ C:\WINDOWS\system32\nvofapi64.dll
2022-02-15 17:02 - 2022-02-10 19:39 - 000717760 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2022-02-15 17:02 - 2022-02-10 19:39 - 000636032 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2022-02-15 17:02 - 2022-02-10 19:38 - 002120320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2022-02-15 17:02 - 2022-02-10 19:38 - 001602728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2022-02-15 17:02 - 2022-02-10 19:38 - 000983992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2022-02-15 17:02 - 2022-02-10 19:38 - 000795584 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2022-02-15 17:02 - 2022-02-10 19:38 - 000711608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2022-02-15 17:02 - 2022-02-10 19:37 - 008612496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2022-02-15 17:02 - 2022-02-10 19:37 - 007714960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2022-02-15 17:02 - 2022-02-10 19:37 - 005727376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2022-02-15 17:02 - 2022-02-10 19:37 - 005099152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2022-02-15 17:02 - 2022-02-10 19:37 - 002935744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2022-02-15 17:02 - 2022-02-10 19:37 - 000456848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2022-02-15 17:02 - 2022-02-10 19:35 - 000849024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2022-02-15 17:02 - 2022-02-10 19:34 - 007613344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2022-02-15 17:02 - 2022-02-10 19:34 - 006461040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2022-02-15 17:02 - 2022-02-10 07:18 - 000089251 _____ C:\WINDOWS\system32\nvinfo.pb
2022-02-15 14:41 - 2021-06-02 15:03 - 000067464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2022-02-14 15:27 - 2022-02-14 15:27 - 000200688 _____ C:\Users\Miloslav Neužil\Downloads\DPZVD6-0511230014-20220214-152605.pdf
2022-02-14 15:27 - 2022-02-14 15:27 - 000020704 _____ C:\Users\Miloslav Neužil\Downloads\DPZVD6-0511230014-20220214-152605-1625680322-potvrzeni.p7s
2022-02-06 15:44 - 2022-02-06 15:44 - 009977334 _____ C:\Users\Miloslav Neužil\Downloads\samsung-galaxy-labs-2-5-00-10.apk
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2022-03-01 19:05 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-03-01 16:31 - 2021-12-12 17:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2022-03-01 16:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\sysWOW64
2022-03-01 16:08 - 2020-10-04 12:02 - 000000000 ____D C:\INSTALL
2022-03-01 16:04 - 2021-07-10 06:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TagScanner
2022-03-01 15:28 - 2020-10-03 15:39 - 000000000 ___RD C:\Users\Miloslav Neužil\OneDrive
2022-03-01 13:29 - 2020-11-10 15:29 - 000001206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Channel Editor.lnk
2022-03-01 13:29 - 2020-11-10 15:29 - 000001176 _____ C:\Users\Public\Desktop\Sony Channel Editor.lnk
2022-03-01 13:20 - 2020-10-04 12:06 - 000000000 ____D C:\Users\Miloslav Neužil\Documents\My PSP Files
2022-03-01 13:02 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\system32
2022-03-01 06:26 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-03-01 06:15 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-02-28 15:53 - 2020-10-05 07:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Borland InterBase 2007 [instance = gds_db]
2022-02-28 15:44 - 2020-10-06 10:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rave Reports 7.7 BE
2022-02-28 15:43 - 2020-10-06 10:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Embarcadero RAD Studio 2010
2022-02-28 15:29 - 2019-12-07 15:43 - 000716726 _____ C:\WINDOWS\system32\perfh005.dat
2022-02-28 15:29 - 2019-12-07 15:43 - 000144904 _____ C:\WINDOWS\system32\perfc005.dat
2022-02-28 15:29 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2022-02-28 15:21 - 2020-10-13 21:24 - 000008192 ___SH C:\DumpStack.log.tmp
2022-02-28 15:21 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-02-28 15:21 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2022-02-28 14:53 - 2020-10-04 12:05 - 000000000 ____D C:\Zaloha
2022-02-28 14:46 - 2020-10-05 07:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2022-02-28 12:49 - 2020-10-05 06:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CompuGroup Medical
2022-02-28 05:35 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-02-27 19:38 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2022-02-27 18:52 - 2022-01-19 19:27 - 000032790 _____ C:\Users\Miloslav Neužil\Downloads\Vysílačka záloha.kg
