Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Nejdou instalovat antiviry + divné chování

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Nejdou instalovat antiviry + divné chování

#1 Příspěvek od python.p »

Dostal se mi pod ruce notes kterej se chová divně a nešel instalovat žádnej antivir... Něco jsem vyřešil, něco jsem našel, ale i když se to tváří, že je to dobré, furt je tu problém s tím, že nejde nainstalovat Eset ani AVG...

Logy níže. (děkuji)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06.04.2024 01
Ran by anetk (administrator) on LAPTOP-DFRGA5MU (LENOVO 20YS001SUS) (08-04-2024 14:38:24)
Running from C:\Users\anetk\Desktop\FRST64.exe
Loaded Profiles: anetk
Platform: Microsoft Windows 11 Pro Version 23H2 22631.3296 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Genuine Service\GenuineService.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(CommercialAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(GenericMessagingAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(LenovoSystemUpdateAddin).exe
(C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\AdskAccessUIHost.exe <4>
(C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.11.9.11\AdskIdentityManager.exe
(C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Common Files\Autodesk\AdpDesktopSDK\bin\ADPClientService.exe
(C:\Program Files\Autodesk\AdskIdentityManager\1.11.9.11\AdskIdentityManager.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk AdSSO\AdSSO.exe
(C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe ->) (Chaos Software Ltd.) [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe
(C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe ->) (Chaos) [File not signed] C:\Program Files\Chaos\UnifiedLogin\ula.exe
(C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrol.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe <2>
(DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxCUIServiceN.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxEMN.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_3886d4759c27592b\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe
(DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\FNF910~1.INF\driver\shtctky.exe
(DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\FNF910~1.INF\driver\tposd.exe
(explorer.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrlsupervisor.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe
(explorer.exe ->) (Chaos) [File not signed] C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.1.0.8534\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_3886d4759c27592b\DAX3API.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Chaos Software Ltd. -> ) [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_06c43e1ee675eae7\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\TbtP2pShortcutService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\AS\IAS\IntelAudioService.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\EasyResume.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmsvc.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\DriverStore\FileRepository\litsdrv.inf_amd64_e9aaf9584b297fd0\LITSSvc.exe <2>
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxCUIServiceN.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4e93878658043b21\OneApp.IGCC.WinService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_85a68d3d96c69012\IntelCpHDCPSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_4431f809be2dd54c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_55047240f73a1fa6\RtkAudUService64.exe <3>
(services.exe ->) (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (WDKTestCert sarakelyan,130722862255941761 -> Synaptics Incorporated.) C:\Windows\System32\DriverStore\FileRepository\synawudfbiousbuwp.inf_amd64_0a328caa48d41753\SynRpcServer.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5390.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5390.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxextN.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPHelper.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3951648 2020-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [204576 2023-08-08] (Autodesk, Inc. -> Autodesk)
HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe [20987680 2024-02-20] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [125477704 2022-02-16] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3499016 2023-11-13] (Autodesk, Inc. -> Autodesk)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\anetk\AppData\Local\Microsoft\Teams\Update.exe [2492168 2022-07-15] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2022-10-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Policies\Explorer: []
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.106\Installer\chrmstp.exe [2024-04-06] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CCBService.lnk [2023-08-15]
ShortcutTarget: CCBService.lnk -> C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ChaosUnifiedLogin.lnk [2023-08-15]
ShortcutTarget: ChaosUnifiedLogin.lnk -> C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe (Chaos) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Chaos License Server.lnk [2023-08-15]
ShortcutTarget: Start Chaos License Server.lnk -> C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ("Chaos Software" Ltd -> Chaos)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {7F55AD03-D251-43D0-888B-5223D0F12D82} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {A1E36732-D96C-4076-B41D-6422084FF936} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {6D56A019-4D13-4C51-AEF6-12879B0900AB} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {2901FE72-9D49-4D6B-AF5C-DC6992B9C008} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.0{1DA1B98B-19CF-4824-8B02-70432FBD3FCB} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
Task: {6AA59D7C-874C-4569-960C-55DEF8C835EF} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F630F0AC-6298-4C41-BE0E-14B11D33B5CC} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {59C935CC-899D-4913-AA56-A830867234C5} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {1B6671CC-DB4D-4C03-9F70-2F4D049B6D25} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\30a1791d-eaf6-4822-a734-f3996686a799 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {14F81104-8C64-4034-94B8-991872A6414B} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\37807fc3-9c4a-4ffb-a6f4-99e1c839d75d => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {94C1D11D-A2D4-4DBF-B0A4-A0F96937C1FA} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\380a6798-9f77-491f-aa94-44390d9c94f3 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {24C92F6D-4882-4016-BFFB-DB74E5FF66C9} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\9e159f27-bbbe-4de2-b510-588a0e23b655 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {7E42F0A8-A70C-406F-9D13-BB0D53834514} - System32\Tasks\Lenovo\ITS\Lenovo ITS WM Task => C:\Windows\System32\DriverStore\FileRepository\litsdrv.inf_amd64_e9aaf9584b297fd0\LITSSvc.exe [1103856 2023-02-13] (Lenovo -> Lenovo.)
Task: {6CAA100A-6E41-43C5-ADA0-44EC8A7C2EDB} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [128872 2023-12-20] (Lenovo -> Lenovo)
Task: {8F698FEA-D35C-45C7-8A5F-C39710876C95} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-07-11] (Lenovo -> )
Task: {530640BF-EFC4-49B2-B13D-2982423E739B} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {700CBB0A-8E65-4497-9C87-624FD9A14E97} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90600 2023-11-02] (Lenovo -> Lenovo Group Ltd.) -> C:\windows\system32\drivers\Lenovo\udc\Service\/onidle
Task: {7AD9413E-19EE-400E-A4EF-C5944191B7D8} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [185312 2023-11-02] (Lenovo -> Lenovo Group Ltd.)
Task: {F36F79CB-2288-4727-8478-E50E1FC066BE} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {432B8870-BA06-41F9-9885-555E8EEAAB63} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {65990D35-4B48-489A-884B-8B7D4631C282} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {FBA1F53B-277F-402B-A781-CBF0D1E0B45D} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {4174C5AD-5B52-4AF9-893C-719AE3E7A5AE} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {F94DE177-0668-4F29-A0A3-7A70EB364CD1} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\uninstall.exe [311776 2023-12-15] (Lenovo -> Lenovo)
Task: {634309DC-3648-45AB-8DE4-42B7E61CCB4C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {27AD8BD0-228D-40CC-863B-8FC2C259A75F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452976 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {118A8042-CBEA-4BDD-81F1-2978F75F393D} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {09268569-ABD4-4495-9C4F-F380A426C987} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309696 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {8AED4E4D-AF52-42D1-AAEF-B03D40FC4A4B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {8C96512E-F56E-4129-90B0-6896D3E7F8D0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (No File)
Task: {50B5B1C3-6354-42BC-ABE0-91457C8030C2} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (No File)
Task: {E2D26372-C12F-4D06-B106-6351D69176CC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {2508B0D2-6A3C-477B-B826-9DD2286754E8} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager1 => C:\Intel\e.vbs (No File)
Task: {A39E6599-CCC5-48D2-872F-B19AAA870672} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => "C:\Intel\i2.exe" (No File)
Task: {15BBFAE4-1CC7-45BA-A3FE-22B8BBB78C52} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\IEpv.exe -> /stab "C:\Intel\logs\IEpv_1.log"
Task: {048F404D-A0C8-4A89-B3D7-1A16B33F89BC} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\WebBrowserPassView.exe -> /stab "C:\Intel\logs\WebBrowserPassView_1.log"
Task: {BB789CF5-2936-4BC1-A2F6-F040F3D63CBD} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx7x1 => C:\Intel\logs\PasswordFox64.exe -> /stab "C:\Intel\logs\PasswordFox64_1.log"
Task: {06E7501E-A774-468E-9F1F-51F8ABD7E96B} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\netpass64.exe -> /stab "C:\Intel\logs\netpass64_1.log"
Task: {C776F8DB-C2E5-4C0C-B916-FC8EF4ED9806} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {573E3CA9-E287-4E4F-9195-473494A822C0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3A25F284-DC9A-44F8-8A46-82023441E2A8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3E928D40-4ED0-4E51-BD04-0CA8FDFE7167} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MpCmdRun.exe [1650024 2024-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4EB0D5B6-97ED-429F-A520-145EFA85B379} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {CA5E7B21-4359-4C87-BFE9-6B42A529584A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9DC59A80-DDEA-400B-932A-2E5AD3CE4E9D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {B5413E2B-51A6-4551-8459-2EAA14030A75} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4B40D978-5977-48BE-BD47-F457541C3CA0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD9F98B8-0685-447F-AB3F-805E0669CE36} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6409EB6C-F430-4D44-A1AC-2F9D8D926026} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {58888973-5131-4263-919C-05A9E4BB9D35} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6FA745E-8379-46E9-ADD8-4324B2F51851} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {727A43BC-4B2B-4C70-BA18-FA995E3378DF} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {996BD985-D0BB-455C-8D3B-5FC13692521C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3418042445-3279430182-2626269580-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {D9DA71FA-BD17-4F13-9369-40CC0DF2D6D9} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_55047240f73a1fa6\RtkAudUService64.exe [1958808 2023-10-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.100.160.1 10.100.160.7
Tcpip\..\Interfaces\{1fd7ca95-0d77-4af9-bd2d-f1d1fd282ea0}: [NameServer] 8.8.8.8,1.1.1.1
Tcpip\..\Interfaces\{35f0bf58-a867-11eb-86e8-806e6f6e6963}: [NameServer] 8.8.8.8,1.1.1.1
Tcpip\..\Interfaces\{3f3d5ffc-e4dd-424d-8ff6-ff1c1fcffc32}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{4bbd3d19-14c0-4d80-8221-c6c8b3dd4fb7}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{87fba90b-365e-4304-a316-73b3b9a6fb8a}: [DhcpNameServer] 172.16.1.4
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}: [DhcpNameServer] 10.100.160.1 10.100.160.7
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}\052757368616F5F52374: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}\14E656471602D202960586F6E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{c2a7c4d9-eb55-423f-8cff-ac2a121d2f36}: [NameServer] 8.8.8.8,1.1.1.1
Tcpip\..\Interfaces\{c7ca547f-55ab-4e5e-a403-486ce751a792}: [NameServer] 8.8.8.8

Edge:
=======
Edge Profile: C:\Users\anetk\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-14]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default [2024-04-08]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "about:blank"
CHR Extension: (Tipli do prohlížeče) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2022-07-13]
CHR Extension: (EndNote Click) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjgncogppolhfdpijihbpfmeohpaadpc [2024-04-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-23]
CHR Extension: (Under The Leaf) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ighhdikapddjihgaphbnbcgipafcamjk [2022-07-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-13]
CHR Extension: (Citace PRO VUT) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdhchaeklpanlniilpbkjddfiikjadih [2022-07-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [15706632 2023-02-14] (Autodesk, Inc. -> Autodesk)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [4555744 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [13247264 2024-02-16] (Autodesk, Inc. -> Autodesk, Inc.)
S2 CCBService; C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe [51492925 2023-08-15] (ChaosGroup) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221312 2024-03-29] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_3886d4759c27592b\DAX3API.exe [2479768 2022-06-16] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncHelper.exe [3512224 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [479656 2022-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 GoogleUpdaterInternalService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
S2 GoogleUpdaterService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
R2 IBMPMSVC; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmsvc.exe [1031024 2023-06-20] (Lenovo -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\AS\IAS\IntelAudioService.exe [530424 2023-08-31] (Intel Corporation -> Intel)
R2 Lenovo Instant On; C:\Windows\SysWOW64\EasyResume.exe [2351320 2021-07-11] (Lenovo -> Lenovo Group Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe [34272 2023-12-15] (Lenovo -> Lenovo)
R2 LITSSVC; C:\WINDOWS\System32\DriverStore\FileRepository\litsdrv.inf_amd64_e9aaf9584b297fd0\LITSSvc.exe [1103856 2023-02-13] (Lenovo -> Lenovo.)
S2 LPlatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\LPlatSvc.exe [915824 2023-06-20] (Lenovo -> Lenovo)
R2 McNeelUpdate; C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [71928 2021-02-23] (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_4431f809be2dd54c\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\OneDriveUpdaterService.exe [3852712 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [18168576 2024-04-06] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522200 2024-03-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynHsaService; C:\WINDOWS\System32\DriverStore\FileRepository\synawudfbiousbuwp.inf_amd64_0a328caa48d41753\SynRpcServer.exe [192128 2023-08-29] (WDKTestCert sarakelyan,130722862255941761 -> Synaptics Incorporated.)
R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256376 2017-07-04] (Intel Corporation -> Intel Corporation)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\TPHKLOAD.exe [197496 2024-01-09] (Lenovo -> Lenovo)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72160 2023-11-02] (Lenovo -> Lenovo Group Ltd.)
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2023-08-15] (Chaos Software Ltd. -> ) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\NisSrv.exe [3191272 2024-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24020.7-0\MsMpEng.exe [133688 2024-04-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 dg; C:\Intel\dg.exe [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R3 e2fexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e2f.inf_amd64_b0343b02ae8bdfed\e2f.sys [530048 2023-02-21] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-22] (Intel Corporation -> Intel Corporation)
R3 IBMPMDRV; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmdrv.sys [56128 2023-06-20] (Lenovo -> Lenovo)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_c2a06a639869c7cd\IntcUSB.sys [923128 2023-08-31] (Intel Corporation -> Intel(R) Corporation)
R3 MpKsl22a7f54a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{BA16685C-791D-409B-8B09-78BFF4B094CB}\MpKslDrv.sys [301336 2024-04-08] (Microsoft Windows -> Microsoft Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [235016 2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
R1 PMDRVS; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\pmdrvs.sys [41792 2023-06-20] (Lenovo -> Lenovo)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20928 2024-04-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [603416 2024-04-05] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105752 2024-04-05] (Microsoft Windows -> Microsoft Corporation)
R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_39b0d69e31702623\WiManH\WiManH.sys [180296 2022-07-11] (Intel Corporation -> Intel Corporation)
S1 epp; \??\C:\EEK\bin64\epp.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-08 14:38 - 2024-04-08 14:38 - 000042112 _____ C:\Users\anetk\Desktop\FRST.txt
2024-04-08 14:32 - 2024-04-08 14:32 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2024-04-08 14:28 - 2024-04-08 14:31 - 000000000 ____D C:\Users\anetk\AppData\Local\GHISLER
2024-04-08 14:28 - 2024-04-08 14:28 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\HTML Help
2024-04-08 14:27 - 2024-04-08 14:28 - 000000000 ____D C:\Users\anetk\AppData\Roaming\GHISLER
2024-04-08 14:27 - 2024-04-08 14:27 - 006537552 _____ (Ghisler Software GmbH) C:\Users\anetk\Downloads\tcmd1103x64.exe
2024-04-08 14:27 - 2024-04-08 14:27 - 000001085 _____ C:\Users\anetk\Desktop\Total Commander 64 bit.lnk
2024-04-08 14:27 - 2024-04-08 14:27 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2024-04-08 14:27 - 2024-04-08 14:27 - 000000000 ____D C:\Program Files\totalcmd
2024-04-08 14:21 - 2024-04-08 14:38 - 000000000 ____D C:\FRST
2024-04-08 14:21 - 2024-04-08 14:21 - 002393600 _____ (Farbar) C:\Users\anetk\Desktop\FRST64.exe
2024-04-08 14:20 - 2024-04-08 14:21 - 002393600 _____ (Farbar) C:\Users\anetk\Downloads\FRST64.exe
2024-04-08 13:45 - 2024-04-08 13:45 - 000693812 _____ C:\WINDOWS\system32\perfh005.dat
2024-04-08 13:45 - 2024-04-08 13:45 - 000143686 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-08 10:51 - 2024-04-08 10:51 - 000234936 _____ (AVG Technologies CZ, s.r.o.) C:\Users\anetk\Downloads\avg_antivirus_free_setup.exe
2024-04-08 10:51 - 2024-04-08 10:51 - 000234936 _____ (AVG Technologies CZ, s.r.o.) C:\Users\anetk\Desktop\avg_antivirus_free_setup.exe
2024-04-08 10:46 - 2024-04-08 10:46 - 010262392 _____ (ESET) C:\Users\anetk\Downloads\eset_smart_security_premium_live_installer.exe
2024-04-08 08:49 - 2024-04-08 08:50 - 110660976 _____ (AO Kaspersky Lab) C:\Users\anetk\Downloads\kvrt.exe
2024-04-08 08:49 - 2024-04-08 08:49 - 000000000 ___HD C:\OneDriveTemp
2024-04-08 08:48 - 2024-04-08 08:49 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-08 08:48 - 2024-04-08 08:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-06 09:29 - 2024-04-06 09:29 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-06 09:17 - 2024-04-08 14:32 - 000000000 ____D C:\Intel
2024-04-04 22:19 - 2024-04-04 22:15 - 110747504 _____ (AO Kaspersky Lab) C:\Users\anetk\Desktop\KVRT.exe
2024-04-04 21:37 - 2024-04-04 21:37 - 000000002 __RSH C:\ProgramData\Avast Software
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Symantec
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Sophos
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\SMADAV
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\ReasonLabs
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Norton Security
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Net Protector 202A
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\McAfee.com
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\McAfee
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Malwarebytes
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\IOBit
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\HP Sure Sense
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\HitmanPro.Alert
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\ESET
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\CryptoTab Browser
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Bitdefender
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Awesome Miner
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\AVG
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\AlibabaProtect
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\SMADAV
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\ReasonLabs
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\HP Sure Sense
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\HitmanPro.Alert
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\CryptoTab Browser
2024-04-04 21:02 - 2024-04-04 21:02 - 000000000 ____D C:\Users\anetk\AppData\Roaming\WinRAR
2024-04-04 21:02 - 2024-04-04 21:02 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-04 21:02 - 2024-04-04 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-04 21:01 - 2024-04-04 21:01 - 004194952 _____ C:\Users\anetk\Downloads\winrar-x64-700cz.exe
2024-04-03 08:17 - 2024-04-03 08:17 - 000000000 ____D C:\WINDOWS\system32\o2
2024-03-25 23:17 - 2024-03-25 23:17 - 000000000 ____D C:\Users\anetk\AppData\Local\Autodesk,_Inc
2024-03-25 23:16 - 2024-03-25 23:16 - 000651264 _____ C:\Users\anetk\Downloads\Oplechování atiky.rfa
2024-03-23 23:41 - 2024-03-23 23:41 - 127835564 _____ C:\Users\anetk\Downloads\bim-katalog-pro-revit.zip
2024-03-23 23:26 - 2024-03-23 23:26 - 102318080 _____ C:\Users\anetk\Downloads\Doors_Sliding_Schueco_Sliding-System-ASE-60.rvt
2024-03-23 23:03 - 2024-03-23 23:03 - 004023980 _____ C:\Users\anetk\Downloads\BIMobject-JARTON 7So Mortise Set Entrance BF74204.zip
2024-03-23 21:20 - 2024-03-23 21:23 - 512839354 _____ C:\Users\anetk\Downloads\ISOTRA.REVIT.LIB.zip
2024-03-23 21:14 - 2024-03-23 21:15 - 034006295 _____ C:\Users\anetk\Downloads\STAV_Revit_Stavebni-vykresy_10.zip
2024-03-23 10:06 - 2024-03-23 21:57 - 000000000 ____D C:\Users\anetk\AppData\Roaming\BIMTech Tools
2024-03-23 10:00 - 2024-03-23 10:00 - 077071272 _____ (BIM Technology s.r.o. ) C:\Users\anetk\Downloads\BIMTech_Tools_Revit_2.5.4331_2024_02_20.exe
2024-03-23 09:51 - 2024-04-08 14:32 - 000000000 ___RD C:\Users\anetk\OneDrive - VUT
2024-03-23 09:33 - 2024-03-23 09:59 - 000002055 _____ C:\Users\Public\Desktop\Revit 2024.lnk
2024-03-23 09:27 - 2024-03-23 09:27 - 000020023 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-03-23 09:27 - 2024-03-23 09:27 - 000020023 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-03-23 09:27 - 2024-03-23 09:27 - 000000000 ____D C:\Program Files\Common Files\Autodesk
2024-03-23 09:25 - 2024-03-23 09:25 - 014162776 _____ (Autodesk, Inc.) C:\Users\anetk\Downloads\Autodesk_Revit_2024_2_ML_setup_webinstall.exe
2024-03-23 09:22 - 2024-03-23 09:22 - 010235904 _____ C:\Users\anetk\Downloads\RD HORNÍ LHOTA.rvt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-08 14:37 - 2024-02-16 21:05 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-04-08 14:37 - 2022-07-14 00:38 - 000000000 ____D C:\Users\anetk\AppData\Local\CrashDumps
2024-04-08 14:37 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-08 14:35 - 2017-07-04 09:05 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-08 14:32 - 2022-10-06 16:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-08 14:32 - 2022-07-14 20:34 - 000000000 ____D C:\Users\anetk\Documents\Chaos Cosmos
2024-04-08 14:32 - 2022-07-14 20:06 - 000000000 ____D C:\Users\anetk\AppData\Local\LogiOptionsPlus
2024-04-08 14:32 - 2022-07-13 23:01 - 000000000 ___RD C:\Users\anetk\OneDrive
2024-04-08 14:32 - 2022-07-13 23:00 - 000000000 __SHD C:\Users\anetk\IntelGraphicsProfiles
2024-04-08 14:32 - 2021-04-28 22:18 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-08 14:32 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-08 14:32 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-08 14:32 - 2017-07-04 09:05 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-08 14:32 - 2017-07-04 09:05 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-04-08 14:31 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-04-08 14:31 - 2017-07-04 09:05 - 000000000 ____D C:\Users\anetk
2024-04-08 14:29 - 2022-10-15 11:57 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2024-04-08 14:19 - 2022-10-06 16:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-08 13:45 - 2022-10-06 16:25 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-08 13:45 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\INF
2024-04-08 10:46 - 2023-08-17 11:28 - 000000000 ____D C:\Users\anetk\Desktop\Sketchup models
2024-04-08 10:41 - 2022-10-06 16:20 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2024-04-08 10:37 - 2017-07-04 09:05 - 000000000 ____D C:\KVRT2020_Data
2024-04-08 09:45 - 2017-07-04 09:05 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-08 08:49 - 2022-10-06 16:22 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3418042445-3279430182-2626269580-1002
2024-04-08 08:49 - 2022-10-06 16:22 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-08 08:49 - 2022-07-14 05:47 - 000002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-08 08:49 - 2017-07-04 09:05 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-06 09:28 - 2017-07-04 09:05 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-06 09:17 - 2022-07-13 23:13 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-05 16:32 - 2021-04-28 22:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-05 10:52 - 2022-10-24 15:11 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-04-05 10:52 - 2022-10-13 19:43 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-05 10:52 - 2022-10-06 16:22 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-05 10:51 - 2022-10-06 16:22 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-05 10:51 - 2022-10-06 16:22 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-04 21:02 - 2022-07-13 23:00 - 000000000 ____D C:\Users\anetk\AppData\Local\Packages
2024-04-04 20:20 - 2022-07-13 23:00 - 000000000 ____D C:\Users\anetk\AppData\Local\D3DSCache
2024-04-02 10:50 - 2023-08-15 10:32 - 000002508 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2024-04-02 10:50 - 2022-10-15 11:58 - 000002596 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2024-04-02 10:50 - 2022-10-06 16:22 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002452 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2024-04-01 09:53 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-03-23 10:03 - 2022-10-06 16:20 - 000637056 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-03-23 10:02 - 2023-10-20 06:43 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-03-23 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-03-23 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-03-23 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-03-23 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-03-23 10:02 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-03-23 10:00 - 2022-10-10 18:41 - 000000000 ____D C:\Users\anetk\AppData\Roaming\UI Launcher
2024-03-23 09:59 - 2022-07-16 05:27 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2024-03-23 09:49 - 2022-07-16 05:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2024-03-23 09:27 - 2022-10-06 16:23 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-03-23 09:20 - 2022-07-14 06:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-03-23 09:18 - 2022-07-14 06:24 - 190470136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-03-19 21:47 - 2022-07-14 01:39 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\Excel
2024-03-19 21:31 - 2022-09-20 15:50 - 000000000 ____D C:\Users\anetk\AppData\Roaming\com.adobe.dunamis


