Prosím o preventivku

[3rw0sh]

Dobré ráno, prosím o preventivní kontrolu. PC se občas přisekne při běžných činnostech. To dříve nedělal.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-12-2023
Ran by camse (administrator) on PC-I5 (MSI MS-7A46) (12-12-2023 09:30:32)
Running from C:\Users\camse\Desktop\FRST64.exe
Loaded Profiles: camse
Platform: Microsoft Windows 10 Pro Version 22H2 19045.3693 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.UI.Application.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files (x86)\Avira\Security\Avira.Spotlight.UI.Application.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.61\msedgewebview2.exe <6>
(C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\SentryEye.exe
(C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\84.0.11.0\crashpad_handler.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_w32.exe
(C:\Program Files\TeamViewer\TeamViewer_Service.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\tv_x64.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudCKKS.exe
(C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Microsoft Corporation) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\WebView2\msedgewebview2.exe <6>
(Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\Tactic3D.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(explorer.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Inc.) [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <13>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (HP Inc. -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP Deskjet 4640 series\Bin\ScanToPCActivationApp.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Zebra Technologies Corporation) C:\Windows\System32\ZXPPlvAsyncUIClient.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(explorer.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.7\Lightshot.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.246.1127.0002\Microsoft.SharePoint.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(services.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe
(services.exe ->) (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe
(services.exe ->) (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe
(services.exe ->) (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe
(services.exe ->) (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\120.0.6099.8\remoting_host.exe <2>
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_cad1db73e8c782a6\WMIRegistrationService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2348.4.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(svchost.exe ->) (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple, Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa\iCloud\secd.exe
(svchost.exe ->) (Avira Operations GmbH -> Avira Operations GmbH) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(svchost.exe ->) (Creative Technology Ltd.) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.exe
(svchost.exe ->) (EVGA Corp. -> EVGA Co., Ltd.) C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe
(svchost.exe ->) (HP Inc. -> Hewlett-Packard Development Company, LP) C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPNetworkCommunicatorCom.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2307.4.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(svchost.exe ->) (SOKNO S.R.L. -> ) C:\Program Files (x86)\SpeedFan\speedfan.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9270560 2019-05-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [ZXPPlvAsyncUI] => C:\Windows\system32\ZXPPlvAsyncUIClient.exe [130560 2016-03-08] (Microsoft Windows Hardware Compatibility Publisher -> Zebra Technologies Corporation)
HKLM\...\Run: [CsrHCRPServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe [1134288 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [CsrAudioguiCtrl] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe [511696 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [CsrSyncMLServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe [244944 2012-03-22] (Cambridge Silicon Radio Ltd. -> )
HKLM\...\Run: [vksts] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe [25792 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [HarmonyUserStartup] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe [39128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [CSRHarmonySkypePlugin] => C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe [146656 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [TrayApplication] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe [529616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Run: [Acrobat Assistant 8.0] => C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrotray.exe [7777240 2023-11-05] (Adobe Inc. -> Adobe Systems Inc.) [File not signed]
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKLM-x32\...\Run: [Sound Blaster Tactic3D Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\Tactic3D.exe [2091008 2014-07-03] (Creative Technology Ltd) [File not signed]
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [125477704 2022-02-16] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-03] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-03] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2595344 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-03] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [MicrosoftEdgeAutoLaunch_F8B5403E487379C2778B921BF8533C06] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [3788736 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [HP Deskjet 4640 series (NET)] => C:\Program Files\HP\HP Deskjet 4640 series\Bin\ScanToPCActivationApp.exe [3486368 2021-12-01] (HP Inc. -> Hewlett-Packard Development Company, LP)
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [Steam] => D:\Program Files\Steam\steam.exe [4375912 2023-09-29] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-10-22] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Run: [utweb] => "C:\Users\camse\AppData\Roaming\uTorrent Web\utweb.exe" /MINIMIZED (No File)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\84.0.11.0\GoogleDriveFS.exe [58391840 2023-12-03] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\GOEG_IPPR: C:\Windows\System32\spool\prtprocs\x64\GOEG_IPPR.dll [77312 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Monotype Imaging Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2023-10-09] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\GOEG PJL Monitor: C:\Windows\system32\GOEG_LMON.dll [73728 2015-08-04] (Microsoft Windows Hardware Compatibility Publisher -> Teco Image Systems Co., Ltd.)
HKLM\...\Print\Monitors\HCR Client Port Monitor: C:\Windows\system32\csrportmon.dll [73416 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
HKLM\...\Print\Monitors\HP C811 Status Monitor: C:\Windows\system32\hpinkstsC811LM.dll [333344 2013-04-16] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP Deskjet 4640 series): C:\Windows\system32\HPDiscoPMC811.dll [763040 2021-12-01] (HP Inc. -> Hewlett-Packard Development Company, LP)
HKLM\...\Print\Monitors\SMART Local Port: C:\Windows\system32\smrtlocalmon.dll [41216 2023-08-02] (Smart Technologies ULC -> SMART Technologies ULC)
HKLM\...\Print\Monitors\Zebra ZXP Series USB Language Monitor: C:\Windows\system32\ZXPPlvLmon.dll [643072 2016-03-08] (Microsoft Windows Hardware Compatibility Publisher -> Zebra Technologies Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\120.0.6099.71\Installer\chrmstp.exe [2023-12-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] -> C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BLEtokenCredentialProvider.dll [2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
Startup: C:\Users\camse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - .lnk [2023-07-18]
ShortcutAndArgument: Sledovat výstrahy inkoustu - .lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 4640 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN5385B02Z05Z4;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\camse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sledovat výstrahy inkoustu - HP Deskjet 4640 series.lnk [2023-12-12]
ShortcutAndArgument: Sledovat výstrahy inkoustu - HP Deskjet 4640 series.lnk -> C:\Windows\system32\RunDll32.exe => "C:\Program Files\HP\HP Deskjet 4640 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN5385B02Z05Z4;CONNECTION=USB;MONITOR=1;
Startup: C:\Users\camse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SQLServer.lnk [2022-07-26]
ShortcutTarget: SQLServer.lnk -> C:\Aconto\CENTURA\dbnt1sv.exe (Centura Software Corporation) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {83A40271-2131-4523-9CAD-C87B189070DD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {09690384-9EA5-4CEB-856A-2EEF6CC472A7} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {FE68DDA3-2118-4E75-A164-3AD8410C583D} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {2C141A12-8920-4AB2-9F7E-505272E444A8} - System32\Tasks\Avira_FallbackUpdater => C:\Windows\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start AviraFallbackUpdater Delayed=false
Task: {F1271307-6CCD-4F5E-9C37-2C65E04E47A8} - System32\Tasks\Avira_Security_Maintenance => Command(1): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> FallbackTelemetry
Task: {F1271307-6CCD-4F5E-9C37-2C65E04E47A8} - System32\Tasks\Avira_Security_Maintenance => Command(2): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> ServiceWatchdog
Task: {F1271307-6CCD-4F5E-9C37-2C65E04E47A8} - System32\Tasks\Avira_Security_Maintenance => Command(3): C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe -> CrashCollector
Task: {0CEEF460-A1A5-43B2-9135-C05579B255D0} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [261368 2023-12-01] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {BE6C6812-9B49-4E02-9BD6-0F9E3C818B95} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1814672 2023-12-01] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {39D927A2-E90A-47D7-8ABC-16FE23E5272E} - System32\Tasks\Avira_Security_Update => C:\Windows\system32\net.exe [59904 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {21F2B710-348F-4322-958A-CF2D1450A1B0} - System32\Tasks\AviraSystemSpeedupVerify => C:\Program Files (x86)\Avira\System Speedup\setup\avira_speedup_setup.exe [37168176 2023-12-11] (Avira Operations GmbH -> Avira Operations GmbH)
Task: {95712991-BF17-4921-80B4-207A96B65BA7} - System32\Tasks\EVGAPrecisionX => C:\Program Files\EVGA\Precision X1\PrecisionX_x64.exe [20739960 2022-10-20] (EVGA Corp. -> EVGA Co., Ltd.)
Task: {9FF6D52F-38EE-469D-89B2-4428D3AF2D2F} - System32\Tasks\GoogleUpdateTaskMachineCore{47640080-2621-485D-800F-C2D2401AD39E} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-05] (Google LLC -> Google LLC)
Task: {E8F58C8E-6A5A-41DD-A349-85B0E9151B5E} - System32\Tasks\GoogleUpdateTaskMachineUA{7621FEF8-A38A-43E5-BD75-203E1CE9EF26} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [168632 2022-07-05] (Google LLC -> Google LLC)
Task: {ABDF99AC-2540-47A8-9120-59C076A73FB1} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-14] (HP Inc. -> HP Inc.)
Task: {1A1A6D51-2283-4533-B2D9-1FFAE359BBC4} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [60880 2023-11-14] (HP Inc. -> HP Inc.)
Task: {1E49C3E1-888F-4A12-9490-B48D60D98F9F} - System32\Tasks\Intel PTT EK Recertification => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe [818008 2021-09-15] (Intel Corporation -> Intel(R) Corporation)
Task: {86853753-B179-4093-AFB4-D4EEA2F02566} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B35E5C5-E913-4108-8770-B4A4809BE024} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28175336 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {78A4D452-9B57-4152-944F-1A765A9262B0} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306624 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {3EAC09A0-E5DF-4949-839E-F96B375F483C} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [306624 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {461FE8A8-D467-4B1B-9AA7-C91390645607} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [169144 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {CFC1DF10-4D60-4BDD-9D39-35582A7A8E1C} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache => {07369A67-07A6-4608-ABEA-379491CB7C46} C:\Windows\System32\UpdatePolicy.dll [251904 2023-11-19] (Microsoft Windows -> Microsoft Corporation)
Task: {571FC7B3-2641-428A-954B-1EA4DCF47427} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {7B8AA428-A3F1-4A19-A106-5B5338BD06FC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2191412610-3234449834-588525235-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130736 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {BE032538-D49B-4A09-A350-473527D03581} - System32\Tasks\Speedfan\Speedfan => C:\Program Files (x86)\SpeedFan\speedfan.exe [8166536 2016-06-29] (SOKNO S.R.L. -> )
Task: {FC47528D-3A79-415D-B8B0-00550950D324} - System32\Tasks\update-S-1-5-21-2191412610-3234449834-588525235-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {7AC7C645-0893-4F21-9C6E-386BF9951B22} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Intel PTT EK Recertification.job => C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_76523213b78d9046\lib\IntelPTTEKRecertification.exe
Task: C:\Windows\Tasks\update-S-1-5-21-2191412610-3234449834-588525235-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{68a6efdf-f1de-4c4b-9c80-ca2db35e8d8d}: [DhcpNameServer] 192.168.1.1

