Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Microsoft Edge - virus?
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Microsoft Edge - virus?
Zdravím,
na ploše se mi začaly ukazovat upozornění na virus - viz obr.
https://ibb.co/Mcb5K8X
https://ibb.co/4m8JvWp
dávaly odkaz na skenování Nortonem. Moc jsem tomu nevěřil a Edge jsem odinstaloval, stejně jako Netflix, který přestávám používat.
Od té doby je klid.
Sken Bitdefenderu, ani sken Microsoftu, ani NPE (Norton) nic nenašly.
Máte stím nějakou zkušenost? Můžu naistalovat Edge znovu na PC?
Dík za odpověď. Milda
na ploše se mi začaly ukazovat upozornění na virus - viz obr.
https://ibb.co/Mcb5K8X
https://ibb.co/4m8JvWp
dávaly odkaz na skenování Nortonem. Moc jsem tomu nevěřil a Edge jsem odinstaloval, stejně jako Netflix, který přestávám používat.
Od té doby je klid.
Sken Bitdefenderu, ani sken Microsoftu, ani NPE (Norton) nic nenašly.
Máte stím nějakou zkušenost? Můžu naistalovat Edge znovu na PC?
Dík za odpověď. Milda
- Rudy
- Site Admin
- Příspěvky: 118960
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Microsoft Edge - virus?
Zdravím!
Spusťte nejprve tuto utilitu:
Spusťte nejprve tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Microsoft Edge - virus?
Díky. Tady jsou logy z MB.
- # -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-10-23.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-07-2025
# Duration: 00:00:04
# OS: Windows 10 (Build 19045.5247)
# Cleaned: 12
# Awaiting reboot:2
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.DellSupportAssistAgent File C:\Users\Dell\Desktop\SupportAssist.lnk
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AUDIT
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\PLUGIN
Deleted Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SUPPORTASSIST
Deleted Preinstalled.DellSupportAssistAgent Folder C:\Users\Dell\Documents\DELL\SUPPORTASSIST
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D32B07C7-CDF5-4D22-B1FC-7EF94C826185}
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D32B07C7-CDF5-4D22-B1FC-7EF94C826185}
Deleted Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate
Deleted Preinstalled.DellSupportAssistAgent Task C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE
Deleted Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE
Needs Reboot Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Needs Reboot Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATESERVICE
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
***** Reboot Required to Complete *****
***** [ Folders ] *****
Cleaning failed C:\Program Files (x86)\DELL\UPDATESERVICE
Cleaning failed C:\Program Files\DELL\SUPPORTASSISTAGENT
*************************
AdwCleaner[S00].txt - [2697 octets] - [07/01/2025 17:03:14]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
- # -------------------------------
# Malwarebytes AdwCleaner 8.4.2.0
# -------------------------------
# Build: 03-04-2024
# Database: 2024-10-23.4 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 01-07-2025
# Duration: 00:00:09
# OS: Windows 10 (Build 19045.5247)
# Scanned: 32088
# Detected: 12
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
Preinstalled.DellSupportAssistAgent File C:\Users\Dell\Desktop\SupportAssist.lnk
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\AUDIT
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SAREMEDIATION\PLUGIN
Preinstalled.DellSupportAssistAgent Folder C:\Program Files\DELL\SUPPORTASSISTAGENT
Preinstalled.DellSupportAssistAgent Folder C:\ProgramData\DELL\SUPPORTASSIST
Preinstalled.DellSupportAssistAgent Folder C:\Users\Dell\Documents\DELL\SUPPORTASSIST
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D32B07C7-CDF5-4D22-B1FC-7EF94C826185}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D32B07C7-CDF5-4D22-B1FC-7EF94C826185}
Preinstalled.DellSupportAssistAgent Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dell SupportAssistAgent AutoUpdate
Preinstalled.DellSupportAssistAgent Task C:\Windows\System32\Tasks\DELL SUPPORTASSISTAGENT AUTOUPDATE
Preinstalled.DellUpdateforWindows10 Folder C:\Program Files (x86)\DELL\UPDATESERVICE
Preinstalled.DellUpdateforWindows10 Folder C:\ProgramData\DELL\UPDATESERVICE
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
- Rudy
- Site Admin
- Příspěvky: 118960
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Microsoft Edge - virus?