2022-02-27 18:49 - 2021-08-19 12:35 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\8H Series
2022-02-27 16:55 - 2020-11-28 18:30 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\LocalLow\Temp
2022-02-27 08:58 - 2020-10-20 05:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2022-02-27 08:47 - 2020-10-05 11:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2022-02-27 08:08 - 2021-05-13 10:23 - 000000000 ____D C:\Juc
2022-02-27 06:38 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2022-02-27 06:37 - 2021-05-22 04:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2022-02-27 06:28 - 2020-10-04 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 7 Essentials
2022-02-27 06:26 - 2020-10-03 15:37 - 000000000 __RHD C:\Users\Public\AccountPictures
2022-02-27 06:16 - 2020-10-04 06:49 - 000000000 ____D C:\SpanSoft updates
2022-02-27 06:14 - 2020-10-04 06:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kith and Kin Birthday Alert
2022-02-27 06:13 - 2020-10-04 06:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kith and Kin Pro V3
2022-02-27 05:14 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\appcompat
2022-02-26 20:41 - 2021-09-07 16:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2022-02-26 20:40 - 2020-10-03 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2022-02-26 19:20 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2022-02-26 19:15 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2022-02-26 19:09 - 2020-10-03 21:03 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-02-26 19:03 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-02-26 19:02 - 2020-10-03 19:54 - 000000000 ___RD C:\Users\Miloslav Neužil\3D Objects
2022-02-26 19:01 - 2019-12-07 15:45 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2022-02-26 19:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\spool
2022-02-26 19:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-02-26 19:01 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-02-26 19:01 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\USOPrivate
2022-02-26 18:44 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows NT
2022-02-26 18:41 - 2021-12-30 18:44 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Silicon Labs
2022-02-26 18:41 - 2021-10-24 12:58 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2022-02-26 18:41 - 2021-05-13 10:12 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DOSBox-X
2022-02-26 18:41 - 2021-05-08 18:09 - 000000000 ____D C:\Users\Miloslav Neužil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NR
2022-02-26 18:13 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-02-26 18:13 - 2019-12-07 10:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-02-26 17:58 - 2021-10-28 13:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2022-02-26 17:58 - 2021-05-14 15:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DosPrint
2022-02-26 17:58 - 2020-11-08 13:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mp3tag
2022-02-26 17:58 - 2020-10-04 20:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2022-02-26 17:58 - 2019-12-07 10:14 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2022-02-26 17:58 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2022-02-26 17:48 - 2020-10-04 14:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2022-02-26 17:48 - 2020-10-03 17:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
2022-02-26 17:48 - 2020-10-03 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2022-02-26 17:48 - 2019-12-07 10:14 - 000000000 __RHD C:\Users\Public\Libraries
2022-02-26 17:44 - 2019-12-07 15:47 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2022-02-26 17:44 - 2019-12-07 15:47 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2022-02-26 17:44 - 2019-12-07 15:47 - 000000000 ___SD C:\WINDOWS\system32\AppV
2022-02-26 17:44 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2022-02-26 17:44 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2022-02-26 17:44 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-02-26 17:44 - 2019-12-07 15:44 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Keywords
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Keywords
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\DDFs
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2022-02-26 17:44 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2022-02-26 17:44 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
2022-02-26 17:24 - 2019-12-07 15:45 - 000000000 ____D C:\WINDOWS\OCR
2022-02-26 17:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2022-02-26 17:23 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\MUI