Edge:
=======
Edge Profile: C:\Users\camse\AppData\Local\Microsoft\Edge\User Data\Default [2023-12-03]
Edge Extension: (Dokumenty Google offline) - C:\Users\camse\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-12-03]
Edge Extension: (Edge relevant text changes) - C:\Users\camse\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-12-03]
Edge HKLM-x32\...\Edge\Extension: [caiblelclndcckfafdaggpephhgfpoip]
Edge HKLM-x32\...\Edge\Extension: [emgfgdclgfeldebanedpihppahgngnle]

FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default [2023-12-12]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-11-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-08-24]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-11-28]
CHR Extension: (Remove Ads from Photopea) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjkjjhgjcalgefcimahpbacihndicccn [2023-10-11]
CHR Extension: (Kopírování a vkládání v Office Online) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2022-07-05]
CHR Extension: (Chrome Remote Desktop) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2023-08-26]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-05]
CHR Extension: (Hesla na iCloudu) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Default\Extensions\pejdijmoenmkgeppbflobdenhhabjlaj [2023-09-26]
CHR Profile: C:\Users\camse\AppData\Local\Google\Chrome\User Data\Guest Profile [2023-01-24]
CHR Profile: C:\Users\camse\AppData\Local\Google\Chrome\User Data\Profile 1 [2023-12-10]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2023-12-10]
CHR Extension: (Záložky na iCloudu) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkepacicchenbjecpbpbclokcabebhah [2023-02-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-13]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2023-12-10]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-09-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\camse\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-05]
CHR Profile: C:\Users\camse\AppData\Local\Google\Chrome\User Data\System Profile [2023-07-20]
CHR HKU\S-1-5-21-2191412610-3234449834-588525235-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2191412610-3234449834-588525235-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [4555744 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
S2 AviraFallbackUpdater; C:\Program Files (x86)\Avira\Fallback Updater\Avira.Spotlight.FallbackUpdater.exe [6576104 2023-12-11] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [3003056 2023-06-29] (Avira Operations GmbH -> Avira Operations GmbH)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [389096 2023-09-06] (Avira Operations GmbH -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [267408 2023-12-01] (Avira Operations GmbH -> Avira Operations GmbH)
S2 AviraSecurityUpdater; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [299064 2023-12-01] (Avira Operations GmbH -> Avira Operations GmbH)
R2 BtSwitcherService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BtSwitcherService.exe [64216 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\120.0.6099.8\remoting_host.exe [74016 2023-11-01] (Google LLC -> Google LLC)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13233744 2023-11-14] (Microsoft Corporation -> Microsoft Corporation)
R2 CSRBtAudioService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtAudioService.exe [465624 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S2 CsrBtOBEXService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe [1041616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CsrBtService; C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtService.exe [825032 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2011-10-19] (Creative Technology Ltd) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-05-06] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EndpointProtectionService; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [11250696 2023-11-29] (Avira Operations GmbH -> Avira Operations GmbH)
S3 EndpointProtectionService2; C:\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe [11250696 2023-11-29] (Avira Operations GmbH -> Avira Operations GmbH)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncHelper.exe [3514384 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230360 2023-11-14] (HP Inc. -> HP Inc.)
S3 MonS3Service; C:\Program Files (x86)\Common Files\Solitea\MonS3Service.exe [1765472 2023-12-11] (Seyfor, a. s. -> Seyfor, a.s.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.246.1127.0002\OneDriveUpdaterService.exe [3851280 2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
S3 ProtonVPN Service; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPNService.exe [471896 2023-11-03] (Proton AG -> ProtonVPN)
S3 ProtonVPN WireGuard; C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.WireGuardService.exe [471384 2023-11-03] (Proton AG -> ProtonVPN)
S3 Rockstar Service; D:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1232368 2023-10-20] (Rockstar Games, Inc. -> Rockstar Games)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [534584 2023-11-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [21055800 2023-12-04] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\NisSrv.exe [3174840 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe [133592 2023-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 BdNet; C:\Windows\System32\DRIVERS\BdNet.sys [190712 2023-11-29] (Avira Operations GmbH -> Avira Operations GmbH)
R1 BdSentry; C:\Windows\System32\DRIVERS\BdSentry.sys [233560 2023-11-28] (Avira Operations GmbH -> Avira Operations GmbH)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
S3 CsrBtPort; C:\Windows\system32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrpan; C:\Windows\System32\drivers\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrserial; C:\Windows\system32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusb; C:\Windows\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited)
R2 Driver; C:\Program Files (x86)\EVGA\Kernel\driver-x64.sys [39856 2022-08-09] (EVGA Corp. -> )
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
S3 logi_joy_vir_hid; C:\Windows\system32\drivers\logi_joy_vir_hid.sys [21704 2022-07-05] (WDKTestCert builder,132743893872553407 -> Logitech)
R1 netprotection_network_filter; C:\Windows\System32\drivers\netprotection_network_filter.sys [114992 2023-11-16] (Avira Operations GmbH -> Avira Operations GmbH)
S3 ProtonVPNCallout; C:\Program Files\Proton\VPN\v3.2.7\Resources\ProtonVPN.CalloutDriver.sys [34176 2023-11-02] (Microsoft Windows Hardware Compatibility Publisher -> Proton Technologies AG)
S0 rtp_elam; C:\Windows\System32\DRIVERS\rtp_elam.sys [28784 2023-11-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH)
R1 rtp_filter; C:\Windows\System32\DRIVERS\rtp_filter.sys [376816 2023-11-28] (Avira Operations GmbH -> Avira Operations GmbH)
R1 rtp_traverse; C:\Windows\system32\DRIVERS\rtp_traverse.sys [41984 2023-11-28] (Avira Operations GmbH -> Avira Operations GmbH)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 sprdvcom; C:\Windows\system32\DRIVERS\sprdvcom.sys [28160 2015-03-04] (Spreadtrum Communications (shanghai) Co., Ltd. -> SPRD Device)
S3 tsxusbdbus; C:\Windows\System32\drivers\tsxusbdbus.sys [59512 2017-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Thinstuff)
R3 UHSfiltv; C:\Windows\system32\drivers\UHSfiltv.sys [32264 2015-07-21] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [55856 2023-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [594304 2023-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105856 2023-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-12-02] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 netprotection_network_filter2; System32\drivers\netprotection_network_filter2.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-12 09:30 - 2023-12-12 09:31 - 000039868 _____ C:\Users\camse\Desktop\FRST.txt
2023-12-12 09:30 - 2023-12-12 09:30 - 000000000 ____D C:\FRST
2023-12-12 09:29 - 2023-12-12 09:29 - 002385408 _____ (Farbar) C:\Users\camse\Desktop\FRST64.exe
2023-12-12 09:07 - 2023-12-12 09:07 - 000000000 ____D C:\Users\Public\Security Sessions
2023-12-11 22:30 - 2023-12-11 22:30 - 000001155 _____ C:\Users\camse\Desktop\El.lnk
2023-12-11 17:31 - 2023-12-11 17:31 - 000000000 ___HD C:\OneDriveTemp
2023-12-11 01:30 - 2023-12-11 01:30 - 000000000 ____D C:\Windows\SysWOW64\statReporter
2023-12-11 01:30 - 2023-12-11 01:30 - 000000000 ____D C:\Users\camse\AppData\Local\AviraWebView2Cache
2023-12-11 01:30 - 2023-12-11 01:30 - 000000000 _____ C:\Windows\system32\rtp.db
2023-12-11 01:30 - 2023-11-16 11:16 - 000114992 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\netprotection_network_filter.sys
2023-12-11 01:29 - 2023-12-12 09:08 - 000000000 ____D C:\Users\camse\AppData\Local\Avira
2023-12-11 01:29 - 2023-12-11 01:29 - 000003888 _____ C:\Windows\system32\Tasks\Avira_Security_Maintenance
2023-12-11 01:29 - 2023-12-11 01:29 - 000003758 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupVerify
2023-12-11 01:29 - 2023-12-11 01:29 - 000003706 _____ C:\Windows\system32\Tasks\Avira_FallbackUpdater
2023-12-11 01:29 - 2023-12-11 01:29 - 000003480 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2023-12-11 01:29 - 2023-12-11 01:29 - 000003428 _____ C:\Windows\system32\Tasks\Avira_Security_Service_SCM_Watchdog
2023-12-11 01:29 - 2023-12-11 01:29 - 000002818 _____ C:\Windows\system32\Tasks\Avira_Security_Systray
2023-12-11 01:29 - 2023-12-11 01:29 - 000000000 ____D C:\Users\Public\Speedup Sessions