OK. Teď dejte logy FRST+Addition: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Microsoft Edge - virus?
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-01-2025
Ran by Dell (administrator) on DESKTOP-3BEIBK0 (Dell Inc. Precision Tower 5810) (07-01-2025 18:52:30)
Running from C:\Users\Dell\Desktop\FRST64.exe
Loaded Profiles: Dell
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5247 (X64) Language: Čeština (Česko)
Default browser: Brave
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.0.1.290\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bduserhost.exe <3>
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.Update.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24112.22.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (RealDefense LLC -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8830744 2016-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1437976 2016-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1088776 2024-12-16] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP B911 Status Monitor: C:\Windows\system32\hpinkstsB911LM.dll [329576 2012-04-20] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP1006LM: C:\Windows\system32\HP1006LM.DLL [198144 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.205\Installer\chrmstp.exe [2024-12-20] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.104\Installer\chrmstp.exe [2025-01-05] (Brave Software, Inc. -> Brave Software, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {ADC7C7E5-59C2-4E18-BBE1-2C6F1DF75208} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {F365CD46-05F9-46F1-8329-2E575D6A5BB8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928 2022-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {260DB063-4066-4377-B728-CEA201006AD1} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.0.1.290\WatchDog.exe [1156904 2024-11-20] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.0.1.290\repair
Task: {D039BB1A-4C03-4E23-86D1-2CC5F8495F08} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{6DE3B3C7-3835-4C21-B395-CAC6D9E65FEF} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {23CF7694-A113-434B-AD4F-FB398A283322} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{8F308C18-D96C-4CAF-83E2-B6312446BCFB} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {BA922053-14E3-44C7-B3EC-A618C3E80E97} - System32\Tasks\EPSON Perfection V19 Update => C:\Program Files (x86)\epson\escndv\update\e_dtsksd.exe [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {7C8A53AD-B550-471F-B8DA-59D4808C23EA} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {A3426DE7-508B-4C01-AFFE-DD50BD94161B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [6164192 2024-09-23] (Intel Corporation -> Intel Corporation)
Task: {D7ED046C-8944-487B-8105-4E396A0DD27E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [6164192 2024-09-23] (Intel Corporation -> Intel Corporation)
Task: {A5D5631E-5755-4DB1-A73E-1B00B7C4CC4D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {CEFDC571-D847-47D8-88ED-6FB160E296C0} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-12-13] () [File not signed]
Task: {8886B9FE-DE6B-4F5D-BC4D-BDEDC817D90B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917888 2024-11-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {B9E56DAB-62FB-477C-A915-0707E21C77D1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917888 2024-11-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D839281-555B-4876-AFEA-7F73AFA8EF96} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141408 2024-12-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B00D63D-C4E3-4307-BF17-4776A024484F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141408 2024-12-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {55AF79C5-8522-4603-A14C-D467F7C7A7FC} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3575808364-2895728588-3092939665-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {6E628816-D138-4A81-9143-83F0097B391D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {1744BE7E-6B93-4108-99D1-00DECFDD0BF3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C3F20B46-139A-4740-9BEA-72AA08008EBE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8FD9FDD-9944-4BDF-A26A-9417D32E097C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {7A378495-D896-40DC-BF58-8CC2763A35E1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {007754A4-4745-4688-8AAC-090B238AA722} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F1F5B184-7274-47A7-843C-4CE3FEB4F3DD} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {772A1E20-5158-4ED7-8636-1494EEC573A2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25EBDE6F-8A68-4474-8525-DFFAEC4196A8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {801FA978-D5DA-4B7C-A5C5-88809D048E72} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A630D924-D122-4356-8BCE-3F7F1B0237F5} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214288 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D26A3E9-0011-4E71-934F-FEFF54A3FB2C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3575808364-2895728588-3092939665-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214288 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {1649D0BF-50C4-4876-86B7-542D6E266A13} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1437976 2016-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {E8C369C5-CDE4-430D-9333-46C8878415F1} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-14] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\-Command "Start-Process -WindowStyle Hidden task.bat"