==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Nahoru
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Re: Nejdou instalovat antiviry + divné chování

#2 Příspěvek od python.p »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06.04.2024 01
Ran by anetk (08-04-2024 14:39:21)
Running from C:\Users\anetk\Desktop
Microsoft Windows 11 Pro Version 23H2 22631.3296 (X64) (2022-10-06 14:22:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3418042445-3279430182-2626269580-500 - Administrator - Disabled)
anetk (S-1-5-21-3418042445-3279430182-2626269580-1002 - Administrator - Enabled) => C:\Users\anetk
DefaultAccount (S-1-5-21-3418042445-3279430182-2626269580-503 - Limited - Disabled)
Guest (S-1-5-21-3418042445-3279430182-2626269580-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3418042445-3279430182-2626269580-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 22.00 (x64) (HKLM\...\7-Zip) (Version: 22.00 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.001.20643 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.4.0.63 - Adobe Inc.)
Adobe Illustrator 2022 (HKLM-x32\...\ILST_26_0) (Version: 26.0 - Adobe Inc.)
Adobe Indes (HKLM\...\{CA2E76F3-BB69-486A-88D2-A3D387B69484}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_0_1) (Version: 15.0.1 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Substance 3D for 3ds Max 2022 (HKLM\...\{63EF86A7-A5CE-4BE3-8BCE-8B4EBE29A6C3}) (Version: 2.4.5 - Adobe)
Adobe Substance 3D for 3ds Max 2023 (HKLM\...\{896EDC13-76D3-4FC6-A741-A5B14D62A140}) (Version: 2.4.8 - Adobe)
Apollo 2022.10.1 (HKLM-x32\...\Apollo - Informační Centrum VUT_is1) (Version: - CVIS, VUT v Brně)
AutoCAD 2023 Shared (HKLM\...\{28B89EEF-6101-0000-4102-CF3F3A09B77D}) (Version: 24.2.153.0 - Autodesk) Hidden
AutoCAD 2023 Shared Language Pack – Čeština (Czech) (HKLM\...\{28B89EEF-6101-0405-5102-CF3F3A09B77D}) (Version: 24.2.112.0 - Autodesk) Hidden
AutoCAD Open in Desktop (HKLM\...\{2B8E195A-0082-4B8F-9284-0FCCB6017C23}) (Version: 1.0.26.0 - Autodesk)
Autodesk 3ds Max 2022 (HKLM\...\{87DB9B48-9408-427D-88D6-8197A89C9336}) (Version: 24.3.3.3511 - Autodesk) Hidden
Autodesk 3ds Max 2022 (HKLM\...\{F88F59D6-CBB7-34A0-95B2-A949D27A3D54}) (Version: 24.3.3.3511 - Autodesk, Inc.)
Autodesk 3ds Max 2023 (HKLM\...\{289FB1F1-6328-4987-80DA-763B0563C6EB}) (Version: 25.2.2.3312 - Autodesk) Hidden
Autodesk 3ds Max 2023 (HKLM\...\{A3D6F389-91FB-394A-94CC-BFA9C8096A85}) (Version: 25.2.2.3312 - Autodesk, Inc.)
Autodesk 3ds Max 2023 CivilView 1.2.0.0 (HKLM\...\{CB41F6A0-9517-418C-82B3-E9096834F5E2}) (Version: 1.2.0.0 - Autodesk) Hidden
Autodesk Access (HKLM\...\{A3158B3E-5F28-358A-BF1A-9532D8EBC811}) (Version: 2.5.0.107 - Autodesk, Inc.)
Autodesk Advance Steel 2023 Extension for Autodesk Revit (HKLM\...\{2DF56EC3-C190-33E6-AC06-A8D1DE99378E}) (Version: 23.0.77.0 - Autodesk, Inc.)
Autodesk Advance Steel 2023 Extension for Autodesk Revit (HKLM\...\{8CE16B20-2300-0010-0409-14931AFB5D9F}) (Version: 23.0.77.0 - Autodesk) Hidden
Autodesk Advance Steel 2023 Object Enabler (HKLM\...\{8BFA6077-103B-3842-9CD1-57646E284AB4}) (Version: 27.0.358.0 - Autodesk, Inc.)
Autodesk Advanced Material Library Base Resolution Image Library 2022 (HKLM-x32\...\{7E78B513-B354-4833-8897-3ED5C515D30F}) (Version: 20.3.7.0 - Autodesk)
Autodesk Advanced Material Library Base Resolution Image Library 2023 (HKLM-x32\...\{C90A4CC0-0862-4FC3-A07F-31F903659946}) (Version: 21.0.1.1 - Autodesk)
Autodesk Advanced Material Library Low Resolution Image Library 2022 (HKLM-x32\...\{EEAD8CC3-B6B7-4D4B-AF0D-4BBD3D93D67C}) (Version: 20.3.7.0 - Autodesk)
Autodesk Advanced Material Library Low Resolution Image Library 2023 (HKLM-x32\...\{93A8D797-F224-4238-8E87-EE673E0BAC8A}) (Version: 21.0.1.1 - Autodesk)
Autodesk Advanced Material Library Medium Resolution Image Library 2022 (HKLM-x32\...\{493ACC3C-3ABF-4CBB-8F6E-E4433090A589}) (Version: 20.3.7.0 - Autodesk)
Autodesk Advanced Material Library Medium Resolution Image Library 2023 (HKLM-x32\...\{489B5559-69A0-4165-A044-CEB510C6CBBF}) (Version: 21.0.1.1 - Autodesk)
Autodesk Advanced Modeling Tools for 3ds Max 2023 1.0.0.268 (HKLM\...\{1E73E0EF-EC23-4D93-9FF4-B0FF6C899E72}) (Version: 1.0.0.268 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{4EF1F1D4-E74F-45A8-AF89-95907847D484}) (Version: 3.3.0 - Autodesk)
Autodesk AutoCAD 2023 – Čeština (Czech) (HKLM\...\{9E552C26-38D6-37FA-B05E-B21AD669358E}) (Version: 24.2.153.0 - Autodesk, Inc.)
Autodesk AutoCAD 2023.1.1 Update (HKLM\...\{8CC44160-26A4-3753-A761-701065E6AD0E}) (Version: 24.2.153.0 - Autodesk, Inc.)
Autodesk AutoCAD Performance Feedback Tool 1.3.12 (HKLM-x32\...\{293C8AB2-59FA-4C6E-A707-EE7457D8F567}) (Version: 1.3.12.0 - Autodesk)
Autodesk BIM Interoperability Tools v9.0.8119.0 for Revit 2023 (HKLM\...\{C3B31592-E791-3E67-9C2C-64EC896A4C53}) (Version: 9.0.8119.0 - Autodesk, Inc.)
Autodesk Civil 3D 2023 Object Enabler (HKLM\...\{6979BD25-6100-479A-1001-72684B590131}) (Version: 13.5.131.0 - Autodesk)
Autodesk Cloud Models for Revit 2023 (HKLM\...\{AA384BE4-2303-0010-0000-97E7D7D02300}) (Version: 23.0.20.21 - Autodesk) Hidden
Autodesk Cloud Models for Revit 2024 (HKLM\...\{AA384BE4-2405-0010-0000-97E7D7D02400}) (Version: 24.2.0.63 - Autodesk) Hidden
Autodesk Fabrication CADmep Object Enabler 2023 (HKLM\...\{439D4F50-53FA-36F9-AF8C-0A0231A02F6A}) (Version: 23.0.2.1100 - Autodesk, Inc.)
Autodesk Genuine Service (HKLM\...\{21DE6405-91DE-4A69-A8FB-483847F702C6}) (Version: 7.4.0.223 - Autodesk)
Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.11.9.11 - Autodesk)
Autodesk Interoperability Engine Manager (HKLM\...\{412B8C29-F1BC-3791-A0BA-490A502077FA}) (Version: 1.1.0.28 - Autodesk.com) Hidden
Autodesk Interoperability Engine Manager (HKLM\...\{C4EFAB73-D98A-3676-A3F8-142FC78E0EF3}) (Version: 1.0.0.11 - Autodesk.com) Hidden
Autodesk Inventor Interoperability 2023 (HKLM\...\{D781DC24-6E69-4521-8ECB-BB089A744BAB}) (Version: 27.10.20800.0004 - Autodesk) Hidden
Autodesk Issues Addin for Revit 2023 (HKLM\...\{6ADBC1E7-B2BA-5446-A010-1C1928B295A2}) (Version: 5.0.0.0 - Autodesk) Hidden
Autodesk Issues Addin v5.0 for Revit 2023 (HKLM\...\{596576AB-5D8E-31B7-87EE-7D9311311ECC}) (Version: 5.0.0.0 - Autodesk, Inc.)
Autodesk Material Library 2022 (HKLM-x32\...\{A9221A68-5AD0-4215-B54F-CB5DBA4FB27C}) (Version: 20.3.7.0 - Autodesk)
Autodesk Material Library 2023 (HKLM-x32\...\{8E133591-B0FD-4DB0-B60E-FB593CAF72B0}) (Version: 21.0.1.1 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2022 (HKLM-x32\...\{6256584F-B04B-41D4-8A59-44E70940C473}) (Version: 20.3.7.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2023 (HKLM-x32\...\{3B564A94-BA47-4E42-ACD6-B5C35291210B}) (Version: 21.0.1.1 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2023 (HKLM-x32\...\{9E728FC7-CC88-4CBD-A1A2-094E27F05EF1}) (Version: 21.0.1.1 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2022 (HKLM-x32\...\{8300AA3F-6ADF-4233-A1FB-73B1894102F0}) (Version: 20.3.7.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2023 (HKLM-x32\...\{2ED470F3-3989-458D-AF24-8B2C4364A8CC}) (Version: 21.0.1.1 - Autodesk)
Autodesk MEP Fabrication Data Manager Sync - Tech Preview (HKLM\...\{19CB96C3-0D32-39FB-B851-FBBBD7DCCE2C}) (Version: 1.1.2.360 - Autodesk, Inc.)
Autodesk MEP Fabrication Data Manager Sync - Tech Preview (HKLM\...\{449ADC0A-53ED-40F1-9BDB-8945660B9CD7}) (Version: 1.1.2.360 - Autodesk) Hidden
Autodesk NWC Publish Add-in for Revit 2023 (HKLM\...\{3811FCC3-C0C7-3A6B-A5C3-7B1E7278D46E}) (Version: 1.0.1.0 - Autodesk, Inc.)
Autodesk Publish NWC Addin for Revit 2023 (HKLM\...\{704C33A4-F3E9-5117-B9E0-4BE04F44968F}) (Version: 1.0.1.0 - Autodesk) Hidden
Autodesk Revit 2023 (HKLM\...\{B4E35F04-D559-35E9-AB70-E0131AF7AB5B}) (Version: 23.0.20.21 - Autodesk, Inc.)
Autodesk Revit 2023.0.2 Hotfix (HKLM\...\{F67CCF76-8340-3BE5-9DB9-DC2154A22296}) (Version: 23.0.20.21 - Autodesk, Inc.)
Autodesk Revit 2024 (HKLM\...\{F9013D08-6F9F-3F9B-8360-93C40ABE4C1B}) (Version: 24.2.0.63 - Autodesk, Inc.)
Autodesk Revit 2024.2 Update (HKLM\...\{49A82B2D-DA3A-36FB-88CD-1B45776FFD21}) (Version: 24.2.0.63 - Autodesk, Inc.)
Autodesk Revit Content Core 2023 (HKLM\...\{AA384BE4-2023-0410-0000-9241AD002DA5}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Core 2024 (HKLM\...\{AA384BE4-2024-0410-0000-9241AD002DA5}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Revit Content Core-RVT 2023 (HKLM\...\{CC7D1ED0-2023-0410-0000-1CC925969102}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Core-RVT 2024 (HKLM\...\{CC7D1ED0-2024-0410-0000-1CC925969102}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Revit Content Essential-CSY 2023 (HKLM\...\{848BACE1-2023-1029-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-DEU 2023 (HKLM\...\{848BACE1-2023-1031-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ENG 2023 (HKLM\...\{848BACE1-2023-2057-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ENU 2023 (HKLM\...\{848BACE1-2023-1033-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ESP 2023 (HKLM\...\{848BACE1-2023-1034-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-FRA 2023 (HKLM\...\{848BACE1-2023-1036-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-CHS 2023 (HKLM\...\{848BACE1-2023-2052-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-CHT 2023 (HKLM\...\{848BACE1-2023-1028-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ITA 2023 (HKLM\...\{848BACE1-2023-1040-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-JPN 2023 (HKLM\...\{848BACE1-2023-1041-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-KOR 2023 (HKLM\...\{848BACE1-2023-1042-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-PLK 2023 (HKLM\...\{848BACE1-2023-1045-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-PTB 2023 (HKLM\...\{848BACE1-2023-1046-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-RUS 2023 (HKLM\...\{848BACE1-2023-1049-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit DB Link 2023 (HKLM\...\{282CD6A9-2301-0010-0000-A6206F572300}) (Version: 23.0.10.18 - Autodesk) Hidden
Autodesk Revit Engine 2022 (HKLM\...\{DA6E3B72-3088-2022-9993-45D9FF1AD8D0}) (Version: 22.0.2.392 - Autodesk) Hidden
Autodesk Revit Engine 2023 (HKLM\...\{DA6E3B72-3088-2023-9993-45D9FF1AD8D0}) (Version: 23.0.0.296 - Autodesk, Inc.)
Autodesk Revit Extension for MEP Fabrication Part Commands 2023 (HKLM\...\{147A5B7B-2363-4447-0000-8DF862672300}) (Version: 23.0.10.18 - Autodesk) Hidden
Autodesk Revit Extension for MEP Fabrication Part Commands 2023 (HKLM\...\{75FC64DA-41E9-348C-B55E-B0724C986293}) (Version: 23.0.10.18 - Autodesk, Inc.)
Autodesk Revit Fabrication MEP Exchange Addin for Revit 2023 (HKLM\...\{32CCCFE6-3A00-46A3-A12D-01A5B463AA54}) (Version: 1.0.0.0 - Autodesk) Hidden
Autodesk Revit InfraWorks Updater 2023 (HKLM\...\{953A0E18-2300-4277-9C89-713FA15A2BC9}) (Version: 23.0.380.0 - Autodesk) Hidden
Autodesk Revit InfraWorks Updater 2023 (HKLM\...\{A69882A9-3643-3E3C-A8CF-172CBD5BB5F6}) (Version: 23.0.380.0 - Autodesk, Inc.)
Autodesk Revit MEP Imperial Content 2023 (HKLM\...\{94A3167C-9403-4421-8F25-434591B7D16D}) (Version: 2.4 - Autodesk) Hidden
Autodesk Revit MEP Metric Content 2023 (HKLM\...\{2D1156AE-553B-4387-A423-32E89A18620E}) (Version: 2.3 - Autodesk) Hidden
Autodesk Revit Product Feedback 2023 (HKLM\...\{D0AA00F5-2023-4900-BB7C-21929DC2B241}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Product Feedback 2024 (HKLM\...\{D0AA00F5-2024-4900-BB7C-21929DC2B241}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Revit Unit Schemas 2022 (HKLM\...\{CDCC6F31-2022-4901-8E9B-D562B70697B6}) (Version: 22.0.2.392 - Autodesk)
Autodesk Revit Unit Schemas 2023 (HKLM\...\{CDCC6F31-2023-4903-8E9B-D562B70697B6}) (Version: 23.0.20.21 - Autodesk, Inc.)
Autodesk Revit Unit Schemas 2024 (HKLM\...\{CDCC6F31-2024-4906-8E9B-D562B70697B6}) (Version: 24.2.0.63 - Autodesk, Inc.)
Autodesk Robot Structural Analysis Extension for Revit 2023 (HKLM\...\{13AC1E80-CACD-382C-9A94-4D17D2BCE093}) (Version: 2023.0.0.4937 - Autodesk, Inc.)
Autodesk Single Sign On Component (HKLM\...\{84505E1D-B65E-4909-B864-01D9772C7C40}) (Version: 13.6.6.1806 - Autodesk)
Autodesk Steel Connections Core Content for Revit 2023 (HKLM\...\{C430585C-2023-4514-A253-D0C70D33ADD5}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Steel Connections Core Content for Revit 2024 (HKLM\...\{C430585C-2024-4514-A253-D0C70D33ADD5}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Vehicle Tracking 2023 Object Enabler (64 bit) (HKLM\...\{50A7071A-1345-433D-AC73-85A2359584A1}) (Version: 23.0.0.2518 - Autodesk, Inc.) Hidden
Autodesk Vehicle Tracking Object Enabler 2023 (HKLM\...\{470DFBA3-707D-311F-86BF-770D8B1ADBF8}) (Version: 23.0.0.2518 - Autodesk, Inc.)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1653.5 - AVAST Software) Hidden
Batch Print for Autodesk Revit 2023 (HKLM\...\{82AF00E4-2301-0010-0000-FCE0F8702300}) (Version: 23.0.11.19 - Autodesk) Hidden
Batch Print for Autodesk Revit 2024 (HKLM\...\{82AF00E4-2401-0010-0000-FCE0F8702400}) (Version: 24.1.11.26 - Autodesk) Hidden
BIM Interoperability Tools for Revit 2023 (HKLM-x32\...\{44B2204C-8593-479D-8C0D-231F86C34C08}) (Version: 9.0.8119.0 - Autodesk) Hidden
BIMTech Tools for Revit 2.5.4331 verze 2.5.4331 (HKLM-x32\...\{1D261017-1A97-44BF-852E-049E5D08BF14}_is1) (Version: 2.5.4331 - BIM Technology s.r.o.)
Corona Renderer for 3ds Max (HKLM\...\CoronaForMax) (Version: 7 (Hotfix 1) - Chaos Czech a.s.)
Český překlad WoW (HKLM-x32\...\CzechWoW) (Version: - )
Enscape (HKLM\...\{FBC761FC-4557-4893-8C29-8D209430DD02}) (Version: 3.4.1.87719 - Enscape GmbH)
eTransmit for Autodesk Revit 2023 (HKLM\...\{4477F08B-2301-0010-0000-9A09D8342300}) (Version: 23.0.11.19 - Autodesk) Hidden
eTransmit for Autodesk Revit 2024 (HKLM\...\{4477F08B-2401-0010-0000-9A09D8342400}) (Version: 24.1.11.26 - Autodesk) Hidden
FormIt Converter for Revit 2023 (HKLM\...\{64CDE5FF-7A65-4833-9906-374EA946C68F}) (Version: 23.0.20.21 - Autodesk) Hidden
FormIt Converter for Revit 2024 (HKLM\...\{A4D93D5A-1942-2420-828E-C58A8DDB4377}) (Version: 24.2.0.63 - Autodesk) Hidden
Generative Design For Revit (HKLM\...\{14D69EB6-2448-42E4-A551-84AC01624CC6}) (Version: 24.10.5.0 - Autodesk) Hidden
Generative Design For Revit (HKLM\...\{5CD7A2B2-0BD0-4509-BE85-06601756F9B3}) (Version: 23.3.0.0 - Autodesk) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 123.0.6312.106 - Google LLC)
Horizon Zero Dawn (HKLM-x32\...\Horizon Zero Dawn_is1) (Version: - )
Chaos Cloud Client (HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Chaos Cloud Client) (Version: 1.20.2 - Chaos Software Ltd)
Chaos Cosmos Browser (HKLM\...\Chaos Cosmos Browser) (Version: 2022.11.2 - Chaos Software Ltd)
Chaos License Server (HKLM\...\Chaos License Server) (Version: 6.0.0 - Chaos Software Ltd)
Chaos Unified Login (HKLM\...\Chaos Unified Login) (Version: 2022.8.29 - Chaos Software Ltd)
IFC for Revit 2023 (HKLM\...\{1466C360-0325-3705-B05A-F51CA828C10B}) (Version: 23.1.0.85 - Autodesk, Inc.)
Klasifikace 5.7 (HKLM-x32\...\{BE7E6DAC-7EAA-4546-BBDD-43ADDF49EA14}_is1) (Version: - JPH Software)
Lenovo Quick Clean (HKLM-x32\...\{DD167096-6F6D-4250-B94E-6CE26EE8C409}_is1) (Version: 1.02.0046 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.0.52.0 - Lenovo Group Ltd.)
Lighting Analysis for Autodesk Revit 2023 (HKLM\...\{199AE25C-2302-0010-0000-061260A72300}) (Version: 23.1.0.96 - Autodesk) Hidden
Lighting Analysis for Revit 2023 (HKLM\...\{CB10EDD7-37B4-304A-AA1C-D2BD6C621359}) (Version: 23.1.0.96 - Autodesk, Inc.)
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.60.495862 - Logitech)
MAXtoA for 3ds Max 2022 (HKLM\...\{576DB663-9167-4D14-868C-0560DDB10FD7}) (Version: 5.0.0.93 - Autodesk)
MAXtoA for 3ds Max 2023 (HKLM\...\{68E8B18F-6D24-4642-B42F-2AC6D9612441}) (Version: 5.4.0.37 - Autodesk)
Microsoft .NET Core Host - 3.1.10 (x64) (HKLM\...\{52B42932-15C1-45D4-8904-FC3117EEE69B}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.10 (x64) (HKLM\...\{752B4412-A129-4CB2-AD96-B6D97EAD3090}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM\...\{396D7BC8-E3C8-4B3E-8C60-D50D94FDF09D}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM-x32\...\{4714dd0a-ebab-4f59-a708-f8d7a793b3f5}) (Version: 3.1.10.29419 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 - Shared Framework (HKLM-x32\...\{6efe3294-03d8-4977-9c67-9f57ab075130}) (Version: 3.1.10.20520 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 Shared Framework (x64) (HKLM\...\{7BEAA207-E3EB-3948-BBB3-336B04D8A2F1}) (Version: 3.1.10.20520 - Microsoft Corporation) Hidden
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.65 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Retail - cs-cz) (Version: 16.0.17425.20146 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.055.0317.0002 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{BAF67399-85CD-4555-9B49-1F80EB921C35}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 LocalDB (HKLM\...\{F4F4157C-0951-4F00-8530-E3A6B2BE8606}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Teams) (Version: 1.5.00.4689 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33130 (HKLM-x32\...\{1de5e707-82da-4db6-b810-5d140cc4cbb3}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33130 (HKLM-x32\...\{2cfeba4a-21f8-4ea7-9927-c5a5c6f13cc9}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33130 (HKLM\...\{C31777DB-51C1-4B19-9F80-38EF5C1D7C89}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33130 (HKLM\...\{1CA7421F-A225-4A9C-B320-A36981A2B789}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33130 (HKLM-x32\...\{5CA9AE7B-2EFC-4F02-81CD-32ABE173C755}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33130 (HKLM-x32\...\{DF1B52DF-C88E-4DDF-956B-6E7A03327F46}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
NewCP (HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\newcp) (Version: 1.5.2 - NewCP)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 551.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 551.52 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
Object Enabler for AutoCAD Plant 3D 2023 - English (HKLM\...\{4F3D8B06-25A0-3E40-83DB-38C6E2C3C0AB}) (Version: 14.0.5300.1 - Autodesk, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17231.20236 - Microsoft Corporation) Hidden
OpenStudio CLI For Revit 2023 (HKLM\...\{49E88835-0902-4C30-A4A8-6AE9D663AF81}) (Version: 1.0.4 - NREL)
OpenStudio CLI For Revit 2024 (HKLM\...\{D80802CF-45BD-45D6-8891-AD043AAC52AB}) (Version: 1.1.5 - NREL)
Personal Accelerator for Revit (HKLM\...\{3E834868-1499-4491-B8F5-461E0D8475B6}) (Version: 23.6.0.0 - Autodesk) Hidden
Personal Accelerator for Revit (HKLM\...\Personal Accelerator for Revit) (Version: 23.6.0.0 - Autodesk)
Results Explorer Manager (HKLM\...\{276D966C-3C26-49A1-A53A-820566EFF8D1}) (Version: 24.0.0.5138 - Autodesk, Inc.) Hidden
Results Explorer Manager (HKLM\...\{60C0209C-4E50-48BD-970C-C60FFDC8E8D9}) (Version: 23.0.0.4949 - Autodesk, Inc.) Hidden
Retopology Tools for 3ds Max 2022 (HKLM\...\{BB2AB7CC-97E1-4008-8371-38D756F83D98}) (Version: 1.2.0.589 - Autodesk, Inc.)
Retopology Tools for 3ds Max 2023 (HKLM\...\{8B64FC5A-8A21-4A4B-8D1C-5A3BE7D13660}) (Version: 1.2.0.589 - Autodesk, Inc.)
Revit 2023 (HKLM\...\{7346B4A0-2300-0510-0000-705C0D862004}) (Version: 23.0.20.21 - Autodesk) Hidden
Revit 2024 (HKLM\...\{7346B4A0-2400-0510-0000-705C0D862004}) (Version: 24.2.0.63 - Autodesk) Hidden
Revit DB Link for Revit 2023 (HKLM\...\{96FA1029-11E5-3143-BD57-441349E28A1A}) (Version: 23.0.10.18 - Autodesk, Inc.)
Revit Fabrication MEP Exchange Addin for Revit 2023 (HKLM\...\{C1F5400E-A190-3945-BA6E-B20858540E95}) (Version: 23.0.0.913 - Autodesk, Inc.)
Revit IFC 2023 (HKLM\...\{1A9C2C21-23B8-42D2-0000-992E73C12300}) (Version: 23.1.0.0 - Autodesk) Hidden
REX Framework (HKLM\...\{D29C8D32-C8E0-42A8-AA21-71A4C17B6ACD}) (Version: 24.0.0.5143 - Autodesk, Inc.) Hidden
REX Framework (HKLM\...\{FCA7436F-424A-48A4-85E0-E3F400355279}) (Version: 23.0.1.4951 - Autodesk, Inc.) Hidden
REX Revit (HKLM\...\{11AFDE30-6E36-412B-8220-A78311625B91}) (Version: 24.0.0.5143 - Autodesk, Inc.) Hidden
REX Revit (HKLM\...\{68279641-03C3-465E-A81C-C6F3B426C115}) (Version: 23.0.0.4949 - Autodesk, Inc.) Hidden
Rhino 7 (HKLM\...\{21A8E9ED-1B91-42C3-8C0F-ECF0DE3C2C8E}) (Version: 7.3.21053.23031 - Robert McNeel & Associates) Hidden
Rhino 7 (HKLM-x32\...\{ea1f3dca-3045-4622-998a-fc35aeaafa8d}) (Version: 7.3.21053.23031 - Robert McNeel & Associates)
Rhino Installer Engine (HKLM\...\{FD6BB71B-2563-4191-9DC3-1CEB8DC8CD50}) (Version: 7.3.21053.23031 - Robert McNeel & Associates) Hidden
Rhinoceros 7 Language Pack Installer (en-US) (HKLM\...\{D2D611C6-C538-488B-B416-A86965B4AD87}) (Version: 7.3.21053.23031 - Robert McNeel & Associates) Hidden
Robot Structural Analysis Extension for Revit (HKLM\...\{0808389A-32DD-4A5F-995B-6A88326F8F11}) (Version: 2023 - Autodesk, Inc.) Hidden
Roombook Areabook Buildingbook for Revit 2023 (HKLM\...\{F71C9798-2301-490C-B561-A9D8347E2300}) (Version: 23.0.0.1 - Autodesk) Hidden
Roombook Areabook Buildingbook v1 for Revit 2023 (HKLM\...\{8438EDAD-F483-311C-9F8B-692232E8D513}) (Version: 23.0.10.18 - Autodesk, Inc.)
RSA COM (HKLM\...\{41169307-8761-4130-9D94-07CB8EC41EC9}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA COM (HKLM\...\{5D786C4F-D5A3-407A-9F83-17E94E30032E}) (Version: 24.0.0.10033 - Autodesk, Inc.) Hidden
RSA CommonData (HKLM\...\{50154939-4307-4F25-BC43-39165C0F5DC2}) (Version: 24.0.0.10037 - Autodesk, Inc.) Hidden
RSA CommonData (HKLM\...\{B890A922-9161-414E-A3D1-48704296DEAA}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA Interop (HKLM\...\{8423E7EB-9644-4520-B31B-60252620BA47}) (Version: 24.0.0.10028 - Autodesk, Inc.) Hidden
RSA Interop (HKLM\...\{8ECAAE12-419B-4CDE-A735-19870F980322}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA RoReinf (HKLM\...\{79F02AA3-6296-4D12-8CB7-303BE4AECDE2}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA RoReinf (HKLM\...\{D318DE54-FBA0-4ED6-A85B-3A079F17626B}) (Version: 24.0.0.10028 - Autodesk, Inc.) Hidden
SketchUp 2021 (HKLM-x32\...\{09480c81-5458-4d69-ab73-ee488fe8c297}) (Version: 21.0.339 - Trimble, Inc.)
SketchUpPro (HKLM\...\{db5288e9-89f4-722c-9939-39e899d2e519}) (Version: 21.0.339.121 - SketchUp) Hidden
Solar Analysis for Autodesk Revit 2023 (HKLM\...\{AA10A02F-2301-0010-0000-16F70D2F2300}) (Version: 23.0.10.18 - Autodesk) Hidden
Solar Analysis for Revit 2023 (HKLM\...\{326329AF-9506-3C4C-B856-D5D79D129DB6}) (Version: 23.0.10.18 - Autodesk, Inc.)
Speciální aplikace Autodesk (HKLM-x32\...\{DE8DA5A8-C311-4F2B-B1C3-27A8BC154154}) (Version: 3.3.0 - Autodesk)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.4689 - Microsoft Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
Uložit do služby Autodesk Web and Mobile (HKLM\...\{5AB49421-ADA1-4512-9E47-0AE9906F6A28}) (Version: 3.0.30 - Autodesk)
USD for Autodesk 3ds Max 2022 (HKLM\...\{2978F6A4-7C0A-42F5-9222-6184A5BB8AD2}) (Version: 0.2.0.833 - Autodesk, Inc.)
USD for Autodesk 3ds Max 2023 (HKLM\...\{BF0F3284-C849-45D3-8865-1F7FE09AD062}) (Version: 0.2.0.41 - Autodesk, Inc.)
V-Ray for Rhinoceros (HKLM\...\V-Ray for Rhinoceros) (Version: 5.10.01 - Chaos Software Ltd)
V-Ray for SketchUp (HKLM\...\V-Ray for SketchUp) (Version: 6.00.01 - Chaos Software Ltd)
V-Ray for SketchUp 6 (HKLM-x32\...\{8D7BD6EE-C597-4375-B07F-A91FC78991C7}) (Version: 1.00.0000 - ASGvis, LLC)
V-Ray Swarm (HKLM\...\V-Ray Swarm) (Version: 1.4.7 - Chaos Software Ltd)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)
Worksharing Monitor for Autodesk Revit 2023 (HKLM\...\{5063E738-2301-0010-0000-7B7B9AB02300}) (Version: 23.0.11.19 - Autodesk) Hidden
Worksharing Monitor for Autodesk Revit 2024 (HKLM\...\{5063E738-2401-0010-0000-7B7B9AB02400}) (Version: 24.1.11.26 - Autodesk) Hidden

