Prosím o kontrolu logu. Procesor jede často na 100%, i když není nic spuštěno.
Díky P.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-10-2021
Ran by Pavel (administrator) on LAPTOP-AFCSSV23 (HP HP Pavilion Gaming Laptop 15-ec0xxx) (29-10-2021 20:26:13)
Running from C:\Users\berdi\Desktop
Loaded Profiles: sever & Pavel
Platform: Microsoft Windows 11 Home Version 21H2 22000.258 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe <2>
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe <2>
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356148.inf_amd64_49a476cb3d4116cb\B355990\atieclxx.exe <2>
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356148.inf_amd64_49a476cb3d4116cb\B355990\atiesrxx.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe <2>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe <4>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe <14>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe <2>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe <2>
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\BridgeCommunication.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe <24>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20034.345.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe <2>
(Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe <3>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [971256 2019-09-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-09-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03C17FD2-F0BC-4D35-8197-8A769BC595E8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3978624 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CF0986A-9525-4485-AC3D-CB742A9FC41F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3FEC0D25-2BBC-42A5-8ED7-797C578073B7} - System32\Tasks\CCleanerSkipUAC - sever => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {40071459-06AF-49D4-8FEA-5BC6027F05B4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
Task: {427F202F-0F7E-40D6-A1FA-D26144446C97} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {467922EF-BE8F-4324-95FE-747B18808797} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51DD30C1-F611-475B-A5EA-170D4370D453} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {556BD5B3-37FB-4C68-8B3D-4283375375FE} - System32\Tasks\CCleanerSkipUAC - Pavel => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {590A7775-91AA-4F0D-97EF-42E8791F0FF8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {59C3ED06-290A-44A5-9BFC-D1C2A869197D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753CB853-84D7-44B3-BF05-3B66C6A9B9E1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {753D7409-1DCE-40E5-88C9-712BA93818EF} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {7D32CBEA-E943-4793-8C87-CD96664A03C6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7D67C3C2-02C4-423C-9832-3B7BE5E4CF13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-09-01] (HP Inc. -> HP Inc.)
Task: {7ED79E6A-06E4-48D3-BE88-85A35F3A8458} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {8396D8EE-227B-40C2-834F-832FE1BAFADD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest
Task: {8804DA0B-64EE-47C3-B8C7-9A9108352874} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {987A2B50-51EE-4FA5-8DF6-039755B6D807} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A59B6AE-E543-455E-A8D5-B6956B51718B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9B5731B4-623E-425B-8F27-AADD517640DF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C158AD4-BA0F-4400-88B3-29F82211BE58} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C82A3DF-3B9C-44B0-9691-4208E3D6FEC1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60088 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F40E05B-C759-425F-B363-ADEBBEB0C7BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A434A5EA-0458-445D-BAC8-95D4CEB81C56} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {AA222C5E-97C2-4E20-B8DE-C6492D3AC3FB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B1AC5910-9A0D-40B4-92E1-19D3FF994357} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {B584957B-461A-4921-B1B4-9F521D2139A5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C5E01010-DA49-44C7-B1F1-9C949184F3ED} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {C726128C-4373-4C24-8F89-F5271E757575} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CA69FAB5-B128-4A15-A1DF-13A101677CCC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {CDC8A884-C649-4529-9D18-58A6BE362395} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE379FEA-3EB1-45F2-9136-0BD47EA59606} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {D97FFAC6-BE61-4B03-9C59-F1B406CEBBF4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E099332A-788C-4AFE-8E6B-F3BF0B4FB323} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F2DFBE6C-8DD0-4D46-8284-0B5FCA0A6D9E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F873D338-7B05-4C4A-A952-4BC771F040EC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {FB5CE18C-7B7F-459C-B4C3-43750EEDD455} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{22701c8f-84c5-41c7-b988-50bc4a645814}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\berdi\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-29]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default [2021-10-29]
CHR Notifications: Default -> hxxps//cz.go-travels.com
CHR HomePage: Default -> hxxp//www.google.com/
CHR StartupUrls: Default -> "hxxp//search.toggle.com/?lang=en&cid=adfaa7a7","hxxp//www.msn.com/?pc=UP97&ocid=UP97DHP&dt=07 ... oogle.com/"
CHR Extension: (Překladač Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-19]
CHR Extension: (Prezentace) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-18]
CHR Extension: (Duolingo on the Web) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2020-11-18]
CHR Extension: (Dokumenty) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-18]
CHR Extension: (Disk Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-18]
CHR Extension: (YouTube) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-18]
CHR Extension: (Google News) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc [2020-11-18]
CHR Extension: (Hudba Google Play) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Tabulky) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (Tlačítko „Uložit na Pinterest“) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-10-27]
CHR Extension: (Google Play Music) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2020-11-18]
CHR Extension: (FormApps Extension) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2020-11-18]
CHR Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ColorPick Eyedropper) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohcpnigalekghcmgcdcenkpelffpdolg [2020-12-25]
CHR Extension: (Gmail) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncHelper.exe [3253120 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe [755704 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe [754184 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe [751104 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe [754688 2021-09-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe [494688 2021-09-24] (HP Inc. -> HP Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\OneDriveUpdaterService.exe [3721600 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\NisSrv.exe [2872008 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MsMpEng.exe [128376 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [127936 2019-05-22] (Alcorlink Corp. -> )
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-10-14] (Google LLC -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-10-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-10-26] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-29 20:26 - 2021-10-29 20:26 - 000028287 _____ C:\Users\berdi\Desktop\FRST.txt
2021-10-29 20:25 - 2021-10-29 20:26 - 000000000 ____D C:\FRST
2021-10-29 20:20 - 2021-10-29 20:20 - 002310656 _____ (Farbar) C:\Users\berdi\Desktop\FRST64.exe
2021-10-29 20:08 - 2021-10-29 20:08 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - sever
2021-10-29 19:59 - 2021-10-29 20:01 - 000000000 ____D C:\Users\berdi\Documents\CCleaner_registry
2021-10-29 19:53 - 2021-10-29 20:08 - 000000000 ____D C:\Program Files\CCleaner
2021-10-29 19:53 - 2021-10-29 19:53 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-10-29 19:53 - 2021-10-29 19:53 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Pavel
2021-10-29 19:53 - 2021-10-29 19:53 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-10-29 19:53 - 2021-10-29 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-10-29 19:46 - 2021-10-29 19:46 - 036227456 _____ (Piriform Software Ltd) C:\Users\berdi\Downloads\ccsetup586.exe
2021-10-29 19:37 - 2021-10-29 19:38 - 000001025 _____ C:\Users\berdi\Desktop\shotcut.lnk
2021-10-29 19:30 - 2021-10-29 19:30 - 000001992 _____ C:\Users\berdi\Desktop\DaVinci Resolve.lnk
2021-10-29 19:29 - 2021-10-29 19:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-28 21:28 - 2021-10-28 21:28 - 000000000 ___HD C:\$WinREAgent
2021-10-27 16:30 - 2021-10-27 16:33 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky (1)
2021-10-27 16:30 - 2021-10-27 16:30 - 002890445 _____ C:\Users\berdi\Downloads\Foto myšky (1).zip
2021-10-27 16:27 - 2021-10-27 16:29 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky
2021-10-27 16:26 - 2021-10-27 16:26 - 003794128 _____ C:\Users\berdi\Downloads\Foto myšky.zip
2021-10-26 06:25 - 2021-10-26 06:25 - 004853656 _____ (Husdawg, LLC) C:\Users\berdi\Downloads\Detection.exe
2021-10-26 06:09 - 2021-10-26 06:09 - 000000000 ____D C:\Users\berdi\AppData\Local\Meltytech
2021-10-26 06:07 - 2021-10-26 06:07 - 000001899 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk
2021-10-26 06:06 - 2021-10-26 06:07 - 000000000 ____D C:\Program Files\Shotcut
2021-10-26 06:06 - 2021-10-26 06:06 - 077780472 _____ C:\Users\berdi\Downloads\shotcut-win64-210922.exe
2021-10-25 20:06 - 2021-10-25 20:06 - 000000020 ___SH C:\Users\sever\ntuser.ini
2021-10-25 20:05 - 2021-10-25 20:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-10-25 20:04 - 2021-10-25 20:04 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-10-25 20:03 - 2021-10-29 19:12 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{08FDF5A3-8CC4-42D3-BC77-0CFA46884A88}
2021-10-25 20:03 - 2021-10-28 21:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-25 20:03 - 2021-10-27 15:56 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-10-25 20:03 - 2021-10-25 20:03 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-25 20:03 - 2021-10-25 20:03 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-25 20:03 - 2021-10-25 20:03 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-25 20:03 - 2021-10-25 20:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d71c7ad2686caf
2021-10-25 20:03 - 2021-10-25 20:03 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-25 20:03 - 2021-10-25 20:03 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-25 20:03 - 2021-10-25 20:03 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2021-10-25 20:03 - 2021-10-25 20:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-10-25 20:03 - 2021-10-25 20:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-10-25 20:03 - 2021-10-25 20:03 - 000000020 ___SH C:\Users\berdi\ntuser.ini
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\AnyMP4 Studio
2021-10-25 20:03 - 2020-08-24 11:36 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3814328846-1681259996-2647774117-500
2021-10-25 20:03 - 2019-12-03 02:12 - 000002852 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-145576158-3702827341-4024398963-500
2021-10-25 20:03 - 2019-04-15 17:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2021-10-25 20:02 - 2021-10-25 20:03 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2021-10-25 20:02 - 2021-10-25 20:03 - 000017148 _____ C:\WINDOWS\diagerr.xml
2021-10-25 20:01 - 2021-10-28 21:36 - 001819258 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-25 19:59 - 2021-10-29 19:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-25 19:59 - 2021-10-25 20:03 - 000000000 ____D C:\Windows.old
2021-10-25 19:59 - 2021-10-25 19:59 - 000593240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-25 19:47 - 2021-10-25 19:59 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-10-25 19:45 - 2021-10-28 21:32 - 000000000 ____D C:\Users\berdi
2021-10-25 19:45 - 2021-10-25 20:06 - 000000000 ____D C:\Users\sever
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Šablony
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Soubory cookie
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Poslední
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Okolní tiskárny
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Okolní síť
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Nabídka Start
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Dokumenty
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Obrázky
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Hudba
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Filmy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\AppData\Local\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Šablony
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Soubory cookie
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Poslední
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Okolní tiskárny
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Okolní síť
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Nabídka Start
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Dokumenty
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Obrázky
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Hudba
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Filmy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\AppData\Local\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 ____D C:\WINDOWS\Firmware
2021-10-25 19:45 - 2021-06-05 14:04 - 000001281 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000001281 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000000407 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000000407 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 19:44 - 2021-10-25 19:47 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-10-25 19:41 - 2021-10-25 19:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 002764800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 001745736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-10-25 19:37 - 2021-10-25 19:37 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-10-25 19:37 - 2021-10-25 19:37 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-10-25 19:37 - 2021-10-25 19:37 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-25 19:37 - 2021-10-25 19:37 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000377136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-10-25 19:37 - 2021-10-25 19:37 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000269112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-10-25 19:37 - 2021-10-25 19:37 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2021-10-25 19:37 - 2021-10-25 19:37 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmview.ocx
2021-10-25 19:37 - 2021-10-25 19:37 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2021-10-25 19:37 - 2021-10-25 19:37 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000014580 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2021-10-25 19:37 - 2021-10-25 19:37 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2021-10-25 19:37 - 2021-10-25 19:37 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2021-10-25 19:37 - 2021-10-25 19:37 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2021-10-25 19:36 - 2021-10-25 19:36 - 002310384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-25 19:36 - 2021-10-25 19:36 - 001856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-25 19:36 - 2021-10-25 19:36 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-25 19:36 - 2021-10-25 19:36 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-25 19:36 - 2021-10-25 19:36 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmview.ocx
2021-10-25 19:36 - 2021-10-25 19:36 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-10-25 19:36 - 2021-10-25 19:36 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2021-10-25 19:34 - 2021-10-25 20:23 - 000000000 ____D C:\WINDOWS\HoloShell
2021-10-25 19:34 - 2021-10-25 19:43 - 000000000 ____D C:\WINDOWS\TextInput
2021-10-25 19:33 - 2021-10-25 19:33 - 001368296 _____ C:\WINDOWS\system32\PerceptionSimulationRightHandModel.glb
2021-10-25 19:33 - 2021-10-25 19:33 - 001366268 _____ C:\WINDOWS\system32\PerceptionSimulationLeftHandModel.glb
2021-10-25 19:33 - 2021-10-25 19:33 - 000000002 _____ C:\WINDOWS\system32\hologramcompositor.lock
2021-10-25 19:31 - 2021-10-25 19:31 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-10-25 19:31 - 2021-10-25 19:31 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files\MSBuild
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-25 19:19 - 2021-10-25 19:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-10-25 18:36 - 2021-10-29 19:56 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-25 12:14 - 2021-10-25 12:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (2).pdf