2022-02-22 16:57 - 2020-10-04 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2022-02-21 07:50 - 2020-10-13 20:11 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2022-02-14 15:27 - 2021-01-19 15:21 - 000002938 _____ C:\Users\Miloslav Neužil\epodpisfs.properties
2022-02-14 15:16 - 2021-05-13 10:23 - 000000000 ____D C:\JUCTISK
==================== Files in the root of some directories ========
2020-03-19 09:45 - 2020-04-02 07:47 - 000008859 ____H () C:\Program Files\lang.csv
2022-03-01 15:35 - 2022-03-01 15:35 - 006203574 _____ () C:\Users\Miloslav Neužil\AppData\Roaming\ZBWallpaper.bmp
2022-02-26 21:13 - 2022-02-26 21:15 - 000000093 _____ () C:\Users\Miloslav Neužil\AppData\Local\X-Plane 11 Preferences.prf
2022-02-26 21:13 - 2022-02-27 08:43 - 000000112 _____ () C:\Users\Miloslav Neužil\AppData\Local\X-Plane_drm_11.prf
2022-02-26 21:13 - 2022-02-26 21:13 - 000000016 _____ () C:\Users\Miloslav Neužil\AppData\Local\x-plane_install_11.txt
2022-02-27 08:43 - 2022-02-27 08:43 - 000000096 _____ () C:\Users\Miloslav Neužil\AppData\Local\X-Plane_xdd_11.prf
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-02-2022
Ran by Miloslav Neužil (01-03-2022 19:22:49)
Running from C:\Users\Miloslav Neužil\Downloads
Microsoft Windows 10 Pro Version 21H2 19044.1566 (X64) (2022-02-26 18:01:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-1292141479-613030465-2163202204-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1292141479-613030465-2163202204-503 - Limited - Disabled)
Guest (S-1-5-21-1292141479-613030465-2163202204-501 - Limited - Disabled)
Miloslav Neužil (S-1-5-21-1292141479-613030465-2163202204-1001 - Administrator - Enabled) => C:\Users\Miloslav Neužil
WDAGUtilityAccount (S-1-5-21-1292141479-613030465-2163202204-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
123 Audio Video Merger (HKLM-x32\...\123 Audio Video Merger_is1) (Version: 1.00 - Manitools Software)
8H Series (HKLM-x32\...\8H Series V1.00(200321)) (Version: V1.00(200321) - Quanzhou Wouxun Electronics Co.Ł¬Ltd. Right)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.011.20039 - Adobe)
Canon MOV Decoder (HKLM-x32\...\Canon MOV Decoder) (Version: 1.0.0.65 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.1.0.2 - Canon Inc.)
Canon Utilities CameraWindow DC (HKLM-x32\...\CameraWindowDC) (Version: 7.2.0.10 - Canon Inc.)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC6) (Version: 6.4.2.16 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.0.0.3 - Canon Inc.)
Canon Utilities MyCamera DC (HKLM-x32\...\MyCameraDC) (Version: 7.1.0.4 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\RemoteCaptureTask) (Version: 1.7.1.9 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.2.0.29 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.2.0.9 - Canon Inc.)
CompuGroup Medical - (PC DOKTOR / PC DENT) (HKLM-x32\...\{81F07A4F-A47E-4E0F-A75D-D24BD09BB2D8}) (Version: 3.12.1.13635 - CompuGroup Medical Česká republika s.r.o.)
Corel Paint Shop Pro Photo X2 (HKLM-x32\...\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}) (Version: 12.011.0000 - Corel Corporation)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
CyberLink PowerDVD 16 (HKLM-x32\...\{7CD1ACC0-3DD0-4894-90C7-BF2A136C074D}) (Version: 16.0.2011.60 - CyberLink Corp.)
Embarcadero Delphi and C++Builder 2010 Database Pack (HKLM-x32\...\{E716CF3C-1F40-4373-9271-07DAA12EA0AD}) (Version: 7.0 - Embarcadero) Hidden
Embarcadero Delphi and C++Builder 2010 Database Pack (HKLM-x32\...\Embarcadero Delphi and C++Builder 2010 Database Pack) (Version: - Embarcadero)
Embarcadero RAD Studio 2010 (HKLM-x32\...\{AD58D257-F7A6-4AB5-B5E1-364EAC098B94}) (Version: 7.0 - Embarcadero) Hidden
Embarcadero RAD Studio 2010 (HKLM-x32\...\Embarcadero RAD Studio 2010) (Version: - Embarcadero)
Free Studio (HKLM-x32\...\Free Studio_is1) (Version: 6.7.4.1101 - Digital Wave Ltd)
HP Dropbox Plugin (HKLM-x32\...\{2B241F10-5647-4C07-B982-CC0B81682A59}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{FBCFDA37-DD90-4465-9E8B-26C2D2260EFF}) (Version: 43.0.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{5B4F8499-E03E-4A81-850D-81B27CC8EC9C}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{489527CD-23E4-4F60-82CB-F85DF758049F}) (Version: 36.0.102.68541 - HP)
HP OneDrive Plugin (HKLM-x32\...\{904BE479-2821-419D-B44F-C963042CB6FD}) (Version: 36.0.0.0 - HP)
HP SharePoint Plugin (HKLM-x32\...\{86B04693-5E1B-4A2A-8715-6E1E1B5AE8C2}) (Version: 43.0.0.0 - HP)
I.R.I.S OCR (HKLM-x32\...\{39508F29-1E81-40FC-85DA-3182CB04614E}) (Version: 15.2.10.1114 - HP Inc.)