2023-12-11 01:29 - 2023-12-11 01:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2023-12-11 01:29 - 2023-12-11 01:29 - 000000000 ____D C:\Program Files\Avira
2023-12-11 01:29 - 2023-11-29 07:18 - 000190712 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\BdNet.sys
2023-12-11 01:29 - 2023-11-28 23:41 - 000233560 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\BdSentry.sys
2023-12-11 01:29 - 2023-11-28 15:03 - 000376816 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_filter.sys
2023-12-11 01:29 - 2023-11-28 15:03 - 000041984 _____ (Avira Operations GmbH) C:\Windows\system32\Drivers\rtp_traverse.sys
2023-12-11 01:28 - 2023-12-11 01:29 - 000000000 ____D C:\ProgramData\Avira
2023-12-11 01:28 - 2023-12-11 01:29 - 000000000 ____D C:\Program Files (x86)\Avira
2023-12-11 01:28 - 2023-12-11 01:28 - 006576104 _____ (Avira Operations GmbH) C:\Users\camse\Downloads\avira_en_sptl1_1962905662-1702254512__phpws-spotlight-release.exe
2023-12-11 01:17 - 2023-12-11 01:18 - 001657310 _____ C:\Users\camse\Downloads\Metodická podpora_OSPOD_Nymburk.pdf
2023-12-07 20:48 - 2023-12-07 20:48 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2023-12-02 23:59 - 2023-12-02 23:59 - 000000000 ____D C:\Users\camse\AppData\Local\ToastNotificationManagerCompat
2023-12-02 23:58 - 2023-12-02 23:59 - 000000000 ____D C:\Users\camse\AppData\Local\ProtonVPN
2023-12-02 23:58 - 2023-12-02 23:59 - 000000000 ____D C:\ProgramData\ProtonVPN
2023-12-02 23:58 - 2023-12-02 23:58 - 000001050 _____ C:\Users\Public\Desktop\Proton VPN.lnk
2023-12-02 23:58 - 2023-12-02 23:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Proton
2023-12-02 23:58 - 2023-12-02 23:58 - 000000000 ____D C:\Program Files\Proton
2023-11-19 09:20 - 2023-11-19 09:20 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-12-12 09:32 - 2022-07-05 20:33 - 000000000 ____D C:\Windows\SystemTemp
2023-12-12 09:02 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-12-12 08:57 - 2023-11-07 23:13 - 000000000 ___RD C:\Users\camse\iCloudDrive
2023-12-12 08:57 - 2023-10-04 14:23 - 000000000 ___RD C:\Users\camse\OneDrive - Masarykova základní škola Lubenec, okres Louny
2023-12-12 08:57 - 2022-07-05 19:36 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2023-12-12 08:57 - 2022-07-05 19:24 - 000000000 ____D C:\Users\camse\AppData\Local\TeamViewer
2023-12-12 08:57 - 2022-07-05 19:20 - 000000000 ____D C:\Program Files (x86)\Google
2023-12-12 08:57 - 2022-07-05 18:49 - 000000000 ___RD C:\Users\camse\OneDrive
2023-12-12 08:57 - 2022-07-05 18:45 - 000000000 ___SD C:\Users\camse\AppData\Roaming\Microsoft\Credentials
2023-12-11 22:33 - 2022-07-06 08:09 - 000000000 ____D C:\ProgramData\NVIDIA
2023-12-11 22:32 - 2023-11-05 01:23 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2023-12-11 22:31 - 2022-07-05 19:28 - 000000000 ____D C:\Users\camse\AppData\Roaming\vlc
2023-12-11 22:30 - 2022-07-05 19:21 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-12-11 22:29 - 2023-03-02 19:10 - 000000000 ____D C:\Users\camse\Desktop\licence
2023-12-11 22:29 - 2022-07-05 18:40 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-12-11 17:40 - 2022-07-05 19:23 - 000000000 ____D C:\Program Files\TeamViewer
2023-12-11 17:40 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2023-12-11 17:39 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-12-11 17:39 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2023-12-11 15:51 - 2022-07-05 18:47 - 000000000 ____D C:\Users\camse\AppData\Local\VirtualStore
2023-12-11 09:19 - 2022-07-05 20:11 - 000000000 ____D C:\Users\camse\AppData\Roaming\Microsoft\Word
2023-12-11 09:09 - 2022-07-05 18:47 - 000000000 ____D C:\Users\camse\AppData\Local\D3DSCache
2023-12-11 01:29 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2023-12-10 23:52 - 2022-07-06 08:24 - 000000000 ____D C:\Users\camse\AppData\Roaming\Microsoft\Excel
2023-12-10 23:42 - 2023-08-24 20:05 - 000000180 _____ C:\Users\camse\AppData\Roaming\COPA_Last_Connected_Device.ini
2023-12-10 23:31 - 2022-07-05 20:09 - 000000000 ____D C:\Users\camse\AppData\Roaming\Microsoft\Outlook
2023-12-10 12:03 - 2022-07-05 18:47 - 000000000 ____D C:\Users\camse\AppData\Local\Packages
2023-12-10 09:46 - 2022-07-05 18:48 - 001694140 _____ C:\Windows\system32\PerfStringBackup.INI
2023-12-10 09:46 - 2019-12-07 15:43 - 000717008 _____ C:\Windows\system32\perfh005.dat
2023-12-10 09:46 - 2019-12-07 15:43 - 000145186 _____ C:\Windows\system32\perfc005.dat
2023-12-10 09:42 - 2022-07-05 18:40 - 000008192 ___SH C:\DumpStack.log.tmp
2023-12-10 09:42 - 2022-07-05 18:40 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-12-10 09:41 - 2022-07-10 13:27 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-12-10 09:41 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2023-12-09 17:15 - 2022-07-05 18:40 - 000002396 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-12-08 17:16 - 2022-07-05 18:40 - 000000000 ____D C:\Windows\system32\Drivers\wd
2023-12-07 20:48 - 2022-07-05 19:35 - 000000000 ____D C:\Program Files\Microsoft Office
2023-12-07 20:48 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-12-07 20:46 - 2023-11-05 01:28 - 000003530 _____ C:\Windows\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2023-12-07 20:46 - 2023-11-05 01:27 - 000003506 _____ C:\Windows\system32\Tasks\AdobeGCInvoker-1.0
2023-12-07 20:39 - 2022-07-05 19:38 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-12-07 20:39 - 2022-07-05 19:38 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-12-07 20:39 - 2022-07-05 19:20 - 000003844 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{7621FEF8-A38A-43E5-BD75-203E1CE9EF26}
2023-12-07 20:39 - 2022-07-05 19:20 - 000003720 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{47640080-2621-485D-800F-C2D2401AD39E}
2023-12-07 20:39 - 2022-07-05 18:49 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2191412610-3234449834-588525235-1001
2023-12-03 21:53 - 2022-07-05 19:20 - 000002173 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2023-11-28 21:42 - 2023-09-26 22:14 - 000000000 ____D C:\ProgramData\SMART Technologies
2023-11-20 22:44 - 2022-07-05 19:58 - 000000000 ____D C:\Users\camse\AppData\Roaming\Microsoft\Teams
2023-11-20 21:13 - 2022-11-13 11:04 - 000002391 _____ C:\Users\camse\Desktop\Microsoft Teams.lnk
2023-11-20 21:13 - 2022-07-05 19:59 - 000002399 _____ C:\Users\camse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Teams.lnk
2023-11-20 20:43 - 2022-07-05 18:47 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-11-20 17:45 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-11-19 10:48 - 2022-07-05 18:40 - 005129608 _____ C:\Windows\system32\FNTCACHE.DAT
2023-11-19 10:47 - 2019-12-07 15:47 - 000000000 ___SD C:\Windows\system32\AppV
2023-11-19 10:47 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-11-19 10:47 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2023-11-19 10:47 - 2019-12-07 15:47 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-11-19 10:47 - 2019-12-07 15:43 - 000000000 ____D C:\Windows\SysWOW64\cs
2023-11-19 10:47 - 2019-12-07 15:43 - 000000000 ____D C:\Windows\system32\cs
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\F12
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\SysWOW64\DiagSvcs
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\UNP
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\F12
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\PerceptionSimulation
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\oobe
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\migwiz
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lv-LV
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\lt-LT
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\et-EE
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\es-MX
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Com
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Sysprep
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\migwiz
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lv-LV
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\lt-LT
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\et-EE
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Dism
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Com
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\AdvancedInstallers
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\Provisioning
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\IME
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-11-19 10:47 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-11-19 10:47 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2023-11-19 09:32 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2023-11-19 09:31 - 2019-12-07 15:47 - 000023552 _____ (Microsoft Corporation) C:\Windows\system32\OEMDefaultAssociations.dll
2023-11-19 09:31 - 2019-12-07 10:15 - 000208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2023-11-19 09:31 - 2019-12-07 10:14 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2023-11-19 09:26 - 2022-07-05 18:44 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-11-19 09:09 - 2022-07-05 20:01 - 000000000 ____D C:\Windows\system32\MRT
2023-11-19 09:07 - 2022-07-05 20:01 - 182871392 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-11-14 07:27 - 2023-08-10 19:07 - 000000000 ____D C:\Windows\system32\Tasks\HP
2023-11-14 07:27 - 2023-07-18 11:27 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-11-14 07:27 - 2022-07-05 18:47 - 000000000 ____D C:\Users\camse\AppData\Roaming\Adobe
2023-11-14 07:27 - 2022-07-05 18:47 - 000000000 ____D C:\Users\camse\AppData\Local\Publishers
2023-11-14 07:21 - 2022-07-05 20:00 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools

==================== Files in the root of some directories ========

2023-08-24 20:05 - 2023-12-10 23:42 - 000000180 _____ () C:\Users\camse\AppData\Roaming\COPA_Last_Connected_Device.ini
2023-08-24 20:01 - 2023-08-24 20:01 - 000000098 _____ () C:\Users\camse\AppData\Roaming\SDC_Path.ini
2023-03-10 19:47 - 2023-03-10 22:36 - 000003072 _____ () C:\Users\camse\AppData\Local\file__0.localstorage
2023-11-05 01:30 - 2023-11-05 01:30 - 000000000 _____ () C:\Users\camse\AppData\Local\oobelibMkey.log
2022-07-05 19:32 - 2022-07-05 19:32 - 000000003 _____ () C:\Users\camse\AppData\Local\updater.log
2022-07-05 19:32 - 2022-07-05 19:32 - 000000424 _____ () C:\Users\camse\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-12-2023
Ran by camse (12-12-2023 09:33:14)
Running from C:\Users\camse\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.3693 (X64) (2022-07-05 17:42:08)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-2191412610-3234449834-588525235-500 - Administrator - Disabled)
camse (S-1-5-21-2191412610-3234449834-588525235-1001 - Administrator - Enabled) => C:\Users\camse
DefaultAccount (S-1-5-21-2191412610-3234449834-588525235-503 - Limited - Disabled)
Guest (S-1-5-21-2191412610-3234449834-588525235-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2191412610-3234449834-588525235-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Security (Enabled - Up to date) {60719F1B-9F3A-039C-2AE5-712E79D0CD91}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 23.006.20360 - Adobe)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.4.0.63 - Adobe Inc.)
Adobe Illustrator CS6 (HKLM-x32\...\{4869414E-7AEA-4C8E-BE1C-8D40977FD517}) (Version: 16.0 - Adobe Systems Incorporated)
Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_0_1) (Version: 15.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_2) (Version: 20.0.2 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Avira Fallback Updater (HKLM-x32\...\Avira Fallback Updater) (Version: - ) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.43.1.16819 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.1.97.4 - Avira Operations GmbH) Hidden
Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version: - Avira Operations GmbH)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.26.0.18 - Avira Operations GmbH) Hidden
Balíček ovladače systému Windows - Elatec (Bus) USB (01/18/2019 5.3.0.30) (HKLM\...\64CCEC68EC66DB49F04744E1041F2DFC8F58A2D5) (Version: 01/18/2019 5.3.0.30 - Elatec)
Balíček ovladače systému Windows - Elatec (twn4ccidslot) SmartCardReader (01/18/2019 5.3.0.30) (HKLM\...\7151742677BB31E5AED79FD9EFD67812BE4A936F) (Version: 01/18/2019 5.3.0.30 - Elatec)
Balíček ovladače systému Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (02/02/2015 4.0.0000.00001) (HKLM\...\029888D43BFD3B5FB7FD31E690D4B4A42B9C2B80) (Version: 02/02/2015 4.0.0000.00001 - Google, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CardStudio 2.0 (HKLM-x32\...\{0EBB8F07-359D-4DE5-B5EE-289B03420C59}) (Version: 2.5.20 - Zebra Technologies)
CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - Název společnosti:)
Ekonomický systém Money S3 (HKLM-x32\...\Money S3) (Version: 23.950 (20231123_13) - Seyfor, a.s.)
Endpoint Protection SDK (HKLM\...\{68E1CCB4-4965-4713-BDEB-77F6D6C9BF9D}_is1) (Version: 1.0.2311.1368 - Avira Operations GmbH) Hidden
EVGA Precision X1 (HKLM\...\EVGA Precision X1) (Version: 1.3.7.0 - EVGA Corporation)
FileZilla 3.64.0 (HKLM-x32\...\FileZilla Client) (Version: 3.64.0 - Tim Kosse)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 84.0.11.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.71 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.3028.0 - Rockstar Games)
HWiNFO64 Version 7.26 (HKLM\...\HWiNFO64_is1) (Version: 7.26 - Martin Malik - REALiX)
Chrome Remote Desktop Host (HKLM-x32\...\{1A3D5F06-06AB-4F3D-8CDB-1B256239CD85}) (Version: 120.0.6099.8 - Google LLC)
iCloud Outlook (HKLM\...\{11727D12-D910-486F-9B36-B496F4AB334D}) (Version: 14.1.0.108 - Apple Inc.)
Intel(R) Chipset Device Software (HKLM\...\{7FB35D08-C75C-4A18-B593-1D7C3E8970AD}) (Version: 10.1.1.45 - Intel Corporation) Hidden
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Jpeg Resampler XE (HKLM-x32\...\JpegResamplerXE_is1) (Version: - Jpeg Resampler)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lightshot-5.5.0.7 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.7 - Skillbrains)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.61 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.61 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Retail - cs-cz) (Version: 16.0.17029.20068 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\Teams) (Version: 1.6.00.31763 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.36.32532 (HKLM-x32\...\{8bdfe669-9705-4184-9368-db9ce581e0e7}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.36.32532 (HKLM-x32\...\{410c0ee1-00bb-41b6-9772-e12c2828b02f}) (Version: 14.36.32532.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.36.32532 (HKLM\...\{0025DD72-A959-45B5-A0A3-7EFEB15A8050}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.36.32532 (HKLM\...\{D5D19E2F-7189-42FE-8103-92CD1FA457C2}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.36.32532 (HKLM-x32\...\{C2C59CAB-8766-4ABD-A8EF-1151A36C41E5}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.36.32532 (HKLM-x32\...\{73F77E4E-5A17-46E5-A5FC-8A061047725F}) (Version: 14.36.32532 - Microsoft Corporation) Hidden
NVIDIA Ovladače grafiky 536.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 536.23 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20000 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20068 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Photopea (HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\58f700d6ee6641a995bb801bfdf36b50) (Version: 1.0 - Google\Chrome)
Proton VPN (HKLM\...\Proton VPN_is1) (Version: 3.2.7 - Proton AG)
PSPad editor (HKLM\...\PSPad editor 64bit_is1) (Version: 5.0.6.589 - Jan Fiala)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.053.1001.2021 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8703.1 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.79.1653 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.2.1.8 - Rockstar Games)
SMART Czech Handwriting Resources (HKLM-x32\...\{65A75580-36A0-4490-8181-0967DD6C1464}) (Version: 15.1.10.0 - SMART Technologies ULC)
SMART Notebook (HKLM-x32\...\{D0DD05F2-2123-4890-A345-F82CB0DA7576}) (Version: 23.1.1200.0 - SMART Technologies ULC)
Smart Organizing Monitor (HKLM-x32\...\{77534F47-08D5-4A50-8249-403C9ECE9840}) (Version: 1.00.0000 - RICOH)
Sound Blaster Tactic(3D) (HKLM-x32\...\{92000C16-939B-44CA-802F-0D552019D7C8}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.4689 - Microsoft Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.48.5 - TeamViewer)
TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden
Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.50 - Ghisler Software GmbH)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 132.1.10679 - Ubisoft)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
Vzdálená plocha Chrome (HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\db5d2d6bcfbed553c48b9f7b50ae993a) (Version: 1.0 - Google\Chrome)
WALTR HEIC Converter version 1.1.4 (HKLM\...\{E312C002-A6C4-5F1E-2BF2-3F6348653080}_is1) (Version: 1.1.4 - Softorino, Inc.)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
Youtube Downloader HD v. 4.3.3 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
Základní software zařízení HP Deskjet 4640 series (HKLM\...\{1B1D215B-1D06-4E0E-8528-6D81CEAE3933}) (Version: 32.4.118.94128 - Hewlett-Packard Co.)
Zebra ZXP S3 and S1 Card Printers (HKLM-x32\...\{1132009E-7E6B-43D3-8F24-5554F5E9483B}) (Version: 06.02.00.00 - Zebra Technologies Corporation)