2021-10-25 12:14 - 2021-10-25 12:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (1).pdf
2021-10-25 12:05 - 2021-10-25 12:05 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ.pdf
2021-10-24 21:12 - 2021-10-24 21:13 - 272367931 _____ C:\Users\berdi\Timeline 1.mov
2021-10-24 16:12 - 2021-10-24 16:12 - 000000000 ____D C:\Users\berdi\Documents\Blackmagic Design
2021-10-24 16:06 - 2021-10-24 16:06 - 000000000 ____D C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows
2021-10-24 15:45 - 2021-10-24 15:52 - 2718482084 _____ C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows.zip
2021-10-23 20:27 - 2021-10-23 20:27 - 000000000 ____D C:\Users\berdi\AppData\Local\RawTherapee
2021-10-23 20:26 - 2021-10-23 20:26 - 049726890 _____ (rawtherapee.com ) C:\Users\berdi\Downloads\RawTherapee_5.8.exe
2021-10-23 20:13 - 2021-10-25 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-10-23 20:13 - 2021-10-24 11:56 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Slides.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Sheets.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001894 _____ C:\Users\berdi\Desktop\Google Docs.lnk
2021-10-23 20:13 - 2021-10-14 14:25 - 000389640 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3525.sys
2021-10-23 20:12 - 2021-10-23 20:13 - 000000000 ____D C:\Users\berdi\AppData\Roaming\PhotoScape
2021-10-23 20:11 - 2021-10-23 20:11 - 021025552 _____ (Mooii) C:\Users\berdi\Downloads\PhotoScapeSetup_V3-7.exe
2021-10-23 20:06 - 2021-10-23 20:06 - 000008181 _____ C:\Users\berdi\AppData\Local\recently-used.xbel
2021-10-23 09:20 - 2021-10-23 09:20 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-23 09:20 - 2021-10-23 09:20 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-22 17:46 - 2021-10-22 17:46 - 000689956 _____ C:\Users\sever\Desktop\Nabídka_4soft_O1-51821_N-VA_Brandýs_nad_Labem.pdf
2021-10-21 19:39 - 2021-10-21 19:48 - 000000000 ____D C:\Users\berdi\Documents\DJI
2021-10-21 19:38 - 2021-10-25 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2021-10-21 19:38 - 2021-10-21 19:48 - 000000000 ____D C:\Users\berdi\AppData\Local\DJI Assistant 2
2021-10-21 19:38 - 2021-10-21 19:38 - 000001498 _____ C:\Users\Public\Desktop\DJI Assistant 2 (Consumer Drones Series).lnk
2021-10-19 21:25 - 2021-10-19 21:27 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak
2021-10-19 21:25 - 2021-10-19 21:25 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Videa
2021-10-19 21:24 - 2021-10-19 21:24 - 017591927 _____ C:\Users\berdi\Downloads\Fwd_ Videa.zip
2021-10-19 21:24 - 2021-10-19 21:24 - 010120515 _____ C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak.zip
2021-10-19 20:56 - 2021-10-19 21:08 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 3
2021-10-19 20:55 - 2021-10-19 21:07 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 2
2021-10-19 20:55 - 2021-10-19 21:04 - 000000000 ____D C:\Users\berdi\Downloads\Foto dravci 1
2021-10-19 20:55 - 2021-10-19 20:55 - 008320179 _____ C:\Users\berdi\Downloads\Foto dravci 1.zip
2021-10-19 20:55 - 2021-10-19 20:55 - 007970400 _____ C:\Users\berdi\Downloads\Dravci 2.zip
2021-10-19 20:55 - 2021-10-19 20:55 - 002607756 _____ C:\Users\berdi\Downloads\Dravci 3.zip
2021-10-19 19:49 - 2021-10-19 20:46 - 000000000 ____D C:\Users\berdi\Downloads\prilohy_69267
2021-10-19 19:48 - 2021-10-19 19:48 - 015886397 _____ C:\Users\berdi\Downloads\prilohy_69267.zip
2021-10-18 17:03 - 2021-10-18 17:03 - 000000000 ____D C:\Users\berdi\AppData\Local\SolidDocuments
2021-10-18 17:01 - 2021-10-18 17:06 - 000000000 ____D C:\Users\sever\Desktop\Děti s vývojovou disfázií - KURS
2021-10-18 17:01 - 2021-10-18 17:01 - 000000000 ____D C:\Users\sever\Desktop\Pomoc při logopedických problémech v MŠ a ZŠ
2021-10-17 13:38 - 2021-10-22 17:43 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-17 13:38 - 2021-10-22 17:43 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-10-17 13:38 - 2021-10-17 13:38 - 000000000 ____D C:\Users\sever\AppData\Local\SolidDocuments
2021-10-17 13:38 - 2021-10-17 13:38 - 000000000 ____D C:\Program Files\Adobe
2021-10-17 13:37 - 2021-10-17 13:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-16 20:40 - 2021-10-21 19:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJI Assistant 2
2021-10-16 20:40 - 2021-10-16 20:41 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJIAssistant2
2021-10-16 20:40 - 2021-10-16 20:40 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Electron
2021-10-16 20:39 - 2021-10-21 19:34 - 000000000 ____D C:\Program Files (x86)\DJI Product
2021-10-16 12:36 - 2021-10-16 12:36 - 000000000 ____D C:\Users\sever\AppData\Roaming\HpUpdate
2021-10-15 07:13 - 2021-10-15 07:13 - 001231452 _____ C:\Users\sever\Downloads\směrnice_řády_vnitřní_předpisy_ve_školství.pdf
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\Users\sever\AppData\Local\AnyMP4 Studio
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\ProgramData\Apple
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\Program Files\AnyMP4 Studio
2021-10-13 19:59 - 2021-10-13 20:00 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (2)
2021-10-13 19:58 - 2021-10-13 19:59 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (1)
2021-10-13 19:57 - 2021-10-13 19:58 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky
2021-10-13 19:42 - 2021-10-13 19:42 - 000085846 _____ C:\Users\sever\Documents\Jazyková příprava.pdf
2021-10-12 19:01 - 2021-10-12 19:01 - 000000000 ____D C:\Users\berdi\AppData\Local\Apps\2.0
2021-10-11 08:00 - 2021-10-11 08:00 - 000000000 ____D C:\Program Files\Microsoft.WebView2.FixedVersionRuntime.92.0.902.73.x64
2021-10-07 18:16 - 2021-10-07 18:16 - 000275885 _____ C:\Users\sever\Downloads\Kniha2014_zkratky.pdf
2021-10-07 18:04 - 2021-10-07 18:04 - 000149149 _____ C:\Users\sever\Downloads\Úprava rozpočtu k 30. 9. 2021 – Brandýs.xlsx
2021-10-05 23:32 - 2021-10-05 23:32 - 001210789 _____ C:\Users\berdi\Documents\Krtečci_210310 (2)re.xcf
2021-10-05 21:09 - 2021-10-05 21:09 - 000136581 _____ C:\Users\berdi\Documents\SablonyIII.pdf
2021-10-04 19:35 - 2021-10-04 19:35 - 002864361 _____ C:\Users\berdi\Downloads\images.zip
2021-10-04 19:35 - 2021-10-04 19:35 - 000000000 ____D C:\Users\berdi\Downloads\images
2021-10-04 19:06 - 2021-10-04 19:07 - 000000000 ____D C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”
2021-10-04 19:05 - 2021-10-04 19:05 - 009629583 _____ C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”.zip
2021-10-03 17:13 - 2021-10-03 17:27 - 000000000 ____D C:\Users\berdi\Downloads\Fotky
2021-10-03 17:12 - 2021-10-03 17:12 - 004836455 _____ C:\Users\berdi\Downloads\Fotky.zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-29 20:21 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-10-29 20:10 - 2020-08-24 11:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-29 20:09 - 2020-11-17 19:50 - 000000000 ____D C:\Users\sever\AppData\Local\CrashDumps
2021-10-29 20:08 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-29 20:08 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-29 20:08 - 2020-11-17 21:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-29 20:08 - 2020-11-17 17:33 - 000000000 ___RD C:\Users\sever\OneDrive
2021-10-29 20:08 - 2020-11-17 17:32 - 000000000 ____D C:\Users\sever\AppData\Local\D3DSCache
2021-10-29 20:08 - 2020-11-17 17:31 - 000000000 ____D C:\Users\sever\AppData\Local\Packages
2021-10-29 19:56 - 2020-11-22 11:55 - 000000000 ____D C:\Users\berdi\AppData\Local\CrashDumps
2021-10-29 19:54 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\D3DSCache
2021-10-29 19:30 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2021-10-29 19:29 - 2020-11-22 13:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-29 19:29 - 2020-11-22 13:52 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2021-10-29 19:29 - 2020-11-22 12:56 - 000000000 ____D C:\Program Files\Blackmagic Design
2021-10-28 21:48 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-28 21:36 - 2021-06-05 19:20 - 000760130 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-28 21:36 - 2021-06-05 19:20 - 000168452 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-28 21:33 - 2020-11-17 19:28 - 000000000 ___RD C:\Users\berdi\OneDrive
2021-10-28 21:32 - 2021-06-22 17:51 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-10-28 21:32 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\OCR
2021-10-28 21:32 - 2021-06-05 14:01 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-10-28 21:32 - 2021-03-19 06:41 - 000012288 ___SH C:\DumpStack.log.tmp
2021-10-28 21:28 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-27 15:56 - 2021-06-22 17:48 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-26 06:28 - 2019-04-15 17:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-26 06:10 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\appcompat
2021-10-26 06:04 - 2020-11-17 19:40 - 000000000 ____D C:\Users\berdi\AppData\Local\PlaceholderTileLogoFolder
2021-10-25 20:55 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\Packages
2021-10-25 20:23 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-10-25 20:23 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\NVIDIA Corporation
2021-10-25 20:22 - 2020-11-17 17:33 - 000000000 ____D C:\Users\sever\AppData\Local\NVIDIA Corporation
2021-10-25 20:20 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Packages
2021-10-25 20:18 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\servicing
2021-10-25 20:07 - 2020-11-17 21:16 - 000000000 ____D C:\Users\sever\AppData\Local\Google
2021-10-25 20:06 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-25 20:06 - 2019-04-15 17:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Windows NT
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-25 20:03 - 2021-06-05 14:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-25 20:01 - 2020-11-17 21:16 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-25 20:00 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-25 19:59 - 2021-09-22 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-10-25 19:59 - 2021-09-22 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-10-25 19:59 - 2021-07-09 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2021-10-25 19:59 - 2021-06-22 23:50 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\spool
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-25 19:59 - 2021-06-05 14:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-10-25 19:59 - 2021-05-08 21:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2021-10-25 19:59 - 2021-03-11 19:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2021-10-25 19:59 - 2020-12-31 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-25 19:59 - 2020-11-24 23:18 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultima Online DP2
2021-10-25 19:59 - 2020-11-22 16:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-10-25 19:59 - 2020-11-18 19:48 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 19:59 - 2020-11-17 20:41 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-10-25 19:59 - 2020-11-17 19:48 - 000000000 ____D C:\Program Files\UNP
2021-10-25 19:59 - 2020-11-17 17:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-25 19:59 - 2020-08-24 11:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-10-25 19:59 - 2020-08-24 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-10-25 19:59 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2021-10-25 19:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-10-25 19:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-10-25 19:55 - 2021-06-05 14:14 - 000000000 ____D C:\WINDOWS\Setup
2021-10-25 19:52 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\USOPrivate
2021-10-25 19:51 - 2021-06-05 14:10 - 000000000 __RHD C:\Users\Public\Libraries
2021-10-25 19:43 - 2021-06-05 19:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Common Files\System
2021-10-25 19:42 - 2021-06-05 19:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-10-25 19:42 - 2021-06-05 19:28 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-10-25 19:34 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemApps
2021-10-25 19:31 - 2021-06-05 19:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-10-25 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-10-25 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-10-24 16:14 - 2021-01-14 18:58 - 000000000 ____D C:\Users\berdi\AppData\Local\cache
2021-10-24 16:11 - 2020-11-18 19:45 - 000000000 ____D C:\Users\berdi\AppData\Local\Google
2021-10-24 16:11 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-24 14:10 - 2021-05-08 20:51 - 000000000 ____D C:\Users\berdi\AppData\Local\babl-0.1
2021-10-23 20:13 - 2020-11-17 21:16 - 000000000 ____D C:\Program Files\Google
2021-10-22 17:56 - 2021-09-16 21:47 - 000000000 ____D C:\Users\berdi\AppData\Local\ElevatedDiagnostics
2021-10-22 17:42 - 2021-05-10 19:04 - 000000000 ____D C:\Users\sever\AppData\Local\Adobe
2021-10-19 17:56 - 2021-06-22 18:56 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-18 17:03 - 2021-03-07 18:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Adobe
2021-10-18 17:03 - 2021-03-07 18:30 - 000000000 ____D C:\Users\berdi\AppData\Local\Adobe
2021-10-17 13:38 - 2021-03-19 06:48 - 000000000 ____D C:\Users\sever\AppData\Roaming\Adobe
2021-10-17 13:37 - 2021-05-08 21:12 - 000000000 ____D C:\ProgramData\Adobe
2021-10-14 06:49 - 2020-11-17 19:51 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-14 06:49 - 2020-11-17 19:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 19:35 - 2020-11-17 17:33 - 000000000 ____D C:\Users\sever\AppData\Local\PlaceholderTileLogoFolder
2021-10-05 23:40 - 2021-05-23 14:09 - 000000000 ____D C:\Users\berdi\AppData\Local\gtk-2.0
2021-10-05 19:01 - 2020-12-31 21:22 - 000191832 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-10-05 19:01 - 2020-12-31 21:22 - 000000000 ____D C:\Program Files\Java
2021-10-04 20:21 - 2020-12-25 22:03 - 000000000 ____D C:\Users\berdi\AppData\Roaming\HP
2021-10-04 19:01 - 2020-11-17 19:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-01 22:03 - 2021-07-17 10:19 - 004968448 _____ C:\Users\berdi\Documents\Mateřská škola.accdb
==================== Files in the root of some directories ========
2021-01-14 19:43 - 2021-01-14 19:43 - 000097505 _____ () C:\Users\berdi\AppData\Roaming\Crescendo.dmp
2021-10-23 20:06 - 2021-10-23 20:06 - 000008181 _____ () C:\Users\berdi\AppData\Local\recently-used.xbel
2020-11-18 20:37 - 2020-11-18 20:37 - 000000017 _____ () C:\Users\berdi\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-10-2021
Ran by Pavel (29-10-2021 20:27:31)
Running from C:\Users\berdi\Desktop
Microsoft Windows 11 Home Version 21H2 22000.258 (X64) (2021-10-25 18:03:09)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-626895236-950452568-4050494843-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-626895236-950452568-4050494843-503 - Limited - Disabled)
Guest (S-1-5-21-626895236-950452568-4050494843-501 - Limited - Disabled)
Pavel (S-1-5-21-626895236-950452568-4050494843-1002 - Administrator - Enabled) => C:\Users\berdi
sever (S-1-5-21-626895236-950452568-4050494843-1001 - Administrator - Enabled) => C:\Users\sever
vikib (S-1-5-21-626895236-950452568-4050494843-1005 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-626895236-950452568-4050494843-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader (HKLM\...\{50F633D3-DE52-4709-AD1B-A09B5B0D86C1}) (Version: 4.14.1.4020 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{33a1766b-73d6-42ce-b3ff-317e5db3e9a7}) (Version: 4.14.1.4020 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0807.2241.40847 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK Alpha (HKLM\...\{716F53C3-0B3F-4FB7-9AD7-9BC7DB7134A1}) (Version: 1.3.0.0533 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{685BAD50-A3AA-4B91-A15B-77F9DC7346D4}) (Version: 3.57.4043.4118 - Google, Inc.)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform)
Crescendo Music Notation Editor (HKLM-x32\...\Crescendo) (Version: 1.14 - NCH Software)
DaVinci Resolve (HKLM\...\{EB2DCFCD-3A03-4E68-9A1E-1CD4112386FC}) (Version: 17.4.00012 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
DJI Assistant 2 (Consumer Drones Series) version V2.1.5.8 (HKLM-x32\...\{7369D6A6-CBF3-428F-8C82-3D647630FC9A}_is1) (Version: V2.1.5.8 - DJI)
GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 52.0.6.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Photosmart C4200 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{276C40A7-8110-4976-80D2-39C669B84D32}) (Version: 14.0 - HP)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Inkscape (HKLM\...\{1E74336F-9E7A-4070-BAA7-716A504FB9B0}) (Version: 1.0.0 - Inkscape)
Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14430.20306 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 462.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.80 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
PSPad editor (HKLM\...\PSPad editor_is1) (Version: 5.0.5.567 - Jan Fiala)
Shotcut (HKLM\...\Shotcut) (Version: 21.09.22 - Meltytech, LLC)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Zoom (HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.)