Task: {88BD5B2B-88A3-42AB-8BE3-0821BC83099F} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-3575808364-2895728588-3092939665-1001 => C:\Users\Dell\AppData\Roaming\Zoom\bin\Zoom.exe [435000 2024-11-26] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON Perfection V19 Update.job => C:\Program Files (x86)\epson\escndv\update\e_dtsksd.exe7/EXE_S:EPSON Perfection V19,ES010C.DAT /F:UpdateDESKTOP-3BEIBK0\DellĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 04 C:\Windows\SysWOW64\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 05 C:\Windows\SysWOW64\NLAapi.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [0 2024-03-13] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6722173e-f630-499a-978c-759ddafa5161}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6722173e-f630-499a-978c-759ddafa5161}: [DhcpDomain] home
Tcpip\..\Interfaces\{8d212bba-3849-405b-a099-f1b5c4f742f4}: [DhcpNameServer] 86.49.5.221 86.49.5.222
Tcpip\..\Interfaces\{8d212bba-3849-405b-a099-f1b5c4f742f4}: [DhcpDomain] home
Tcpip\..\Interfaces\{deb96843-c1ce-4dc1-9799-848c4e63bd30}: [DhcpNameServer] 192.168.10.152
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-05]
Edge Notifications: Default -> hxxps://ctt4r3m071bc73950vb0.enhanceconnection.co.in; hxxps://mm4rv676qtk8bx.enhanceconnection.co.in; hxxps://uxho4gn6rb26up.enhanceconnection.co.in
Edge StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://echo24.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (Bitdefender Anti-tracker) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dbconhplchnbippmjabbcedokimacfjl [2024-07-19]
Edge Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-22]
Edge Extension: (Edge relevant text changes) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-19]
Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl]
FireFox:
========
FF DefaultProfile: daveg82e.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\daveg82e.default [2023-07-26]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\t97180j1.default-release-1718380180500 [2025-01-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Systems Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2023-07-26] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2023-07-26] <==== ATTENTION
Chrome:
=======
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2025-01-07]
CHR Notifications: Default -> hxxps://www.ce5.cz
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-18]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2024-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-03]
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-16]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
Brave:
=======
BRA Profile: C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-01-07]
BRA Extension: (Bitdefender Anti-tracker) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2025-01-05]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-01-06]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-01-07]
BRA Extension: (Brave NTP background images) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-01-05]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-01-07]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-01-07]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2025-01-07]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-01-05]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2025-01-05]
BRA Extension: (Brave Ads Resources) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2025-01-05]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-01-07]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-01-05]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2025-01-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [231456 2024-10-27] (RealDefense LLC -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928 2022-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S3 aspnet_state; C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [32768 2004-07-15] (Microsoft Corporation) [File not signed]
R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [851640 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2946088 2023-08-31] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.104\elevation_service.exe [2737168 2024-12-19] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9203384 2024-09-20] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [460176 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [154512 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [482704 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.)