Java 8 Update 321 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180321F0}) (Version: 8.0.3210.7 - Oracle Corporation)
Kith and Kin Birthday Alert (HKLM-x32\...\{6BC036CF-E514-45BE-85FB-CD789EA57D7B}) (Version: 1.2.3 - SpanSoft)
Kith and Kin Pro V3 (HKLM-x32\...\{9E7214FB-57C5-4B91-9C21-4F5F26E25B5A}) (Version: 3.3.0 - SpanSoft)
LM129 (HKLM-x32\...\{A2D25501-6F44-4CE2-9EFA-C9E5A0658FA9}) (Version: 0.00.0005 - HP)
Logi Bolt (HKLM\...\LogiBolt) (Version: 1.2.6024.0 - Logi)
Logitech Options (HKLM\...\LogiOptions) (Version: 9.50.269 - Logitech)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.62 - Microsoft Corporation)
Microsoft Office 2016 pro domácnosti - cs-cz (HKLM\...\HomeStudentRetail - cs-cz) (Version: 16.0.14827.20198 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.022.0130.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{16E50919-B07A-4B4E-994A-476D4773F5BF}) (Version: 3.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{2fa65abe-2cfc-4cf3-89b1-99122a47fdd6}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30037 (HKLM-x32\...\{dfea0fad-88b2-4a1f-8536-3f8f9391f4ef}) (Version: 14.29.30037.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version: - Microsoft Corporation)
Nero 7 Essentials (HKLM-x32\...\{BC61F51E-8AF7-46B9-AF20-B33B5EE81029}) (Version: 7.03.0188 - Nero AG)
NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20198 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20198 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PicturesToExe 7.5 (HKLM-x32\...\{A254D625} PicturesToExe 7.5_is1) (Version: 7.5.8 - WnSoft)
Rave Reports 7.7.0 BE (HKLM-x32\...\Rave Reports 7.7.0 BE_is1) (Version: - Nevrona Designs)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7534 - Realtek Semiconductor Corp.)
Signer for browser 1.0 (HKLM-x32\...\{FA2B17BD-D866-4793-B1DC-56B2EE0A4851}_is1) (Version: - Asseco Central Europe, a.s.)
Sony Channel Editor verze 1.2 (HKLM-x32\...\{A60B1C02-DF63-43A3-8F45-7B2C6EC065F3}_is1) (Version: 1.2 - Sony Visual Products Europe)
Sound Blaster Audigy 5_Audigy Rx (HKLM-x32\...\{81440118-F1CE-4C87-BC8B-F1EB8D3FA190}) (Version: 1.0 - Creative Technology Limited)
Studie vylepšování produktu HP LaserJet MFP M129-M134 (HKLM\...\{6319D85A-6C39-46CB-819B-5F39EDCF3C4C}) (Version: 44.3.2667.18234 - HP Inc.)
TagScanner 6.1.12 (64-bit) (HKLM\...\TagScanner_is1) (Version: 6.1.11 - Sergey Serkov)
WinRAR 6.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.10.0 - win.rar GmbH)
WinZip 26.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2413B}) (Version: 26.0.14610 - Corel Corporation)
Základní software zařízení HP LaserJet MFP M129-M134 (HKLM\...\{3A7EC3EF-57A8-4F84-AD06-FA71DF75C7BE}) (Version: 44.3.2667.18234 - HP Inc.)