Packages:
=========
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.7.195.0_x64__v10z8vjag6ke6 [2021-10-25] (HP Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-06-15] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-25] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-10-25] (Facebook Inc)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.0.6.0_x64__v10z8vjag6ke6 [2020-08-24] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-24] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.0.0_x64__v10z8vjag6ke6 [2021-10-15] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-11] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.9.58.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6 [2021-08-03] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-09] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-25] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0 [2021-10-25] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\nvshext.dll [2021-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers1_S-1-5-21-626895236-950452568-4050494843-1002: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Hudba Google Play.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
==================== Loaded Modules (Whitelisted) =============
2019-01-08 13:03 - 2019-01-08 13:03 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2019-01-08 13:03 - 2019-01-08 13:03 - 003598336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2021-03-11 19:14 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Program Files\PSPad editor\pspshellx64.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\92637a3c2065a1153c4f965968887fe1\Interop.IWshRuntimeLibrary.ni.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\adafd17e68fc81abf9353000780a7c63\Hardcodet.Wpf.TaskbarNotification.ni.dll
2021-03-07 08:37 - 2021-03-07 08:37 - 000014336 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2021-10-27 16:07 - 2021-10-27 16:07 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\7872127d7872dfaf051d5c7c4f74ef56\NAudio.ni.dll
2021-06-22 18:56 - 2021-06-22 18:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2021-06-22 18:56 - 2021-06-22 18:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2021-10-25 20:20 - 2021-10-25 20:20 - 000137152 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20034.345.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 003060736 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\bffc48840549adf535e98c03804ad000\Newtonsoft.Json.ni.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\034c3e5ee114fd6d0b2bfb7360b20aa9\log4net.ni.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000414208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000516608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 001441280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-08-07 22:39 - 2019-08-07 22:39 - 005999104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 006413824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 001141760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000339968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 004143104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 003840000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000332800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000349184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 080959488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 005622272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000190464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 002825216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000137216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2021-03-07] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2021-03-07] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sever\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{795C76F0-40E4-4CD7-9CAC-5B680B956E15}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{E705B4B5-92DF-4F6A-9B6D-5976A0D8BBCD}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [{2102EC06-985E-43AA-A4FB-1534BD718315}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7B7CC774-4F66-451C-9380-A26E93F3DCFE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07B2762C-86C4-4FE6-AE0B-8B2424C68812}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{68E2A6A8-1A1D-42BC-9B16-6CFB33EC9AF0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D40DDF2-0A7E-4018-95F2-3A07B7AD033D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF82CB62-5C3B-4E02-9AEF-203AFE2E156D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{3AD73BC4-CA38-439E-880B-B87EA7908B7E}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{EE9102E4-605E-48B8-8C24-A9AF4CB6385D}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{83BC7353-9138-4269-AD1C-54B9B43278D9}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{0EF8FD87-2288-40EE-B3F4-7C7B213F6B03}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [{6D7E9258-374B-42EF-A08C-B5DA13B8CB85}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D7377C96-06BE-4AB0-9A00-356DAC33F769}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{68A40398-8D79-4642-BBD9-B7DCD1583C08}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [UDP Query User{E7854A38-1E18-4DAF-A556-F2150934493B}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{13F97527-78DB-4AA6-A450-27D6E4D7BFD3}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{8CA7AEBF-D9A7-44FB-9DB5-5A8A5DD9DB66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F5EBED-DC73-4581-BA30-D1F44D0195F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48BD1678-C870-4DAB-8145-8BB940D9E74E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1317AB1-0416-44C7-839A-FFDAE0987190}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{90135E6A-0B02-466F-A966-D015A8E5BA64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0FC7A750-6829-4FB7-9197-49E45EB10B66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50A7C865-B44B-49E3-B7F6-E399A22F2F7C}] => (Allow) C:\Users\sever\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{EAC0DB97-9364-4B67-A8A6-A65CAC8EAC3F}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{39151168-B132-4EAC-BFDD-897532EE4CA8}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{8F9D30EC-8891-4318-9564-2CDBB3963574}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{CC437015-3D5B-4922-8303-9D07CA3E44E4}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{F0058689-3572-41E9-859E-2F78430DC054}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{625E177E-6206-4EBA-A3DD-59B6E86D3AC7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{108D5FA7-BCCA-44C1-9CC6-9FC72C2472BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8A82CCD1-46EC-44A3-BC0E-F9AB17988B14}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{091C4D75-1DBF-45AB-8375-25D69EC7C78A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1A60EBD1-8214-45A7-B938-EEDE49C085BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F137FE90-7CE6-40B0-A28F-220F42D28AD7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1A89581A-160C-4940-977C-7B4CE8F95ECD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{344AE34A-8A1E-4B17-B3BD-F19C7D0271F2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{983E8829-A0D5-49F6-9301-9D38FC57A5C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{31281DB8-3B13-4F09-82BB-7D52DE7658D7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{BC298BEA-A791-4AA7-91D2-501B7C7DE752}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{20A33D2F-5C99-46D1-A54F-C81C256F17CA}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D4ADE2B2-593B-4463-B05B-9E7575D654EE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{27E988B7-9E4C-4B2B-80AD-BD1C56895FB7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{FA936AD3-E8F2-42B7-9661-84C87FBF2308}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{86EA1FF8-7500-49F0-8CE9-F74613C2514D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
==================== Restore Points =========================
25-10-2021 21:05:41 Removed MuseScore 3
29-10-2021 19:29:36 Installed DaVinci Resolve
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2021 09:32:44 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:46 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 5a9716f1-34d2-4fd0-8c36-7c982435940e
Metoda: GET(234ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/28/2021 09:32:43 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:45 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 60600997-6f2c-4315-bd5c-2d6f1135b28a
Metoda: GET(390ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:56 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Oct 2021 04:26:58 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 51ba5889-c42f-4ae4-82c7-324baf750a97
Metoda: GET(203ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:55 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Oct 2021 04:26:58 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: f5368a9d-c724-4724-a92b-31b5631b44fc
Metoda: GET(313ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:20 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (10/26/2021 06:26:20 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (10/25/2021 08:54:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Microsoft.Photos.exe, verze: 2021.21090.10007.0, časové razítko: 0x613c237b
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.22000.132, časové razítko: 0xf9ab3e3e
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000010a4f4
ID chybujícího procesu: 0x2c24
Čas spuštění chybující aplikace: 0x01d7c9cac9a4b296
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\twinapi.appcore.dll
ID zprávy: 36d86c3b-15e8-4731-ab69-4579abd8739c
Úplný název chybujícího balíčku: Microsoft.Windows.Photos_2021.21090.10007.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/25/2021 08:08:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program StartMenuExperienceHost.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1b94
Čas spuštění: 01d7c9cb1df29330
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
ID hlášení: c8e611ba-7713-403d-acb0-455bf5bdb5b4
Úplný název balíčku s chybou: Microsoft.Windows.StartMenuExperienceHost_10.0.22000.37_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
System errors:
=============
Error: (10/29/2021 07:06:38 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/28/2021 09:56:24 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/28/2021 09:33:22 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800f0823): 2021-10 Kumulativní aktualizace pro Windows 11 pro systémy typu x64 (KB5006746).
Error: (10/27/2021 04:25:44 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/27/2021 03:56:37 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/26/2021 07:59:36 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/26/2021 06:04:14 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/25/2021 09:09:52 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-AFCSSV23)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================Event[0]
Date: 2021-10-29 19:26:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9C297418-E446-45F9-925F-759DFDCE4CDF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[1]
Date: 2021-10-28 08:26:51
Description:
N/A
CodeIntegrity:
===============
Date: 2021-10-26 06:21:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: AMI F.12 12/21/2020
Motherboard: HP 86D4
Processor: AMD Ryzen 5 3550H with Radeon Vega Mobile Gfx
Percentage of memory in use: 42%
Total physical RAM: 14213.14 MB
Available physical RAM: 8138.2 MB
Total Virtual: 17413.14 MB
Available Virtual: 7041.17 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:476.08 GB) (Free:331.82 GB) NTFS
\\?\Volume{60399fc6-b5cc-40c7-9724-2ead35b90910}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{b6163c22-e199-4cd6-8c7a-be6637a8ba63}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 52F19EB3)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola FRST logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola FRST logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola FRST logu
# -------------------------------
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-31-2021
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Wow6432Node\Conduit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4023 octets] - [31/10/2021 19:06:44]
AdwCleaner[S01].txt - [4084 octets] - [31/10/2021 19:08:59]
AdwCleaner[S02].txt - [4145 octets] - [31/10/2021 19:12:14]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########
# Malwarebytes AdwCleaner 8.3.0.0
# -------------------------------
# Build: 06-29-2021
# Database: 2021-10-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-31-2021
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Conduit
Deleted HKLM\Software\Wow6432Node\Conduit
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4023 octets] - [31/10/2021 19:06:44]
AdwCleaner[S01].txt - [4084 octets] - [31/10/2021 19:08:59]
AdwCleaner[S02].txt - [4145 octets] - [31/10/2021 19:12:14]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola FRST logu
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola FRST logu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 30-10-2021
Ran by Pavel (administrator) on LAPTOP-AFCSSV23 (HP HP Pavilion Gaming Laptop 15-ec0xxx) (01-11-2021 19:12:06)
Running from C:\Users\berdi\Desktop
Loaded Profiles: Pavel
: Microsoft Windows 11 Home Version 21H2 22000.258 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\BridgeCommunication.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22000.280_none_0483b4854ca89ef9\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteamsupdate.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [971256 2019-09-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.40\Installer\setup.exe [2846096 2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-09-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03C17FD2-F0BC-4D35-8197-8A769BC595E8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3978624 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {2EC62F7A-AD57-41A4-9ADB-9A4EB74A6EAF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3FEC0D25-2BBC-42A5-8ED7-797C578073B7} - System32\Tasks\CCleanerSkipUAC - sever => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {40071459-06AF-49D4-8FEA-5BC6027F05B4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
Task: {427F202F-0F7E-40D6-A1FA-D26144446C97} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {467922EF-BE8F-4324-95FE-747B18808797} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51DD30C1-F611-475B-A5EA-170D4370D453} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {556BD5B3-37FB-4C68-8B3D-4283375375FE} - System32\Tasks\CCleanerSkipUAC - Pavel => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {590A7775-91AA-4F0D-97EF-42E8791F0FF8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {59C3ED06-290A-44A5-9BFC-D1C2A869197D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753CB853-84D7-44B3-BF05-3B66C6A9B9E1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {753D7409-1DCE-40E5-88C9-712BA93818EF} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {7D32CBEA-E943-4793-8C87-CD96664A03C6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7D67C3C2-02C4-423C-9832-3B7BE5E4CF13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-09-01] (HP Inc. -> HP Inc.)
Task: {8396D8EE-227B-40C2-834F-832FE1BAFADD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest
Task: {8804DA0B-64EE-47C3-B8C7-9A9108352874} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {971FB59F-62A8-4815-A82A-98A37A507CD0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A59B6AE-E543-455E-A8D5-B6956B51718B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9B5731B4-623E-425B-8F27-AADD517640DF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C158AD4-BA0F-4400-88B3-29F82211BE58} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C82A3DF-3B9C-44B0-9691-4208E3D6FEC1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60088 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F40E05B-C759-425F-B363-ADEBBEB0C7BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A434A5EA-0458-445D-BAC8-95D4CEB81C56} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {A9B246F3-59C9-4DBF-9C20-01B2E0E55B21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AA222C5E-97C2-4E20-B8DE-C6492D3AC3FB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B1AC5910-9A0D-40B4-92E1-19D3FF994357} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {C5E01010-DA49-44C7-B1F1-9C949184F3ED} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {C726128C-4373-4C24-8F89-F5271E757575} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CA69FAB5-B128-4A15-A1DF-13A101677CCC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {CDC8A884-C649-4529-9D18-58A6BE362395} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE379FEA-3EB1-45F2-9136-0BD47EA59606} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {D97FFAC6-BE61-4B03-9C59-F1B406CEBBF4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F2DFBE6C-8DD0-4D46-8284-0B5FCA0A6D9E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F873D338-7B05-4C4A-A952-4BC771F040EC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {FB5CE18C-7B7F-459C-B4C3-43750EEDD455} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB6F1D8A-E046-4F59-8361-BB30D5ADB8C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{22701c8f-84c5-41c7-b988-50bc4a645814}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\berdi\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-31]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default [2021-11-01]
CHR Notifications: Default -> hxxps//cz.go-travels.com
CHR HomePage: Default -> hxxp//www.google.com/
CHR StartupUrls: Default -> "hxxp//search.toggle.com/?lang=en&cid=adfaa7a7","hxxp//www.msn.com/?pc=UP97&ocid=UP97DHP&dt=07 ... oogle.com/"
CHR Extension: (Překladač Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-19]
CHR Extension: (Prezentace) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-18]
CHR Extension: (Duolingo on the Web) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2020-11-18]
CHR Extension: (Dokumenty) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-18]
CHR Extension: (Disk Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-18]
CHR Extension: (YouTube) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-18]
CHR Extension: (Google News) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc [2020-11-18]
CHR Extension: (Tabulky) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (Tlačítko „Uložit na Pinterest“) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-10-27]
CHR Extension: (Google Play Music) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2020-11-18]
CHR Extension: (FormApps Extension) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2020-11-18]
CHR Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ColorPick Eyedropper) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohcpnigalekghcmgcdcenkpelffpdolg [2020-12-25]
CHR Extension: (Gmail) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncHelper.exe [3253120 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe [755704 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe [754184 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe [751104 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe [754688 2021-09-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe [494688 2021-09-24] (HP Inc. -> HP Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\OneDriveUpdaterService.exe [3721600 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [127936 2019-05-22] (Alcorlink Corp. -> )
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-10-14] (Google LLC -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-11-01 19:11 - 2021-11-01 19:11 - 000000000 ____D C:\Users\berdi\Desktop\FRST-OlderVersion
2021-10-31 19:26 - 2021-10-31 19:26 - 000219411 _____ C:\Users\sever\Downloads\Souhlas s pouzitim udaju pro skupinu CSOB.pdf
2021-10-31 19:11 - 2021-10-31 19:11 - 008553680 _____ (Malwarebytes) C:\Users\berdi\Desktop\AdwCleaner.exe
2021-10-31 19:06 - 2021-10-31 19:13 - 000000000 ____D C:\AdwCleaner
2021-10-30 20:28 - 2021-10-30 20:28 - 000001992 _____ C:\Users\berdi\Desktop\DaVinci Resolve.lnk
2021-10-30 20:27 - 2021-10-30 20:28 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-30 19:53 - 2021-10-30 20:03 - 2718716739 _____ C:\Users\berdi\Downloads\DaVinci_Resolve_17.4.1_Windows.zip
2021-10-29 19:27 - 2021-10-29 19:28 - 000052857 _____ C:\Users\berdi\Desktop\Addition.txt