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-01-15] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_150.1.1140.0_x64__v10z8vjag6ke6 [2023-11-14] (HP Inc.)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_14.2.122.0_x64__nzyj5cx40ttqa [2023-11-28] (Apple Inc.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-03-10] (NVIDIA Corp.)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2348.4.0_x64__cv1g1gvanyjgm [2023-12-10] (WhatsApp Inc.) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{04271989-C4D2-91F4-65F1-8A93A298B86A} -> [OneDrive - Masarykova základní škola Lubenec, okres Louny] => C:\Users\camse\OneDrive - Masarykova základní škola Lubenec, okres Louny [2023-10-04 14:23]
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\camse\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23285.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{4515E06B-D84A-4EAC-B3C5-F70469E95C6D} -> [iCloud Drive] => C:\Users\camse\iCloudDrive [2023-11-07 23:13]
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{50726f74-6f6e-2e56-504e-000000000000}\localserver32 -> C:\Program Files\Proton\VPN\v3.2.7\ProtonVPN.exe (Proton AG -> )
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{6BE99E87-B6FB-4CC3-AE69-DFCF33303D55} -> [Tiskové exporty z Money S3] => C:\Users\Public\Documents\Solitea\Money S3\PRINT\ [0000-00-00 00:00]
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{D07B24ED-C202-4DFC-981B-458EBC180ECB} -> [Fotky na iCloudu] => C:\Users\camse\Pictures\iCloud Photos\Photos [2023-11-07 23:13]
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\camse\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2191412610-3234449834-588525235-1001_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\84.0.11.0\drivefsext.dll [2023-12-03] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\84.0.11.0\drivefsext.dll [2023-12-03] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\84.0.11.0\drivefsext.dll [2023-12-03] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\84.0.11.0\drivefsext.dll [2023-12-03] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.11.0\drivefsext.dll [2023-12-03] (Google LLC -> Google, Inc.)
ContextMenuHandlers1-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResamplerXE\JRcm.dll [2010-08-18] () [File not signed]
ContextMenuHandlers1: [JRcm64] -> {013BF2A8-A4B1-11DF-A865-F509E0D72085} => C:\Program Files (x86)\JpegResamplerXE\JRcm64.dll [2010-09-06] () [File not signed]
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2023-09-22] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2023-12-01] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL [2023-12-01] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.11.0\drivefsext.dll [2023-12-03] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2023-09-22] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.11.0\drivefsext.dll [2023-12-03] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_7e5fd280efaa5445\nvshext.dll [2023-06-21] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2023-09-22] (Avira Operations GmbH -> Avira Operations GmbH)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResamplerXE\JRcm.dll [2010-08-18] () [File not signed]
ContextMenuHandlers6: [JRcm64] -> {013BF2A8-A4B1-11DF-A865-F509E0D72085} => C:\Program Files (x86)\JpegResamplerXE\JRcm64.dll [2010-09-06] () [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2191412610-3234449834-588525235-1001: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\camse\Desktop\Vzdálená plocha Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\camse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Vzdálená plocha Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\camse\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Jan (ČAM) - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) =============