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-03-19] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5390.0_x64__8j3eq9eme6ctt [2024-03-23] (INTEL CORP) [Startup Task]
AppUp.ThunderboltControlCenter -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-11-03] (INTEL CORP)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.21.269.0_x64__rz1tebttyb220 [2024-03-23] (Dolby Laboratories)
Dolby Vision -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionHDR_2.20301.388.0_x64__rz1tebttyb220 [2023-11-14] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-14] (Microsoft Corporation)
Glance by Mirametrix® -> C:\Program Files\WindowsApps\MirametrixInc.GlancebyMirametrix_10.24.1787.0_x64__17mer8kcn3j54 [2023-11-03] (Mirametrix Inc.) [Startup Task]
Lenovo Commercial Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoSettingsforEnterprise_10.2401.29.0_x64__k1h2ywk1493x8 [2024-03-23] (LENOVO INC.)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-08-15] (Microsoft Corporation)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-04-05] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-17] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-03-23] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24022.90.0_x64__cw5n1h2txyewy [2024-04-01] (Microsoft Windows) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.965.0_x64__56jybvy8sckqj [2024-04-01] (NVIDIA Corp.)
PrebootManager -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynapticsUtilities_1.1.18.0_x64__807d65c4rvak2 [2024-02-12] (Synaptics Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.47.310.0_x64__dt26b99r8h8gj [2024-01-19] (Realtek Semiconductor Corp)
Synaptics TouchPad Control Panel -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynapticsControlPanel_19005.19089.0.0_x64__807d65c4rvak2 [2022-07-14] (Synaptics Incorporated)
Synaptics Trackpoint Control Panel -> C:\Program Files\WindowsApps\SynapticsIncorporated.241916F58D6E7_19005.19089.0.0_x64__807d65c4rvak2 [2022-07-14] (Synaptics Incorporated)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-03-23] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2017-07-04] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{04271989-C4D2-05A7-6596-DED8B5D5915E} -> [OneDrive - VUT] => C:\Users\anetk\OneDrive - VUT [2024-03-23 09:51]
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\anetk\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21348.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2023\cs-CZ\acadficn.dll (Autodesk Asia Pte. Ltd. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2022-02-01] (Autodesk, Inc. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2022-02-01] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_4431f809be2dd54c\nvshext.dll [2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-03-23 09:44 - 2024-02-16 08:30 - 000925184 _____ () [File not signed] \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adIPC.node
2024-03-23 09:44 - 2024-02-16 16:39 - 000371712 _____ () [File not signed] \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adpUtil.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000138240 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\bufferutil\build\Release\bufferutil.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000174592 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\ffi\build\Release\ffi_bindings.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000163328 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\ref\build\Release\binding.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000137728 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\utf-8-validate\build\Release\validation.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000204800 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\v8-profiler\build\profiler\v5.6.5\node-v48-win32-x64\profiler.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000143360 _____ () [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\logtext.dll
2023-08-08 08:48 - 2023-08-08 08:48 - 000310272 _____ (Autodesk) [File not signed] [File is in use] C:\Program Files\Autodesk\Personal Accelerator for Revit\Autodesk.C4R.AdWebServicesInterop.dll
2023-08-08 08:49 - 2023-08-08 08:49 - 000177152 _____ (Autodesk) [File not signed] [File is in use] C:\Program Files\Autodesk\Personal Accelerator for Revit\Autodesk.C4R.IDSDKInterop.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\Software\Classes\.scr: AutoCADScriptFile =>

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2024-04-04 22:36 - 000000147 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Intel;C:\Intel\m;C:\Intel\logs;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\dotnet\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Common Files\Autodesk Shared\Advance\;C:\Program Files (x86)\Common Files\Autodesk Shared\Advance\;C:\Program Files\Common Files\Autodesk Shared\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\Users\anetk\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\anetk\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "MRT"
HKLM\...\StartupApproved\Run32: => "MRT"
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6E9E775C-93FF-4098-9CD4-EFC4B969023A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\Epic Roller Coasters.exe () [File not signed]
FirewallRules: [{E7BEDA1A-8F13-4996-8B64-B3CBF9E151F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\Epic Roller Coasters.exe () [File not signed]
FirewallRules: [{6E16A94E-BE7B-4EE1-8A6E-6359E5BD2E8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgical Robot Simulator\dist\SurgSimVR.exe () [File not signed]
FirewallRules: [{56B82F60-5D7F-4504-A8C4-7082D2570F88}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgical Robot Simulator\dist\SurgSimVR.exe () [File not signed]
FirewallRules: [{ACE1E7E5-66F0-4E20-8E9D-22AB908E7136}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [{7ACE7D7C-444E-4B26-95EA-B96A6CC442E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [{D0558B78-1D91-4D3E-BFAD-D1E16E05CE60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{EE93AB7E-DA78-4A08-AF25-C5112D578D33}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{A367696A-C656-4675-A225-0C91AA1FA607}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{156D7F6F-6407-42FD-855D-4A27205E9FB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{1A00690B-C7F5-482D-8BE9-A875FC95203C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CB401379-5481-44B6-8135-01F586C9D1FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A3FA9CE5-FE85-4F79-B4E4-AE65F6D50252}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A25EC6A4-CD20-4DD8-BC20-219B7D8DFD56}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{26A145D8-D36F-440E-A7C8-E51CA771DE9C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3747B32A-7832-4818-A7D8-6AC6D94339ED}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A674CFA4-B82A-4B58-9B7D-0EB3F2B367E6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3A580059-89F0-46DC-A3D3-337E02B11E73}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{51BF57E6-7B92-4366-8466-76701D551B47}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FEE5956B-6961-4A97-951D-4EEBC0B484B5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F240C879-1A68-4E8C-9768-0001133D3E89}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C588279B-531E-4271-9B58-97551126F538}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{36354A5E-780F-4D67-9A94-8C6D526D4137}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayvision\Vision.exe () [File not signed]
FirewallRules: [{8E818E95-20E6-4ECE-ACF9-0F2A8B55B379}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayvision\Vision.exe () [File not signed]
FirewallRules: [{71E45318-A35B-45C4-AF94-5AC7ED10C859}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayneui-win32-x64\vrayneui.exe (Chaos Software Ltd. -> Chaos Software, Ltd)
FirewallRules: [{4AC12B68-6A2A-4C3C-8A88-4B80DF6B1E01}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayneui-win32-x64\vrayneui.exe (Chaos Software Ltd. -> Chaos Software, Ltd)
FirewallRules: [{7B7D7DCA-BD41-44C5-B2CC-441D5F947DEC}] => (Block) C:\Program Files\Rhino 7\System\Rhino.exe (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates)
FirewallRules: [{F4BC233A-E049-4A17-825D-36F9D2D7CD2C}] => (Block) C:\Program Files\Rhino 7\System\Rhino.exe (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates)
FirewallRules: [{DF578F3C-E026-405F-BC7C-2D03E7F85F57}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [{9E4DEBAB-F2E7-4B85-8EC8-DF2E5EB2AD5B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => No File
FirewallRules: [{DA3242AE-23E4-4188-AFC3-A8E516104B61}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => No File
FirewallRules: [TCP Query User{E3DD47CA-1C26-48A0-BC95-1777135953B2}C:\program files (x86)\planet zoo\planetzoo.exe] => (Allow) C:\program files (x86)\planet zoo\planetzoo.exe => No File
FirewallRules: [UDP Query User{DAE86652-7AEF-496A-ABB9-B18F7A05A637}C:\program files (x86)\planet zoo\planetzoo.exe] => (Allow) C:\program files (x86)\planet zoo\planetzoo.exe => No File
FirewallRules: [{AB4F5EF3-6853-4DD2-918F-94B8B9EBC22E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{3FA12250-8630-4C88-8CB9-62E8F1A9DCB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{F97FDC84-91F5-4EC4-B4BF-FC6AEE84B006}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23034.1300.1846.7680_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9CEA41D0-D531-4558-8E2F-5DABA32E4D38}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23034.1300.1846.7680_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5974B899-80E8-425E-B597-9AAFA477C22D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FED0D63E-B117-42DD-BDE2-1D90562EE756}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vrayneui\vrayneui.exe ("Chaos Software" Ltd -> Chaos Software, Ltd)
FirewallRules: [{DC625F71-DD1E-4DFB-A335-D72AECC1E2DE}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vrayneui\vrayneui.exe ("Chaos Software" Ltd -> Chaos Software, Ltd)
FirewallRules: [{EDEBCB97-E92D-40CE-9E88-53FC4F1463CE}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision.exe () [File not signed]
FirewallRules: [{59CC22AE-3FFD-4254-8A4D-C23CD7394960}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision.exe () [File not signed]
FirewallRules: [{173B5132-7862-4749-A8AD-FFB931BF9184}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision_Data\Plugins\vision-server.exe () [File not signed]
FirewallRules: [{6407248D-ACA6-4BBC-BAAD-A8EF6258FE1B}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision_Data\Plugins\vision-server.exe () [File not signed]
FirewallRules: [{87FC8622-E755-4367-8146-55B6C67CDA1A}] => (Allow) C:\Program Files\Chaos\VRLService\vrol.exe ("Chaos Software" Ltd -> Chaos)
FirewallRules: [{C6B60FFE-7DF9-443F-8573-4B7DBBD6C4EB}] => (Allow) C:\Program Files\Chaos\VRLService\vrol.exe ("Chaos Software" Ltd -> Chaos)
FirewallRules: [{122C9AE4-47FA-46AD-8B0B-231D4B58381A}] => (Allow) LPort=20208
FirewallRules: [{5D84490F-230C-45E3-B9B5-203DF93F1961}] => (Allow) LPort=20208
FirewallRules: [{6EA1EEE1-9440-4391-8B1E-7172B2003B8D}] => (Allow) C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe (Chaos Software Ltd.) [File not signed]
FirewallRules: [{47CEEEFD-9FFB-4CFF-BE63-9E47AA31F2C5}] => (Allow) C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe (Chaos Software Ltd.) [File not signed]
FirewallRules: [{92D4B969-4153-4F75-A996-F5EAF7C91E5A}] => (Allow) C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [File not signed]
FirewallRules: [{EE21E4D5-D6BF-4937-86A0-9934F743AB44}] => (Allow) C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [File not signed]
FirewallRules: [{B32D66F5-273B-42D2-9E5F-B70D2F471F73}] => (Allow) LPort=30305
FirewallRules: [{97C9DDF3-B69E-481A-8AD7-6313A24C9E4E}] => (Allow) LPort=30306
FirewallRules: [{25E9B6A4-43EE-4BC8-8802-7119CE19ABB8}] => (Allow) C:\Program Files\Chaos\UnifiedLogin\ula.exe (Chaos) [File not signed]
FirewallRules: [{4FFCF984-2600-4E8B-BE1D-8C53B6B4664F}] => (Allow) C:\Program Files\Chaos\UnifiedLogin\ula.exe (Chaos) [File not signed]
FirewallRules: [{1AA7EF90-ED48-4F6B-84AD-827FAFC0989F}] => (Allow) LPort=30301
FirewallRules: [{D2D71087-4B84-42D7-8F4B-EF7FE6E269EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F432EF73-1BDA-49C4-B9CF-7D47552B000D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8C430904-E5B0-4055-881C-0D474EAD928D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A52E5EFF-5A28-428A-B1C7-5BB236C14F81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{0BA5D630-2397-4E7E-999B-669D1A42E288}C:\program files\autodesk\revit 2024\revit.exe] => (Allow) C:\program files\autodesk\revit 2024\revit.exe (Autodesk, Inc. -> Autodesk, Inc.)
FirewallRules: [UDP Query User{436FA91A-A58D-470D-8A18-8B56C4054C4E}C:\program files\autodesk\revit 2024\revit.exe] => (Allow) C:\program files\autodesk\revit 2024\revit.exe (Autodesk, Inc. -> Autodesk, Inc.)
FirewallRules: [TCP Query User{298FC05C-B952-4F0C-B457-E95AD877F46D}C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe] => (Allow) C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe (BIM Technology s.r.o. -> BIM Technology s.r.o.)
FirewallRules: [UDP Query User{9111BDB8-B7DD-4B15-93AC-64BF62E46615}C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe] => (Allow) C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe (BIM Technology s.r.o. -> BIM Technology s.r.o.)
FirewallRules: [{29B4648A-3255-42ED-9368-4236BD5D5004}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A84A18D1-F534-434F-93C8-976D0652A9AE}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{147B992B-D426-4275-964A-2CD35A37D89F}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{EA93879F-367A-4373-AB8A-1110BFB72F99}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{89D5A8C4-8DC7-444F-86DE-02D0C78C054E}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{B1AC0BEB-7EDD-4897-BDC3-8670563A7A22}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{4E0C1969-A3F3-4817-9C03-E3FB11EF6031}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{382B75FB-EB9E-4BC6-BD52-4D2CC28A1F6C}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{96DAD7F0-2712-4DF0-B781-21CE5029D798}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{A2A05795-FF1F-43FA-B42C-8F879F6C9DAF}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{72CFCFBD-612B-4768-9DD6-0FBE83999E6C}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{F77A1A66-A165-40A2-8149-81578A9936EE}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{E2EED9B0-4DBA-46CF-B769-682EF707EA00}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{30842D53-0D87-4EDF-A0B1-4566B3634226}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{E1E0C7B7-2273-431E-AD02-3B2C9B7667D7}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{BE3591FD-E8B9-4AB7-9103-29A657B2E7FD}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{6E13BEA6-8FFF-416D-80E9-925FFA529E19}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{B745AD8E-0F1D-468B-B52A-67F347CCBA38}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{96DBADC8-03D7-4AC4-8F2D-F3355979432D}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{90532BF7-35A3-471E-8C93-8A9470F2EB6D}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{7C96CB83-F905-44E2-BFB6-E73DE04A2CC9}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{576419F5-2D95-489E-B87F-91C05B14077B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

08-04-2024 09:04:00 Scheduled Checkpoint

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (04/08/2024 02:37:45 PM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-DFRGA5MU)
Description: Název chybující aplikace: icarus.exe, verze: 24.3.7200.0, časové razítko: 0x660c4ea7
Název chybujícího modulu: icarus.exe, verze: 24.3.7200.0, časové razítko: 0x660c4ea7
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000004901e1
ID chybujícího procesu: 0x0x49e8
Čas spuštění chybující aplikace: 0x0x1da89b18a5d24b2
Cesta k chybující aplikaci: C:\WINDOWS\Temp\asw-023a032d-8227-4a15-b0c9-3e9ea020bafe\common\icarus.exe
Cesta k chybujícímu modulu: C:\WINDOWS\Temp\asw-023a032d-8227-4a15-b0c9-3e9ea020bafe\common\icarus.exe
ID zprávy: 64a72eb2-6b60-43d7-83ed-18877a639b54
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (04/08/2024 02:36:08 PM) (Source: MsiInstaller) (EventID: 11312) (User: LAPTOP-DFRGA5MU)
Description: Product: ESET Security -- Chyba 1312. Složku 'C:\ProgramData\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.