2021-10-29 19:26 - 2021-11-01 19:12 - 000025096 _____ C:\Users\berdi\Desktop\FRST.txt
2021-10-29 19:25 - 2021-11-01 19:12 - 000000000 ____D C:\FRST
2021-10-29 19:20 - 2021-11-01 19:11 - 002310656 _____ (Farbar) C:\Users\berdi\Desktop\FRST64.exe
2021-10-29 19:08 - 2021-10-29 19:08 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - sever
2021-10-29 18:59 - 2021-10-29 19:01 - 000000000 ____D C:\Users\berdi\Documents\CCleaner_registry
2021-10-29 18:53 - 2021-10-31 19:22 - 000000000 ____D C:\Program Files\CCleaner
2021-10-29 18:53 - 2021-10-29 18:53 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-10-29 18:53 - 2021-10-29 18:53 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Pavel
2021-10-29 18:53 - 2021-10-29 18:53 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-10-29 18:53 - 2021-10-29 18:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-10-29 18:46 - 2021-10-29 18:46 - 036227456 _____ (Piriform Software Ltd) C:\Users\berdi\Downloads\ccsetup586.exe
2021-10-29 18:37 - 2021-10-29 18:38 - 000001025 _____ C:\Users\berdi\Desktop\shotcut.lnk
2021-10-28 20:28 - 2021-10-28 20:28 - 000000000 ___HD C:\$WinREAgent
2021-10-27 15:30 - 2021-10-27 15:33 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky (1)
2021-10-27 15:30 - 2021-10-27 15:30 - 002890445 _____ C:\Users\berdi\Downloads\Foto myšky (1).zip
2021-10-27 15:27 - 2021-10-27 15:29 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky
2021-10-27 15:26 - 2021-10-27 15:26 - 003794128 _____ C:\Users\berdi\Downloads\Foto myšky.zip
2021-10-26 05:25 - 2021-10-26 05:25 - 004853656 _____ (Husdawg, LLC) C:\Users\berdi\Downloads\Detection.exe
2021-10-26 05:09 - 2021-10-26 05:09 - 000000000 ____D C:\Users\berdi\AppData\Local\Meltytech
2021-10-26 05:07 - 2021-10-26 05:07 - 000001899 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk
2021-10-26 05:06 - 2021-10-26 05:07 - 000000000 ____D C:\Program Files\Shotcut
2021-10-26 05:06 - 2021-10-26 05:06 - 077780472 _____ C:\Users\berdi\Downloads\shotcut-win64-210922.exe
2021-10-25 19:06 - 2021-10-25 19:06 - 000000020 ___SH C:\Users\sever\ntuser.ini
2021-10-25 19:05 - 2021-10-25 19:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-10-25 19:04 - 2021-10-25 19:04 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-10-25 19:03 - 2021-10-30 19:54 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{08FDF5A3-8CC4-42D3-BC77-0CFA46884A88}
2021-10-25 19:03 - 2021-10-29 21:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-25 19:03 - 2021-10-27 14:56 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-10-25 19:03 - 2021-10-25 19:03 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-25 19:03 - 2021-10-25 19:03 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-25 19:03 - 2021-10-25 19:03 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-25 19:03 - 2021-10-25 19:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d71c7ad2686caf
2021-10-25 19:03 - 2021-10-25 19:03 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-25 19:03 - 2021-10-25 19:03 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-25 19:03 - 2021-10-25 19:03 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-10-25 19:03 - 2021-10-25 19:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-10-25 19:03 - 2021-10-25 19:03 - 000000020 ___SH C:\Users\berdi\ntuser.ini
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\AnyMP4 Studio
2021-10-25 19:03 - 2020-08-24 10:36 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3814328846-1681259996-2647774117-500
2021-10-25 19:03 - 2019-12-03 01:12 - 000002852 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-145576158-3702827341-4024398963-500
2021-10-25 19:03 - 2019-04-15 16:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2021-10-25 19:02 - 2021-10-25 19:03 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2021-10-25 19:02 - 2021-10-25 19:03 - 000017148 _____ C:\WINDOWS\diagerr.xml
2021-10-25 19:01 - 2021-10-30 20:01 - 001819258 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-25 18:59 - 2021-11-01 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-25 18:59 - 2021-10-29 21:25 - 000586856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-25 18:59 - 2021-10-25 19:03 - 000000000 ____D C:\Windows.old
2021-10-25 18:47 - 2021-10-25 18:59 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-10-25 18:45 - 2021-10-28 20:32 - 000000000 ____D C:\Users\berdi
2021-10-25 18:45 - 2021-10-25 19:06 - 000000000 ____D C:\Users\sever
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Šablony
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Soubory cookie
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Poslední
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Okolní tiskárny
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Okolní síť
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Nabídka Start
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Dokumenty
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Documents\Obrázky
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Documents\Hudba
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Documents\Filmy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\AppData\Local\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Šablony
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Soubory cookie
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Poslední
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Okolní tiskárny
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Okolní síť
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Nabídka Start
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Dokumenty
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Documents\Obrázky
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Documents\Hudba
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Documents\Filmy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\AppData\Local\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 ____D C:\WINDOWS\Firmware
2021-10-25 18:45 - 2021-06-05 13:04 - 000001281 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 18:45 - 2021-06-05 13:04 - 000001281 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 18:45 - 2021-06-05 13:04 - 000000407 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 18:45 - 2021-06-05 13:04 - 000000407 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 18:44 - 2021-10-25 18:47 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-10-25 18:41 - 2021-10-25 18:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-10-25 18:41 - 2021-10-25 18:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-10-25 18:41 - 2021-10-25 18:41 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-10-25 18:41 - 2021-10-25 18:41 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-10-25 18:37 - 2021-10-25 18:37 - 002764800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-10-25 18:37 - 2021-10-25 18:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-10-25 18:37 - 2021-10-25 18:37 - 001745736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-10-25 18:37 - 2021-10-25 18:37 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-10-25 18:37 - 2021-10-25 18:37 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-10-25 18:37 - 2021-10-25 18:37 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-25 18:37 - 2021-10-25 18:37 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000377136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-10-25 18:37 - 2021-10-25 18:37 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000269112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-10-25 18:37 - 2021-10-25 18:37 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2021-10-25 18:37 - 2021-10-25 18:37 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmview.ocx
2021-10-25 18:37 - 2021-10-25 18:37 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2021-10-25 18:37 - 2021-10-25 18:37 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000014580 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-25 18:37 - 2021-10-25 18:37 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2021-10-25 18:37 - 2021-10-25 18:37 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2021-10-25 18:37 - 2021-10-25 18:37 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2021-10-25 18:37 - 2021-10-25 18:37 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2021-10-25 18:36 - 2021-10-25 18:36 - 002310384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-25 18:36 - 2021-10-25 18:36 - 001856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-25 18:36 - 2021-10-25 18:36 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-25 18:36 - 2021-10-25 18:36 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-25 18:36 - 2021-10-25 18:36 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmview.ocx
2021-10-25 18:36 - 2021-10-25 18:36 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-10-25 18:36 - 2021-10-25 18:36 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2021-10-25 18:34 - 2021-10-25 19:23 - 000000000 ____D C:\WINDOWS\HoloShell
2021-10-25 18:34 - 2021-10-25 18:43 - 000000000 ____D C:\WINDOWS\TextInput
2021-10-25 18:33 - 2021-10-25 18:33 - 001368296 _____ C:\WINDOWS\system32\PerceptionSimulationRightHandModel.glb
2021-10-25 18:33 - 2021-10-25 18:33 - 001366268 _____ C:\WINDOWS\system32\PerceptionSimulationLeftHandModel.glb
2021-10-25 18:33 - 2021-10-25 18:33 - 000000002 _____ C:\WINDOWS\system32\hologramcompositor.lock
2021-10-25 18:31 - 2021-10-25 18:31 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-10-25 18:31 - 2021-10-25 18:31 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files\MSBuild
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-25 18:19 - 2021-10-25 18:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-10-25 17:36 - 2021-10-29 18:56 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-25 11:14 - 2021-10-25 11:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (2).pdf
2021-10-25 11:14 - 2021-10-25 11:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (1).pdf
2021-10-25 11:05 - 2021-10-25 11:05 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ.pdf
2021-10-24 20:12 - 2021-10-24 20:13 - 272367931 _____ C:\Users\berdi\Timeline 1.mov
2021-10-24 15:12 - 2021-10-24 15:12 - 000000000 ____D C:\Users\berdi\Documents\Blackmagic Design
2021-10-24 15:06 - 2021-10-24 15:06 - 000000000 ____D C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows
2021-10-24 14:45 - 2021-10-24 14:52 - 2718482084 _____ C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows.zip
2021-10-23 19:27 - 2021-10-23 19:27 - 000000000 ____D C:\Users\berdi\AppData\Local\RawTherapee
2021-10-23 19:26 - 2021-10-23 19:26 - 049726890 _____ (rawtherapee.com ) C:\Users\berdi\Downloads\RawTherapee_5.8.exe
2021-10-23 19:13 - 2021-10-25 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-10-23 19:13 - 2021-10-24 10:56 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-23 19:13 - 2021-10-24 10:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Slides.lnk
2021-10-23 19:13 - 2021-10-24 10:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Sheets.lnk
2021-10-23 19:13 - 2021-10-24 10:56 - 000001894 _____ C:\Users\berdi\Desktop\Google Docs.lnk
2021-10-23 19:13 - 2021-10-14 13:25 - 000389640 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3525.sys
2021-10-23 19:12 - 2021-10-23 19:13 - 000000000 ____D C:\Users\berdi\AppData\Roaming\PhotoScape
2021-10-23 19:11 - 2021-10-23 19:11 - 021025552 _____ (Mooii) C:\Users\berdi\Downloads\PhotoScapeSetup_V3-7.exe
2021-10-23 19:06 - 2021-10-23 19:06 - 000008181 _____ C:\Users\berdi\AppData\Local\recently-used.xbel
2021-10-23 08:20 - 2021-10-23 08:20 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-23 08:20 - 2021-10-23 08:20 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-22 16:46 - 2021-10-22 16:46 - 000689956 _____ C:\Users\sever\Desktop\Nabídka_4soft_O1-51821_N-VA_Brandýs_nad_Labem.pdf
2021-10-21 18:39 - 2021-10-21 18:48 - 000000000 ____D C:\Users\berdi\Documents\DJI
2021-10-21 18:38 - 2021-10-25 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2021-10-21 18:38 - 2021-10-21 18:48 - 000000000 ____D C:\Users\berdi\AppData\Local\DJI Assistant 2
2021-10-21 18:38 - 2021-10-21 18:38 - 000001498 _____ C:\Users\Public\Desktop\DJI Assistant 2 (Consumer Drones Series).lnk
2021-10-19 20:25 - 2021-10-19 20:27 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak
2021-10-19 20:25 - 2021-10-19 20:25 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Videa
2021-10-19 20:24 - 2021-10-19 20:24 - 017591927 _____ C:\Users\berdi\Downloads\Fwd_ Videa.zip
2021-10-19 20:24 - 2021-10-19 20:24 - 010120515 _____ C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak.zip
2021-10-19 19:56 - 2021-10-19 20:08 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 3
2021-10-19 19:55 - 2021-10-19 20:07 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 2
2021-10-19 19:55 - 2021-10-19 20:04 - 000000000 ____D C:\Users\berdi\Downloads\Foto dravci 1
2021-10-19 19:55 - 2021-10-19 19:55 - 008320179 _____ C:\Users\berdi\Downloads\Foto dravci 1.zip
2021-10-19 19:55 - 2021-10-19 19:55 - 007970400 _____ C:\Users\berdi\Downloads\Dravci 2.zip
2021-10-19 19:55 - 2021-10-19 19:55 - 002607756 _____ C:\Users\berdi\Downloads\Dravci 3.zip
2021-10-19 18:49 - 2021-10-19 19:46 - 000000000 ____D C:\Users\berdi\Downloads\prilohy_69267
2021-10-19 18:48 - 2021-10-19 18:48 - 015886397 _____ C:\Users\berdi\Downloads\prilohy_69267.zip
2021-10-18 16:03 - 2021-10-18 16:03 - 000000000 ____D C:\Users\berdi\AppData\Local\SolidDocuments
2021-10-18 16:01 - 2021-10-18 16:06 - 000000000 ____D C:\Users\sever\Desktop\Děti s vývojovou disfázií - KURS
2021-10-18 16:01 - 2021-10-18 16:01 - 000000000 ____D C:\Users\sever\Desktop\Pomoc při logopedických problémech v MŠ a ZŠ
2021-10-17 12:38 - 2021-10-22 16:43 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-17 12:38 - 2021-10-22 16:43 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-10-17 12:38 - 2021-10-17 12:38 - 000000000 ____D C:\Users\sever\AppData\Local\SolidDocuments
2021-10-17 12:38 - 2021-10-17 12:38 - 000000000 ____D C:\Program Files\Adobe
2021-10-17 12:37 - 2021-10-17 12:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-16 19:40 - 2021-10-21 18:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJI Assistant 2
2021-10-16 19:40 - 2021-10-16 19:41 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJIAssistant2
2021-10-16 19:40 - 2021-10-16 19:40 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Electron
2021-10-16 19:39 - 2021-10-21 18:34 - 000000000 ____D C:\Program Files (x86)\DJI Product
2021-10-16 11:36 - 2021-10-16 11:36 - 000000000 ____D C:\Users\sever\AppData\Roaming\HpUpdate
2021-10-15 06:13 - 2021-10-15 06:13 - 001231452 _____ C:\Users\sever\Downloads\směrnice_řády_vnitřní_předpisy_ve_školství.pdf
2021-10-14 18:01 - 2021-10-14 18:01 - 000000000 ____D C:\Users\sever\AppData\Local\AnyMP4 Studio
2021-10-14 18:01 - 2021-10-14 18:01 - 000000000 ____D C:\ProgramData\Apple
2021-10-14 18:01 - 2021-10-14 18:01 - 000000000 ____D C:\Program Files\AnyMP4 Studio
2021-10-13 18:59 - 2021-10-13 19:00 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (2)
2021-10-13 18:58 - 2021-10-13 18:59 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (1)
2021-10-13 18:57 - 2021-10-13 18:58 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky
2021-10-13 18:42 - 2021-10-13 18:42 - 000085846 _____ C:\Users\sever\Documents\Jazyková příprava.pdf
2021-10-12 18:01 - 2021-10-12 18:01 - 000000000 ____D C:\Users\berdi\AppData\Local\Apps\2.0
2021-10-11 07:00 - 2021-10-11 07:00 - 000000000 ____D C:\Program Files\Microsoft.WebView2.FixedVersionRuntime.92.0.902.73.x64
2021-10-07 17:16 - 2021-10-07 17:16 - 000275885 _____ C:\Users\sever\Downloads\Kniha2014_zkratky.pdf
2021-10-07 17:04 - 2021-10-07 17:04 - 000149149 _____ C:\Users\sever\Downloads\Úprava rozpočtu k 30. 9. 2021 – Brandýs.xlsx
2021-10-05 22:32 - 2021-10-05 22:32 - 001210789 _____ C:\Users\berdi\Documents\Krtečci_210310 (2)re.xcf
2021-10-05 20:09 - 2021-10-05 20:09 - 000136581 _____ C:\Users\berdi\Documents\SablonyIII.pdf
2021-10-04 18:35 - 2021-10-04 18:35 - 002864361 _____ C:\Users\berdi\Downloads\images.zip
2021-10-04 18:35 - 2021-10-04 18:35 - 000000000 ____D C:\Users\berdi\Downloads\images
2021-10-04 18:06 - 2021-10-04 18:07 - 000000000 ____D C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”
2021-10-04 18:05 - 2021-10-04 18:05 - 009629583 _____ C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”.zip
2021-10-03 16:13 - 2021-10-03 16:27 - 000000000 ____D C:\Users\berdi\Downloads\Fotky
2021-10-03 16:12 - 2021-10-03 16:12 - 004836455 _____ C:\Users\berdi\Downloads\Fotky.zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-11-01 19:10 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-11-01 19:10 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-01 19:10 - 2020-11-17 20:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-01 19:10 - 2020-08-24 10:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-31 19:55 - 2020-08-24 10:39 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2021-10-31 19:54 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-31 19:54 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-31 19:54 - 2020-11-17 16:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-31 19:22 - 2020-11-17 16:33 - 000000000 ___RD C:\Users\sever\OneDrive
2021-10-31 19:17 - 2020-11-22 10:55 - 000000000 ____D C:\Users\berdi\AppData\Local\CrashDumps
2021-10-31 19:17 - 2019-12-03 01:18 - 000000000 ____D C:\ProgramData\HP
2021-10-31 19:16 - 2021-05-08 18:32 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2021-10-31 19:16 - 2021-03-21 17:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Hewlett-Packard
2021-10-31 19:16 - 2020-11-17 16:49 - 000000000 ____D C:\Users\sever\AppData\Roaming\Hewlett-Packard
2021-10-31 19:16 - 2019-12-03 01:18 - 000000000 ____D C:\Program Files (x86)\HP
2021-10-31 19:16 - 2019-10-29 19:52 - 000000000 ___HD C:\hp
2021-10-31 09:48 - 2020-11-17 18:22 - 000000000 ____D C:\Users\berdi\AppData\Local\D3DSCache
2021-10-30 20:27 - 2020-11-22 11:56 - 000000000 ____D C:\Program Files\Blackmagic Design
2021-10-30 20:01 - 2021-06-05 18:20 - 000760130 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-30 20:01 - 2021-06-05 18:20 - 000168452 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-30 20:01 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2021-10-30 07:19 - 2020-12-31 20:22 - 000191832 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-10-30 07:19 - 2020-12-31 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-30 07:19 - 2020-12-31 20:22 - 000000000 ____D C:\Program Files\Java
2021-10-30 07:11 - 2020-11-17 18:28 - 000000000 ___RD C:\Users\berdi\OneDrive
2021-10-29 21:28 - 2020-11-18 19:37 - 000007604 _____ C:\Users\berdi\AppData\Local\resmon.resmoncfg
2021-10-29 21:27 - 2019-04-15 16:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-29 21:25 - 2021-06-05 13:01 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-10-29 21:25 - 2021-03-19 05:41 - 000012288 ___SH C:\DumpStack.log.tmp
2021-10-29 19:09 - 2020-11-17 18:50 - 000000000 ____D C:\Users\sever\AppData\Local\CrashDumps
2021-10-29 19:08 - 2020-11-17 16:32 - 000000000 ____D C:\Users\sever\AppData\Local\D3DSCache
2021-10-29 19:08 - 2020-11-17 16:31 - 000000000 ____D C:\Users\sever\AppData\Local\Packages
2021-10-29 18:29 - 2020-11-22 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-29 18:29 - 2020-11-22 12:52 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2021-10-28 20:32 - 2021-06-22 16:51 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-10-28 20:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\OCR
2021-10-28 20:28 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-27 14:56 - 2021-06-22 16:48 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-26 05:10 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\appcompat
2021-10-26 05:04 - 2020-11-17 18:40 - 000000000 ____D C:\Users\berdi\AppData\Local\PlaceholderTileLogoFolder
2021-10-25 19:55 - 2020-11-17 18:22 - 000000000 ____D C:\Users\berdi\AppData\Local\Packages
2021-10-25 19:23 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-10-25 19:23 - 2020-11-17 18:22 - 000000000 ____D C:\Users\berdi\AppData\Local\NVIDIA Corporation
2021-10-25 19:22 - 2020-11-17 16:33 - 000000000 ____D C:\Users\sever\AppData\Local\NVIDIA Corporation
2021-10-25 19:20 - 2020-08-24 10:41 - 000000000 ____D C:\ProgramData\Packages
2021-10-25 19:18 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2021-10-25 19:07 - 2020-11-17 20:16 - 000000000 ____D C:\Users\sever\AppData\Local\Google