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-02-26] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_134.1.221.0_x64__v10z8vjag6ke6 [2022-02-27] (HP Inc.)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.2.2190.0_x64__8wekyb3d8bbwe [2022-02-26] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-02-26] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-27] (NVIDIA Corp.)
Ovládací centrum grafiky Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2022-02-26] (INTEL CORP) [Startup Task]
Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_3.5.1.0_x64__t4vj0pshhgkwm [2022-03-01] (Telegram Messenger LLP) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1292141479-613030465-2163202204-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-05-04] (Nero AG -> Nero AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2021-08-19] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2021-08-19] (Corel Corporation -> WinZip Computing)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.022.0130.0001\FileSyncShell64.dll [2022-02-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3b12ac0f95b18b9d\nvshext.dll [2022-02-10] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2021-08-19] (Corel Corporation -> WinZip Computing)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.ptev] => C:\Windows\SysWOW64\PteVideo.dll [26384 2013-04-22] (WnSoft Ltd. -> )
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Miloslav Neužil\Desktop\JUC.lnk -> C:\Juc\juc.bat ()
==================== Loaded Modules (Whitelisted) =============
2022-02-28 15:43 - 2022-02-28 15:43 - 001384448 _____ (CodeGear) [File not signed] [File is in use] C:\WINDOWS\assembly\GAC_MSIL\Borland.Data.BlackfishSQL.LocalClient\8.0.0.0__91d62ebb5b0d1b1b\Borland.Data.BlackfishSQL.LocalClient.dll
2022-02-27 19:31 - 2012-12-10 12:51 - 000535552 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTAudEp.dll
2022-02-27 19:31 - 2011-09-16 18:04 - 000238080 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\CTLoadRs.dll
2022-02-27 19:31 - 2013-06-21 13:20 - 000836608 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\SBAudigy5Rx\SB Audigy 5_RX Control Panel\HookWndU.DLL
2022-02-27 19:32 - 2015-12-18 21:18 - 000010240 _____ (Creative Technology Ltd) [File not signed] C:\WINDOWS\system32\CTDCRES.DLL
2022-01-28 19:16 - 2022-01-28 19:17 - 042859520 _____ (Intel Corporation) [File not signed] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt\IGCC.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\ssv.dll [2022-02-28] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_321\bin\jp2ssv.dll [2022-02-28] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-27] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Embarcadero\RAD Studio\7.0\bin;C:\Users\Public\Documents\RAD Studio\7.0\Bpl;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\HP\IdrsOCR_15.2.10.1114\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-1292141479-613030465-2163202204-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Miloslav Neužil\AppData\Roaming\ZBWallpaper.bmp
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{177D78C5-CD7A-4E4E-A9AA-988C35230E21}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{289B9876-563B-4741-96F8-4ED2B0E4F302}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{24725F16-01F6-4C3C-8469-D821ED9CA9C1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D49A65C2-095F-4BD1-8D95-247789C697B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8DA4AC4-1CAC-4A9B-B80F-11001DC13F99}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{2A630ACB-BE38-4352-A002-7A60D148788A}D:\x-plane 11\x-plane.exe] => (Allow) D:\x-plane 11\x-plane.exe (Laminar Research, LLC -> Laminar Research)
FirewallRules: [UDP Query User{D7E783F5-CC98-458D-894C-F9E61A7B2E33}D:\x-plane 11\x-plane.exe] => (Allow) D:\x-plane 11\x-plane.exe (Laminar Research, LLC -> Laminar Research)
FirewallRules: [{359792C6-E028-4084-9470-685702D4E817}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\EWSProxy.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{B674B6FE-2BDF-4335-90D2-881A7FF1B3C3}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{4FBC1DCB-4BB4-4755-B680-CD9A58A9EBA2}] => (Allow) LPort=5357