2022-07-05 19:23 - 2010-09-06 17:21 - 000538435 _____ () [File not signed] C:\Program Files (x86)\JpegResamplerXE\JRcm64.dll
2021-02-01 21:49 - 2021-02-01 21:49 - 000010240 _____ () [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\cs_cz\acrotray.cze
2022-08-09 06:57 - 2022-08-09 06:57 - 000626688 _____ () [File not signed] C:\Program Files\EVGA\Precision X1\scanner.dll
2022-07-05 19:23 - 2014-11-02 18:45 - 000029184 _____ () [File not signed] C:\Program Files\PSPad editor\pspshellx64.dll
2022-07-05 19:36 - 2023-12-12 08:57 - 000192512 _____ () [File not signed] C:\Users\camse\AppData\Local\Temp\sfamcc00001.dll
2023-12-11 08:58 - 2023-12-12 08:57 - 000158720 _____ () [File not signed] C:\Users\camse\AppData\Local\Temp\sfareca00001.dll
2023-10-09 20:50 - 2023-10-09 20:50 - 000021504 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\cs_cz\Acrobat Elements\ContextMenuShim64.cze
2022-07-05 19:37 - 2009-10-21 16:36 - 000163840 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\ctcadi.dll
2022-07-05 19:37 - 2009-03-18 15:00 - 000151552 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTCadiEP.dll
2022-07-05 19:37 - 2013-05-06 13:47 - 000573440 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTRice.dll
2022-07-05 19:37 - 2011-08-10 14:00 - 000249856 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\DBACSU.dll
2022-07-05 19:37 - 2007-02-01 10:13 - 000061440 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.dll
2022-07-05 19:37 - 2011-09-14 14:27 - 000506880 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\CTAudEp.dll
2022-07-05 19:37 - 2013-01-30 16:38 - 000098304 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\CTIntrfu.dll
2022-07-05 19:37 - 2010-09-01 08:53 - 000237568 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\CTLoadRs.dll
2022-07-05 19:37 - 2013-02-01 21:38 - 000095744 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\CTMFSess.dll
2022-07-05 19:37 - 2014-06-05 12:48 - 000407552 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\CTProfile.dll
2022-07-05 19:37 - 2014-06-05 12:48 - 000227328 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\CTSetHID.dll
2022-07-05 19:37 - 2013-09-06 14:23 - 000837120 ____N (Creative Technology Ltd) [File not signed] C:\Program Files (x86)\Creative\Sound Blaster Tactic(3D)\Sound Blaster Tactic(3D) Control Panel\HookWndU.DLL
2022-07-05 19:37 - 2012-10-16 12:47 - 000417792 ____N (Creative Technology Ltd.) [File not signed] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTPresetW.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:gs5sys [3584]
AlternateDataStreams: C:\Users\All Users:gs5sys [3584]
AlternateDataStreams: C:\Users\camse:gs5sys [2048]
AlternateDataStreams: C:\ProgramData\Data aplikací:gs5sys [3584]
AlternateDataStreams: C:\Users\camse\Data aplikací:gs5sys [3328]
AlternateDataStreams: C:\Users\camse\Local Settings:gs5sys [2560]
AlternateDataStreams: C:\Users\camse\Soubory cookie:gs5sys [2048]
AlternateDataStreams: C:\Users\camse\Šablony:gs5sys [2048]
AlternateDataStreams: C:\Users\camse\Desktop\desktop.ini:gs5sys [3328]
AlternateDataStreams: C:\Users\camse\AppData\Local:gs5sys [2560]
AlternateDataStreams: C:\Users\camse\AppData\Roaming:gs5sys [3328]
AlternateDataStreams: C:\Users\camse\AppData\Local\Data aplikací:gs5sys [2560]
AlternateDataStreams: C:\Users\camse\AppData\Local\History:gs5sys [2560]
AlternateDataStreams: C:\Users\camse\Documents\desktop.ini:gs5sys [2560]
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys [3328]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://adisepo.mfcr.cz/adistc/adis/idpr_epo/epo2/uvod/vstup.faces
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2023-10-09] (Adobe Inc. -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies SA -> Skype Technologies)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\sharepoint.com -> hxxps://1zakladnis-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2022-07-06 10:42 - 2023-02-14 19:44 - 000000555 _____ C:\Windows\system32\drivers\etc\hosts.ics
172.22.64.1 DESKTOP-638NHF3.mshome.net # 2027 7 5 9 10 26 25 590
192.168.64.1 PC-i5.mshome.net # 2028 2 0 13 18 44 25 599

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\Smart Projects\IsoBuster;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "vksts"
HKLM\...\StartupApproved\Run: => "TrayApplication"
HKLM\...\StartupApproved\Run: => "HarmonyUserStartup"
HKLM\...\StartupApproved\Run: => "CsrHCRPServer"
HKLM\...\StartupApproved\Run: => "CsrAudioguiCtrl"
HKLM\...\StartupApproved\Run: => "CsrSyncMLServer"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\StartupApproved\StartupFolder: => "SQLServer.lnk"
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_F8B5403E487379C2778B921BF8533C06"
HKU\S-1-5-21-2191412610-3234449834-588525235-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5C788CC2-91AB-4AA3-AB57-F9E30411572F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FAEE24E9-B1AC-4F7A-8E48-D2805CB79E91}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8B7284BA-BD67-4AED-8357-0B00F8CEB54F}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{EA951181-2B74-48D0-A705-9BC46727E2F5}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{828F4FE8-C82C-4424-9DA1-9F62AD087210}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\FaxApplications.exe (HP Inc. -> Hewlett-Packard Development Company, LP)
FirewallRules: [{3E0E4D2D-1CA3-4B5D-81CC-F4D331D19337}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\DigitalWizards.exe (HP Inc. -> Hewlett-Packard Development Company, LP)
FirewallRules: [{0D35A270-25C5-4AD3-9833-86057FE99F59}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\SendAFax.exe (HP Inc. -> Hewlett-Packard Development Company, LP)
FirewallRules: [{5CCACAAF-3321-414A-8068-24CE12F37310}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\DeviceSetup.exe (HP Inc. -> Hewlett-Packard Development Company, LP)
FirewallRules: [{1CDD72A0-A3E5-48F3-82D5-7A23F29CAD99}] => (Allow) LPort=5357
FirewallRules: [{9C425A9F-221D-45EF-887E-D1AE51384C9F}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> Hewlett-Packard Development Company, LP)
FirewallRules: [TCP Query User{CB5B1A1E-A4F9-4406-8F9F-85AFD0B08B2A}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe => No File