2021-10-25 19:06 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-25 19:06 - 2019-04-15 16:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-25 19:03 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-25 19:03 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows NT
2021-10-25 19:03 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-25 19:03 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-25 19:01 - 2020-11-17 20:16 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-25 19:00 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-25 18:59 - 2021-09-22 18:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-10-25 18:59 - 2021-09-22 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-10-25 18:59 - 2021-07-09 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2021-10-25 18:59 - 2021-06-22 22:50 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\spool
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-25 18:59 - 2021-06-05 13:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-10-25 18:59 - 2021-05-08 20:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2021-10-25 18:59 - 2021-03-11 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2021-10-25 18:59 - 2020-11-24 22:18 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultima Online DP2
2021-10-25 18:59 - 2020-11-22 15:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-10-25 18:59 - 2020-11-17 19:41 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-10-25 18:59 - 2020-11-17 18:48 - 000000000 ____D C:\Program Files\UNP
2021-10-25 18:59 - 2020-08-24 10:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-10-25 18:59 - 2020-08-24 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-10-25 18:59 - 2020-08-24 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2021-10-25 18:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-10-25 18:59 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-10-25 18:55 - 2021-06-05 13:14 - 000000000 ____D C:\WINDOWS\Setup
2021-10-25 18:52 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\USOPrivate
2021-10-25 18:51 - 2021-06-05 13:10 - 000000000 __RHD C:\Users\Public\Libraries
2021-10-25 18:43 - 2021-06-05 18:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2021-10-25 18:42 - 2021-06-05 18:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-10-25 18:42 - 2021-06-05 18:28 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-10-25 18:34 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemApps
2021-10-25 18:31 - 2021-06-05 18:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-10-25 18:26 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-10-25 18:26 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-10-24 15:14 - 2021-01-14 17:58 - 000000000 ____D C:\Users\berdi\AppData\Local\cache
2021-10-24 15:11 - 2020-11-18 18:45 - 000000000 ____D C:\Users\berdi\AppData\Local\Google
2021-10-24 15:11 - 2020-08-24 10:41 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-24 13:10 - 2021-05-08 19:51 - 000000000 ____D C:\Users\berdi\AppData\Local\babl-0.1
2021-10-23 19:13 - 2020-11-17 20:16 - 000000000 ____D C:\Program Files\Google
2021-10-22 16:56 - 2021-09-16 20:47 - 000000000 ____D C:\Users\berdi\AppData\Local\ElevatedDiagnostics
2021-10-22 16:42 - 2021-05-10 18:04 - 000000000 ____D C:\Users\sever\AppData\Local\Adobe
2021-10-19 16:56 - 2021-06-22 17:56 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-18 16:03 - 2021-03-07 17:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Adobe
2021-10-18 16:03 - 2021-03-07 17:30 - 000000000 ____D C:\Users\berdi\AppData\Local\Adobe
2021-10-17 12:38 - 2021-03-19 05:48 - 000000000 ____D C:\Users\sever\AppData\Roaming\Adobe
2021-10-17 12:37 - 2021-05-08 20:12 - 000000000 ____D C:\ProgramData\Adobe
2021-10-14 05:49 - 2020-11-17 18:51 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-14 05:49 - 2020-11-17 18:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 18:35 - 2020-11-17 16:33 - 000000000 ____D C:\Users\sever\AppData\Local\PlaceholderTileLogoFolder
2021-10-05 22:40 - 2021-05-23 13:09 - 000000000 ____D C:\Users\berdi\AppData\Local\gtk-2.0
2021-10-04 19:21 - 2020-12-25 21:03 - 000000000 ____D C:\Users\berdi\AppData\Roaming\HP
2021-10-04 18:01 - 2020-11-17 18:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
==================== Files in the root of some directories ========
2021-01-14 18:43 - 2021-01-14 18:43 - 000097505 _____ () C:\Users\berdi\AppData\Roaming\Crescendo.dmp
2021-10-23 19:06 - 2021-10-23 19:06 - 000008181 _____ () C:\Users\berdi\AppData\Local\recently-used.xbel
2020-11-18 19:37 - 2021-10-29 21:28 - 000007604 _____ () C:\Users\berdi\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-10-2021
Ran by Pavel (01-11-2021 19:13:26)
Running from C:\Users\berdi\Desktop
Microsoft Windows 11 Home Version 21H2 22000.258 (X64) (2021-10-25 18:03:09)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-626895236-950452568-4050494843-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-626895236-950452568-4050494843-503 - Limited - Disabled)
Guest (S-1-5-21-626895236-950452568-4050494843-501 - Limited - Disabled)
Pavel (S-1-5-21-626895236-950452568-4050494843-1002 - Administrator - Enabled) => C:\Users\berdi
sever (S-1-5-21-626895236-950452568-4050494843-1001 - Administrator - Enabled) => C:\Users\sever
vikib (S-1-5-21-626895236-950452568-4050494843-1005 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-626895236-950452568-4050494843-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader (HKLM\...\{50F633D3-DE52-4709-AD1B-A09B5B0D86C1}) (Version: 4.14.1.4020 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{33a1766b-73d6-42ce-b3ff-317e5db3e9a7}) (Version: 4.14.1.4020 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0807.2241.40847 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK Alpha (HKLM\...\{716F53C3-0B3F-4FB7-9AD7-9BC7DB7134A1}) (Version: 1.3.0.0533 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{685BAD50-A3AA-4B91-A15B-77F9DC7346D4}) (Version: 3.57.4043.4118 - Google, Inc.)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform)
Crescendo Music Notation Editor (HKLM-x32\...\Crescendo) (Version: 1.14 - NCH Software)
DaVinci Resolve (HKLM\...\{6E40D3ED-077B-45C4-90FF-222CC65C199C}) (Version: 17.4.10004 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
DJI Assistant 2 (Consumer Drones Series) version V2.1.5.8 (HKLM-x32\...\{7369D6A6-CBF3-428F-8C82-3D647630FC9A}_is1) (Version: V2.1.5.8 - DJI)
GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 52.0.6.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Photosmart C4200 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{276C40A7-8110-4976-80D2-39C669B84D32}) (Version: 14.0 - HP)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Inkscape (HKLM\...\{1E74336F-9E7A-4070-BAA7-716A504FB9B0}) (Version: 1.0.0 - Inkscape)
Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14430.20306 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.40 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.40 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 462.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.80 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
PSPad editor (HKLM\...\PSPad editor_is1) (Version: 5.0.5.567 - Jan Fiala)
Shotcut (HKLM\...\Shotcut) (Version: 21.09.22 - Meltytech, LLC)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Zoom (HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.)
Packages:
=========
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.7.195.0_x64__v10z8vjag6ke6 [2021-10-25] (HP Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-06-15] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-25] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-10-25] (Facebook Inc)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.0.6.0_x64__v10z8vjag6ke6 [2020-08-24] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-24] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.0.0_x64__v10z8vjag6ke6 [2021-10-15] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-11] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.9.58.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6 [2021-08-03] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-10-31] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-25] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0 [2021-10-30] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\nvshext.dll [2021-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers1_S-1-5-21-626895236-950452568-4050494843-1002: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-03-11 18:14 - 2014-11-02 18:45 - 000029184 _____ () [File not signed] C:\Program Files\PSPad editor\pspshellx64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sever\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\StartupApproved\Run: => "GoogleDriveFS"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{795C76F0-40E4-4CD7-9CAC-5B680B956E15}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{E705B4B5-92DF-4F6A-9B6D-5976A0D8BBCD}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [{7B7CC774-4F66-451C-9380-A26E93F3DCFE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07B2762C-86C4-4FE6-AE0B-8B2424C68812}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{68E2A6A8-1A1D-42BC-9B16-6CFB33EC9AF0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D40DDF2-0A7E-4018-95F2-3A07B7AD033D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF82CB62-5C3B-4E02-9AEF-203AFE2E156D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{3AD73BC4-CA38-439E-880B-B87EA7908B7E}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{EE9102E4-605E-48B8-8C24-A9AF4CB6385D}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{83BC7353-9138-4269-AD1C-54B9B43278D9}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{0EF8FD87-2288-40EE-B3F4-7C7B213F6B03}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [{6D7E9258-374B-42EF-A08C-B5DA13B8CB85}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D7377C96-06BE-4AB0-9A00-356DAC33F769}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{68A40398-8D79-4642-BBD9-B7DCD1583C08}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [UDP Query User{E7854A38-1E18-4DAF-A556-F2150934493B}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{13F97527-78DB-4AA6-A450-27D6E4D7BFD3}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{8CA7AEBF-D9A7-44FB-9DB5-5A8A5DD9DB66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F5EBED-DC73-4581-BA30-D1F44D0195F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48BD1678-C870-4DAB-8145-8BB940D9E74E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1317AB1-0416-44C7-839A-FFDAE0987190}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{90135E6A-0B02-466F-A966-D015A8E5BA64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0FC7A750-6829-4FB7-9197-49E45EB10B66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50A7C865-B44B-49E3-B7F6-E399A22F2F7C}] => (Allow) C:\Users\sever\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{EAC0DB97-9364-4B67-A8A6-A65CAC8EAC3F}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{39151168-B132-4EAC-BFDD-897532EE4CA8}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{8F9D30EC-8891-4318-9564-2CDBB3963574}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{CC437015-3D5B-4922-8303-9D07CA3E44E4}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{F0058689-3572-41E9-859E-2F78430DC054}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{625E177E-6206-4EBA-A3DD-59B6E86D3AC7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{81E93D52-1954-45E4-8A58-B7E0ED869F7D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{178E0BAC-4A45-4EF5-916F-5DD29A372C26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{04A4989F-9AD6-4697-93A9-F2DBB33CC85A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{906D6ED0-867E-4EF6-9214-0A685BBF11B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C9C59F3F-EA90-426D-B41B-83088EED5B27}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{122927F8-D0DB-44A6-84A1-0D2D13AE1604}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0C39F5FA-A527-4B0A-AB74-9AAB5561A06E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C09EAC53-6C2E-4072-8253-AB0B557F58C2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0E1EE292-489D-4F52-9DF1-DFD92FC11310}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{00A73543-F3C1-41B3-A27F-836CB066E84A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{17F47DAF-46F1-4641-990B-F5D569B90D0D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4A78A6CA-F34B-45B7-BDE4-697E6116F34D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{5B20591C-A3DB-4CDB-A173-2C87B7726628}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D37CBDEE-6106-49FA-AB29-DF50FE089DC1}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{F86AB260-AEE9-40CD-8546-AC26A43CB539}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{8954151A-B327-4869-BAFD-3E1E3B7660D8}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{17F66A95-36C9-4F6F-8052-69A64D02E93F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.40\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
25-10-2021 20:05:41 Removed MuseScore 3
29-10-2021 18:29:36 Installed DaVinci Resolve
30-10-2021 20:27:10 Installed DaVinci Resolve
31-10-2021 19:16:28 AdwCleaner_BeforeCleaning_31/10/2021_19:16:28
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/31/2021 09:24:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Microsoft.Photos.exe, verze: 2021.21090.29009.0, časové razítko: 0x615564fe
Název chybujícího modulu: amdihk64.dll_unloaded, verze: 2.0.0.1788, časové razítko: 0x5ed9f60e
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000419c
ID chybujícího procesu: 0x28e4
Čas spuštění chybující aplikace: 0x01d7cdc6da4d4d1f
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.29009.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Cesta k chybujícímu modulu: amdihk64.dll
ID zprávy: 922ba04f-05f2-494e-ad9b-024aa0caa39f
Úplný název chybujícího balíčku: Microsoft.Windows.Photos_2021.21090.29009.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/30/2021 08:29:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Resolve.exe, verze: 17.4.1.4, časové razítko: 0x00000000
Název chybujícího modulu: fusionsystem.dll_unloaded, verze: 17.4.1.7, časové razítko: 0x617a5aac
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000d8f67e
ID chybujícího procesu: 0x40c
Čas spuštění chybující aplikace: 0x01d7cdc469ed3594
Cesta k chybující aplikaci: C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
Cesta k chybujícímu modulu: fusionsystem.dll
ID zprávy: 66df2b03-5a31-437c-9c8d-e8fa96061aac
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/30/2021 08:25:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Resolve.exe, verze: 17.4.0.12, časové razítko: 0x00000000
Název chybujícího modulu: Resolve.exe, verze: 17.4.0.12, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000006cf9503
ID chybujícího procesu: 0x3af4
Čas spuštění chybující aplikace: 0x01d7cdc171c92b9f
Cesta k chybující aplikaci: C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
Cesta k chybujícímu modulu: C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
ID zprávy: 7180447f-e24a-4464-8653-bed4281d866b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/29/2021 09:25:42 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 29 Oct 2021 20:25:43 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 514e3224-093d-4075-bc79-ec0bea86b0d1
Metoda: GET(297ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/29/2021 09:25:42 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 29 Oct 2021 20:25:42 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: e03da9cc-3e52-4bbd-b72d-35e1a53b88b6
Metoda: GET(922ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/29/2021 09:25:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: msteams.exe, verze: 21253.510.996.1465, časové razítko: 0x614b9cda
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x3158
Čas spuštění chybující aplikace: 0x01d7cc32a741505c
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 7a8b1f3c-5cf6-4700-afde-ef56de77eca1
Úplný název chybujícího balíčku: MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftTeams
Error: (10/28/2021 08:32:44 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:46 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 5a9716f1-34d2-4fd0-8c36-7c982435940e
Metoda: GET(234ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/28/2021 08:32:43 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:45 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 60600997-6f2c-4315-bd5c-2d6f1135b28a
Metoda: GET(390ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
System errors:
=============
Error: (11/01/2021 07:10:05 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Analytics service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP App Helper HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Network HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP System Info HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Diagnostics HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Windows Defender:
================Event[0]
Date: 2021-10-31 09:47:01
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {E388E435-B7B7-4B20-B12A-34F6742373A3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[1]
Date: 2021-10-30 09:52:10
Description:
N/A
Event[2]
Date: 2021-10-30 08:46:00
Description:
N/A
Event[3]
Date: 2021-10-29 19:26:53
Description:
N/A
Event[4]
Date: 2021-10-28 08:26:51
Description:
N/A
CodeIntegrity:
===============
Date: 2021-10-26 06:21:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: AMI F.12 12/21/2020
Motherboard: HP 86D4
Processor: AMD Ryzen 5 3550H with Radeon Vega Mobile Gfx
Percentage of memory in use: 33%
Total physical RAM: 14213.14 MB
Available physical RAM: 9402.3 MB
Total Virtual: 17413.14 MB
Available Virtual: 11559.75 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:476.08 GB) (Free:316.22 GB) NTFS
\\?\Volume{60399fc6-b5cc-40c7-9724-2ead35b90910}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{b6163c22-e199-4cd6-8c7a-be6637a8ba63}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 52F19EB3)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by Pavel (administrator) on LAPTOP-AFCSSV23 (HP HP Pavilion Gaming Laptop 15-ec0xxx) (01-11-2021 19:12:06)
Running from C:\Users\berdi\Desktop
Loaded Profiles: Pavel
: Microsoft Windows 11 Home Version 21H2 22000.258 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\BridgeCommunication.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22000.280_none_0483b4854ca89ef9\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteamsupdate.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [971256 2019-09-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\...\RunOnce: [msedge_cleanup_{F3017226-FE2A-4295-8BDF-00C3A9A7E4C5}] => C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.40\Installer\setup.exe [2846096 2021-10-31] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-09-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03C17FD2-F0BC-4D35-8197-8A769BC595E8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3978624 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {2EC62F7A-AD57-41A4-9ADB-9A4EB74A6EAF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3FEC0D25-2BBC-42A5-8ED7-797C578073B7} - System32\Tasks\CCleanerSkipUAC - sever => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {40071459-06AF-49D4-8FEA-5BC6027F05B4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
Task: {427F202F-0F7E-40D6-A1FA-D26144446C97} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {467922EF-BE8F-4324-95FE-747B18808797} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51DD30C1-F611-475B-A5EA-170D4370D453} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {556BD5B3-37FB-4C68-8B3D-4283375375FE} - System32\Tasks\CCleanerSkipUAC - Pavel => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {590A7775-91AA-4F0D-97EF-42E8791F0FF8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {59C3ED06-290A-44A5-9BFC-D1C2A869197D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753CB853-84D7-44B3-BF05-3B66C6A9B9E1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {753D7409-1DCE-40E5-88C9-712BA93818EF} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {7D32CBEA-E943-4793-8C87-CD96664A03C6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7D67C3C2-02C4-423C-9832-3B7BE5E4CF13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-09-01] (HP Inc. -> HP Inc.)