FirewallRules: [{558CBED6-B4AA-48EB-86A2-B7CFC54CFD72}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{3098E8BB-BD13-451B-AE3A-D498B9936C41}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{370A7050-3028-4341-AB0E-BFB78EF8D161}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{26BC518C-B278-4A32-B234-8BAE13C75231}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{AAC0D059-1555-4327-997F-AE632F536F19}] => (Allow) C:\Program Files\HP\HP LaserJet MFP M129-M134\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{37D7010F-3F07-4C9E-94EF-1D5F1BCE5DC8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{7F49CA9D-6097-4B73-B743-6E450C75AD35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{2F1C1C0F-CAEB-49EA-8F08-B0C74A1304DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{15359610-960E-4810-B8F0-763A2264D8C8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{C181E3D9-545E-4AD2-B58A-4BA5096F7484}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{66370540-7773-4681-A0E9-4AA056194C02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{D8A8D8CD-A3A5-4D75-8E39-F228835FF40F}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6DF09158-B700-48F3-B280-817CDA45BF32}] => (Allow) D:\Steam\steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{578B1C97-5A43-4862-83BF-E038FC6EB9FF}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C56C7F90-F7A7-4392-999E-D21366D3114C}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{72901E8F-98E5-492D-960E-F9A38C923BFB}C:\program files (x86)\dialog mis\vzdalenapomoc.exe] => (Allow) C:\program files (x86)\dialog mis\vzdalenapomoc.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [UDP Query User{43F3BF7D-C939-4068-B0F9-17792FEF5A23}C:\program files (x86)\dialog mis\vzdalenapomoc.exe] => (Allow) C:\program files (x86)\dialog mis\vzdalenapomoc.exe (philandro Software GmbH -> AnyDesk Software GmbH)
FirewallRules: [{32A6E0FF-F81B-459E-9C17-2B8F28B2C394}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{4B208C8B-BCFF-4635-B975-FBAD4B8C63D9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\Kernel\DMS\CLMSServerPDVD16.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{87148E57-7033-4834-9D7E-B37818AEFC01}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\PowerDVD16Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{A641FB0A-F4D9-49BD-9EA5-E2752F8462C1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{7B7F499D-7757-415F-BAD7-2E2ACDAF2597}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD16\CastingStation.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B19BF58D-CF46-415F-B8E0-E8FE8755B1C8}] => (Allow) D:\Hudba\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe (Digital Wave Ltd -> DVDVideoSoft Ltd.)
FirewallRules: [{FD3A0417-AADE-4292-875B-407154094B55}] => (Allow) D:\Hudba\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe (Digital Wave Ltd -> DVDVideoSoft Ltd.)
==================== Restore Points =========================
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (03/01/2022 04:23:54 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.
Operace:
Spouštění asynchronní operace
Kontext:
Aktuální stav: DoSnapshotSet
Error: (03/01/2022 01:23:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Corel Paint Shop Pro Photo.exe, verze: 12.0.1.1, časové razítko: 0x478d13e9
Název chybujícího modulu: igCAD15d.dll_unloaded, verze: 15.2.1.0, časové razítko: 0x4641204f
Kód výjimky: 0xc0000005
Posun chyby: 0x0001ec30
ID chybujícího procesu: 0x4398
Čas spuštění chybující aplikace: 0x01d82d66c4af125d
Cesta k chybující aplikaci: C:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\Corel Paint Shop Pro Photo.exe
Cesta k chybujícímu modulu: igCAD15d.dll
ID zprávy: 9f2efa13-b0ee-46ca-8a12-5be37408e3ed
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (03/01/2022 12:53:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Katalog.exe, verze: 0.0.0.0, časové razítko: 0x518a50f7
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1566, časové razítko: 0xea471ca7
Kód výjimky: 0x0eedfade
Posun chyby: 0x0012b922
ID chybujícího procesu: 0x28f8
Čas spuštění chybující aplikace: 0x01d82d62feb07517