Error: (04/08/2024 02:30:08 PM) (Source: MsiInstaller) (EventID: 11312) (User: LAPTOP-DFRGA5MU)
Description: Product: ESET Security -- Chyba 1312. Složku 'C:\ProgramData\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.

Error: (04/08/2024 10:52:14 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-DFRGA5MU)
Description: Název chybující aplikace: icarus.exe, verze: 24.3.7200.0, časové razítko: 0x660c4ea7
Název chybujícího modulu: icarus.exe, verze: 24.3.7200.0, časové razítko: 0x660c4ea7
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000004901e1
ID chybujícího procesu: 0x0x4e28
Čas spuštění chybující aplikace: 0x0x1da899209ab06a2
Cesta k chybující aplikaci: C:\WINDOWS\Temp\asw-9cf692d0-d473-4da1-a781-40af558738cd\common\icarus.exe
Cesta k chybujícímu modulu: C:\WINDOWS\Temp\asw-9cf692d0-d473-4da1-a781-40af558738cd\common\icarus.exe
ID zprávy: 571f876d-ca80-438d-bd5b-7c6f87fc3573
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (04/08/2024 10:51:52 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-DFRGA5MU)
Description: Název chybující aplikace: icarus.exe, verze: 24.3.7200.0, časové razítko: 0x660c4ea7
Název chybujícího modulu: icarus.exe, verze: 24.3.7200.0, časové razítko: 0x660c4ea7
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000004901e1
ID chybujícího procesu: 0x0x31cc
Čas spuštění chybující aplikace: 0x0x1da8991fa730324
Cesta k chybující aplikaci: C:\WINDOWS\Temp\asw-bcaba5ad-0085-44d4-b21a-e19dda648282\common\icarus.exe
Cesta k chybujícímu modulu: C:\WINDOWS\Temp\asw-bcaba5ad-0085-44d4-b21a-e19dda648282\common\icarus.exe
ID zprávy: 12da55bd-4c03-4987-bfd5-129a7363eea8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (04/08/2024 10:47:27 AM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-DFRGA5MU)
Description: Název chybující aplikace: Creative Cloud.exe, verze: 4.3.0.256, časové razítko: 0x59c23430
Název chybujícího modulu: ntdll.dll, verze: 10.0.22621.3235, časové razítko: 0xb62363d8
Kód výjimky: 0xc0000005
Posun chyby: 0x00065405
ID chybujícího procesu: 0x0x4e88
Čas spuštění chybující aplikace: 0x0x1da89909ff0aa0c
Cesta k chybující aplikaci: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: 06e8db56-62da-454f-8908-effa7686b0cc
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (04/08/2024 10:47:09 AM) (Source: MsiInstaller) (EventID: 11312) (User: LAPTOP-DFRGA5MU)
Description: Product: ESET Security -- Chyba 1312. Složku 'C:\Program Files\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.

Error: (04/08/2024 10:44:57 AM) (Source: MsiInstaller) (EventID: 11312) (User: LAPTOP-DFRGA5MU)
Description: Product: ESET Security -- Chyba 1312. Složku 'C:\Program Files\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.


System errors:
=============
Error: (04/08/2024 02:34:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/08/2024 02:34:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (04/08/2024 02:32:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CCBService neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/08/2024 02:32:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby CCBService bylo dosaženo časového limitu (45000 ms).

Error: (04/08/2024 01:41:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/08/2024 01:41:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (04/08/2024 01:39:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CCBService neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/08/2024 01:39:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby CCBService bylo dosaženo časového limitu (45000 ms).


Windows Defender:
================
Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/Vbinder.gen!G
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe; file:_C:\Intel\i2.exe; file:_C:\Intel\i3.exe; file:_C:\Intel\i4.exe; file:_C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1->(UTF-16LE); regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7F247BE-07E8-481D-B210-F4C85B8A796F}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1; taskscheduler:_C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Windows\SysWOW64\cmd.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/Vbinder.gen!G
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Intel\r.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/VBInject.gen!CI
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Intel\logs\bfc.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/VBInject.gen!CI
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/VBInject.gen!CI
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Intel\r.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4
Event[0]

Date: 2024-04-05 16:49:23
Description:
Prohledávání Microsoft Defender Antivirus zjistilo chybu při pokusu o odebrání historie malwaru nebo jiného potenciálně nežádoucího softwaru.
Čas: 2024-04-04T14:49:23Z
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070003
Popis chyby: The system cannot find the path specified.

Date: 2023-10-17 10:57:29
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.399.638.0
Zdroj aktualizace: Microsoft Update Server
Typ bezpečnostních informací: AntiVirus
Typ aktualizace: Full
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23090.2007
Kód chyby: 0x80240016
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2023-05-29 15:13:56
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Current
Kód chyby: 0x80501102
Popis chyby: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Verze bezpečnostních informací: 1.389.2654.0;1.389.2654.0
Verze modulu: 1.1.20300.3

Date: 2023-03-19 10:34:34
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.385.188.0
Zdroj aktualizace: Microsoft Update Server
Typ bezpečnostních informací: AntiVirus
Typ aktualizace: Full
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20100.6
Kód chyby: 0x80240016
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2023-01-08 23:34:00
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.1808.0
Zdroj aktualizace: Microsoft Update Server
Typ bezpečnostních informací: AntiVirus
Typ aktualizace: Full
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80240016
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

CodeIntegrity:
===============
Date: 2024-04-04 21:29:35
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2024-04-04 21:27:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO N37ET49W (1.30 ) 11/15/2023
Motherboard: LENOVO 20YS001SUS
Processor: 11th Gen Intel(R) Core(TM) i7-11800H @ 2.30GHz
Percentage of memory in use: 23%
Total physical RAM: 32487.05 MB
Available physical RAM: 24768.56 MB
Total Virtual: 34535.05 MB
Available Virtual: 25685.45 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:952.62 GB) (Free:258.37 GB) (Model: SAMSUNG MZVL21T0HCLR-00BL7) NTFS

\\?\Volume{ffd5708c-5ec0-4294-8953-85e5cbdd26cd}\ (WinRE_DRV) (Fixed) (Total:0.97 GB) (Free:0.07 GB) NTFS
\\?\Volume{a9d2f584-45b7-4b58-9f4f-2ba9bf9e9d73}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: E023BDE7)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118289
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Nejdou instalovat antiviry + divné chování

#3 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nejdou instalovat antiviry + divné chování

#4 Příspěvek od altrok »

Ahoj,
jen malá vsuvka. Byly ti ukradeny minimálně přihlašovací údaje, které máš uložené v prohlížečích. Velice doporučuju odvirování dokončit a následně změnit hesla :wink:
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Re: Nejdou instalovat antiviry + divné chování

#5 Příspěvek od python.p »

altrok: to byla první věc, co jsem majitelce řekl ať udělá z jiného stroje. BTW co konkrétně to bylo? Díky

Rudy: dostal jsem se k tomu až teďka...


# -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-03-04.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-11-2024
# Duration: 00:00:00
# OS: Windows 11 (Build 22631.3296)
# Cleaned: 2
# Failed: 1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted SweetIM Search
Deleted SweetIM Search
Not Deleted Privitize VPN

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2223 octets] - [04/04/2024 22:20:32]
AdwCleaner[C00].txt - [1662 octets] - [04/04/2024 22:21:48]
AdwCleaner[S01].txt - [2345 octets] - [11/04/2024 21:03:31]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118289
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Nejdou instalovat antiviry + divné chování

#6 Příspěvek od Rudy »

OK, něco bylo smazáno. Zkuste nyní nainstalovat nějaký antivir. Pokud to nepůjde, zkusíme ještě AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, uložte a spusťte. Nechte pracovat a pak smažte vše, co najde. Návod v odkazu se vztahuje ke starší verzi.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Re: Nejdou instalovat antiviry + divné chování

#7 Příspěvek od python.p »

KVRT jak se to dnes jmenuje nic nenašel. Problém trvá...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118289
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Nejdou instalovat antiviry + divné chování

#8 Příspěvek od Rudy »

Zkuste tedy obnovu systému k datu, kdy korektně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nejdou instalovat antiviry + divné chování

#9 Příspěvek od altrok »

Takovej krásnej stroj a takhle si ho zaplevelit...

Nejprve celou složku C:\Intel zabal, zahesluj (heslo infected) a někam mi ji prosím tě uploadni (pokud již není prázdná).

Pojďme se alespoň částečně podívat, co se stalo.

Dotyčná si ve 2024-04-04 21:02 nainstalovala WinRAR a pak otevřela něco, co neměla, protože tím to začalo...

Malware zamezil vybraným antivirům v jejich instalaci a sám zůstává jen ve složce C:\Intel (plus persistence v naplánovaných úlohách, povolení ve FW atd). Bohužel nedokážu říct, co všechno dělal, protože konkrétní vzorky nevidím. Použil hodně NirSoft utilit na extrakci všemožných hesel (volně dostupné na stránkách nirsoftu) a výstupy si pak předpokládám někam poslal.

Úplně mi to nesedí, protože instalace dalších (vyjmenovaných) antivirů byla zablokována ve 2024-04-04 21:06, Defender zabavil část škodlivého kódu v 2024-04-05 16:21:51, ale pak vidíme, že složka C:\Intel byla vytvořena 2024-04-06 09:17. Těžko říct, jestli tam měl útočník real-time access nebo co se tam přesně dělo... v těchto logách není dostatek informací pro detailní forenzní analýzu.

Bloknutí instalace antiviru je jednoduché - havěť vytvoří soubor s parametry RSH (pouze pro čtení, systemový a skrytý), do které se AV normálně instaluje, ale AV pak při instalaci vidí, že už jeho umístění (nekontroluje, jestli je to pouze soubor nebo složka) existuje, tak se nenainstaluje.
Error: (04/08/2024 02:36:08 PM) (Source: MsiInstaller) (EventID: 11312) (User: LAPTOP-DFRGA5MU)
Description: Product: ESET Security -- Chyba 1312. Složku 'C:\ProgramData\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.
Malware se zapsal i do PATH, ale tam nemám jak jednoduše sáhnout, proto dodělej ručně - tyhle cesty z PATH smaž C:\Intel;C:\Intel\m;C:\Intel\logs;

Použij následující fixlist.txt a do příští odpovědi nám vlož výsledný fixlog.txt + nové logy FRST.txt a Addition.txt

Kód: Vybrat vše

CloseProcesses:
CreateRestorePoint:
2024-04-06 09:17 - 2024-04-08 14:32 - 000000000 ____D C:\Intel
2024-04-04 21:37 - 2024-04-04 21:37 - 000000002 __RSH C:\ProgramData\Avast Software
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Symantec
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Sophos
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\SMADAV
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\ReasonLabs
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Norton Security
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Net Protector 202A
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\McAfee.com
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\McAfee
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Malwarebytes
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\IOBit
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\HP Sure Sense
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\HitmanPro.Alert
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\ESET
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\CryptoTab Browser
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Bitdefender
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Awesome Miner
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\AVG
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\AlibabaProtect
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\SMADAV
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\ReasonLabs
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\HP Sure Sense
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\HitmanPro.Alert
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\CryptoTab Browser
Task: {2508B0D2-6A3C-477B-B826-9DD2286754E8} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager1 => C:\Intel\e.vbs (No File)
Task: {A39E6599-CCC5-48D2-872F-B19AAA870672} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => "C:\Intel\i2.exe" (No File)
Task: {15BBFAE4-1CC7-45BA-A3FE-22B8BBB78C52} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\IEpv.exe -> /stab "C:\Intel\logs\IEpv_1.log"
Task: {048F404D-A0C8-4A89-B3D7-1A16B33F89BC} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\WebBrowserPassView.exe -> /stab "C:\Intel\logs\WebBrowserPassView_1.log"
Task: {BB789CF5-2936-4BC1-A2F6-F040F3D63CBD} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx7x1 => C:\Intel\logs\PasswordFox64.exe -> /stab "C:\Intel\logs\PasswordFox64_1.log"
Task: {06E7501E-A774-468E-9F1F-51F8ABD7E96B} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\netpass64.exe -> /stab "C:\Intel\logs\netpass64_1.log"
S2 dg; C:\Intel\dg.exe [X]
S1 epp; \??\C:\EEK\bin64\epp.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
FirewallRules: [{9E4DEBAB-F2E7-4B85-8EC8-DF2E5EB2AD5B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => No File
FirewallRules: [{DA3242AE-23E4-4188-AFC3-A8E516104B61}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => No File
FirewallRules: [{122C9AE4-47FA-46AD-8B0B-231D4B58381A}] => (Allow) LPort=20208
FirewallRules: [{5D84490F-230C-45E3-B9B5-203DF93F1961}] => (Allow) LPort=20208
FirewallRules: [{B32D66F5-273B-42D2-9E5F-B70D2F471F73}] => (Allow) LPort=30305
FirewallRules: [{97C9DDF3-B69E-481A-8AD7-6313A24C9E4E}] => (Allow) LPort=30306
FirewallRules: [{1AA7EF90-ED48-4F6B-84AD-827FAFC0989F}] => (Allow) LPort=30301
FirewallRules: [{A84A18D1-F534-434F-93C8-976D0652A9AE}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{147B992B-D426-4275-964A-2CD35A37D89F}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{EA93879F-367A-4373-AB8A-1110BFB72F99}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{89D5A8C4-8DC7-444F-86DE-02D0C78C054E}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{B1AC0BEB-7EDD-4897-BDC3-8670563A7A22}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{4E0C1969-A3F3-4817-9C03-E3FB11EF6031}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{382B75FB-EB9E-4BC6-BD52-4D2CC28A1F6C}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{96DAD7F0-2712-4DF0-B781-21CE5029D798}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{A2A05795-FF1F-43FA-B42C-8F879F6C9DAF}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{72CFCFBD-612B-4768-9DD6-0FBE83999E6C}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{F77A1A66-A165-40A2-8149-81578A9936EE}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{E2EED9B0-4DBA-46CF-B769-682EF707EA00}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{30842D53-0D87-4EDF-A0B1-4566B3634226}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{E1E0C7B7-2273-431E-AD02-3B2C9B7667D7}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{BE3591FD-E8B9-4AB7-9103-29A657B2E7FD}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{6E13BEA6-8FFF-416D-80E9-925FFA529E19}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{B745AD8E-0F1D-468B-B52A-67F347CCBA38}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{96DBADC8-03D7-4AC4-8F2D-F3355979432D}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{90532BF7-35A3-471E-8C93-8A9470F2EB6D}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{7C96CB83-F905-44E2-BFB6-E73DE04A2CC9}] => (Allow) C:\Intel\i2.exe => No File
EmptyTemp:
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Re: Nejdou instalovat antiviry + divné chování

#10 Příspěvek od python.p »

Jo, šel se instalovat "půjčený SW" a to jsem ji to říkal několikrát !!!

Jojo něco jsem smazal ty soubory s parametry SH. Snad by to nikam posílat neměl, v té době prý byla odpojená od internetu. No, ale věř uživatelům, že?

Mrknu na to večer, děkuji moc.
Nahoru
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Re: Nejdou instalovat antiviry + divné chování

#11 Příspěvek od python.p »

Fixlog:
Fix result of Farbar Recovery Scan Tool (x64) Version: 10.04.2024
Ran by anetk (12-04-2024 21:19:31) Run:2
Running from C:\Users\anetk\Desktop
Loaded Profiles: anetk
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:
2024-04-06 09:17 - 2024-04-08 14:32 - 000000000 ____D C:\Intel
2024-04-04 21:37 - 2024-04-04 21:37 - 000000002 __RSH C:\ProgramData\Avast Software
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Symantec
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Sophos
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\SMADAV
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\ReasonLabs
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Norton Security
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Net Protector 202A
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\McAfee.com
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\McAfee
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Malwarebytes
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\IOBit
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\HP Sure Sense
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\HitmanPro.Alert
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\ESET
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\CryptoTab Browser
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Bitdefender
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\Awesome Miner
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\AVG
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\ProgramData\AlibabaProtect
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\SMADAV
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\ReasonLabs
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\HP Sure Sense
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\HitmanPro.Alert
2024-04-04 21:06 - 2024-04-04 21:06 - 000000002 __RSH C:\Program Files\CryptoTab Browser
Task: {2508B0D2-6A3C-477B-B826-9DD2286754E8} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager1 => C:\Intel\e.vbs (No File)
Task: {A39E6599-CCC5-48D2-872F-B19AAA870672} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => "C:\Intel\i2.exe" (No File)
Task: {15BBFAE4-1CC7-45BA-A3FE-22B8BBB78C52} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => C:\Intel\logs\IEpv.exe -> /stab "C:\Intel\logs\IEpv_1.log"
Task: {048F404D-A0C8-4A89-B3D7-1A16B33F89BC} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => C:\Intel\logs\WebBrowserPassView.exe -> /stab "C:\Intel\logs\WebBrowserPassView_1.log"
Task: {BB789CF5-2936-4BC1-A2F6-F040F3D63CBD} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx7x1 => C:\Intel\logs\PasswordFox64.exe -> /stab "C:\Intel\logs\PasswordFox64_1.log"
Task: {06E7501E-A774-468E-9F1F-51F8ABD7E96B} - System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => C:\Intel\logs\netpass64.exe -> /stab "C:\Intel\logs\netpass64_1.log"
S2 dg; C:\Intel\dg.exe [X]
S1 epp; \??\C:\EEK\bin64\epp.sys [X]
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
FirewallRules: [{9E4DEBAB-F2E7-4B85-8EC8-DF2E5EB2AD5B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => No File
FirewallRules: [{DA3242AE-23E4-4188-AFC3-A8E516104B61}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => No File
FirewallRules: [{122C9AE4-47FA-46AD-8B0B-231D4B58381A}] => (Allow) LPort=20208
FirewallRules: [{5D84490F-230C-45E3-B9B5-203DF93F1961}] => (Allow) LPort=20208
FirewallRules: [{B32D66F5-273B-42D2-9E5F-B70D2F471F73}] => (Allow) LPort=30305
FirewallRules: [{97C9DDF3-B69E-481A-8AD7-6313A24C9E4E}] => (Allow) LPort=30306
FirewallRules: [{1AA7EF90-ED48-4F6B-84AD-827FAFC0989F}] => (Allow) LPort=30301
FirewallRules: [{A84A18D1-F534-434F-93C8-976D0652A9AE}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{147B992B-D426-4275-964A-2CD35A37D89F}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{EA93879F-367A-4373-AB8A-1110BFB72F99}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{89D5A8C4-8DC7-444F-86DE-02D0C78C054E}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{B1AC0BEB-7EDD-4897-BDC3-8670563A7A22}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{4E0C1969-A3F3-4817-9C03-E3FB11EF6031}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{382B75FB-EB9E-4BC6-BD52-4D2CC28A1F6C}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{96DAD7F0-2712-4DF0-B781-21CE5029D798}] => (Allow) C:\Intel\i4.exe => No File
FirewallRules: [{A2A05795-FF1F-43FA-B42C-8F879F6C9DAF}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{72CFCFBD-612B-4768-9DD6-0FBE83999E6C}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{F77A1A66-A165-40A2-8149-81578A9936EE}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{E2EED9B0-4DBA-46CF-B769-682EF707EA00}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{30842D53-0D87-4EDF-A0B1-4566B3634226}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{E1E0C7B7-2273-431E-AD02-3B2C9B7667D7}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{BE3591FD-E8B9-4AB7-9103-29A657B2E7FD}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{6E13BEA6-8FFF-416D-80E9-925FFA529E19}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{B745AD8E-0F1D-468B-B52A-67F347CCBA38}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{96DBADC8-03D7-4AC4-8F2D-F3355979432D}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{90532BF7-35A3-471E-8C93-8A9470F2EB6D}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{7C96CB83-F905-44E2-BFB6-E73DE04A2CC9}] => (Allow) C:\Intel\i2.exe => No File
EmptyTemp:
*****************