Task: {8396D8EE-227B-40C2-834F-832FE1BAFADD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest
Task: {8804DA0B-64EE-47C3-B8C7-9A9108352874} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {971FB59F-62A8-4815-A82A-98A37A507CD0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A59B6AE-E543-455E-A8D5-B6956B51718B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9B5731B4-623E-425B-8F27-AADD517640DF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C158AD4-BA0F-4400-88B3-29F82211BE58} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C82A3DF-3B9C-44B0-9691-4208E3D6FEC1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60088 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F40E05B-C759-425F-B363-ADEBBEB0C7BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A434A5EA-0458-445D-BAC8-95D4CEB81C56} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {A9B246F3-59C9-4DBF-9C20-01B2E0E55B21} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {AA222C5E-97C2-4E20-B8DE-C6492D3AC3FB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B1AC5910-9A0D-40B4-92E1-19D3FF994357} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {C5E01010-DA49-44C7-B1F1-9C949184F3ED} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {C726128C-4373-4C24-8F89-F5271E757575} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CA69FAB5-B128-4A15-A1DF-13A101677CCC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {CDC8A884-C649-4529-9D18-58A6BE362395} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE379FEA-3EB1-45F2-9136-0BD47EA59606} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {D97FFAC6-BE61-4B03-9C59-F1B406CEBBF4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F2DFBE6C-8DD0-4D46-8284-0B5FCA0A6D9E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F873D338-7B05-4C4A-A952-4BC771F040EC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {FB5CE18C-7B7F-459C-B4C3-43750EEDD455} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB6F1D8A-E046-4F59-8361-BB30D5ADB8C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MpCmdRun.exe [901056 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{22701c8f-84c5-41c7-b988-50bc4a645814}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\berdi\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-31]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default [2021-11-01]
CHR Notifications: Default -> hxxps//cz.go-travels.com
CHR HomePage: Default -> hxxp//www.google.com/
CHR StartupUrls: Default -> "hxxp//search.toggle.com/?lang=en&cid=adfaa7a7","hxxp//www.msn.com/?pc=UP97&ocid=UP97DHP&dt=07 ... oogle.com/"
CHR Extension: (Překladač Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-19]
CHR Extension: (Prezentace) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-18]
CHR Extension: (Duolingo on the Web) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2020-11-18]
CHR Extension: (Dokumenty) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-18]
CHR Extension: (Disk Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-18]
CHR Extension: (YouTube) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-18]
CHR Extension: (Google News) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc [2020-11-18]
CHR Extension: (Tabulky) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (Tlačítko „Uložit na Pinterest“) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-10-27]
CHR Extension: (Google Play Music) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2020-11-18]
CHR Extension: (FormApps Extension) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2020-11-18]
CHR Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ColorPick Eyedropper) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohcpnigalekghcmgcdcenkpelffpdolg [2020-12-25]
CHR Extension: (Gmail) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncHelper.exe [3253120 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe [755704 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe [754184 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe [751104 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe [754688 2021-09-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe [494688 2021-09-24] (HP Inc. -> HP Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\OneDriveUpdaterService.exe [3721600 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\NisSrv.exe [2872024 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.6-0\MsMpEng.exe [128376 2021-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [127936 2019-05-22] (Alcorlink Corp. -> )
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-10-14] (Google LLC -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-11-01 19:11 - 2021-11-01 19:11 - 000000000 ____D C:\Users\berdi\Desktop\FRST-OlderVersion
2021-10-31 19:26 - 2021-10-31 19:26 - 000219411 _____ C:\Users\sever\Downloads\Souhlas s pouzitim udaju pro skupinu CSOB.pdf
2021-10-31 19:11 - 2021-10-31 19:11 - 008553680 _____ (Malwarebytes) C:\Users\berdi\Desktop\AdwCleaner.exe
2021-10-31 19:06 - 2021-10-31 19:13 - 000000000 ____D C:\AdwCleaner
2021-10-30 20:28 - 2021-10-30 20:28 - 000001992 _____ C:\Users\berdi\Desktop\DaVinci Resolve.lnk
2021-10-30 20:27 - 2021-10-30 20:28 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-30 19:53 - 2021-10-30 20:03 - 2718716739 _____ C:\Users\berdi\Downloads\DaVinci_Resolve_17.4.1_Windows.zip
2021-10-29 19:27 - 2021-10-29 19:28 - 000052857 _____ C:\Users\berdi\Desktop\Addition.txt
2021-10-29 19:26 - 2021-11-01 19:12 - 000025096 _____ C:\Users\berdi\Desktop\FRST.txt
2021-10-29 19:25 - 2021-11-01 19:12 - 000000000 ____D C:\FRST
2021-10-29 19:20 - 2021-11-01 19:11 - 002310656 _____ (Farbar) C:\Users\berdi\Desktop\FRST64.exe
2021-10-29 19:08 - 2021-10-29 19:08 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - sever
2021-10-29 18:59 - 2021-10-29 19:01 - 000000000 ____D C:\Users\berdi\Documents\CCleaner_registry
2021-10-29 18:53 - 2021-10-31 19:22 - 000000000 ____D C:\Program Files\CCleaner
2021-10-29 18:53 - 2021-10-29 18:53 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-10-29 18:53 - 2021-10-29 18:53 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Pavel
2021-10-29 18:53 - 2021-10-29 18:53 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-10-29 18:53 - 2021-10-29 18:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-10-29 18:46 - 2021-10-29 18:46 - 036227456 _____ (Piriform Software Ltd) C:\Users\berdi\Downloads\ccsetup586.exe
2021-10-29 18:37 - 2021-10-29 18:38 - 000001025 _____ C:\Users\berdi\Desktop\shotcut.lnk
2021-10-28 20:28 - 2021-10-28 20:28 - 000000000 ___HD C:\$WinREAgent
2021-10-27 15:30 - 2021-10-27 15:33 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky (1)
2021-10-27 15:30 - 2021-10-27 15:30 - 002890445 _____ C:\Users\berdi\Downloads\Foto myšky (1).zip
2021-10-27 15:27 - 2021-10-27 15:29 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky
2021-10-27 15:26 - 2021-10-27 15:26 - 003794128 _____ C:\Users\berdi\Downloads\Foto myšky.zip
2021-10-26 05:25 - 2021-10-26 05:25 - 004853656 _____ (Husdawg, LLC) C:\Users\berdi\Downloads\Detection.exe
2021-10-26 05:09 - 2021-10-26 05:09 - 000000000 ____D C:\Users\berdi\AppData\Local\Meltytech
2021-10-26 05:07 - 2021-10-26 05:07 - 000001899 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk
2021-10-26 05:06 - 2021-10-26 05:07 - 000000000 ____D C:\Program Files\Shotcut
2021-10-26 05:06 - 2021-10-26 05:06 - 077780472 _____ C:\Users\berdi\Downloads\shotcut-win64-210922.exe
2021-10-25 19:06 - 2021-10-25 19:06 - 000000020 ___SH C:\Users\sever\ntuser.ini
2021-10-25 19:05 - 2021-10-25 19:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-10-25 19:04 - 2021-10-25 19:04 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-10-25 19:03 - 2021-10-30 19:54 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{08FDF5A3-8CC4-42D3-BC77-0CFA46884A88}
2021-10-25 19:03 - 2021-10-29 21:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-25 19:03 - 2021-10-27 14:56 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-10-25 19:03 - 2021-10-25 19:03 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-25 19:03 - 2021-10-25 19:03 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-25 19:03 - 2021-10-25 19:03 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-25 19:03 - 2021-10-25 19:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d71c7ad2686caf
2021-10-25 19:03 - 2021-10-25 19:03 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-25 19:03 - 2021-10-25 19:03 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-25 19:03 - 2021-10-25 19:03 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 19:03 - 2021-10-25 19:03 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-10-25 19:03 - 2021-10-25 19:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-10-25 19:03 - 2021-10-25 19:03 - 000000020 ___SH C:\Users\berdi\ntuser.ini
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-10-25 19:03 - 2021-10-25 19:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\AnyMP4 Studio
2021-10-25 19:03 - 2020-08-24 10:36 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3814328846-1681259996-2647774117-500
2021-10-25 19:03 - 2019-12-03 01:12 - 000002852 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-145576158-3702827341-4024398963-500
2021-10-25 19:03 - 2019-04-15 16:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2021-10-25 19:02 - 2021-10-25 19:03 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2021-10-25 19:02 - 2021-10-25 19:03 - 000017148 _____ C:\WINDOWS\diagerr.xml
2021-10-25 19:01 - 2021-10-30 20:01 - 001819258 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-25 18:59 - 2021-11-01 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-25 18:59 - 2021-10-29 21:25 - 000586856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-25 18:59 - 2021-10-25 19:03 - 000000000 ____D C:\Windows.old
2021-10-25 18:47 - 2021-10-25 18:59 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-10-25 18:45 - 2021-10-28 20:32 - 000000000 ____D C:\Users\berdi
2021-10-25 18:45 - 2021-10-25 19:06 - 000000000 ____D C:\Users\sever
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Šablony
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Soubory cookie
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Poslední
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Okolní tiskárny
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Okolní síť
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Nabídka Start
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Dokumenty
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Documents\Obrázky
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Documents\Hudba
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Documents\Filmy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\sever\AppData\Local\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Šablony
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Soubory cookie
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Poslední
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Okolní tiskárny
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Okolní síť
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Nabídka Start
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Dokumenty
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Documents\Obrázky
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Documents\Hudba
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Documents\Filmy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 _SHDL C:\Users\berdi\AppData\Local\Data aplikací
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-10-25 18:45 - 2021-10-25 18:45 - 000000000 ____D C:\WINDOWS\Firmware
2021-10-25 18:45 - 2021-06-05 13:04 - 000001281 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 18:45 - 2021-06-05 13:04 - 000001281 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 18:45 - 2021-06-05 13:04 - 000000407 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 18:45 - 2021-06-05 13:04 - 000000407 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 18:44 - 2021-10-25 18:47 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-10-25 18:41 - 2021-10-25 18:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-10-25 18:41 - 2021-10-25 18:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-10-25 18:41 - 2021-10-25 18:41 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-10-25 18:41 - 2021-10-25 18:41 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-10-25 18:37 - 2021-10-25 18:37 - 002764800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-10-25 18:37 - 2021-10-25 18:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-10-25 18:37 - 2021-10-25 18:37 - 001745736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-10-25 18:37 - 2021-10-25 18:37 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-10-25 18:37 - 2021-10-25 18:37 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-10-25 18:37 - 2021-10-25 18:37 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-25 18:37 - 2021-10-25 18:37 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000377136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-10-25 18:37 - 2021-10-25 18:37 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000269112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-10-25 18:37 - 2021-10-25 18:37 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2021-10-25 18:37 - 2021-10-25 18:37 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmview.ocx
2021-10-25 18:37 - 2021-10-25 18:37 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2021-10-25 18:37 - 2021-10-25 18:37 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2021-10-25 18:37 - 2021-10-25 18:37 - 000014580 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-25 18:37 - 2021-10-25 18:37 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2021-10-25 18:37 - 2021-10-25 18:37 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2021-10-25 18:37 - 2021-10-25 18:37 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2021-10-25 18:37 - 2021-10-25 18:37 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2021-10-25 18:37 - 2021-10-25 18:37 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2021-10-25 18:36 - 2021-10-25 18:36 - 002310384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-25 18:36 - 2021-10-25 18:36 - 001856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-25 18:36 - 2021-10-25 18:36 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-25 18:36 - 2021-10-25 18:36 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2021-10-25 18:36 - 2021-10-25 18:36 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-25 18:36 - 2021-10-25 18:36 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmview.ocx
2021-10-25 18:36 - 2021-10-25 18:36 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-10-25 18:36 - 2021-10-25 18:36 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2021-10-25 18:34 - 2021-10-25 19:23 - 000000000 ____D C:\WINDOWS\HoloShell
2021-10-25 18:34 - 2021-10-25 18:43 - 000000000 ____D C:\WINDOWS\TextInput
2021-10-25 18:33 - 2021-10-25 18:33 - 001368296 _____ C:\WINDOWS\system32\PerceptionSimulationRightHandModel.glb
2021-10-25 18:33 - 2021-10-25 18:33 - 001366268 _____ C:\WINDOWS\system32\PerceptionSimulationLeftHandModel.glb
2021-10-25 18:33 - 2021-10-25 18:33 - 000000002 _____ C:\WINDOWS\system32\hologramcompositor.lock
2021-10-25 18:31 - 2021-10-25 18:31 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-10-25 18:31 - 2021-10-25 18:31 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files\MSBuild
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-10-25 18:26 - 2021-10-25 18:26 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-25 18:19 - 2021-10-25 18:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-10-25 17:36 - 2021-10-29 18:56 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-25 11:14 - 2021-10-25 11:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (2).pdf
2021-10-25 11:14 - 2021-10-25 11:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (1).pdf
2021-10-25 11:05 - 2021-10-25 11:05 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ.pdf
2021-10-24 20:12 - 2021-10-24 20:13 - 272367931 _____ C:\Users\berdi\Timeline 1.mov
2021-10-24 15:12 - 2021-10-24 15:12 - 000000000 ____D C:\Users\berdi\Documents\Blackmagic Design
2021-10-24 15:06 - 2021-10-24 15:06 - 000000000 ____D C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows
2021-10-24 14:45 - 2021-10-24 14:52 - 2718482084 _____ C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows.zip
2021-10-23 19:27 - 2021-10-23 19:27 - 000000000 ____D C:\Users\berdi\AppData\Local\RawTherapee
2021-10-23 19:26 - 2021-10-23 19:26 - 049726890 _____ (rawtherapee.com ) C:\Users\berdi\Downloads\RawTherapee_5.8.exe
2021-10-23 19:13 - 2021-10-25 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-10-23 19:13 - 2021-10-24 10:56 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-23 19:13 - 2021-10-24 10:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Slides.lnk
2021-10-23 19:13 - 2021-10-24 10:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Sheets.lnk
2021-10-23 19:13 - 2021-10-24 10:56 - 000001894 _____ C:\Users\berdi\Desktop\Google Docs.lnk
2021-10-23 19:13 - 2021-10-14 13:25 - 000389640 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3525.sys