FirewallRules: [UDP Query User{7B402D0C-AF7C-4332-A9EF-A38CA551EE3F}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe => No File
FirewallRules: [{717EF9D1-BFC1-4B0B-9246-DD26129B880A}] => (Allow) D:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B5B8F1F2-9458-450D-AD79-88E8F11FEA4E}] => (Allow) D:\Program Files\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{08ED0D56-A514-4408-8AD5-4C3521ED7978}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{103152BA-5752-4A72-85C1-01C282179A80}] => (Allow) D:\Program Files\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{8DCD1ACF-D0E3-49FB-B335-14F241A6514E}] => (Allow) D:\Program Files\Steam\steamapps\common\Counter-Strike Source\hl2.exe (Valve -> )
FirewallRules: [{03C13AB7-4946-46A6-AFA7-53A33B62A4E6}] => (Allow) D:\Program Files\Steam\steamapps\common\Counter-Strike Source\hl2.exe (Valve -> )
FirewallRules: [TCP Query User{E677FE16-2F4F-4119-97E5-FF24261E8B0E}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{165C3493-924E-4E39-8709-98F6D8CA74AC}D:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{31305994-BC9B-4CB5-BC6A-0A465C3E81E5}] => (Block) D:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{24903837-E340-4609-B9D7-37635319E780}] => (Block) D:\program files\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{215D15AB-FE44-4919-886B-C2F739F00F96}] => (Allow) D:\Program Files\Steam\steamapps\common\F1 2016\F1_2016.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{AB43E91C-A6D8-470D-9760-2687B3D21782}] => (Allow) D:\Program Files\Steam\steamapps\common\F1 2016\F1_2016.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{E32069E3-C3E9-4964-9646-45E1920C1052}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{977529DC-D123-4ED6-8A68-853E09739A02}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks.exe () [File not signed]
FirewallRules: [{987ECD96-94B6-4378-9C16-D4A85B886939}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [{2BD04135-8D73-4B0C-9260-DB1F9CC69DC9}] => (Allow) D:\Program Files\Steam\steamapps\common\RailWorks\RailWorks64.exe () [File not signed]
FirewallRules: [TCP Query User{A5E43C2E-E07B-4C66-A42E-F69D1B0F60C9}C:\users\camse\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\camse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{B855192F-F5AD-417F-B38A-FC15CC1ED04B}C:\users\camse\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\camse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EC82D2E8-4FC9-4C01-82F6-2DAE621F7360}] => (Block) C:\users\camse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7808CBE8-FBC8-4B11-AD2D-3710504FDC8C}] => (Block) C:\users\camse\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{20C4D320-748C-4D06-A4DF-E9349079E3E5}] => (Allow) D:\Program Files\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Wildlands\GRW_Upp.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [TCP Query User{586F99DE-4F9E-466A-9CA0-A5023A3134C5}D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{E98AAA9D-018E-4903-9111-65E2A94FC659}D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe] => (Allow) D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{92BCC95B-1D58-4414-8B3B-031F50B9C40F}] => (Allow) D:\Program Files\Steam\steamapps\common\Mafia Definitive Edition\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{BED791A9-CBD2-46F9-9961-3CAD8AFF4F78}] => (Allow) D:\Program Files\Steam\steamapps\common\Mafia Definitive Edition\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{9A77E94A-1554-40E4-BA87-0D1FABE40061}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ABA8B225-AA8C-46F6-A736-F16C869BF6A4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{CB3ABE48-754E-46DC-96EA-CE14192C6C89}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4A135DF5-9D43-4DBA-ABAE-4B410080DB93}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{838A694A-1C17-48F5-A782-68E500C3B82D}C:\users\camse\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Block) C:\users\camse\downloads\utorrentportable\app\utorrent\utorrent.exe => No File
FirewallRules: [UDP Query User{0D072A7A-0EF9-4246-AA70-1BFA558CE27F}C:\users\camse\downloads\utorrentportable\app\utorrent\utorrent.exe] => (Block) C:\users\camse\downloads\utorrentportable\app\utorrent\utorrent.exe => No File
FirewallRules: [{0A457EDE-CE2D-4596-95AF-68CFE141F334}] => (Allow) LPort=3389
FirewallRules: [{35CE3132-8D8B-4F2F-948C-57686BBC65F3}] => (Allow) D:\Program Files\Steam\steamapps\common\Mafia Definitive Edition\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{687AE13C-3ED9-4492-98EB-9DA7965AC1EC}] => (Allow) D:\Program Files\Steam\steamapps\common\Mafia Definitive Edition\2KLauncher\LauncherPatcher.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.)
FirewallRules: [{E856F829-F46E-46F3-AE99-E37A6BEC943C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ACA8BAC6-788C-45DF-8893-2FEF22CC1395}] => (Allow) D:\Program Files\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Wildlands\GRW_Upp.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [TCP Query User{0DC3B668-F7AB-4B73-89C6-C20B8D355F7C}D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe] => (Block) D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [UDP Query User{EB65B671-343C-40DE-8070-4F65A3E1BE1B}D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe] => (Block) D:\program files\ubisoft\ubisoft game launcher\games\tom clancy's ghost recon wildlands\grw.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{B1CBA93E-F527-4F29-9C07-6FF000AD52FB}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\120.0.6099.8\remoting_host.exe (Google LLC -> Google LLC)
FirewallRules: [{5D7CC4EE-E69B-4137-9D1A-29094D6273B4}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.61\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{ED66CF66-FEF1-40B1-87FC-82699AC2B590}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9E171A9B-813D-4456-9963-449DF9B61EBD}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{EFAD11BA-A531-4E76-8617-603360032E22}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B2EFD20D-4A7B-4FBB-80C6-EDD449B7CC8C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{CE8B4151-6CF5-4B50-91CB-E26C8CEDE715}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