Cesta k chybující aplikaci: C:\Program Files (x86)\Embarcadero\RAD Studio\7.0\Demos\Cédéčkabde\Katalog.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 57a90fdf-18e2-4d8f-9259-1910df73fa42
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (03/01/2022 12:53:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Katalog.exe, verze: 0.0.0.0, časové razítko: 0x518a50f7
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1566, časové razítko: 0xea471ca7
Kód výjimky: 0x0eedfade
Posun chyby: 0x0012b922
ID chybujícího procesu: 0x319c
Čas spuštění chybující aplikace: 0x01d82d62fa5b05f8
Cesta k chybující aplikaci: M:\C\Program Files\Embarcadero\RAD Studio\7.0\Demos\Cédéčkaib\Katalog.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 5f25f1ef-0719-4d79-a790-08156c54de8c
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (03/01/2022 12:50:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Katalog.exe, verze: 0.0.0.0, časové razítko: 0x518a50f7
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1566, časové razítko: 0xea471ca7
Kód výjimky: 0x0eedfade
Posun chyby: 0x0012b922
ID chybujícího procesu: 0x83c
Čas spuštění chybující aplikace: 0x01d82d628fe7e44a
Cesta k chybující aplikaci: C:\Program Files (x86)\Embarcadero\RAD Studio\7.0\Demos\Cédéčkabde\Katalog.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 8461a949-24d5-4cbf-b520-0bdaa0663ab8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (03/01/2022 12:50:09 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program BDEADMIN.EXE verze 5.1.0.4 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 4004
Čas spuštění: 01d82d622d7037ab
Čas ukončení: 3
Cesta k aplikaci: C:\Program Files (x86)\Common Files\Borland Shared\BDE\BDEADMIN.EXE
ID hlášení: 2866a1a3-0351-4060-a0c8-2841cbc3a4c4
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (03/01/2022 12:47:47 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program BDEADMIN.EXE verze 5.1.0.4 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 3718
Čas spuštění: 01d82d6193ca45db
Čas ukončení: 3
Cesta k aplikaci: C:\Program Files (x86)\Common Files\Borland Shared\BDE\BDEADMIN.EXE
ID hlášení: 7bb3a908-0aa5-4978-b872-2adf827303a3
Úplný název balíčku s chybou:
ID aplikace relativní podle balíčku s chybou:
Typ zablokování: Unknown
Error: (03/01/2022 12:45:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Cédéčka.exe, verze: 1.0.0.0, časové razítko: 0x50f86565
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.1566, časové razítko: 0xea471ca7
Kód výjimky: 0x0eedfade
Posun chyby: 0x0012b922
ID chybujícího procesu: 0x5ac
Čas spuštění chybující aplikace: 0x01d82d61e27f5e22
Cesta k chybující aplikaci: C:\Program Files (x86)\Embarcadero\RAD Studio\7.0\Demos\Cédéčkaib\Cédéčka.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 0a537131-53db-473f-a07d-16a91c26134d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (03/01/2022 04:31:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Digital Wave Update Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (03/01/2022 04:31:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Digital Wave Update Service bylo dosaženo časového limitu (30000 ms).
Error: (03/01/2022 04:31:43 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba Digital Wave Update Service je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.
Error: (03/01/2022 03:29:49 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Kontrola šifrovaného svazku: Informace o svazku F: nelze přečíst.
Error: (03/01/2022 03:28:37 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Kontrola šifrovaného svazku: Informace o svazku F: nelze přečíst.
Error: (03/01/2022 03:25:36 PM) (Source: TPM) (EventID: 15) (User: )
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.
Error: (03/01/2022 12:30:44 PM) (Source: TPM) (EventID: 15) (User: )
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.
Error: (03/01/2022 04:58:07 AM) (Source: TPM) (EventID: 15) (User: )
Description: V hardwaru čipu TPM (Trusted Platform Module) došlo k neobnovitelné chybě ovladače zařízení, která brání používání služeb TPM (například šifrování dat). Budete-li potřebovat další pomoc, obraťte se na výrobce počítače.