Processes closed successfully.
Restore point was successfully created.
"C:\Intel" => not found
C:\ProgramData\Avast Software => moved successfully
C:\ProgramData\Symantec => moved successfully
C:\ProgramData\Sophos => moved successfully
C:\ProgramData\SMADAV => moved successfully
C:\ProgramData\ReasonLabs => moved successfully
C:\ProgramData\Norton Security => moved successfully
C:\ProgramData\Net Protector 202A => moved successfully
C:\ProgramData\McAfee.com => moved successfully
C:\ProgramData\McAfee => moved successfully
C:\ProgramData\Malwarebytes => moved successfully
C:\ProgramData\IOBit => moved successfully
C:\ProgramData\HP Sure Sense => moved successfully
C:\ProgramData\HitmanPro.Alert => moved successfully
C:\ProgramData\ESET => moved successfully
C:\ProgramData\CryptoTab Browser => moved successfully
C:\ProgramData\Bitdefender => moved successfully
C:\ProgramData\Awesome Miner => moved successfully
C:\ProgramData\AVG => moved successfully
C:\ProgramData\AlibabaProtect => moved successfully
"C:\Program Files\SMADAV" => not found
"C:\Program Files\ReasonLabs" => not found
"C:\Program Files\HP Sure Sense" => not found
"C:\Program Files\HitmanPro.Alert" => not found
"C:\Program Files\CryptoTab Browser" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2508B0D2-6A3C-477B-B826-9DD2286754E8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2508B0D2-6A3C-477B-B826-9DD2286754E8}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A39E6599-CCC5-48D2-872F-B19AAA870672}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A39E6599-CCC5-48D2-872F-B19AAA870672}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{15BBFAE4-1CC7-45BA-A3FE-22B8BBB78C52}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{15BBFAE4-1CC7-45BA-A3FE-22B8BBB78C52}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx3x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{048F404D-A0C8-4A89-B3D7-1A16B33F89BC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{048F404D-A0C8-4A89-B3D7-1A16B33F89BC}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx6x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB789CF5-2936-4BC1-A2F6-F040F3D63CBD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB789CF5-2936-4BC1-A2F6-F040F3D63CBD}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx7x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx7x1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{06E7501E-A774-468E-9F1F-51F8ABD7E96B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{06E7501E-A774-468E-9F1F-51F8ABD7E96B}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP ManagerPWSx9x1" => removed successfully
HKLM\System\CurrentControlSet\Services\dg => removed successfully
dg => service removed successfully
HKLM\System\CurrentControlSet\Services\epp => removed successfully
epp => service removed successfully
HKLM\System\CurrentControlSet\Services\WinSetupMon => removed successfully
WinSetupMon => service removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{9E4DEBAB-F2E7-4B85-8EC8-DF2E5EB2AD5B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{DA3242AE-23E4-4188-AFC3-A8E516104B61}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{122C9AE4-47FA-46AD-8B0B-231D4B58381A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5D84490F-230C-45E3-B9B5-203DF93F1961}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B32D66F5-273B-42D2-9E5F-B70D2F471F73}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{97C9DDF3-B69E-481A-8AD7-6313A24C9E4E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1AA7EF90-ED48-4F6B-84AD-827FAFC0989F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A84A18D1-F534-434F-93C8-976D0652A9AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{147B992B-D426-4275-964A-2CD35A37D89F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{EA93879F-367A-4373-AB8A-1110BFB72F99}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{89D5A8C4-8DC7-444F-86DE-02D0C78C054E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B1AC0BEB-7EDD-4897-BDC3-8670563A7A22}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E0C1969-A3F3-4817-9C03-E3FB11EF6031}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{382B75FB-EB9E-4BC6-BD52-4D2CC28A1F6C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96DAD7F0-2712-4DF0-B781-21CE5029D798}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A2A05795-FF1F-43FA-B42C-8F879F6C9DAF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{72CFCFBD-612B-4768-9DD6-0FBE83999E6C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F77A1A66-A165-40A2-8149-81578A9936EE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E2EED9B0-4DBA-46CF-B769-682EF707EA00}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{30842D53-0D87-4EDF-A0B1-4566B3634226}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E1E0C7B7-2273-431E-AD02-3B2C9B7667D7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BE3591FD-E8B9-4AB7-9103-29A657B2E7FD}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6E13BEA6-8FFF-416D-80E9-925FFA529E19}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B745AD8E-0F1D-468B-B52A-67F347CCBA38}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96DBADC8-03D7-4AC4-8F2D-F3355979432D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{90532BF7-35A3-471E-8C93-8A9470F2EB6D}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7C96CB83-F905-44E2-BFB6-E73DE04A2CC9}" => removed successfully

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 37942503 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 416660960 B
Windows/system/drivers => 2809383352 B
Edge => 0 B
Chrome => 1998367580 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 59482764 B
systemprofile32 => 59482764 B
LocalService => 59517668 B
NetworkService => 59804490 B
anetk => 9260830620 B

RecycleBin => 712 B
EmptyTemp: => 13.7 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:20:34 ====
FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.04.2024
Ran by anetk (administrator) on LAPTOP-DFRGA5MU (LENOVO 20YS001SUS) (12-04-2024 21:24:54)
Running from C:\Users\anetk\Desktop\FRST64.exe
Loaded Profiles: anetk
Platform: Microsoft Windows 11 Pro Version 23H2 22631.3447 (X64) Language: Angličtina (Spojené státy) -> Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Genuine Service\GenuineService.exe
(Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk AdSSO\AdSSO.exe <2>
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantage-(VantageCoreAddin).exe
(C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\ui-launcher\AdskAccessUIHost.exe <4>
(C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdskIdentityManager\1.11.9.11\AdskIdentityManager.exe
(C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Common Files\Autodesk\AdpDesktopSDK\bin\ADPClientService.exe <2>
(C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe ->) (Chaos Software Ltd.) [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe
(C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe ->) (Chaos) [File not signed] C:\Program Files\Chaos\UnifiedLogin\ula.exe
(C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrol.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_appbroker.exe
(C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxCUIServiceN.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxEMN.exe
(DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_3886d4759c27592b\DAX3API.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\DAX3_S~3.INF\DAX3API.exe
(DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\FNF910~1.INF\driver\shtctky.exe
(DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\FNF910~1.INF\driver\tposd.exe
(explorer.exe ->) ("Chaos Software" Ltd -> Chaos) C:\Program Files\Chaos\VRLService\vrlsupervisor.exe
(explorer.exe ->) (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
(explorer.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe
(explorer.exe ->) (Chaos) [File not signed] C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe
(explorer.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsNotepad_11.2401.26.0_x64__8wekyb3d8bbwe\Notepad\Notepad.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(ChaosGroup) [File not signed] C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe <2>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\13.1.0.8534\AdskLicensingService\AdskLicensingService.exe
(services.exe ->) (Autodesk, Inc. -> Autodesk, Inc.) C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories) C:\Windows\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_3886d4759c27592b\DAX3API.exe
(services.exe ->) (Flexera Software LLC -> Flexera) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe <4>
(services.exe ->) (Chaos Software Ltd. -> ) [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_897ea327b3fe52f7\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_06c43e1ee675eae7\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\TbtP2pShortcutService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Windows\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\AS\IAS\IntelAudioService.exe
(services.exe ->) (Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\EasyResume.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\System32\drivers\Lenovo\udc\Service\UDClientService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\tphkload.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Windows\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmsvc.exe
(services.exe ->) (Lenovo -> Lenovo.) C:\Windows\System32\DriverStore\FileRepository\litsdrv.inf_amd64_d3ffad9e9274786f\LITSSvc.exe <2>
(services.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia) C:\Windows\System32\FMService64.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxCUIServiceN.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igcc_dch.inf_amd64_4e93878658043b21\OneApp.IGCC.WinService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_85a68d3d96c69012\IntelCpHDCPSvc.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_4431f809be2dd54c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_55047240f73a1fa6\RtkAudUService64.exe <2>
(services.exe ->) (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates) C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnhService.exe
(services.exe ->) (WDKTestCert sarakelyan,130722862255941761 -> Synaptics Incorporated.) C:\Windows\System32\DriverStore\FileRepository\synawudfbiousbuwp.inf_amd64_0a328caa48d41753\SynRpcServer.exe
(sihost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5435.0_x64__8j3eq9eme6ctt\GCP.ML.BackgroundSysTray\IGCCTray.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24031.69.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (EB51A5DA-0E72-4863-82E4-EA21C1F8DFE3 -> Intel Corporation) C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5435.0_x64__8j3eq9eme6ctt\IGCC.exe
(svchost.exe ->) (Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_424.1301.450.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SpatialAudioLicenseSrv.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Windows.Media.BackgroundPlayback.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.22621.3447_none_e948831242de6298\TiWorker.exe
(svchost.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\cui_dch.inf_amd64_9e0fe91378671ddd\igfxextN.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPHelper.exe
(SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Windows\System32\SynTPEnh.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3951648 2020-07-01] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [pac] => C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe [204576 2023-08-08] (Autodesk, Inc. -> Autodesk)
HKLM\...\Run: [Autodesk Access] => C:\Program Files\Autodesk\AdODIS\V1\Access\AdskAccessCore.exe [20987680 2024-02-20] (Autodesk, Inc. -> Autodesk, Inc.)
HKLM-x32\...\Run: [TeamsMachineInstaller] => C:\Program Files (x86)\Teams Installer\Teams.exe [125477704 2022-02-16] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Autodesk Genuine Service ] => C:\Program Files\Autodesk\Genuine Service\GenuineService.exe [3499016 2023-11-13] (Autodesk, Inc. -> Autodesk)
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [3306400 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Run: [com.squirrel.Teams.Teams] => C:\Users\anetk\AppData\Local\Microsoft\Teams\Update.exe [2492168 2022-07-15] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2022-10-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Policies\Explorer: []
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\123.0.6312.107\Installer\chrmstp.exe [2024-04-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CCBService.lnk [2023-08-15]
ShortcutTarget: CCBService.lnk -> C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ChaosUnifiedLogin.lnk [2023-08-15]
ShortcutTarget: ChaosUnifiedLogin.lnk -> C:\Program Files\Chaos\UnifiedLogin\ulasupervisor.exe (Chaos) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Start Chaos License Server.lnk [2023-08-15]
ShortcutTarget: Start Chaos License Server.lnk -> C:\Program Files\Chaos\VRLService\vrlsupervisor.exe ("Chaos Software" Ltd -> Chaos)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {7F55AD03-D251-43D0-888B-5223D0F12D82} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {A1E36732-D96C-4076-B41D-6422084FF936} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {6D56A019-4D13-4C51-AEF6-12879B0900AB} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {2901FE72-9D49-4D6B-AF5C-DC6992B9C008} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem125.0.6386.0{1DA1B98B-19CF-4824-8B02-70432FBD3FCB} => C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
Task: {6AA59D7C-874C-4569-960C-55DEF8C835EF} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F630F0AC-6298-4C41-BE0E-14B11D33B5CC} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {59C935CC-899D-4913-AA56-A830867234C5} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [102400 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {812EF02C-67A9-4010-B8D7-DF4DFB2BBC49} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\0c1db4d6-f363-45a4-9ab2-45ef925b40e6 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {37CAF16A-C39C-4D33-80F1-CA8E2ED6E94D} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\60d60cdb-c5f8-48d1-b3dc-482c64c4b2dd => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F5538C4D-CB39-4242-A8A7-90953F869A04} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\6f4be2bc-81f7-45b3-bfa5-4bb27d5c11a5 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {CBCEDBE5-1D64-4948-A992-0E6C49E10D29} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\85eed2e9-1d3d-4af9-8374-d4da30c6ab88 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {B13C0007-9DBE-48C3-ABA2-227B318D8F4D} - System32\Tasks\Lenovo\ITS\Lenovo ITS WM Task => C:\Windows\System32\DriverStore\FileRepository\litsdrv.inf_amd64_d3ffad9e9274786f\LITSSvc.exe [1001440 2024-01-18] (Lenovo -> Lenovo.)
Task: {6CAA100A-6E41-43C5-ADA0-44EC8A7C2EDB} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe [128872 2023-12-20] (Lenovo -> Lenovo)
Task: {8F698FEA-D35C-45C7-8A5F-C39710876C95} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\PowerMgrInst.exe [62136 2021-07-11] (Lenovo -> )
Task: {530640BF-EFC4-49B2-B13D-2982423E739B} - System32\Tasks\Lenovo\UDC\Lenovo UDC Diagnostic Scan => C:\Windows\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> control udcservice 210
Task: {700CBB0A-8E65-4497-9C87-624FD9A14E97} - System32\Tasks\Lenovo\UDC\Lenovo UDC Idle Monitor => C:\windows\system32\drivers\Lenovo\udc\Service\UDCUserAgent.exe [90600 2023-11-02] (Lenovo -> Lenovo Group Ltd.) -> C:\windows\system32\drivers\Lenovo\udc\Service\/onidle
Task: {7AD9413E-19EE-400E-A4EF-C5944191B7D8} - System32\Tasks\Lenovo\UDC\Lenovo UDC Monitor => C:\WINDOWS\system32\drivers\lenovo\udc\data\InfBackup\UdcInfInstaller.exe [185312 2023-11-02] (Lenovo -> Lenovo Group Ltd.)
Task: {F36F79CB-2288-4727-8478-E50E1FC066BE} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [98304 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {432B8870-BA06-41F9-9885-555E8EEAAB63} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {65990D35-4B48-489A-884B-8B7D4631C282} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {FBA1F53B-277F-402B-A781-CBF0D1E0B45D} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {4174C5AD-5B52-4AF9-893C-719AE3E7A5AE} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\ScheduleEventAction.exe [30176 2023-12-15] (Lenovo -> Lenovo)
Task: {F94DE177-0668-4F29-A0A3-7A70EB364CD1} - System32\Tasks\Lenovo\Vantage\StartupFixPlan => C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\uninstall.exe [311776 2023-12-15] (Lenovo -> Lenovo)
Task: {05AF7282-1DFA-4AB5-92FB-CAECD205E169} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {4B66AB4F-4389-4FE1-B689-EB63D007A1D6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28452944 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {C8449880-5BD1-4FF8-ADC3-A4082BFE8143} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {A7659EE2-731A-4E16-BD66-566DB42ADDC3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [309944 2024-04-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {B425C71A-F433-4A98-8E29-EC98031D3DEF} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\operfmon.exe [168488 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {8C96512E-F56E-4129-90B0-6896D3E7F8D0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_LogonUpdateResults => %systemroot%\system32\MusNotification.exe LogonUpdateResults (No File)
Task: {50B5B1C3-6354-42BC-ABE0-91457C8030C2} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC ReadyToReboot (No File)
Task: {E2D26372-C12F-4D06-B106-6351D69176CC} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery ReadyToReboot (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {4E0B3926-09B8-4E35-8F64-E1FF28617A37} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D3862296-9E7A-4DDC-92D4-14E679A6A1C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {772C82D9-C5DD-44DC-8CD7-FCCAFF07453B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {302A641E-20B0-4A79-8E8E-0F36B87B8C20} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MpCmdRun.exe [1654168 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4EB0D5B6-97ED-429F-A520-145EFA85B379} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1005096 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {CA5E7B21-4359-4C87-BFE9-6B42A529584A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3345448 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9DC59A80-DDEA-400B-932A-2E5AD3CE4E9D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649256 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {B5413E2B-51A6-4551-8459-2EAA14030A75} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4B40D978-5977-48BE-BD47-F457541C3CA0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DD9F98B8-0685-447F-AB3F-805E0669CE36} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6409EB6C-F430-4D44-A1AC-2F9D8D926026} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {58888973-5131-4263-919C-05A9E4BB9D35} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C6FA745E-8379-46E9-ADD8-4324B2F51851} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-11-02] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {727A43BC-4B2B-4C70-BA18-FA995E3378DF} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {996BD985-D0BB-455C-8D3B-5FC13692521C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3418042445-3279430182-2626269580-1002 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4207120 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {D9DA71FA-BD17-4F13-9369-40CC0DF2D6D9} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_55047240f73a1fa6\RtkAudUService64.exe [1958808 2023-10-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1fd7ca95-0d77-4af9-bd2d-f1d1fd282ea0}: [NameServer] 8.8.8.8,1.1.1.1
Tcpip\..\Interfaces\{35f0bf58-a867-11eb-86e8-806e6f6e6963}: [NameServer] 8.8.8.8,1.1.1.1
Tcpip\..\Interfaces\{3f3d5ffc-e4dd-424d-8ff6-ff1c1fcffc32}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{4bbd3d19-14c0-4d80-8221-c6c8b3dd4fb7}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{87fba90b-365e-4304-a316-73b3b9a6fb8a}: [DhcpNameServer] 172.16.1.4
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}: [DhcpDomain] zyxel.localhost
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}\052757368616F5F52374: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b5c1561c-07ac-4148-88de-823773478bbe}\14E656471602D202960586F6E656: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{c2a7c4d9-eb55-423f-8cff-ac2a121d2f36}: [NameServer] 8.8.8.8,1.1.1.1
Tcpip\..\Interfaces\{c7ca547f-55ab-4e5e-a403-486ce751a792}: [NameServer] 8.8.8.8