29-11-2023 00:27:01 Naplánovaný kontrolní bod
10-12-2023 10:39:33 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (12/12/2023 09:02:26 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\Windows\system32\sysmain.dll (kód chyby Win32 126).

Error: (12/11/2023 10:33:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x3ed8
Čas spuštění chybující aplikace: 0x01da2c7962983dc1
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 2294f017-9942-48cb-b481-7376637d05fb
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/11/2023 01:31:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x12e4
Čas spuštění chybující aplikace: 0x01da2b44c1be8412
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 8f2448c5-a1d0-4c66-9081-9220ebfd13b9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/10/2023 09:41:39 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x1fc0
Čas spuštění chybující aplikace: 0x01da294a8b8f8c82
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 4c78026b-14bc-40b3-92ff-cfe2a1ed9e37
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/07/2023 08:49:53 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/03/2023 09:53:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (11/29/2023 07:18:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Název chybujícího modulu: CsrBtOBEXService.exe, verze: 2.1.63.0, časové razítko: 0x4f68683b
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000006f58
ID chybujícího procesu: 0x1260
Čas spuštění chybující aplikace: 0x01da2249cb1afae6
Cesta k chybující aplikaci: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
Cesta k chybujícímu modulu: C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrBtOBEXService.exe
ID zprávy: 3abd5421-764d-4497-9185-c98881162a91
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (11/29/2023 12:02:55 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Data (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)


System errors:
=============
Error: (12/11/2023 10:33:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba CSR OBEX byla neočekávaně ukončena. Tento stav nastal již 2krát.

Error: (12/11/2023 10:33:21 PM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/11/2023 04:46:14 PM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/11/2023 04:46:14 PM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/11/2023 04:46:13 PM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/11/2023 09:35:19 AM) (Source: DCOM) (EventID: 10010) (User: PC-I5)
Description: Server {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} se v daném časovém limitu neregistroval u služby DCOM.

Error: (12/11/2023 09:15:50 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: NT AUTHORITY)
Description: E:\Device\HarddiskVolume93

Error: (12/11/2023 01:31:48 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Služba CSR OBEX byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
================
Date: 2023-12-10 17:30:47
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {36A374AD-BF3F-43BF-860A-646A85668E10}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-12-07 23:16:20
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {93A09520-B04D-4931-AE26-19A67C7769FD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-12-03 22:51:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {88526698-CA19-451B-8AAF-09995E947460}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-12-03 21:53:13
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A2CC96F8-26BE-4117-A649-5202C00BC322}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2023-11-14 07:27:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C909A7E9-6BC5-48E6-A66C-D2B5B1E8EF81}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2023-12-12 09:32:53
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Avira\Endpoint Protection SDK\amsi\x64\avamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2023-12-12 09:30:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Avira\Endpoint Protection SDK\endpointprotection.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: American Megatrends Inc. 1.60 07/03/2018
Motherboard: MSI B150M BAZOOKA PLUS (MS-7A46)
Processor: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz
Percentage of memory in use: 36%
Total physical RAM: 16348.19 MB
Available physical RAM: 10347.21 MB
Total Virtual: 18780.19 MB
Available Virtual: 10261.57 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:222.96 GB) (Free:90.09 GB) (Model: KINGSTON SUV400S37240G) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:394.65 GB) (Model: ST1000DM003-1CH162) NTFS
Drive g: (Google Drive) (Fixed) (Total:100 GB) (Free:77.74 GB) (Model: ST1000DM003-1CH162) FAT32

\\?\Volume{f62781b6-07be-4829-a8e5-93e25b93e7c4}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{f357b97f-df1e-45b3-8303-bb30385aeba3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 71B6742F)

Partition: GPT.

==========================================================
Disk: 1 (Size: 223.6 GB) (Disk ID: D3E87244)

Partition: GPT.

==================== End of Addition.txt =======================

[JaRon]

ahoj,
nevidim tam nejaky vyraznejsi problem
1. prescanuj preventivne s Adwcleanerom
2. spust kontrolu disku chkdsk - ak najde chyby zopakuj s parametrom /F