Windows Defender:
================
Date: 2022-03-01 19:07:51
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Ulthar.A!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000cc1
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Uživatel
Uživatel: DESKTOP-91G8VB2\Miloslav Neužil
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.359.1143.0, AS: 1.359.1143.0, NIS: 1.359.1143.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3
Date: 2022-03-01 19:07:51
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Lodi
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: containerfile:_C:\Users\Miloslav Neužil\AppData\Local\Temp\MicrosoftEdgeDownloads\8c4df1ce-4d79-48e8-b69e-0ea56bbf5fd8\FreeStudio_6.7.4.1101_o.exe; file:_C:\Users\Miloslav Neužil\AppData\Local\Temp\MicrosoftEdgeDownloads\8c4df1ce-4d79-48e8-b69e-0ea56bbf5fd8\FreeStudio_6.7.4.1101_o.exe->(inno#000430); file:_C:\Users\Miloslav Neužil\AppData\Local\Temp\MicrosoftEdgeDownloads\8c4df1ce-4d79-48e8-b69e-0ea56bbf5fd8\FreeStudio_6.7.4.1101_o.exe->(inno#000705)
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Uživatel
Uživatel: DESKTOP-91G8VB2\Miloslav Neužil
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.359.1143.0, AS: 1.359.1143.0, NIS: 1.359.1143.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3
Date: 2022-03-01 19:07:51
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: SoftwareBundler:Win32/Stallmonitz
Závažnost: Vysoké
Kategorie: Software instalující další produkty
Cesta: file:_C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c80; file:_C:\Users\Miloslav Neužil\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000cc0
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Uživatel
Uživatel: DESKTOP-91G8VB2\Miloslav Neužil
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.359.1143.0, AS: 1.359.1143.0, NIS: 1.359.1143.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3
Date: 2022-03-01 16:31:31
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Lodi
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_D:\Hudba\DVDVideoSoft\Free Screen Video Recorder\FreeScreenVideoRecorder.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Windows\System32\svchost.exe
Verze bezpečnostních informací: AV: 1.359.1143.0, AS: 1.359.1143.0, NIS: 1.359.1143.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3
Date: 2022-03-01 16:29:50
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Misleading:Win32/Lodi
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_D:\Hudba\DVDVideoSoft\Vimeo Download\VimeoDownload.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-91G8VB2\Miloslav Neužil
Název procesu: C:\Users\MILOSL~1\AppData\Local\Temp\is-DLAPU.tmp\FreeStudio_6.7.4.1101_o.tmp
Verze bezpečnostních informací: AV: 1.359.1143.0, AS: 1.359.1143.0, NIS: 1.359.1143.0
Verze modulu: AM: 1.1.18900.3, NIS: 1.1.18900.3
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1.I0 06/26/2018
Motherboard: MSI Z170A GAMING M5 (MS-7977)
Processor: Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 29%
Total physical RAM: 32728.2 MB
Available physical RAM: 23229.5 MB
Total Virtual: 37848.2 MB
Available Virtual: 27731.59 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:487.27 GB) (Free:309.67 GB) NTFS
Drive d: () (Fixed) (Total:1374.73 GB) (Free:908.92 GB) NTFS
Drive k: (MFS DISK 1) (CDROM) (Total:7.95 GB) (Free:0 GB) UDF
\\?\Volume{63569d8a-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{63569d8a-0000-0000-0000-a0f079000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 63569D8A)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=487.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=534 MB) - (Type=27)
Partition 4: (Not Active) - (Size=1374.7 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
Zdravím!
Proskenujte PC pomocí AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, spusťte, nechte pracovat a po skončení akce smažte vše, co najde. Návod v odkazu je na starší verzi.
Proskenujte PC pomocí AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, spusťte, nechte pracovat a po skončení akce smažte vše, co najde. Návod v odkazu je na starší verzi.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
Našel 17 objektů a ty jsem smazal. Nenašel jsem ale možnost, jak uložit log. V adresáři kde nástroj je jsem našel jen dva soubory "nepotvrzeno šestimístné číslo crdownload", ale nevím, jestli se toho týkají. Můžou být od jiného zdroje.
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
Log z tohoto nástroke nedostanete. "Nepotvrzeno šestimístné číslo crdownload" vidím poprvé a nevím k čemu patří. V každém případě jste správně vše dostupné smazal. Teď už by měl být klid.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
Děkuji za příznivou zprávu, raději ještě aspoň do pátku nebo soboty počkám a budu zkoušet. Pak se ještě jednou ozvu.
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
OK, nechám otevřené.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
Tak za ty tři dny nic, vypadá to dobře, jen to nechci zakřiknout. Děkuji a opět rád něco pošlu.
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Po odstranění Wacatac za dva dny Trojan:Win32/Ulthar.A!ml
Rádo se stalo a za příspěvek opět děkujeme! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?