S2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [51648 2024-11-13] (Dell Technologies Inc. -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [154544 2024-11-14] (Dell Technologies Inc. -> Dell)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2024-11-25] (Intel Corporation -> Intel)
R2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2024-11-25] (Intel Corporation -> Intel)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2022-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncHelper.exe [3528208 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.226.1110.0004\OneDriveUpdaterService.exe [3873312 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [714200 2024-11-20] (Bitdefender SRL -> Bitdefender)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [628736 2010-12-08] (Nokia) [File not signed]
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [149832 2024-12-19] (Dell Technologies Inc. -> Dell Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22593840 2024-12-12] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [291224 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [7505856 2024-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci4; C:\Windows\system32\DRIVERS\bddci4.sys [969664 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [24568 2023-11-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R3 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [49200 2023-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL)
S3 bduefiscan; C:\Windows\system32\DRIVERS\bduefiscan.sys [42432 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R3 DBUtilDrv2; C:\Windows\System32\drivers\DBUtilDrv2.sys [24968 2024-06-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
R3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [44472 2024-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 DPMDriver; C:\Windows\System32\drivers\DPMDriver.sys [139680 2022-12-08] (IndiLogic LLC -> Dell Inc.)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2022-03-06] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2022-03-06] (Disc Soft Ltd -> Disc Soft Ltd)
R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [1490896 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R2 Ignisv2; C:\Windows\system32\DRIVERS\ignisv2.sys [849968 2024-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pccsmcfd; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [25600 2008-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [23072 2024-10-27] (RealDefense LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [15600 2023-08-25] (RealDefense, LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 trufos; C:\Windows\System32\DRIVERS\trufos.sys [629184 2023-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [1403456 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49560 2023-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [498944 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-07 18:50 - 2025-01-07 18:51 - 000054801 _____ C:\Users\Dell\Desktop\Addition.txt
2025-01-07 18:48 - 2025-01-07 18:53 - 000041868 _____ C:\Users\Dell\Desktop\FRST.txt
2025-01-07 18:48 - 2025-01-07 18:52 - 000000000 ____D C:\FRST
2025-01-07 18:31 - 2025-01-07 18:31 - 002403840 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2025-01-07 17:02 - 2025-01-07 17:07 - 000000000 ____D C:\AdwCleaner
2025-01-07 17:00 - 2025-01-07 17:00 - 008790880 _____ (Malwarebytes) C:\Users\Dell\Desktop\adwcleaner.exe
2025-01-06 19:21 - 2025-01-06 19:21 - 000001688 _____ C:\Users\Dell\Desktop\ReplayVideo.exe – zástupce.lnk
2025-01-05 21:32 - 2025-01-05 21:32 - 000003866 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{8F308C18-D96C-4CAF-83E2-B6312446BCFB}