2021-10-23 19:12 - 2021-10-23 19:13 - 000000000 ____D C:\Users\berdi\AppData\Roaming\PhotoScape
2021-10-23 19:11 - 2021-10-23 19:11 - 021025552 _____ (Mooii) C:\Users\berdi\Downloads\PhotoScapeSetup_V3-7.exe
2021-10-23 19:06 - 2021-10-23 19:06 - 000008181 _____ C:\Users\berdi\AppData\Local\recently-used.xbel
2021-10-23 08:20 - 2021-10-23 08:20 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-23 08:20 - 2021-10-23 08:20 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-22 16:46 - 2021-10-22 16:46 - 000689956 _____ C:\Users\sever\Desktop\Nabídka_4soft_O1-51821_N-VA_Brandýs_nad_Labem.pdf
2021-10-21 18:39 - 2021-10-21 18:48 - 000000000 ____D C:\Users\berdi\Documents\DJI
2021-10-21 18:38 - 2021-10-25 18:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2021-10-21 18:38 - 2021-10-21 18:48 - 000000000 ____D C:\Users\berdi\AppData\Local\DJI Assistant 2
2021-10-21 18:38 - 2021-10-21 18:38 - 000001498 _____ C:\Users\Public\Desktop\DJI Assistant 2 (Consumer Drones Series).lnk
2021-10-19 20:25 - 2021-10-19 20:27 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak
2021-10-19 20:25 - 2021-10-19 20:25 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Videa
2021-10-19 20:24 - 2021-10-19 20:24 - 017591927 _____ C:\Users\berdi\Downloads\Fwd_ Videa.zip
2021-10-19 20:24 - 2021-10-19 20:24 - 010120515 _____ C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak.zip
2021-10-19 19:56 - 2021-10-19 20:08 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 3
2021-10-19 19:55 - 2021-10-19 20:07 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 2
2021-10-19 19:55 - 2021-10-19 20:04 - 000000000 ____D C:\Users\berdi\Downloads\Foto dravci 1
2021-10-19 19:55 - 2021-10-19 19:55 - 008320179 _____ C:\Users\berdi\Downloads\Foto dravci 1.zip
2021-10-19 19:55 - 2021-10-19 19:55 - 007970400 _____ C:\Users\berdi\Downloads\Dravci 2.zip
2021-10-19 19:55 - 2021-10-19 19:55 - 002607756 _____ C:\Users\berdi\Downloads\Dravci 3.zip
2021-10-19 18:49 - 2021-10-19 19:46 - 000000000 ____D C:\Users\berdi\Downloads\prilohy_69267
2021-10-19 18:48 - 2021-10-19 18:48 - 015886397 _____ C:\Users\berdi\Downloads\prilohy_69267.zip
2021-10-18 16:03 - 2021-10-18 16:03 - 000000000 ____D C:\Users\berdi\AppData\Local\SolidDocuments
2021-10-18 16:01 - 2021-10-18 16:06 - 000000000 ____D C:\Users\sever\Desktop\Děti s vývojovou disfázií - KURS
2021-10-18 16:01 - 2021-10-18 16:01 - 000000000 ____D C:\Users\sever\Desktop\Pomoc při logopedických problémech v MŠ a ZŠ
2021-10-17 12:38 - 2021-10-22 16:43 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-17 12:38 - 2021-10-22 16:43 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-10-17 12:38 - 2021-10-17 12:38 - 000000000 ____D C:\Users\sever\AppData\Local\SolidDocuments
2021-10-17 12:38 - 2021-10-17 12:38 - 000000000 ____D C:\Program Files\Adobe
2021-10-17 12:37 - 2021-10-17 12:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-16 19:40 - 2021-10-21 18:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJI Assistant 2
2021-10-16 19:40 - 2021-10-16 19:41 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJIAssistant2
2021-10-16 19:40 - 2021-10-16 19:40 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Electron
2021-10-16 19:39 - 2021-10-21 18:34 - 000000000 ____D C:\Program Files (x86)\DJI Product
2021-10-16 11:36 - 2021-10-16 11:36 - 000000000 ____D C:\Users\sever\AppData\Roaming\HpUpdate
2021-10-15 06:13 - 2021-10-15 06:13 - 001231452 _____ C:\Users\sever\Downloads\směrnice_řády_vnitřní_předpisy_ve_školství.pdf
2021-10-14 18:01 - 2021-10-14 18:01 - 000000000 ____D C:\Users\sever\AppData\Local\AnyMP4 Studio
2021-10-14 18:01 - 2021-10-14 18:01 - 000000000 ____D C:\ProgramData\Apple
2021-10-14 18:01 - 2021-10-14 18:01 - 000000000 ____D C:\Program Files\AnyMP4 Studio
2021-10-13 18:59 - 2021-10-13 19:00 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (2)
2021-10-13 18:58 - 2021-10-13 18:59 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (1)
2021-10-13 18:57 - 2021-10-13 18:58 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky
2021-10-13 18:42 - 2021-10-13 18:42 - 000085846 _____ C:\Users\sever\Documents\Jazyková příprava.pdf
2021-10-12 18:01 - 2021-10-12 18:01 - 000000000 ____D C:\Users\berdi\AppData\Local\Apps\2.0
2021-10-11 07:00 - 2021-10-11 07:00 - 000000000 ____D C:\Program Files\Microsoft.WebView2.FixedVersionRuntime.92.0.902.73.x64
2021-10-07 17:16 - 2021-10-07 17:16 - 000275885 _____ C:\Users\sever\Downloads\Kniha2014_zkratky.pdf
2021-10-07 17:04 - 2021-10-07 17:04 - 000149149 _____ C:\Users\sever\Downloads\Úprava rozpočtu k 30. 9. 2021 – Brandýs.xlsx
2021-10-05 22:32 - 2021-10-05 22:32 - 001210789 _____ C:\Users\berdi\Documents\Krtečci_210310 (2)re.xcf
2021-10-05 20:09 - 2021-10-05 20:09 - 000136581 _____ C:\Users\berdi\Documents\SablonyIII.pdf
2021-10-04 18:35 - 2021-10-04 18:35 - 002864361 _____ C:\Users\berdi\Downloads\images.zip
2021-10-04 18:35 - 2021-10-04 18:35 - 000000000 ____D C:\Users\berdi\Downloads\images
2021-10-04 18:06 - 2021-10-04 18:07 - 000000000 ____D C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”
2021-10-04 18:05 - 2021-10-04 18:05 - 009629583 _____ C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”.zip
2021-10-03 16:13 - 2021-10-03 16:27 - 000000000 ____D C:\Users\berdi\Downloads\Fotky
2021-10-03 16:12 - 2021-10-03 16:12 - 004836455 _____ C:\Users\berdi\Downloads\Fotky.zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-11-01 19:10 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-11-01 19:10 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-11-01 19:10 - 2020-11-17 20:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-11-01 19:10 - 2020-08-24 10:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-31 19:55 - 2020-08-24 10:39 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2021-10-31 19:54 - 2021-06-05 13:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-31 19:54 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-31 19:54 - 2020-11-17 16:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-31 19:22 - 2020-11-17 16:33 - 000000000 ___RD C:\Users\sever\OneDrive
2021-10-31 19:17 - 2020-11-22 10:55 - 000000000 ____D C:\Users\berdi\AppData\Local\CrashDumps
2021-10-31 19:17 - 2019-12-03 01:18 - 000000000 ____D C:\ProgramData\HP
2021-10-31 19:16 - 2021-05-08 18:32 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2021-10-31 19:16 - 2021-03-21 17:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Hewlett-Packard
2021-10-31 19:16 - 2020-11-17 16:49 - 000000000 ____D C:\Users\sever\AppData\Roaming\Hewlett-Packard
2021-10-31 19:16 - 2019-12-03 01:18 - 000000000 ____D C:\Program Files (x86)\HP
2021-10-31 19:16 - 2019-10-29 19:52 - 000000000 ___HD C:\hp
2021-10-31 09:48 - 2020-11-17 18:22 - 000000000 ____D C:\Users\berdi\AppData\Local\D3DSCache
2021-10-30 20:27 - 2020-11-22 11:56 - 000000000 ____D C:\Program Files\Blackmagic Design
2021-10-30 20:01 - 2021-06-05 18:20 - 000760130 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-30 20:01 - 2021-06-05 18:20 - 000168452 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-30 20:01 - 2021-06-05 13:09 - 000000000 ____D C:\WINDOWS\INF
2021-10-30 07:19 - 2020-12-31 20:22 - 000191832 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-10-30 07:19 - 2020-12-31 20:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-30 07:19 - 2020-12-31 20:22 - 000000000 ____D C:\Program Files\Java
2021-10-30 07:11 - 2020-11-17 18:28 - 000000000 ___RD C:\Users\berdi\OneDrive
2021-10-29 21:28 - 2020-11-18 19:37 - 000007604 _____ C:\Users\berdi\AppData\Local\resmon.resmoncfg
2021-10-29 21:27 - 2019-04-15 16:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-29 21:25 - 2021-06-05 13:01 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-10-29 21:25 - 2021-03-19 05:41 - 000012288 ___SH C:\DumpStack.log.tmp
2021-10-29 19:09 - 2020-11-17 18:50 - 000000000 ____D C:\Users\sever\AppData\Local\CrashDumps
2021-10-29 19:08 - 2020-11-17 16:32 - 000000000 ____D C:\Users\sever\AppData\Local\D3DSCache
2021-10-29 19:08 - 2020-11-17 16:31 - 000000000 ____D C:\Users\sever\AppData\Local\Packages
2021-10-29 18:29 - 2020-11-22 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-29 18:29 - 2020-11-22 12:52 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2021-10-28 20:32 - 2021-06-22 16:51 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-10-28 20:32 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\OCR
2021-10-28 20:28 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-27 14:56 - 2021-06-22 16:48 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-26 05:10 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\appcompat
2021-10-26 05:04 - 2020-11-17 18:40 - 000000000 ____D C:\Users\berdi\AppData\Local\PlaceholderTileLogoFolder
2021-10-25 19:55 - 2020-11-17 18:22 - 000000000 ____D C:\Users\berdi\AppData\Local\Packages
2021-10-25 19:23 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-10-25 19:23 - 2020-11-17 18:22 - 000000000 ____D C:\Users\berdi\AppData\Local\NVIDIA Corporation
2021-10-25 19:22 - 2020-11-17 16:33 - 000000000 ____D C:\Users\sever\AppData\Local\NVIDIA Corporation
2021-10-25 19:20 - 2020-08-24 10:41 - 000000000 ____D C:\ProgramData\Packages
2021-10-25 19:18 - 2021-06-05 13:01 - 000000000 ____D C:\WINDOWS\servicing
2021-10-25 19:07 - 2020-11-17 20:16 - 000000000 ____D C:\Users\sever\AppData\Local\Google
2021-10-25 19:06 - 2021-06-05 13:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-25 19:06 - 2019-04-15 16:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-25 19:03 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-25 19:03 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows NT
2021-10-25 19:03 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-25 19:03 - 2021-06-05 13:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-25 19:01 - 2020-11-17 20:16 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-25 19:00 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-25 18:59 - 2021-09-22 18:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-10-25 18:59 - 2021-09-22 18:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-10-25 18:59 - 2021-07-09 18:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2021-10-25 18:59 - 2021-06-22 22:50 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\spool
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-25 18:59 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-25 18:59 - 2021-06-05 13:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-10-25 18:59 - 2021-05-08 20:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2021-10-25 18:59 - 2021-03-11 18:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2021-10-25 18:59 - 2020-11-24 22:18 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultima Online DP2
2021-10-25 18:59 - 2020-11-22 15:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-10-25 18:59 - 2020-11-17 19:41 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-10-25 18:59 - 2020-11-17 18:48 - 000000000 ____D C:\Program Files\UNP
2021-10-25 18:59 - 2020-08-24 10:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-10-25 18:59 - 2020-08-24 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-10-25 18:59 - 2020-08-24 10:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2021-10-25 18:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-10-25 18:59 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-10-25 18:55 - 2021-06-05 13:14 - 000000000 ____D C:\WINDOWS\Setup
2021-10-25 18:52 - 2021-06-05 13:10 - 000000000 ____D C:\ProgramData\USOPrivate
2021-10-25 18:51 - 2021-06-05 13:10 - 000000000 __RHD C:\Users\Public\Libraries
2021-10-25 18:43 - 2021-06-05 18:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\Provisioning
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-25 18:43 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files\Common Files\System
2021-10-25 18:42 - 2021-06-05 18:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-10-25 18:42 - 2021-06-05 18:28 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-10-25 18:34 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SystemApps
2021-10-25 18:31 - 2021-06-05 18:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-10-25 18:31 - 2021-06-05 18:20 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-10-25 18:31 - 2021-06-05 13:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-10-25 18:26 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-10-25 18:26 - 2021-06-05 13:10 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-10-24 15:14 - 2021-01-14 17:58 - 000000000 ____D C:\Users\berdi\AppData\Local\cache
2021-10-24 15:11 - 2020-11-18 18:45 - 000000000 ____D C:\Users\berdi\AppData\Local\Google
2021-10-24 15:11 - 2020-08-24 10:41 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-24 13:10 - 2021-05-08 19:51 - 000000000 ____D C:\Users\berdi\AppData\Local\babl-0.1
2021-10-23 19:13 - 2020-11-17 20:16 - 000000000 ____D C:\Program Files\Google
2021-10-22 16:56 - 2021-09-16 20:47 - 000000000 ____D C:\Users\berdi\AppData\Local\ElevatedDiagnostics
2021-10-22 16:42 - 2021-05-10 18:04 - 000000000 ____D C:\Users\sever\AppData\Local\Adobe
2021-10-19 16:56 - 2021-06-22 17:56 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-18 16:03 - 2021-03-07 17:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Adobe
2021-10-18 16:03 - 2021-03-07 17:30 - 000000000 ____D C:\Users\berdi\AppData\Local\Adobe
2021-10-17 12:38 - 2021-03-19 05:48 - 000000000 ____D C:\Users\sever\AppData\Roaming\Adobe
2021-10-17 12:37 - 2021-05-08 20:12 - 000000000 ____D C:\ProgramData\Adobe
2021-10-14 05:49 - 2020-11-17 18:51 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-14 05:49 - 2020-11-17 18:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 18:35 - 2020-11-17 16:33 - 000000000 ____D C:\Users\sever\AppData\Local\PlaceholderTileLogoFolder
2021-10-05 22:40 - 2021-05-23 13:09 - 000000000 ____D C:\Users\berdi\AppData\Local\gtk-2.0
2021-10-04 19:21 - 2020-12-25 21:03 - 000000000 ____D C:\Users\berdi\AppData\Roaming\HP
2021-10-04 18:01 - 2020-11-17 18:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
==================== Files in the root of some directories ========
2021-01-14 18:43 - 2021-01-14 18:43 - 000097505 _____ () C:\Users\berdi\AppData\Roaming\Crescendo.dmp
2021-10-23 19:06 - 2021-10-23 19:06 - 000008181 _____ () C:\Users\berdi\AppData\Local\recently-used.xbel
2020-11-18 19:37 - 2021-10-29 21:28 - 000007604 _____ () C:\Users\berdi\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-10-2021
Ran by Pavel (01-11-2021 19:13:26)
Running from C:\Users\berdi\Desktop
Microsoft Windows 11 Home Version 21H2 22000.258 (X64) (2021-10-25 18:03:09)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-626895236-950452568-4050494843-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-626895236-950452568-4050494843-503 - Limited - Disabled)
Guest (S-1-5-21-626895236-950452568-4050494843-501 - Limited - Disabled)
Pavel (S-1-5-21-626895236-950452568-4050494843-1002 - Administrator - Enabled) => C:\Users\berdi
sever (S-1-5-21-626895236-950452568-4050494843-1001 - Administrator - Enabled) => C:\Users\sever
vikib (S-1-5-21-626895236-950452568-4050494843-1005 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-626895236-950452568-4050494843-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader (HKLM\...\{50F633D3-DE52-4709-AD1B-A09B5B0D86C1}) (Version: 4.14.1.4020 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{33a1766b-73d6-42ce-b3ff-317e5db3e9a7}) (Version: 4.14.1.4020 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0807.2241.40847 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK Alpha (HKLM\...\{716F53C3-0B3F-4FB7-9AD7-9BC7DB7134A1}) (Version: 1.3.0.0533 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{685BAD50-A3AA-4B91-A15B-77F9DC7346D4}) (Version: 3.57.4043.4118 - Google, Inc.)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform)
Crescendo Music Notation Editor (HKLM-x32\...\Crescendo) (Version: 1.14 - NCH Software)
DaVinci Resolve (HKLM\...\{6E40D3ED-077B-45C4-90FF-222CC65C199C}) (Version: 17.4.10004 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
DJI Assistant 2 (Consumer Drones Series) version V2.1.5.8 (HKLM-x32\...\{7369D6A6-CBF3-428F-8C82-3D647630FC9A}_is1) (Version: V2.1.5.8 - DJI)
GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 52.0.6.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Photosmart C4200 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{276C40A7-8110-4976-80D2-39C669B84D32}) (Version: 14.0 - HP)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Inkscape (HKLM\...\{1E74336F-9E7A-4070-BAA7-716A504FB9B0}) (Version: 1.0.0 - Inkscape)
Java 8 Update 311 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180311F0}) (Version: 8.0.3110.11 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14430.20306 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.40 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.40 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 462.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.80 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
PSPad editor (HKLM\...\PSPad editor_is1) (Version: 5.0.5.567 - Jan Fiala)
Shotcut (HKLM\...\Shotcut) (Version: 21.09.22 - Meltytech, LLC)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Zoom (HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.)