Edge:
=======
Edge Profile: C:\Users\anetk\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-14]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default [2024-04-12]
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "about:blank"
CHR Extension: (Tipli do prohlížeče) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbnfnbehhjknomdbfhcobpgpphnlnikp [2022-07-13]
CHR Extension: (EndNote Click) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjgncogppolhfdpijihbpfmeohpaadpc [2024-04-01]
CHR Extension: (Dokumenty Google offline) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-03-23]
CHR Extension: (Under The Leaf) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ighhdikapddjihgaphbnbcgipafcamjk [2022-07-13]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-07-13]
CHR Extension: (Citace PRO VUT) - C:\Users\anetk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdhchaeklpanlniilpbkjddfiikjadih [2022-07-13]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AdskLicensingService; C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe [15706632 2023-02-14] (Autodesk, Inc. -> Autodesk)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [4555744 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 Autodesk Access Service Host; C:\Program Files\Autodesk\AdODIS\V1\Setup\AdskAccessServiceHost.exe [13247264 2024-02-16] (Autodesk, Inc. -> Autodesk, Inc.)
S2 CCBService; C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe [51492925 2023-08-15] (ChaosGroup) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [14221280 2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
R2 DolbyDAXAPI; C:\WINDOWS\System32\DriverStore\FileRepository\dax3_swc_aposvc.inf_amd64_3886d4759c27592b\DAX3API.exe [2479768 2022-06-16] (Dolby Laboratories, Inc. -> Dolby Laboratories)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncHelper.exe [3512224 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 FMAPOService; C:\WINDOWS\System32\FMService64.exe [479656 2022-08-08] (Microsoft Windows Hardware Compatibility Publisher -> Fortemedia)
S2 GoogleUpdaterInternalService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
S2 GoogleUpdaterService125.0.6386.0; C:\Program Files (x86)\Google\GoogleUpdater\125.0.6386.0\updater.exe [4774176 2024-03-29] (Google LLC -> Google LLC)
R2 IBMPMSVC; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmsvc.exe [1031024 2023-06-20] (Lenovo -> Lenovo)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 IntelAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\intcoed.inf_amd64_6f0a892deb241071\AS\IAS\IntelAudioService.exe [530424 2023-08-31] (Intel Corporation -> Intel)
R2 Lenovo Instant On; C:\Windows\SysWOW64\EasyResume.exe [2351320 2021-07-11] (Lenovo -> Lenovo Group Limited)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\4.0.52.0\LenovoVantageService.exe [34272 2023-12-15] (Lenovo -> Lenovo)
R2 LITSSVC; C:\WINDOWS\System32\DriverStore\FileRepository\litsdrv.inf_amd64_d3ffad9e9274786f\LITSSvc.exe [1001440 2024-01-18] (Lenovo -> Lenovo.)
S2 LPlatSvc; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\LPlatSvc.exe [915824 2023-06-20] (Lenovo -> Lenovo)
R2 McNeelUpdate; C:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [71928 2021-02-23] (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_4431f809be2dd54c\Display.NvContainer\NVDisplay.Container.exe [1275528 2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.055.0317.0002\OneDriveUpdaterService.exe [3852712 2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
R2 OptionsPlusUpdaterService; C:\Program Files\LogiOptionsPlus\logioptionsplus_updater.exe [18168576 2024-04-06] (Logitech Inc -> Logitech, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [522080 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynHsaService; C:\WINDOWS\System32\DriverStore\FileRepository\synawudfbiousbuwp.inf_amd64_0a328caa48d41753\SynRpcServer.exe [192128 2023-08-29] (WDKTestCert sarakelyan,130722862255941761 -> Synaptics Incorporated.)
R2 TbtP2pShortcutService; C:\WINDOWS\TbtP2pShortcutService.exe [256376 2017-07-04] (Intel Corporation -> Intel Corporation)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_341d0836121cf573\driver\TPHKLOAD.exe [197496 2024-01-09] (Lenovo -> Lenovo)
R2 UDCService; C:\WINDOWS\system32\DRIVERS\Lenovo\udc\Service\UDClientService.exe [72160 2023-11-02] (Lenovo -> Lenovo Group Ltd.)
R2 vrswrm-service; C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\register-service.exe [90176 2023-08-15] (Chaos Software Ltd. -> ) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\NisSrv.exe [3199648 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24030.9-0\MsMpEng.exe [133576 2024-04-11] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R3 e2fexpress; C:\WINDOWS\System32\DriverStore\FileRepository\e2f.inf_amd64_b0343b02ae8bdfed\e2f.sys [530048 2023-02-21] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_GPIO2_TGL; C:\WINDOWS\System32\DriverStore\FileRepository\ialpss2_gpio2_tgl.inf_amd64_2546dafe2183e972\iaLPSS2_GPIO2_TGL.sys [131224 2021-07-22] (Intel Corporation -> Intel Corporation)
R3 IBMPMDRV; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\ibmpmdrv.sys [56128 2023-06-20] (Lenovo -> Lenovo)
R3 IntcUSB; C:\WINDOWS\System32\DriverStore\FileRepository\intcusb.inf_amd64_c2a06a639869c7cd\IntcUSB.sys [923128 2023-08-31] (Intel Corporation -> Intel(R) Corporation)
R3 NvModuleTracker; C:\WINDOWS\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2022-07-14] (Nvidia Corporation -> NVIDIA Corporation)
R3 nvpcf; C:\WINDOWS\System32\drivers\nvpcf.sys [235016 2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
R1 PMDRVS; C:\WINDOWS\System32\DriverStore\FileRepository\ibmpmdrv.inf_amd64_7b52940a5893ba07\x64\pmdrvs.sys [41792 2023-06-20] (Lenovo -> Lenovo)
R0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [20936 2024-04-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [601376 2024-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105760 2024-04-11] (Microsoft Windows -> Microsoft Corporation)
R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_39b0d69e31702623\WiManH\WiManH.sys [180296 2022-07-11] (Intel Corporation -> Intel Corporation)
S3 9104582b; System32\Drivers\9104582b.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-12 21:23 - 2024-04-12 21:23 - 000000000 ____D C:\Intel
2024-04-12 21:19 - 2024-04-12 21:20 - 000016023 _____ C:\Users\anetk\Desktop\Fixlog.txt
2024-04-12 21:18 - 2024-04-12 21:18 - 000000000 ____D C:\Users\anetk\Desktop\FRST-OlderVersion
2024-04-12 21:09 - 2024-04-12 21:09 - 000693812 _____ C:\WINDOWS\system32\perfh005.dat
2024-04-12 21:09 - 2024-04-12 21:09 - 000143686 _____ C:\WINDOWS\system32\perfc005.dat
2024-04-12 10:15 - 2024-04-12 10:16 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2024-04-12 00:01 - 2024-04-12 00:01 - 110890352 _____ (AO Kaspersky Lab) C:\Users\anetk\Downloads\kvrt (1).exe
2024-04-11 23:57 - 2024-04-11 23:57 - 000000000 ____D C:\Users\anetk\AppData\Local\INetHistory
2024-04-11 21:58 - 2024-04-11 21:58 - 000000000 ____D C:\WINDOWS\SysWOW64\DDFs
2024-04-11 21:45 - 2024-04-11 21:45 - 000024320 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-04-11 21:44 - 2024-04-11 21:44 - 000024320 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-04-11 21:42 - 2024-04-11 21:43 - 000000000 ___HD C:\$WinREAgent
2024-04-11 21:02 - 2024-04-11 21:02 - 008790880 _____ (Malwarebytes) C:\Users\anetk\Downloads\adwcleaner.exe
2024-04-11 21:00 - 2024-04-12 00:07 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2024-04-08 14:39 - 2024-04-08 14:40 - 000078385 _____ C:\Users\anetk\Desktop\Addition.txt
2024-04-08 14:38 - 2024-04-12 21:25 - 000040738 _____ C:\Users\anetk\Desktop\FRST.txt
2024-04-08 14:28 - 2024-04-08 14:31 - 000000000 ____D C:\Users\anetk\AppData\Local\GHISLER
2024-04-08 14:28 - 2024-04-08 14:28 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\HTML Help
2024-04-08 14:27 - 2024-04-08 14:28 - 000000000 ____D C:\Users\anetk\AppData\Roaming\GHISLER
2024-04-08 14:27 - 2024-04-08 14:27 - 006537552 _____ (Ghisler Software GmbH) C:\Users\anetk\Downloads\tcmd1103x64.exe
2024-04-08 14:27 - 2024-04-08 14:27 - 000001085 _____ C:\Users\anetk\Desktop\Total Commander 64 bit.lnk
2024-04-08 14:27 - 2024-04-08 14:27 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2024-04-08 14:27 - 2024-04-08 14:27 - 000000000 ____D C:\Program Files\totalcmd
2024-04-08 14:21 - 2024-04-12 21:25 - 000000000 ____D C:\FRST
2024-04-08 14:21 - 2024-04-12 21:18 - 002394112 _____ (Farbar) C:\Users\anetk\Desktop\FRST64.exe
2024-04-08 14:20 - 2024-04-08 14:21 - 002393600 _____ (Farbar) C:\Users\anetk\Downloads\FRST64.exe
2024-04-08 10:51 - 2024-04-08 10:51 - 000234936 _____ (AVG Technologies CZ, s.r.o.) C:\Users\anetk\Downloads\avg_antivirus_free_setup.exe
2024-04-08 10:51 - 2024-04-08 10:51 - 000234936 _____ (AVG Technologies CZ, s.r.o.) C:\Users\anetk\Desktop\avg_antivirus_free_setup.exe
2024-04-08 10:46 - 2024-04-08 10:46 - 010262392 _____ (ESET) C:\Users\anetk\Downloads\eset_smart_security_premium_live_installer.exe
2024-04-08 08:49 - 2024-04-08 08:50 - 110660976 _____ (AO Kaspersky Lab) C:\Users\anetk\Downloads\kvrt.exe
2024-04-08 08:49 - 2024-04-08 08:49 - 000000000 ___HD C:\OneDriveTemp
2024-04-08 08:48 - 2024-04-08 08:49 - 000000000 ____D C:\Program Files\LogiOptionsPlus
2024-04-08 08:48 - 2024-04-08 08:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2024-04-06 09:29 - 2024-04-06 09:29 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-04-04 22:19 - 2024-04-04 22:15 - 110747504 _____ (AO Kaspersky Lab) C:\Users\anetk\Desktop\KVRT.exe
2024-04-04 21:02 - 2024-04-04 21:02 - 000000000 ____D C:\Users\anetk\AppData\Roaming\WinRAR
2024-04-04 21:02 - 2024-04-04 21:02 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-04 21:02 - 2024-04-04 21:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-04-04 21:01 - 2024-04-04 21:01 - 004194952 _____ C:\Users\anetk\Downloads\winrar-x64-700cz.exe
2024-04-03 08:17 - 2024-04-03 08:17 - 000000000 ____D C:\WINDOWS\system32\o2
2024-03-25 23:17 - 2024-03-25 23:17 - 000000000 ____D C:\Users\anetk\AppData\Local\Autodesk,_Inc
2024-03-25 23:16 - 2024-03-25 23:16 - 000651264 _____ C:\Users\anetk\Downloads\Oplechování atiky.rfa
2024-03-23 23:41 - 2024-03-23 23:41 - 127835564 _____ C:\Users\anetk\Downloads\bim-katalog-pro-revit.zip
2024-03-23 23:26 - 2024-03-23 23:26 - 102318080 _____ C:\Users\anetk\Downloads\Doors_Sliding_Schueco_Sliding-System-ASE-60.rvt
2024-03-23 23:03 - 2024-03-23 23:03 - 004023980 _____ C:\Users\anetk\Downloads\BIMobject-JARTON 7So Mortise Set Entrance BF74204.zip
2024-03-23 21:20 - 2024-03-23 21:23 - 512839354 _____ C:\Users\anetk\Downloads\ISOTRA.REVIT.LIB.zip
2024-03-23 21:14 - 2024-03-23 21:15 - 034006295 _____ C:\Users\anetk\Downloads\STAV_Revit_Stavebni-vykresy_10.zip
2024-03-23 10:06 - 2024-03-23 21:57 - 000000000 ____D C:\Users\anetk\AppData\Roaming\BIMTech Tools
2024-03-23 10:00 - 2024-03-23 10:00 - 077071272 _____ (BIM Technology s.r.o. ) C:\Users\anetk\Downloads\BIMTech_Tools_Revit_2.5.4331_2024_02_20.exe
2024-03-23 09:51 - 2024-04-12 21:24 - 000000000 ___RD C:\Users\anetk\OneDrive - VUT
2024-03-23 09:33 - 2024-03-23 09:59 - 000002055 _____ C:\Users\Public\Desktop\Revit 2024.lnk
2024-03-23 09:27 - 2024-03-23 09:27 - 000000000 ____D C:\Program Files\Common Files\Autodesk
2024-03-23 09:25 - 2024-03-23 09:25 - 014162776 _____ (Autodesk, Inc.) C:\Users\anetk\Downloads\Autodesk_Revit_2024_2_ML_setup_webinstall.exe
2024-03-23 09:22 - 2024-03-23 09:22 - 010235904 _____ C:\Users\anetk\Downloads\RD HORNÍ LHOTA.rvt

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-04-12 21:24 - 2022-07-14 20:34 - 000000000 ____D C:\Users\anetk\Documents\Chaos Cosmos
2024-04-12 21:24 - 2022-07-14 20:06 - 000000000 ____D C:\Users\anetk\AppData\Local\LogiOptionsPlus
2024-04-12 21:24 - 2022-07-13 23:01 - 000000000 ___RD C:\Users\anetk\OneDrive
2024-04-12 21:24 - 2022-07-13 23:00 - 000000000 __SHD C:\Users\anetk\IntelGraphicsProfiles
2024-04-12 21:24 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-04-12 21:24 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-04-12 21:24 - 2017-07-04 09:05 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-04-12 21:24 - 2017-07-04 09:05 - 000000000 ____D C:\ProgramData\NVIDIA
2024-04-12 21:24 - 2017-07-04 09:05 - 000000000 ____D C:\ProgramData\boost_interprocess
2024-04-12 21:23 - 2022-10-06 16:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-04-12 21:23 - 2022-05-07 07:17 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2024-04-12 21:23 - 2021-04-28 22:18 - 000012288 ___SH C:\DumpStack.log.tmp
2024-04-12 21:23 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\ServiceState
2024-04-12 21:19 - 2022-07-31 18:39 - 000000000 ____D C:\Users\anetk\AppData\LocalLow\Temp
2024-04-12 21:09 - 2022-10-06 16:25 - 001629494 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-04-12 21:09 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\INF
2024-04-12 21:05 - 2022-07-14 00:38 - 000000000 ____D C:\Users\anetk\AppData\Local\CrashDumps
2024-04-12 21:01 - 2022-10-06 16:20 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2024-04-12 05:55 - 2022-10-06 16:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-04-12 00:07 - 2022-10-15 11:57 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2024-04-12 00:02 - 2017-07-04 09:05 - 000000000 ____D C:\KVRT2020_Data
2024-04-12 00:00 - 2024-02-16 21:05 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-04-11 23:57 - 2017-07-04 09:05 - 000000000 ___HD C:\Program Files\WindowsApps
2024-04-11 21:59 - 2022-10-06 16:20 - 000637056 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-04-11 21:58 - 2023-10-20 06:43 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-04-11 21:58 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\DDFs
2024-04-11 21:58 - 2017-07-04 09:05 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-04-11 21:58 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-04-11 21:58 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\Provisioning
2024-04-11 21:58 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-04-11 21:58 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-04-11 21:58 - 2017-07-04 09:05 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-04-11 21:46 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-04-11 21:45 - 2022-10-06 16:23 - 003213824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-04-11 21:28 - 2022-07-14 06:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-04-11 21:26 - 2022-07-14 06:24 - 192651728 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-04-11 21:21 - 2017-07-04 09:05 - 000000000 ____D C:\WINDOWS\TempInst
2024-04-11 21:14 - 2021-04-28 22:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-04-11 21:05 - 2017-07-04 09:05 - 000000000 ____D C:\Program Files\Microsoft Office
2024-04-11 21:02 - 2022-07-13 23:13 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-04-08 14:31 - 2017-07-04 09:05 - 000000000 ____D C:\Users\anetk
2024-04-08 10:46 - 2023-08-17 11:28 - 000000000 ____D C:\Users\anetk\Desktop\Sketchup models
2024-04-08 09:45 - 2017-07-04 09:05 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-04-08 08:49 - 2022-10-06 16:22 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3418042445-3279430182-2626269580-1002
2024-04-08 08:49 - 2022-10-06 16:22 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-04-08 08:49 - 2022-07-14 05:47 - 000002139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-04-05 10:52 - 2022-10-24 15:11 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-04-05 10:52 - 2022-10-13 19:43 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-04-05 10:52 - 2022-10-06 16:22 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-04-05 10:51 - 2022-10-06 16:22 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-04-05 10:51 - 2022-10-06 16:22 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-04-04 21:02 - 2022-07-13 23:00 - 000000000 ____D C:\Users\anetk\AppData\Local\Packages
2024-04-04 20:20 - 2022-07-13 23:00 - 000000000 ____D C:\Users\anetk\AppData\Local\D3DSCache
2024-04-02 10:50 - 2023-08-15 10:32 - 000002508 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2024-04-02 10:50 - 2022-10-15 11:58 - 000002596 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2024-04-02 10:50 - 2022-10-06 16:22 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2024-04-02 10:50 - 2022-10-06 16:22 - 000002452 _____ C:\WINDOWS\system32\Tasks\RtkAudUService64_BG
2024-04-01 09:53 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2024-03-23 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-03-23 10:02 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-03-23 10:02 - 2022-05-07 07:17 - 000000000 ____D C:\WINDOWS\servicing
2024-03-23 10:00 - 2022-10-10 18:41 - 000000000 ____D C:\Users\anetk\AppData\Roaming\UI Launcher
2024-03-23 09:59 - 2022-07-16 05:27 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2024-03-23 09:49 - 2022-07-16 05:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2024-03-19 21:47 - 2022-07-14 01:39 - 000000000 ____D C:\Users\anetk\AppData\Roaming\Microsoft\Excel
2024-03-19 21:31 - 2022-09-20 15:50 - 000000000 ____D C:\Users\anetk\AppData\Roaming\com.adobe.dunamis

==================== Files in the root of some directories ========

2024-04-12 00:07 - 2024-04-12 00:07 - 000000000 _____ () C:\Users\anetk\AppData\Local\oobelibMkey.log