2025-01-05 21:32 - 2025-01-05 21:32 - 000003742 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{6DE3B3C7-3835-4C21-B395-CAC6D9E65FEF}
2025-01-05 21:32 - 2025-01-05 21:32 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2025-01-05 21:32 - 2025-01-05 21:32 - 000002407 _____ C:\Users\Public\Desktop\Brave.lnk
2025-01-05 21:32 - 2025-01-05 21:32 - 000000000 ____D C:\Users\Dell\AppData\Local\BraveSoftware
2025-01-05 21:32 - 2025-01-05 21:32 - 000000000 ____D C:\Program Files\BraveSoftware
2025-01-05 21:32 - 2025-01-05 21:32 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2025-01-05 20:27 - 2025-01-05 20:27 - 001276704 _____ (BraveSoftware Inc.) C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe
2025-01-05 13:17 - 2025-01-05 13:20 - 000000000 ____D C:\Users\Dell\AppData\Local\NPE
2025-01-05 13:17 - 2025-01-05 13:17 - 000000000 ____D C:\ProgramData\Norton
2025-01-05 13:16 - 2025-01-05 13:17 - 016995528 _____ (NortonLifeLock Inc.) C:\Users\Dell\Desktop\NPE.exe
2025-01-02 11:43 - 2025-01-02 11:43 - 000266735 _____ C:\Users\Dell\Desktop\Část 1.2
2025-01-01 15:31 - 2025-01-01 15:31 - 000262628 _____ C:\Users\Dell\Desktop\Mělník-1.pololetí2025.pdf
2025-01-01 11:32 - 2025-01-05 13:21 - 000438968 _____ C:\Windows\system32\FNTCACHE.DAT
2024-12-31 22:26 - 2024-12-31 22:26 - 251575648 _____ (Anvsoft) C:\Users\Dell\Desktop\avc-free.exe
2024-12-31 20:37 - 2024-12-31 20:37 - 000001154 _____ C:\Users\Dell\Desktop\iWisoft Free Video Converter.lnk
2024-12-31 20:37 - 2024-12-31 20:37 - 000000000 ____D C:\Users\Dell\Documents\iWisoft Free Video Converter
2024-12-31 20:37 - 2024-12-31 20:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iWisoft Free Video Converter
2024-12-31 20:37 - 2024-12-31 20:37 - 000000000 ____D C:\Program Files (x86)\iWisoft Free Video Converter
2024-12-31 20:37 - 2009-09-29 20:57 - 000758018 _____ C:\Windows\SysWOW64\xvidcore.dll
2024-12-31 20:37 - 2008-12-04 21:46 - 000180224 _____ C:\Windows\SysWOW64\xvidvfw.dll
2024-12-31 20:37 - 2008-10-08 10:16 - 000139264 _____ (hxxp://www.xvid.org) C:\Windows\SysWOW64\xvid.ax
2024-12-31 12:45 - 2023-11-14 23:38 - 000000036 _____ C:\Users\Dell\AppData\Local\_LOCAL_GUID
2024-12-31 12:44 - 2024-12-31 12:44 - 000000000 ____D C:\Users\Dell\AppData\Local\any video converter-updater
2024-12-27 17:21 - 2024-12-27 17:21 - 000000000 ____D C:\Program Files (x86)\Dell
2024-12-27 17:10 - 2024-12-27 17:10 - 000000000 ____D C:\Users\Dell\Downloads\SupportAssistAgent
2024-12-27 15:45 - 2024-12-27 15:45 - 000001678 _____ C:\Users\Dell\Desktop\EopAuthApp.exe – zástupce.lnk
2024-12-27 15:35 - 2024-12-27 15:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eObčanka
2024-12-27 15:34 - 2024-12-27 15:34 - 000000000 ____D C:\Program Files\eObcanka
2024-12-27 13:26 - 2024-12-27 13:26 - 144763520 _____ C:\Users\Dell\Desktop\eObcanka_x64.exe
2024-12-27 07:18 - 2024-12-27 07:18 - 000000000 ____D C:\Users\Dell\AppData\Local\Backup
2024-12-20 22:44 - 2024-12-20 22:50 - 1265593653 _____ C:\Users\Dell\Downloads\Vyhnání z ráje_2001_CZ.mp4
2024-12-20 21:49 - 2024-12-20 21:53 - 2763661532 _____ C:\Users\Dell\Downloads\Source Zdroj je v tebe.avi
2024-12-20 21:33 - 2024-12-20 21:33 - 230212992 _____ C:\Users\Dell\Downloads\Nepotvrzeno 46052.crdownload
2024-12-20 18:06 - 2024-12-20 18:06 - 000001551 _____ C:\Users\Dell\Desktop\stellarium.exe – zástupce.lnk
2024-12-19 14:56 - 2025-01-04 23:46 - 000000000 ____D C:\Users\Dell\Desktop\OKRUŽNÍ
2024-12-18 19:15 - 2024-12-18 19:15 - 000419632 _____ C:\Users\Dell\Downloads\Počem muži touží.html
2024-12-18 19:15 - 2024-12-18 19:15 - 000000000 ____D C:\Users\Dell\Downloads\Počem muži touží_files