Packages:
=========
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.7.195.0_x64__v10z8vjag6ke6 [2021-10-25] (HP Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-06-15] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-25] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-10-25] (Facebook Inc)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.0.6.0_x64__v10z8vjag6ke6 [2020-08-24] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-24] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.0.0_x64__v10z8vjag6ke6 [2021-10-15] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-11] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.9.58.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6 [2021-08-03] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-10-31] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-25] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0 [2021-10-30] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\nvshext.dll [2021-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers1_S-1-5-21-626895236-950452568-4050494843-1002: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2021-03-11 18:14 - 2014-11-02 18:45 - 000029184 _____ () [File not signed] C:\Program Files\PSPad editor\pspshellx64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_311\bin\ssv.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-10-30] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sever\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\StartupApproved\StartupFolder: => "Poslat do aplikace OneNote.lnk"
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\StartupApproved\Run: => "GoogleDriveFS"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{795C76F0-40E4-4CD7-9CAC-5B680B956E15}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{E705B4B5-92DF-4F6A-9B6D-5976A0D8BBCD}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [{7B7CC774-4F66-451C-9380-A26E93F3DCFE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07B2762C-86C4-4FE6-AE0B-8B2424C68812}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{68E2A6A8-1A1D-42BC-9B16-6CFB33EC9AF0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D40DDF2-0A7E-4018-95F2-3A07B7AD033D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF82CB62-5C3B-4E02-9AEF-203AFE2E156D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{3AD73BC4-CA38-439E-880B-B87EA7908B7E}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{EE9102E4-605E-48B8-8C24-A9AF4CB6385D}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{83BC7353-9138-4269-AD1C-54B9B43278D9}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{0EF8FD87-2288-40EE-B3F4-7C7B213F6B03}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [{6D7E9258-374B-42EF-A08C-B5DA13B8CB85}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D7377C96-06BE-4AB0-9A00-356DAC33F769}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{68A40398-8D79-4642-BBD9-B7DCD1583C08}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [UDP Query User{E7854A38-1E18-4DAF-A556-F2150934493B}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{13F97527-78DB-4AA6-A450-27D6E4D7BFD3}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{8CA7AEBF-D9A7-44FB-9DB5-5A8A5DD9DB66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F5EBED-DC73-4581-BA30-D1F44D0195F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48BD1678-C870-4DAB-8145-8BB940D9E74E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1317AB1-0416-44C7-839A-FFDAE0987190}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{90135E6A-0B02-466F-A966-D015A8E5BA64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0FC7A750-6829-4FB7-9197-49E45EB10B66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50A7C865-B44B-49E3-B7F6-E399A22F2F7C}] => (Allow) C:\Users\sever\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{EAC0DB97-9364-4B67-A8A6-A65CAC8EAC3F}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{39151168-B132-4EAC-BFDD-897532EE4CA8}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{8F9D30EC-8891-4318-9564-2CDBB3963574}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{CC437015-3D5B-4922-8303-9D07CA3E44E4}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{F0058689-3572-41E9-859E-2F78430DC054}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{625E177E-6206-4EBA-A3DD-59B6E86D3AC7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{81E93D52-1954-45E4-8A58-B7E0ED869F7D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{178E0BAC-4A45-4EF5-916F-5DD29A372C26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{04A4989F-9AD6-4697-93A9-F2DBB33CC85A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{906D6ED0-867E-4EF6-9214-0A685BBF11B1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C9C59F3F-EA90-426D-B41B-83088EED5B27}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{122927F8-D0DB-44A6-84A1-0D2D13AE1604}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0C39F5FA-A527-4B0A-AB74-9AAB5561A06E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{C09EAC53-6C2E-4072-8253-AB0B557F58C2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.171.560.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0E1EE292-489D-4F52-9DF1-DFD92FC11310}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{00A73543-F3C1-41B3-A27F-836CB066E84A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{17F47DAF-46F1-4641-990B-F5D569B90D0D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4A78A6CA-F34B-45B7-BDE4-697E6116F34D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{5B20591C-A3DB-4CDB-A173-2C87B7726628}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D37CBDEE-6106-49FA-AB29-DF50FE089DC1}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{F86AB260-AEE9-40CD-8546-AC26A43CB539}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{8954151A-B327-4869-BAFD-3E1E3B7660D8}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{17F66A95-36C9-4F6F-8052-69A64D02E93F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.40\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
25-10-2021 20:05:41 Removed MuseScore 3
29-10-2021 18:29:36 Installed DaVinci Resolve
30-10-2021 20:27:10 Installed DaVinci Resolve
31-10-2021 19:16:28 AdwCleaner_BeforeCleaning_31/10/2021_19:16:28
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/31/2021 09:24:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Microsoft.Photos.exe, verze: 2021.21090.29009.0, časové razítko: 0x615564fe
Název chybujícího modulu: amdihk64.dll_unloaded, verze: 2.0.0.1788, časové razítko: 0x5ed9f60e
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000419c
ID chybujícího procesu: 0x28e4
Čas spuštění chybující aplikace: 0x01d7cdc6da4d4d1f
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.29009.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Cesta k chybujícímu modulu: amdihk64.dll
ID zprávy: 922ba04f-05f2-494e-ad9b-024aa0caa39f
Úplný název chybujícího balíčku: Microsoft.Windows.Photos_2021.21090.29009.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/30/2021 08:29:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Resolve.exe, verze: 17.4.1.4, časové razítko: 0x00000000
Název chybujícího modulu: fusionsystem.dll_unloaded, verze: 17.4.1.7, časové razítko: 0x617a5aac
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000d8f67e
ID chybujícího procesu: 0x40c
Čas spuštění chybující aplikace: 0x01d7cdc469ed3594
Cesta k chybující aplikaci: C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
Cesta k chybujícímu modulu: fusionsystem.dll
ID zprávy: 66df2b03-5a31-437c-9c8d-e8fa96061aac
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/30/2021 08:25:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Resolve.exe, verze: 17.4.0.12, časové razítko: 0x00000000
Název chybujícího modulu: Resolve.exe, verze: 17.4.0.12, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000006cf9503
ID chybujícího procesu: 0x3af4
Čas spuštění chybující aplikace: 0x01d7cdc171c92b9f
Cesta k chybující aplikaci: C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
Cesta k chybujícímu modulu: C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
ID zprávy: 7180447f-e24a-4464-8653-bed4281d866b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/29/2021 09:25:42 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 29 Oct 2021 20:25:43 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 514e3224-093d-4075-bc79-ec0bea86b0d1
Metoda: GET(297ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/29/2021 09:25:42 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Fri, 29 Oct 2021 20:25:42 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: e03da9cc-3e52-4bbd-b72d-35e1a53b88b6
Metoda: GET(922ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/29/2021 09:25:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: msteams.exe, verze: 21253.510.996.1465, časové razítko: 0x614b9cda
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.22000.1, časové razítko: 0x00e78ce9
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000007dd7e
ID chybujícího procesu: 0x3158
Čas spuštění chybující aplikace: 0x01d7cc32a741505c
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: 7a8b1f3c-5cf6-4700-afde-ef56de77eca1
Úplný název chybujícího balíčku: MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: MicrosoftTeams
Error: (10/28/2021 08:32:44 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:46 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 5a9716f1-34d2-4fd0-8c36-7c982435940e
Metoda: GET(234ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/28/2021 08:32:43 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:45 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 60600997-6f2c-4315-bd5c-2d6f1135b28a
Metoda: GET(390ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
System errors:
=============
Error: (11/01/2021 07:10:05 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Analytics service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office Klikni a spusť byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP App Helper HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Network HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP System Info HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Error: (10/31/2021 07:16:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba HP Diagnostics HSA Service byla nečekaně ukončena. Stalo se to 2 krát. Následující opravná akce bude spuštěna za 5000 milisekund: Restartovat službu.
Windows Defender:
================Event[0]
Date: 2021-10-31 09:47:01
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {E388E435-B7B7-4B20-B12A-34F6742373A3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[1]
Date: 2021-10-30 09:52:10
Description:
N/A
Event[2]
Date: 2021-10-30 08:46:00
Description:
N/A
Event[3]
Date: 2021-10-29 19:26:53
Description:
N/A
Event[4]
Date: 2021-10-28 08:26:51
Description:
N/A
CodeIntegrity:
===============
Date: 2021-10-26 06:21:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: AMI F.12 12/21/2020
Motherboard: HP 86D4
Processor: AMD Ryzen 5 3550H with Radeon Vega Mobile Gfx
Percentage of memory in use: 33%
Total physical RAM: 14213.14 MB
Available physical RAM: 9402.3 MB
Total Virtual: 17413.14 MB
Available Virtual: 11559.75 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:476.08 GB) (Free:316.22 GB) NTFS
\\?\Volume{60399fc6-b5cc-40c7-9724-2ead35b90910}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{b6163c22-e199-4cd6-8c7a-be6637a8ba63}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 52F19EB3)
Partition: GPT.
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola FRST logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
earchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
FirewallRules: [{F86AB260-AEE9-40CD-8546-AC26A43CB539}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola FRST logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 02-11-2021
Ran by Pavel (02-11-2021 19:26:43) Run:1
Running from C:\Users\berdi\Desktop
Loaded Profiles: sever & Pavel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
earchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
FirewallRules: [{F86AB260-AEE9-40CD-8546-AC26A43CB539}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89ED6EFD-481E-4FCA-8AB1-139B3EFF4725}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89ED6EFD-481E-4FCA-8AB1-139B3EFF4725}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
earchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{71344697-58F8-4C37-AD15-0252409F3736} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{71344697-58F8-4C37-AD15-0252409F3736} => removed successfully
"HKU\S-1-5-21-626895236-950452568-4050494843-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-626895236-950452568-4050494843-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-626895236-950452568-4050494843-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{71344697-58F8-4C37-AD15-0252409F3736} => removed successfully
"HKU\S-1-5-21-626895236-950452568-4050494843-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-626895236-950452568-4050494843-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F86AB260-AEE9-40CD-8546-AC26A43CB539}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13242558 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 39411620 B
Edge => 0 B
Chrome => 135049893 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1756 B
systemprofile32 => 1756 B
LocalService => 1756 B
NetworkService => 2910 B
sever => 102681671 B
berdi => 287424072 B
RecycleBin => 0 B
EmptyTemp: => 552.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:27:08 ====
Ran by Pavel (02-11-2021 19:26:43) Run:1
Running from C:\Users\berdi\Desktop
Loaded Profiles: sever & Pavel
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
earchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
FirewallRules: [{F86AB260-AEE9-40CD-8546-AC26A43CB539}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{C885AA15-1764-4293-B82A-0586ADD46B35} => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89ED6EFD-481E-4FCA-8AB1-139B3EFF4725}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89ED6EFD-481E-4FCA-8AB1-139B3EFF4725}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
earchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE => Error: No automatic fix found for this entry.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{71344697-58F8-4C37-AD15-0252409F3736} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{71344697-58F8-4C37-AD15-0252409F3736} => removed successfully
"HKU\S-1-5-21-626895236-950452568-4050494843-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-626895236-950452568-4050494843-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKU\S-1-5-21-626895236-950452568-4050494843-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{71344697-58F8-4C37-AD15-0252409F3736} => removed successfully
"HKU\S-1-5-21-626895236-950452568-4050494843-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-626895236-950452568-4050494843-1002\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F86AB260-AEE9-40CD-8546-AC26A43CB539}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13242558 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 39411620 B
Edge => 0 B
Chrome => 135049893 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1756 B
systemprofile32 => 1756 B
LocalService => 1756 B
NetworkService => 2910 B
sever => 102681671 B
berdi => 287424072 B
RecycleBin => 0 B
EmptyTemp: => 552.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:27:08 ====
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola FRST logu
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola FRST logu
Zdá se, že ano.
Díky P.
Díky P.
-
Rudy
- Site Admin
- Příspěvky: 118274
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola FRST logu
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?