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
Addition:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10.04.2024
Ran by anetk (12-04-2024 21:25:34)
Running from C:\Users\anetk\Desktop
Microsoft Windows 11 Pro Version 23H2 22631.3447 (X64) (2022-10-06 14:22:54)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3418042445-3279430182-2626269580-500 - Administrator - Disabled)
anetk (S-1-5-21-3418042445-3279430182-2626269580-1002 - Administrator - Enabled) => C:\Users\anetk
DefaultAccount (S-1-5-21-3418042445-3279430182-2626269580-503 - Limited - Disabled)
Guest (S-1-5-21-3418042445-3279430182-2626269580-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3418042445-3279430182-2626269580-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 22.00 (x64) (HKLM\...\7-Zip) (Version: 22.00 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.001.20643 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.3.0.256 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.4.0.63 - Adobe Inc.)
Adobe Illustrator 2022 (HKLM-x32\...\ILST_26_0) (Version: 26.0 - Adobe Inc.)
Adobe Indes (HKLM\...\{CA2E76F3-BB69-486A-88D2-A3D387B69484}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe InDesign 2020 (HKLM-x32\...\IDSN_15_0_1) (Version: 15.0.1 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Substance 3D for 3ds Max 2022 (HKLM\...\{63EF86A7-A5CE-4BE3-8BCE-8B4EBE29A6C3}) (Version: 2.4.5 - Adobe)
Adobe Substance 3D for 3ds Max 2023 (HKLM\...\{896EDC13-76D3-4FC6-A741-A5B14D62A140}) (Version: 2.4.8 - Adobe)
Apollo 2022.10.1 (HKLM-x32\...\Apollo - Informační Centrum VUT_is1) (Version: - CVIS, VUT v Brně)
AutoCAD 2023 Shared (HKLM\...\{28B89EEF-6101-0000-4102-CF3F3A09B77D}) (Version: 24.2.153.0 - Autodesk) Hidden
AutoCAD 2023 Shared Language Pack – Čeština (Czech) (HKLM\...\{28B89EEF-6101-0405-5102-CF3F3A09B77D}) (Version: 24.2.112.0 - Autodesk) Hidden
AutoCAD Open in Desktop (HKLM\...\{2B8E195A-0082-4B8F-9284-0FCCB6017C23}) (Version: 1.0.26.0 - Autodesk)
Autodesk 3ds Max 2022 (HKLM\...\{87DB9B48-9408-427D-88D6-8197A89C9336}) (Version: 24.3.3.3511 - Autodesk) Hidden
Autodesk 3ds Max 2022 (HKLM\...\{F88F59D6-CBB7-34A0-95B2-A949D27A3D54}) (Version: 24.3.3.3511 - Autodesk, Inc.)
Autodesk 3ds Max 2023 (HKLM\...\{289FB1F1-6328-4987-80DA-763B0563C6EB}) (Version: 25.2.2.3312 - Autodesk) Hidden
Autodesk 3ds Max 2023 (HKLM\...\{A3D6F389-91FB-394A-94CC-BFA9C8096A85}) (Version: 25.2.2.3312 - Autodesk, Inc.)
Autodesk 3ds Max 2023 CivilView 1.2.0.0 (HKLM\...\{CB41F6A0-9517-418C-82B3-E9096834F5E2}) (Version: 1.2.0.0 - Autodesk) Hidden
Autodesk Access (HKLM\...\{A3158B3E-5F28-358A-BF1A-9532D8EBC811}) (Version: 2.5.0.107 - Autodesk, Inc.)
Autodesk Advance Steel 2023 Extension for Autodesk Revit (HKLM\...\{2DF56EC3-C190-33E6-AC06-A8D1DE99378E}) (Version: 23.0.77.0 - Autodesk, Inc.)
Autodesk Advance Steel 2023 Extension for Autodesk Revit (HKLM\...\{8CE16B20-2300-0010-0409-14931AFB5D9F}) (Version: 23.0.77.0 - Autodesk) Hidden
Autodesk Advance Steel 2023 Object Enabler (HKLM\...\{8BFA6077-103B-3842-9CD1-57646E284AB4}) (Version: 27.0.358.0 - Autodesk, Inc.)
Autodesk Advanced Material Library Base Resolution Image Library 2022 (HKLM-x32\...\{7E78B513-B354-4833-8897-3ED5C515D30F}) (Version: 20.3.7.0 - Autodesk)
Autodesk Advanced Material Library Base Resolution Image Library 2023 (HKLM-x32\...\{C90A4CC0-0862-4FC3-A07F-31F903659946}) (Version: 21.0.1.1 - Autodesk)
Autodesk Advanced Material Library Low Resolution Image Library 2022 (HKLM-x32\...\{EEAD8CC3-B6B7-4D4B-AF0D-4BBD3D93D67C}) (Version: 20.3.7.0 - Autodesk)
Autodesk Advanced Material Library Low Resolution Image Library 2023 (HKLM-x32\...\{93A8D797-F224-4238-8E87-EE673E0BAC8A}) (Version: 21.0.1.1 - Autodesk)
Autodesk Advanced Material Library Medium Resolution Image Library 2022 (HKLM-x32\...\{493ACC3C-3ABF-4CBB-8F6E-E4433090A589}) (Version: 20.3.7.0 - Autodesk)
Autodesk Advanced Material Library Medium Resolution Image Library 2023 (HKLM-x32\...\{489B5559-69A0-4165-A044-CEB510C6CBBF}) (Version: 21.0.1.1 - Autodesk)
Autodesk Advanced Modeling Tools for 3ds Max 2023 1.0.0.268 (HKLM\...\{1E73E0EF-EC23-4D93-9FF4-B0FF6C899E72}) (Version: 1.0.0.268 - Autodesk)
Autodesk App Manager (HKLM-x32\...\{4EF1F1D4-E74F-45A8-AF89-95907847D484}) (Version: 3.3.0 - Autodesk)
Autodesk AutoCAD 2023 – Čeština (Czech) (HKLM\...\{9E552C26-38D6-37FA-B05E-B21AD669358E}) (Version: 24.2.153.0 - Autodesk, Inc.)
Autodesk AutoCAD 2023.1.1 Update (HKLM\...\{8CC44160-26A4-3753-A761-701065E6AD0E}) (Version: 24.2.153.0 - Autodesk, Inc.)
Autodesk AutoCAD Performance Feedback Tool 1.3.12 (HKLM-x32\...\{293C8AB2-59FA-4C6E-A707-EE7457D8F567}) (Version: 1.3.12.0 - Autodesk)
Autodesk BIM Interoperability Tools v9.0.8119.0 for Revit 2023 (HKLM\...\{C3B31592-E791-3E67-9C2C-64EC896A4C53}) (Version: 9.0.8119.0 - Autodesk, Inc.)
Autodesk Civil 3D 2023 Object Enabler (HKLM\...\{6979BD25-6100-479A-1001-72684B590131}) (Version: 13.5.131.0 - Autodesk)
Autodesk Cloud Models for Revit 2023 (HKLM\...\{AA384BE4-2303-0010-0000-97E7D7D02300}) (Version: 23.0.20.21 - Autodesk) Hidden
Autodesk Cloud Models for Revit 2024 (HKLM\...\{AA384BE4-2405-0010-0000-97E7D7D02400}) (Version: 24.2.0.63 - Autodesk) Hidden
Autodesk Fabrication CADmep Object Enabler 2023 (HKLM\...\{439D4F50-53FA-36F9-AF8C-0A0231A02F6A}) (Version: 23.0.2.1100 - Autodesk, Inc.)
Autodesk Genuine Service (HKLM\...\{21DE6405-91DE-4A69-A8FB-483847F702C6}) (Version: 7.4.0.223 - Autodesk)
Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.11.9.11 - Autodesk)
Autodesk Interoperability Engine Manager (HKLM\...\{412B8C29-F1BC-3791-A0BA-490A502077FA}) (Version: 1.1.0.28 - Autodesk.com) Hidden
Autodesk Interoperability Engine Manager (HKLM\...\{C4EFAB73-D98A-3676-A3F8-142FC78E0EF3}) (Version: 1.0.0.11 - Autodesk.com) Hidden
Autodesk Inventor Interoperability 2023 (HKLM\...\{D781DC24-6E69-4521-8ECB-BB089A744BAB}) (Version: 27.10.20800.0004 - Autodesk) Hidden
Autodesk Issues Addin for Revit 2023 (HKLM\...\{6ADBC1E7-B2BA-5446-A010-1C1928B295A2}) (Version: 5.0.0.0 - Autodesk) Hidden
Autodesk Issues Addin v5.0 for Revit 2023 (HKLM\...\{596576AB-5D8E-31B7-87EE-7D9311311ECC}) (Version: 5.0.0.0 - Autodesk, Inc.)
Autodesk Material Library 2022 (HKLM-x32\...\{A9221A68-5AD0-4215-B54F-CB5DBA4FB27C}) (Version: 20.3.7.0 - Autodesk)
Autodesk Material Library 2023 (HKLM-x32\...\{8E133591-B0FD-4DB0-B60E-FB593CAF72B0}) (Version: 21.0.1.1 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2022 (HKLM-x32\...\{6256584F-B04B-41D4-8A59-44E70940C473}) (Version: 20.3.7.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2023 (HKLM-x32\...\{3B564A94-BA47-4E42-ACD6-B5C35291210B}) (Version: 21.0.1.1 - Autodesk)
Autodesk Material Library Low Resolution Image Library 2023 (HKLM-x32\...\{9E728FC7-CC88-4CBD-A1A2-094E27F05EF1}) (Version: 21.0.1.1 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2022 (HKLM-x32\...\{8300AA3F-6ADF-4233-A1FB-73B1894102F0}) (Version: 20.3.7.0 - Autodesk)
Autodesk Material Library Medium Resolution Image Library 2023 (HKLM-x32\...\{2ED470F3-3989-458D-AF24-8B2C4364A8CC}) (Version: 21.0.1.1 - Autodesk)
Autodesk MEP Fabrication Data Manager Sync - Tech Preview (HKLM\...\{19CB96C3-0D32-39FB-B851-FBBBD7DCCE2C}) (Version: 1.1.2.360 - Autodesk, Inc.)
Autodesk MEP Fabrication Data Manager Sync - Tech Preview (HKLM\...\{449ADC0A-53ED-40F1-9BDB-8945660B9CD7}) (Version: 1.1.2.360 - Autodesk) Hidden
Autodesk NWC Publish Add-in for Revit 2023 (HKLM\...\{3811FCC3-C0C7-3A6B-A5C3-7B1E7278D46E}) (Version: 1.0.1.0 - Autodesk, Inc.)
Autodesk Publish NWC Addin for Revit 2023 (HKLM\...\{704C33A4-F3E9-5117-B9E0-4BE04F44968F}) (Version: 1.0.1.0 - Autodesk) Hidden
Autodesk Revit 2023 (HKLM\...\{B4E35F04-D559-35E9-AB70-E0131AF7AB5B}) (Version: 23.0.20.21 - Autodesk, Inc.)
Autodesk Revit 2023.0.2 Hotfix (HKLM\...\{F67CCF76-8340-3BE5-9DB9-DC2154A22296}) (Version: 23.0.20.21 - Autodesk, Inc.)
Autodesk Revit 2024 (HKLM\...\{F9013D08-6F9F-3F9B-8360-93C40ABE4C1B}) (Version: 24.2.0.63 - Autodesk, Inc.)
Autodesk Revit 2024.2 Update (HKLM\...\{49A82B2D-DA3A-36FB-88CD-1B45776FFD21}) (Version: 24.2.0.63 - Autodesk, Inc.)
Autodesk Revit Content Core 2023 (HKLM\...\{AA384BE4-2023-0410-0000-9241AD002DA5}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Core 2024 (HKLM\...\{AA384BE4-2024-0410-0000-9241AD002DA5}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Revit Content Core-RVT 2023 (HKLM\...\{CC7D1ED0-2023-0410-0000-1CC925969102}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Core-RVT 2024 (HKLM\...\{CC7D1ED0-2024-0410-0000-1CC925969102}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Revit Content Essential-CSY 2023 (HKLM\...\{848BACE1-2023-1029-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-DEU 2023 (HKLM\...\{848BACE1-2023-1031-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ENG 2023 (HKLM\...\{848BACE1-2023-2057-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ENU 2023 (HKLM\...\{848BACE1-2023-1033-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ESP 2023 (HKLM\...\{848BACE1-2023-1034-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-FRA 2023 (HKLM\...\{848BACE1-2023-1036-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-CHS 2023 (HKLM\...\{848BACE1-2023-2052-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-CHT 2023 (HKLM\...\{848BACE1-2023-1028-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-ITA 2023 (HKLM\...\{848BACE1-2023-1040-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-JPN 2023 (HKLM\...\{848BACE1-2023-1041-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-KOR 2023 (HKLM\...\{848BACE1-2023-1042-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-PLK 2023 (HKLM\...\{848BACE1-2023-1045-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-PTB 2023 (HKLM\...\{848BACE1-2023-1046-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Content Essential-RUS 2023 (HKLM\...\{848BACE1-2023-1049-A981-1A6F0898E5BC}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit DB Link 2023 (HKLM\...\{282CD6A9-2301-0010-0000-A6206F572300}) (Version: 23.0.10.18 - Autodesk) Hidden
Autodesk Revit Engine 2022 (HKLM\...\{DA6E3B72-3088-2022-9993-45D9FF1AD8D0}) (Version: 22.0.2.392 - Autodesk) Hidden
Autodesk Revit Engine 2023 (HKLM\...\{DA6E3B72-3088-2023-9993-45D9FF1AD8D0}) (Version: 23.0.0.296 - Autodesk, Inc.)
Autodesk Revit Extension for MEP Fabrication Part Commands 2023 (HKLM\...\{147A5B7B-2363-4447-0000-8DF862672300}) (Version: 23.0.10.18 - Autodesk) Hidden
Autodesk Revit Extension for MEP Fabrication Part Commands 2023 (HKLM\...\{75FC64DA-41E9-348C-B55E-B0724C986293}) (Version: 23.0.10.18 - Autodesk, Inc.)
Autodesk Revit Fabrication MEP Exchange Addin for Revit 2023 (HKLM\...\{32CCCFE6-3A00-46A3-A12D-01A5B463AA54}) (Version: 1.0.0.0 - Autodesk) Hidden
Autodesk Revit InfraWorks Updater 2023 (HKLM\...\{953A0E18-2300-4277-9C89-713FA15A2BC9}) (Version: 23.0.380.0 - Autodesk) Hidden
Autodesk Revit InfraWorks Updater 2023 (HKLM\...\{A69882A9-3643-3E3C-A8CF-172CBD5BB5F6}) (Version: 23.0.380.0 - Autodesk, Inc.)
Autodesk Revit MEP Imperial Content 2023 (HKLM\...\{94A3167C-9403-4421-8F25-434591B7D16D}) (Version: 2.4 - Autodesk) Hidden
Autodesk Revit MEP Metric Content 2023 (HKLM\...\{2D1156AE-553B-4387-A423-32E89A18620E}) (Version: 2.3 - Autodesk) Hidden
Autodesk Revit Product Feedback 2023 (HKLM\...\{D0AA00F5-2023-4900-BB7C-21929DC2B241}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Revit Product Feedback 2024 (HKLM\...\{D0AA00F5-2024-4900-BB7C-21929DC2B241}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Revit Unit Schemas 2022 (HKLM\...\{CDCC6F31-2022-4901-8E9B-D562B70697B6}) (Version: 22.0.2.392 - Autodesk)
Autodesk Revit Unit Schemas 2023 (HKLM\...\{CDCC6F31-2023-4903-8E9B-D562B70697B6}) (Version: 23.0.20.21 - Autodesk, Inc.)
Autodesk Revit Unit Schemas 2024 (HKLM\...\{CDCC6F31-2024-4906-8E9B-D562B70697B6}) (Version: 24.2.0.63 - Autodesk, Inc.)
Autodesk Robot Structural Analysis Extension for Revit 2023 (HKLM\...\{13AC1E80-CACD-382C-9A94-4D17D2BCE093}) (Version: 2023.0.0.4937 - Autodesk, Inc.)
Autodesk Single Sign On Component (HKLM\...\{84505E1D-B65E-4909-B864-01D9772C7C40}) (Version: 13.6.6.1806 - Autodesk)
Autodesk Steel Connections Core Content for Revit 2023 (HKLM\...\{C430585C-2023-4514-A253-D0C70D33ADD5}) (Version: 23.0.11.19 - Autodesk) Hidden
Autodesk Steel Connections Core Content for Revit 2024 (HKLM\...\{C430585C-2024-4514-A253-D0C70D33ADD5}) (Version: 24.1.11.26 - Autodesk) Hidden
Autodesk Vehicle Tracking 2023 Object Enabler (64 bit) (HKLM\...\{50A7071A-1345-433D-AC73-85A2359584A1}) (Version: 23.0.0.2518 - Autodesk, Inc.) Hidden
Autodesk Vehicle Tracking Object Enabler 2023 (HKLM\...\{470DFBA3-707D-311F-86BF-770D8B1ADBF8}) (Version: 23.0.0.2518 - Autodesk, Inc.)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1653.5 - AVAST Software) Hidden
Batch Print for Autodesk Revit 2023 (HKLM\...\{82AF00E4-2301-0010-0000-FCE0F8702300}) (Version: 23.0.11.19 - Autodesk) Hidden
Batch Print for Autodesk Revit 2024 (HKLM\...\{82AF00E4-2401-0010-0000-FCE0F8702400}) (Version: 24.1.11.26 - Autodesk) Hidden
BIM Interoperability Tools for Revit 2023 (HKLM-x32\...\{44B2204C-8593-479D-8C0D-231F86C34C08}) (Version: 9.0.8119.0 - Autodesk) Hidden
BIMTech Tools for Revit 2.5.4331 verze 2.5.4331 (HKLM-x32\...\{1D261017-1A97-44BF-852E-049E5D08BF14}_is1) (Version: 2.5.4331 - BIM Technology s.r.o.)
Corona Renderer for 3ds Max (HKLM\...\CoronaForMax) (Version: 7 (Hotfix 1) - Chaos Czech a.s.)
Český překlad WoW (HKLM-x32\...\CzechWoW) (Version: - )
Enscape (HKLM\...\{FBC761FC-4557-4893-8C29-8D209430DD02}) (Version: 3.4.1.87719 - Enscape GmbH)
eTransmit for Autodesk Revit 2023 (HKLM\...\{4477F08B-2301-0010-0000-9A09D8342300}) (Version: 23.0.11.19 - Autodesk) Hidden
eTransmit for Autodesk Revit 2024 (HKLM\...\{4477F08B-2401-0010-0000-9A09D8342400}) (Version: 24.1.11.26 - Autodesk) Hidden
FormIt Converter for Revit 2023 (HKLM\...\{64CDE5FF-7A65-4833-9906-374EA946C68F}) (Version: 23.0.20.21 - Autodesk) Hidden
FormIt Converter for Revit 2024 (HKLM\...\{A4D93D5A-1942-2420-828E-C58A8DDB4377}) (Version: 24.2.0.63 - Autodesk) Hidden
Generative Design For Revit (HKLM\...\{14D69EB6-2448-42E4-A551-84AC01624CC6}) (Version: 24.10.5.0 - Autodesk) Hidden
Generative Design For Revit (HKLM\...\{5CD7A2B2-0BD0-4509-BE85-06601756F9B3}) (Version: 23.3.0.0 - Autodesk) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 123.0.6312.107 - Google LLC)
Horizon Zero Dawn (HKLM-x32\...\Horizon Zero Dawn_is1) (Version: - )
Chaos Cloud Client (HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Chaos Cloud Client) (Version: 1.20.2 - Chaos Software Ltd)
Chaos Cosmos Browser (HKLM\...\Chaos Cosmos Browser) (Version: 2022.11.2 - Chaos Software Ltd)
Chaos License Server (HKLM\...\Chaos License Server) (Version: 6.0.0 - Chaos Software Ltd)
Chaos Unified Login (HKLM\...\Chaos Unified Login) (Version: 2022.8.29 - Chaos Software Ltd)
IFC for Revit 2023 (HKLM\...\{1466C360-0325-3705-B05A-F51CA828C10B}) (Version: 23.1.0.85 - Autodesk, Inc.)
Klasifikace 5.7 (HKLM-x32\...\{BE7E6DAC-7EAA-4546-BBDD-43ADDF49EA14}_is1) (Version: - JPH Software)
Lenovo Quick Clean (HKLM-x32\...\{DD167096-6F6D-4250-B94E-6CE26EE8C409}_is1) (Version: 1.02.0046 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.0.52.0 - Lenovo Group Ltd.)
Lighting Analysis for Autodesk Revit 2023 (HKLM\...\{199AE25C-2302-0010-0000-061260A72300}) (Version: 23.1.0.96 - Autodesk) Hidden
Lighting Analysis for Revit 2023 (HKLM\...\{CB10EDD7-37B4-304A-AA1C-D2BD6C621359}) (Version: 23.1.0.96 - Autodesk, Inc.)
Logi Options+ (HKLM\...\{850cdc16-85df-4052-b06e-4e3e9e83c5c6}) (Version: 1.60.495862 - Logitech)
MAXtoA for 3ds Max 2022 (HKLM\...\{576DB663-9167-4D14-868C-0560DDB10FD7}) (Version: 5.0.0.93 - Autodesk)
MAXtoA for 3ds Max 2023 (HKLM\...\{68E8B18F-6D24-4642-B42F-2AC6D9612441}) (Version: 5.4.0.37 - Autodesk)
Microsoft .NET Core Host - 3.1.10 (x64) (HKLM\...\{52B42932-15C1-45D4-8904-FC3117EEE69B}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.10 (x64) (HKLM\...\{752B4412-A129-4CB2-AD96-B6D97EAD3090}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM\...\{396D7BC8-E3C8-4B3E-8C60-D50D94FDF09D}) (Version: 24.104.29419 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.10 (x64) (HKLM-x32\...\{4714dd0a-ebab-4f59-a708-f8d7a793b3f5}) (Version: 3.1.10.29419 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 - Shared Framework (HKLM-x32\...\{6efe3294-03d8-4977-9c67-9f57ab075130}) (Version: 3.1.10.20520 - Microsoft Corporation)
Microsoft ASP.NET Core 3.1.10 Shared Framework (x64) (HKLM\...\{7BEAA207-E3EB-3948-BBB3-336B04D8A2F1}) (Version: 3.1.10.20520 - Microsoft Corporation) Hidden
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 123.0.2420.65 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Retail - cs-cz) (Version: 16.0.17425.20176 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.055.0317.0002 - Microsoft Corporation)
Microsoft SQL Server 2014 Express LocalDB (HKLM\...\{BAF67399-85CD-4555-9B49-1F80EB921C35}) (Version: 12.3.6024.0 - Microsoft Corporation)
Microsoft SQL Server 2019 LocalDB (HKLM\...\{F4F4157C-0951-4F00-8530-E3A6B2BE8606}) (Version: 15.0.2000.5 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\Teams) (Version: 1.5.00.4689 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33130 (HKLM-x32\...\{1de5e707-82da-4db6-b810-5d140cc4cbb3}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33130 (HKLM-x32\...\{2cfeba4a-21f8-4ea7-9927-c5a5c6f13cc9}) (Version: 14.38.33130.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33130 (HKLM\...\{C31777DB-51C1-4B19-9F80-38EF5C1D7C89}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33130 (HKLM\...\{1CA7421F-A225-4A9C-B320-A36981A2B789}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33130 (HKLM-x32\...\{5CA9AE7B-2EFC-4F02-81CD-32ABE173C755}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33130 (HKLM-x32\...\{DF1B52DF-C88E-4DDF-956B-6E7A03327F46}) (Version: 14.38.33130 - Microsoft Corporation) Hidden
NewCP (HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\newcp) (Version: 1.5.2 - NewCP)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 551.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 551.52 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
Object Enabler for AutoCAD Plant 3D 2023 - English (HKLM\...\{4F3D8B06-25A0-3E40-83DB-38C6E2C3C0AB}) (Version: 14.0.5300.1 - Autodesk, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17231.20236 - Microsoft Corporation) Hidden
OpenStudio CLI For Revit 2023 (HKLM\...\{49E88835-0902-4C30-A4A8-6AE9D663AF81}) (Version: 1.0.4 - NREL)
OpenStudio CLI For Revit 2024 (HKLM\...\{D80802CF-45BD-45D6-8891-AD043AAC52AB}) (Version: 1.1.5 - NREL)
Personal Accelerator for Revit (HKLM\...\{3E834868-1499-4491-B8F5-461E0D8475B6}) (Version: 23.6.0.0 - Autodesk) Hidden
Personal Accelerator for Revit (HKLM\...\Personal Accelerator for Revit) (Version: 23.6.0.0 - Autodesk)
Results Explorer Manager (HKLM\...\{276D966C-3C26-49A1-A53A-820566EFF8D1}) (Version: 24.0.0.5138 - Autodesk, Inc.) Hidden
Results Explorer Manager (HKLM\...\{60C0209C-4E50-48BD-970C-C60FFDC8E8D9}) (Version: 23.0.0.4949 - Autodesk, Inc.) Hidden
Retopology Tools for 3ds Max 2022 (HKLM\...\{BB2AB7CC-97E1-4008-8371-38D756F83D98}) (Version: 1.2.0.589 - Autodesk, Inc.)
Retopology Tools for 3ds Max 2023 (HKLM\...\{8B64FC5A-8A21-4A4B-8D1C-5A3BE7D13660}) (Version: 1.2.0.589 - Autodesk, Inc.)
Revit 2023 (HKLM\...\{7346B4A0-2300-0510-0000-705C0D862004}) (Version: 23.0.20.21 - Autodesk) Hidden
Revit 2024 (HKLM\...\{7346B4A0-2400-0510-0000-705C0D862004}) (Version: 24.2.0.63 - Autodesk) Hidden
Revit DB Link for Revit 2023 (HKLM\...\{96FA1029-11E5-3143-BD57-441349E28A1A}) (Version: 23.0.10.18 - Autodesk, Inc.)
Revit Fabrication MEP Exchange Addin for Revit 2023 (HKLM\...\{C1F5400E-A190-3945-BA6E-B20858540E95}) (Version: 23.0.0.913 - Autodesk, Inc.)
Revit IFC 2023 (HKLM\...\{1A9C2C21-23B8-42D2-0000-992E73C12300}) (Version: 23.1.0.0 - Autodesk) Hidden
REX Framework (HKLM\...\{D29C8D32-C8E0-42A8-AA21-71A4C17B6ACD}) (Version: 24.0.0.5143 - Autodesk, Inc.) Hidden
REX Framework (HKLM\...\{FCA7436F-424A-48A4-85E0-E3F400355279}) (Version: 23.0.1.4951 - Autodesk, Inc.) Hidden
REX Revit (HKLM\...\{11AFDE30-6E36-412B-8220-A78311625B91}) (Version: 24.0.0.5143 - Autodesk, Inc.) Hidden
REX Revit (HKLM\...\{68279641-03C3-465E-A81C-C6F3B426C115}) (Version: 23.0.0.4949 - Autodesk, Inc.) Hidden
Rhino 7 (HKLM\...\{21A8E9ED-1B91-42C3-8C0F-ECF0DE3C2C8E}) (Version: 7.3.21053.23031 - Robert McNeel & Associates) Hidden
Rhino 7 (HKLM-x32\...\{ea1f3dca-3045-4622-998a-fc35aeaafa8d}) (Version: 7.3.21053.23031 - Robert McNeel & Associates)
Rhino Installer Engine (HKLM\...\{FD6BB71B-2563-4191-9DC3-1CEB8DC8CD50}) (Version: 7.3.21053.23031 - Robert McNeel & Associates) Hidden
Rhinoceros 7 Language Pack Installer (en-US) (HKLM\...\{D2D611C6-C538-488B-B416-A86965B4AD87}) (Version: 7.3.21053.23031 - Robert McNeel & Associates) Hidden
Robot Structural Analysis Extension for Revit (HKLM\...\{0808389A-32DD-4A5F-995B-6A88326F8F11}) (Version: 2023 - Autodesk, Inc.) Hidden
Roombook Areabook Buildingbook for Revit 2023 (HKLM\...\{F71C9798-2301-490C-B561-A9D8347E2300}) (Version: 23.0.0.1 - Autodesk) Hidden
Roombook Areabook Buildingbook v1 for Revit 2023 (HKLM\...\{8438EDAD-F483-311C-9F8B-692232E8D513}) (Version: 23.0.10.18 - Autodesk, Inc.)
RSA COM (HKLM\...\{41169307-8761-4130-9D94-07CB8EC41EC9}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA COM (HKLM\...\{5D786C4F-D5A3-407A-9F83-17E94E30032E}) (Version: 24.0.0.10033 - Autodesk, Inc.) Hidden
RSA CommonData (HKLM\...\{50154939-4307-4F25-BC43-39165C0F5DC2}) (Version: 24.0.0.10037 - Autodesk, Inc.) Hidden
RSA CommonData (HKLM\...\{B890A922-9161-414E-A3D1-48704296DEAA}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA Interop (HKLM\...\{8423E7EB-9644-4520-B31B-60252620BA47}) (Version: 24.0.0.10028 - Autodesk, Inc.) Hidden
RSA Interop (HKLM\...\{8ECAAE12-419B-4CDE-A735-19870F980322}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA RoReinf (HKLM\...\{79F02AA3-6296-4D12-8CB7-303BE4AECDE2}) (Version: 23.0.0.9223 - Autodesk, Inc.) Hidden
RSA RoReinf (HKLM\...\{D318DE54-FBA0-4ED6-A85B-3A079F17626B}) (Version: 24.0.0.10028 - Autodesk, Inc.) Hidden
SketchUp 2021 (HKLM-x32\...\{09480c81-5458-4d69-ab73-ee488fe8c297}) (Version: 21.0.339 - Trimble, Inc.)
SketchUpPro (HKLM\...\{db5288e9-89f4-722c-9939-39e899d2e519}) (Version: 21.0.339.121 - SketchUp) Hidden
Solar Analysis for Autodesk Revit 2023 (HKLM\...\{AA10A02F-2301-0010-0000-16F70D2F2300}) (Version: 23.0.10.18 - Autodesk) Hidden
Solar Analysis for Revit 2023 (HKLM\...\{326329AF-9506-3C4C-B856-D5D79D129DB6}) (Version: 23.0.10.18 - Autodesk, Inc.)
Speciální aplikace Autodesk (HKLM-x32\...\{DE8DA5A8-C311-4F2B-B1C3-27A8BC154154}) (Version: 3.3.0 - Autodesk)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.4689 - Microsoft Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
Uložit do služby Autodesk Web and Mobile (HKLM\...\{5AB49421-ADA1-4512-9E47-0AE9906F6A28}) (Version: 3.0.30 - Autodesk)
USD for Autodesk 3ds Max 2022 (HKLM\...\{2978F6A4-7C0A-42F5-9222-6184A5BB8AD2}) (Version: 0.2.0.833 - Autodesk, Inc.)
USD for Autodesk 3ds Max 2023 (HKLM\...\{BF0F3284-C849-45D3-8865-1F7FE09AD062}) (Version: 0.2.0.41 - Autodesk, Inc.)
V-Ray for Rhinoceros (HKLM\...\V-Ray for Rhinoceros) (Version: 5.10.01 - Chaos Software Ltd)
V-Ray for SketchUp (HKLM\...\V-Ray for SketchUp) (Version: 6.00.01 - Chaos Software Ltd)
V-Ray for SketchUp 6 (HKLM-x32\...\{8D7BD6EE-C597-4375-B07F-A91FC78991C7}) (Version: 1.00.0000 - ASGvis, LLC)
V-Ray Swarm (HKLM\...\V-Ray Swarm) (Version: 1.4.7 - Chaos Software Ltd)
WinRAR 7.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.00.0 - win.rar GmbH)
Worksharing Monitor for Autodesk Revit 2023 (HKLM\...\{5063E738-2301-0010-0000-7B7B9AB02300}) (Version: 23.0.11.19 - Autodesk) Hidden
Worksharing Monitor for Autodesk Revit 2024 (HKLM\...\{5063E738-2401-0010-0000-7B7B9AB02400}) (Version: 24.1.11.26 - Autodesk) Hidden

Packages:
=========

Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-03-19] ()
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5435.0_x64__8j3eq9eme6ctt [2024-04-11] (INTEL CORP) [Startup Task]
AppUp.ThunderboltControlCenter -> C:\Program Files\WindowsApps\AppUp.ThunderboltControlCenter_1.0.37.0_x64__8j3eq9eme6ctt [2023-11-03] (INTEL CORP)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.21.269.0_x64__rz1tebttyb220 [2024-03-23] (Dolby Laboratories)
Dolby Vision -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionHDR_2.20301.388.0_x64__rz1tebttyb220 [2023-11-14] (Dolby Laboratories)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-14] (Microsoft Corporation)
Glance by Mirametrix® -> C:\Program Files\WindowsApps\MirametrixInc.GlancebyMirametrix_10.24.1787.0_x64__17mer8kcn3j54 [2023-11-03] (Mirametrix Inc.) [Startup Task]
Lenovo Commercial Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoSettingsforEnterprise_10.2401.29.0_x64__k1h2ywk1493x8 [2024-03-23] (LENOVO INC.)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-08-15] (Microsoft Corporation)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-04-05] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-17] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-03-23] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24031.69.0_x64__cw5n1h2txyewy [2024-04-11] (Microsoft Windows) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.965.0_x64__56jybvy8sckqj [2024-04-01] (NVIDIA Corp.)
PrebootManager -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynapticsUtilities_1.1.18.0_x64__807d65c4rvak2 [2024-02-12] (Synaptics Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.47.310.0_x64__dt26b99r8h8gj [2024-01-19] (Realtek Semiconductor Corp)
Synaptics TouchPad Control Panel -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynapticsControlPanel_19005.19089.0.0_x64__807d65c4rvak2 [2022-07-14] (Synaptics Incorporated)
Synaptics Trackpoint Control Panel -> C:\Program Files\WindowsApps\SynapticsIncorporated.241916F58D6E7_19005.19089.0.0_x64__807d65c4rvak2 [2022-07-14] (Synaptics Incorporated)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-03-23] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2017-07-04] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{04271989-C4D2-05A7-6596-DED8B5D5915E} -> [OneDrive - VUT] => C:\Users\anetk\OneDrive - VUT [2024-03-23 09:51]
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\anetk\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21348.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2023\acad.exe (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2023\cs-CZ\acadficn.dll (Autodesk Asia Pte. Ltd. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Common Files\Autodesk Shared\Inventor Interoperability 2023\Bin\TestServer.dll (Autodesk, Inc. -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-3418042445-3279430182-2626269580-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2022-02-01] (Autodesk, Inc. -> Autodesk, Inc.)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2022-02-01] (Autodesk, Inc. -> Autodesk)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.055.0317.0002\FileSyncShell64.dll [2024-04-08] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvlti.inf_amd64_4431f809be2dd54c\nvshext.dll [2024-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2017-09-26] (Adobe Systems Incorporated -> )

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-16] (Electronic Arts -> On2.com)

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2024-03-23 09:44 - 2024-02-16 08:30 - 000925184 _____ () [File not signed] \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adIPC.node
2024-03-23 09:44 - 2024-02-16 16:39 - 000371712 _____ () [File not signed] \\?\C:\Program Files\Autodesk\AdODIS\V1\Access\ui-plugins\ada\addons\adpUtil.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000138240 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\bufferutil\build\Release\bufferutil.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000174592 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\ffi\build\Release\ffi_bindings.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000163328 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\ref\build\Release\binding.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000137728 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\utf-8-validate\build\Release\validation.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000204800 _____ () [File not signed] \\?\C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\node_modules\v8-profiler\build\profiler\v5.6.5\node-v48-win32-x64\profiler.node
2023-08-15 11:02 - 2023-08-15 11:02 - 000143360 _____ () [File not signed] C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\logtext.dll
2023-08-08 08:48 - 2023-08-08 08:48 - 000310272 _____ (Autodesk) [File not signed] [File is in use] C:\Program Files\Autodesk\Personal Accelerator for Revit\Autodesk.C4R.AdWebServicesInterop.dll
2023-08-08 08:49 - 2023-08-08 08:49 - 000177152 _____ (Autodesk) [File not signed] [File is in use] C:\Program Files\Autodesk\Personal Accelerator for Revit\Autodesk.C4R.IDSDKInterop.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\9104582b.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\9104582b.sys => ""="Driver"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\Software\Classes\.scr: AutoCADScriptFile =>

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-04-06] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2024-04-04 22:36 - 000000147 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Intel;C:\Intel\m;C:\Intel\logs;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Microsoft SQL Server\120\Tools\Binn\;C:\Program Files\dotnet\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Common Files\Autodesk Shared\Advance\;C:\Program Files (x86)\Common Files\Autodesk Shared\Advance\;C:\Program Files\Common Files\Autodesk Shared\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\Users\anetk\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\anetk\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "MRT"
HKLM\...\StartupApproved\Run32: => "MRT"
HKU\S-1-5-21-3418042445-3279430182-2626269580-1002\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{6E9E775C-93FF-4098-9CD4-EFC4B969023A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\Epic Roller Coasters.exe () [File not signed]
FirewallRules: [{E7BEDA1A-8F13-4996-8B64-B3CBF9E151F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Epic Roller Coasters\Epic Roller Coasters.exe () [File not signed]
FirewallRules: [{6E16A94E-BE7B-4EE1-8A6E-6359E5BD2E8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgical Robot Simulator\dist\SurgSimVR.exe () [File not signed]
FirewallRules: [{56B82F60-5D7F-4504-A8C4-7082D2570F88}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Surgical Robot Simulator\dist\SurgSimVR.exe () [File not signed]
FirewallRules: [{ACE1E7E5-66F0-4E20-8E9D-22AB908E7136}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [{7ACE7D7C-444E-4B26-95EA-B96A6CC442E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\EarthVR\Earth.exe (Google Inc -> Google Inc)
FirewallRules: [{D0558B78-1D91-4D3E-BFAD-D1E16E05CE60}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{EE93AB7E-DA78-4A08-AF25-C5112D578D33}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe (Valve -> )
FirewallRules: [{A367696A-C656-4675-A225-0C91AA1FA607}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{156D7F6F-6407-42FD-855D-4A27205E9FB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe (Valve -> )
FirewallRules: [{1A00690B-C7F5-482D-8BE9-A875FC95203C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{CB401379-5481-44B6-8135-01F586C9D1FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A3FA9CE5-FE85-4F79-B4E4-AE65F6D50252}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A25EC6A4-CD20-4DD8-BC20-219B7D8DFD56}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{26A145D8-D36F-440E-A7C8-E51CA771DE9C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3747B32A-7832-4818-A7D8-6AC6D94339ED}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A674CFA4-B82A-4B58-9B7D-0EB3F2B367E6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3A580059-89F0-46DC-A3D3-337E02B11E73}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.86.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{51BF57E6-7B92-4366-8466-76701D551B47}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FEE5956B-6961-4A97-951D-4EEBC0B484B5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{F240C879-1A68-4E8C-9768-0001133D3E89}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C588279B-531E-4271-9B58-97551126F538}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{36354A5E-780F-4D67-9A94-8C6D526D4137}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayvision\Vision.exe () [File not signed]
FirewallRules: [{8E818E95-20E6-4ECE-ACF9-0F2A8B55B379}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayvision\Vision.exe () [File not signed]
FirewallRules: [{71E45318-A35B-45C4-AF94-5AC7ED10C859}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayneui-win32-x64\vrayneui.exe (Chaos Software Ltd. -> Chaos Software, Ltd)
FirewallRules: [{4AC12B68-6A2A-4C3C-8A88-4B80DF6B1E01}] => (Block) C:\Program Files\Chaos Group\V-Ray\V-Ray for Rhinoceros\vrayneui-win32-x64\vrayneui.exe (Chaos Software Ltd. -> Chaos Software, Ltd)
FirewallRules: [{7B7D7DCA-BD41-44C5-B2CC-441D5F947DEC}] => (Block) C:\Program Files\Rhino 7\System\Rhino.exe (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates)
FirewallRules: [{F4BC233A-E049-4A17-825D-36F9D2D7CD2C}] => (Block) C:\Program Files\Rhino 7\System\Rhino.exe (Robert McNeel & Associates (TLM, Inc.) -> Robert McNeel & Associates)
FirewallRules: [{DF578F3C-E026-405F-BC7C-2D03E7F85F57}] => (Allow) C:\Program Files\LogiOptionsPlus\logioptionsplus_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{E3DD47CA-1C26-48A0-BC95-1777135953B2}C:\program files (x86)\planet zoo\planetzoo.exe] => (Allow) C:\program files (x86)\planet zoo\planetzoo.exe => No File
FirewallRules: [UDP Query User{DAE86652-7AEF-496A-ABB9-B18F7A05A637}C:\program files (x86)\planet zoo\planetzoo.exe] => (Allow) C:\program files (x86)\planet zoo\planetzoo.exe => No File
FirewallRules: [{AB4F5EF3-6853-4DD2-918F-94B8B9EBC22E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{3FA12250-8630-4C88-8CB9-62E8F1A9DCB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Hogwarts Legacy\HogwartsLegacy.exe (Warner Bros. Interactive) [File not signed]
FirewallRules: [{F97FDC84-91F5-4EC4-B4BF-FC6AEE84B006}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23034.1300.1846.7680_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9CEA41D0-D531-4558-8E2F-5DABA32E4D38}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23034.1300.1846.7680_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5974B899-80E8-425E-B597-9AAFA477C22D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FED0D63E-B117-42DD-BDE2-1D90562EE756}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vrayneui\vrayneui.exe ("Chaos Software" Ltd -> Chaos Software, Ltd)
FirewallRules: [{DC625F71-DD1E-4DFB-A335-D72AECC1E2DE}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vrayneui\vrayneui.exe ("Chaos Software" Ltd -> Chaos Software, Ltd)
FirewallRules: [{EDEBCB97-E92D-40CE-9E88-53FC4F1463CE}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision.exe () [File not signed]
FirewallRules: [{59CC22AE-3FFD-4254-8A4D-C23CD7394960}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision.exe () [File not signed]
FirewallRules: [{173B5132-7862-4749-A8AD-FFB931BF9184}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision_Data\Plugins\vision-server.exe () [File not signed]
FirewallRules: [{6407248D-ACA6-4BBC-BAAD-A8EF6258FE1B}] => (Allow) C:\Program Files\Chaos Group\V-Ray\V-Ray for SketchUp\extension\vision\Vision_Data\Plugins\vision-server.exe () [File not signed]
FirewallRules: [{87FC8622-E755-4367-8146-55B6C67CDA1A}] => (Allow) C:\Program Files\Chaos\VRLService\vrol.exe ("Chaos Software" Ltd -> Chaos)
FirewallRules: [{C6B60FFE-7DF9-443F-8573-4B7DBBD6C4EB}] => (Allow) C:\Program Files\Chaos\VRLService\vrol.exe ("Chaos Software" Ltd -> Chaos)
FirewallRules: [{6EA1EEE1-9440-4391-8B1E-7172B2003B8D}] => (Allow) C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe (Chaos Software Ltd.) [File not signed]
FirewallRules: [{47CEEEFD-9FFB-4CFF-BE63-9E47AA31F2C5}] => (Allow) C:\Program Files\Chaos Group\V-Ray\Swarm 1.4\swrm.exe (Chaos Software Ltd.) [File not signed]
FirewallRules: [{92D4B969-4153-4F75-A996-F5EAF7C91E5A}] => (Allow) C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [File not signed]
FirewallRules: [{EE21E4D5-D6BF-4937-86A0-9934F743AB44}] => (Allow) C:\Program Files\Chaos Group\Chaos Cosmos\cbservice.exe (ChaosGroup) [File not signed]
FirewallRules: [{25E9B6A4-43EE-4BC8-8802-7119CE19ABB8}] => (Allow) C:\Program Files\Chaos\UnifiedLogin\ula.exe (Chaos) [File not signed]
FirewallRules: [{4FFCF984-2600-4E8B-BE1D-8C53B6B4664F}] => (Allow) C:\Program Files\Chaos\UnifiedLogin\ula.exe (Chaos) [File not signed]
FirewallRules: [{D2D71087-4B84-42D7-8F4B-EF7FE6E269EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F432EF73-1BDA-49C4-B9CF-7D47552B000D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8C430904-E5B0-4055-881C-0D474EAD928D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A52E5EFF-5A28-428A-B1C7-5BB236C14F81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{0BA5D630-2397-4E7E-999B-669D1A42E288}C:\program files\autodesk\revit 2024\revit.exe] => (Allow) C:\program files\autodesk\revit 2024\revit.exe (Autodesk, Inc. -> Autodesk, Inc.)
FirewallRules: [UDP Query User{436FA91A-A58D-470D-8A18-8B56C4054C4E}C:\program files\autodesk\revit 2024\revit.exe] => (Allow) C:\program files\autodesk\revit 2024\revit.exe (Autodesk, Inc. -> Autodesk, Inc.)
FirewallRules: [TCP Query User{298FC05C-B952-4F0C-B457-E95AD877F46D}C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe] => (Allow) C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe (BIM Technology s.r.o. -> BIM Technology s.r.o.)
FirewallRules: [UDP Query User{9111BDB8-B7DD-4B15-93AC-64BF62E46615}C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe] => (Allow) C:\programdata\autodesk\applicationplugins\bimtech-tools.bundle\contents\app\bimtech tools.exe (BIM Technology s.r.o. -> BIM Technology s.r.o.)
FirewallRules: [{29B4648A-3255-42ED-9368-4236BD5D5004}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\123.0.2420.65\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{764CC256-65A6-4F7E-83C2-6F47591C0C7C}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

08-04-2024 09:04:00 Scheduled Checkpoint
11-04-2024 21:16:19 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (04/12/2024 09:23:06 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, A system shutdown is in progress.]

Error: (04/12/2024 09:19:41 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, The handle is invalid..

Operation:
Executing Asynchronous Operation

Context:
Current State: DoSnapshotSet

Error: (04/12/2024 09:19:34 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Access is denied..To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {a0455647-5fc5-47db-886c-66cf20b1c48a}

Error: (04/12/2024 09:05:17 PM) (Source: Application Error) (EventID: 1000) (User: LAPTOP-DFRGA5MU)
Description: Název chybující aplikace: RevitAccelerator.exe, verze: 23.6.0.0, časové razítko: 0x64d255e9
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.22621.3447, časové razítko: 0x3d876852
Kód výjimky: 0xe0434352
Posun chyby: 0x00000000000653ac
ID chybujícího procesu: 0x0x42b4
Čas spuštění chybující aplikace: 0x0x1da8d0be868375a
Cesta k chybující aplikaci: C:\Program Files\Autodesk\Personal Accelerator for Revit\RevitAccelerator.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: e1343283-54ac-4097-be20-df91507e9d47
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (04/12/2024 09:05:17 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: RevitAccelerator.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ArgumentException
na System.IO.Path.NewNormalizePath(System.String, Int32, Boolean)
na System.IO.Path.NormalizePath(System.String, Boolean, Int32, Boolean)
na System.IO.Path.GetFullPathInternal(System.String)
na System.IO.DirectoryInfo.Init(System.String, Boolean)
na Autodesk.C4R.PAC.Core.PacCacheManager.GetDirectorySize(System.String)
na Autodesk.C4R.PAC.Core.PacCacheManager.TrimCache(System.Object)
na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
na System.Threading.TimerQueueTimer.CallCallback()
na System.Threading.TimerQueueTimer.Fire()
na System.Threading.TimerQueue.FireNextTimers()

Error: (04/12/2024 05:56:22 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, A system shutdown is in progress..

Error: (04/12/2024 05:56:22 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, A system shutdown is in progress.]

Error: (04/12/2024 12:23:38 AM) (Source: MsiInstaller) (EventID: 11312) (User: LAPTOP-DFRGA5MU)
Description: Product: ESET Security -- Chyba 1312. Složku 'C:\ProgramData\ESET' nelze vytvořit. Soubor s tímto názvem již existuje. Přejmenujte nebo odstraňte daný soubor a klikněte na tlačítko Opakovat. Kliknutím na tlačítko Zrušit akci zrušíte.


System errors:
=============
Error: (04/12/2024 09:24:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CCBService neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (04/12/2024 09:24:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby CCBService bylo dosaženo časového limitu (45000 ms).

Error: (04/12/2024 09:23:07 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\WINDOWS\System32\DriverStore\FileRepository\netwtw6e.inf_amd64_676bed065e3f9992\IntelIHVRouter14.dll

Error: (04/12/2024 09:23:07 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\WINDOWS\System32\DriverStore\FileRepository\netwtw6e.inf_amd64_676bed065e3f9992\IntelIHVRouter14.dll

Error: (04/12/2024 09:23:04 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/12/2024 09:23:04 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/12/2024 09:23:04 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/12/2024 09:23:04 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/Vbinder.gen!G
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe; file:_C:\Intel\i2.exe; file:_C:\Intel\i3.exe; file:_C:\Intel\i4.exe; file:_C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1->(UTF-16LE); regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A7F247BE-07E8-481D-B210-F4C85B8A796F}; regkey:_HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1; taskscheduler:_C:\WINDOWS\System32\Tasks\Microsoft\Windows\UPnP\Microsoft UPnP Manager3x1
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Windows\SysWOW64\cmd.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/Vbinder.gen!G
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Intel\r.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/VBInject.gen!CI
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Intel\logs\bfc.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/VBInject.gen!CI
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4

Date: 2024-04-05 16:21:51
Description:
Microsoft Defender Antivirus zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: VirTool:Win32/VBInject.gen!CI
Závažnost: Severe
Kategorie: Tool
Cesta: file:_C:\Intel\i1.exe
Původ detekce: Local machine
Typ detekce: Generic
Zdroj detekce: Real-Time Protection
Uživatel:
Název procesu: C:\Intel\r.exe
Verze bezpečnostních informací: AV: 1.409.51.0, AS: 1.409.51.0, NIS: 1.409.51.0
Verze modulu: AM: 1.1.24030.4, NIS: 1.1.24030.4
Event[0]

Date: 2024-04-05 16:49:23
Description:
Prohledávání Microsoft Defender Antivirus zjistilo chybu při pokusu o odebrání historie malwaru nebo jiného potenciálně nežádoucího softwaru.
Čas: 2024-04-04T14:49:23Z
Uživatel: NT AUTHORITY\SYSTEM
Kód chyby: 0x80070003
Popis chyby: The system cannot find the path specified.

Date: 2023-10-17 10:57:29
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.399.638.0
Zdroj aktualizace: Microsoft Update Server
Typ bezpečnostních informací: AntiVirus
Typ aktualizace: Full
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23090.2007
Kód chyby: 0x80240016
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2023-05-29 15:13:56
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací a pokusí se o obnovení na předchozí verzi.
Bezpečnostní informace, které se měly načíst: Current
Kód chyby: 0x80501102
Popis chyby: An unexpected problem occurred. Install any available updates, and then try to start the program again. For information on installing updates, see Help and Support.
Verze bezpečnostních informací: 1.389.2654.0;1.389.2654.0
Verze modulu: 1.1.20300.3

Date: 2023-03-19 10:34:34
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.385.188.0
Zdroj aktualizace: Microsoft Update Server
Typ bezpečnostních informací: AntiVirus
Typ aktualizace: Full
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20100.6
Kód chyby: 0x80240016
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

Date: 2023-01-08 23:34:00
Description:
Microsoft Defender Antivirus narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.381.1808.0
Zdroj aktualizace: Microsoft Update Server
Typ bezpečnostních informací: AntiVirus
Typ aktualizace: Full
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.19900.2
Kód chyby: 0x80240016
Popis chyby: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support.

CodeIntegrity:
===============
Date: 2024-04-04 21:29:35
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2024-04-04 21:27:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

BIOS: LENOVO N37ET49W (1.30 ) 11/15/2023
Motherboard: LENOVO 20YS001SUS
Processor: 11th Gen Intel(R) Core(TM) i7-11800H @ 2.30GHz
Percentage of memory in use: 23%
Total physical RAM: 32487.05 MB
Available physical RAM: 24851.51 MB
Total Virtual: 34535.05 MB
Available Virtual: 25916.15 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:952.62 GB) (Free:264.04 GB) (Model: SAMSUNG MZVL21T0HCLR-00BL7) NTFS

\\?\Volume{ffd5708c-5ec0-4294-8953-85e5cbdd26cd}\ (WinRE_DRV) (Fixed) (Total:0.97 GB) (Free:0.07 GB) NTFS
\\?\Volume{a9d2f584-45b7-4b58-9f4f-2ba9bf9e9d73}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: E023BDE7)

Partition: GPT.

==================== End of Addition.txt =======================
Nahoru
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Re: Nejdou instalovat antiviry + divné chování

#12 Příspěvek od python.p »

Tisíceré díky, už tam jede ESET. :)
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nejdou instalovat antiviry + divné chování

#13 Příspěvek od altrok »

Win+X -> Systém -> Upřesnit nastavení -> (Záložka Upřesnit ->) Proměnné protředí -> v Path smaž C:\Intel;C:\Intel\m;C:\Intel\logs;


Co je ve složce C:\Intel?
V logu už nevidím presistenci, ale nelíbí se mi, že byla znovu vytvořena...

Co ESET? Našel něco?
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
python.p
Návštěvník
Návštěvník
Příspěvky: 13
Registrován: 16 zář 2019 14:13

Re: Nejdou instalovat antiviry + divné chování

#14 Příspěvek od python.p »

Tak Path pročištěno.

C:\Intel smazán, ovšem po restartu je tam složka GfxCPLBatchFiles s atributy --hs uvnitř složky nic. Ale podle všeho by to už mělo být v pořádku a měla by to být složka co si dělá Intel k ovldači IGP. "It is not a bug, it is feature" :)

ESET už nic nenašel.
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Nejdou instalovat antiviry + divné chování

#15 Příspěvek od altrok »

Jo, to vypadá na legitimní složku, takže je čisto a končíme. Tož ať se daří a příště bez těch cracků... i z vlastní zkušenosti můžeš říct, že se nevyplácí :wink:
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“