2024-12-13 00:49 - 2024-12-13 00:49 - 000022205 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-12-13 00:48 - 2024-12-13 00:48 - 000022205 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-12-13 00:33 - 2024-12-13 00:33 - 000000000 ___HD C:\$WinREAgent
2024-12-12 15:07 - 2024-12-13 10:10 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-12-10 20:07 - 2024-12-13 10:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-12-10 15:34 - 2024-12-10 15:34 - 000174227 _____ C:\Users\Dell\Desktop\zadostsmlouvaopripojenikdsnn_form.1.pdf
2024-12-10 13:29 - 2024-12-10 13:29 - 000119056 _____ C:\Users\Dell\Desktop\zadostsmlouvaopripojenikdsnn_form.pdf
2024-12-09 22:02 - 2024-12-09 22:02 - 000003600 _____ C:\Windows\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2024-12-09 22:02 - 2024-10-03 23:33 - 000049888 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\semav6msr64.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-07 18:53 - 2022-02-25 17:43 - 000000000 ____D C:\Temp
2025-01-07 18:51 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2025-01-07 18:37 - 2022-02-25 17:32 - 000000000 ____D C:\Windows\SystemTemp
2025-01-07 18:25 - 2020-09-27 06:55 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-01-07 17:42 - 2022-09-27 20:24 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-01-07 17:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-07 17:32 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2025-01-07 17:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-07 17:12 - 2022-02-25 16:33 - 001835260 _____ C:\Windows\system32\PerfStringBackup.INI
2025-01-07 17:12 - 2019-12-07 15:43 - 000762744 _____ C:\Windows\system32\perfh005.dat
2025-01-07 17:12 - 2019-12-07 15:43 - 000169890 _____ C:\Windows\system32\perfc005.dat
2025-01-07 17:08 - 2022-02-25 18:27 - 000000000 ____D C:\Program Files\TeamViewer
2025-01-07 17:08 - 2022-02-25 17:20 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-07 17:08 - 2020-09-27 08:56 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-01-07 17:08 - 2020-09-27 06:55 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-07 17:07 - 2022-02-25 17:41 - 000000000 ____D C:\Users\Dell\Documents\Dell
2025-01-07 17:07 - 2022-02-25 17:39 - 000000000 ____D C:\ProgramData\Dell
2025-01-07 17:07 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2025-01-07 17:01 - 2022-08-14 13:36 - 000004210 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{9A2F5113-4EB7-40FF-BF4C-5E4001B07E76}
2025-01-07 09:26 - 2022-02-25 16:33 - 000000000 ____D C:\Users\Dell\AppData\Local\D3DSCache
2025-01-07 00:31 - 2023-09-02 22:37 - 000000000 ____D C:\Users\Dell\AppData\Roaming\vlc
2025-01-06 23:58 - 2023-05-15 22:40 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Stellarium
2025-01-06 21:35 - 2023-04-01 22:13 - 000000000 ____D C:\Users\Dell\Desktop\RECEPTY
2025-01-06 21:26 - 2022-02-25 16:32 - 000000000 ____D C:\Users\Dell\AppData\Local\Packages
2025-01-05 19:38 - 2024-10-16 23:03 - 000000000 ____D C:\Program Files\Recuva
2025-01-05 13:21 - 2023-03-24 22:23 - 000000000 ____D C:\Program Files (x86)\Replay Video Capture 8
2025-01-05 13:21 - 2019-12-07 10:03 - 000131072 _____ C:\Windows\system32\config\ELAM
2025-01-04 23:58 - 2022-05-05 13:12 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Excel
2025-01-04 23:37 - 2024-10-16 20:59 - 000000000 ____D C:\Users\Dell\Desktop\HUDBA
2025-01-04 23:26 - 2022-02-26 23:19 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Office
2025-01-04 23:24 - 2022-02-26 23:19 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Word
2025-01-03 10:11 - 2022-02-25 18:27 - 000000000 ____D C:\Users\Dell\AppData\Local\TeamViewer
2025-01-02 11:50 - 2020-09-27 08:59 - 000000000 ____D C:\ProgramData\Packages
2025-01-01 11:32 - 2022-02-25 16:25 - 000000000 ____D C:\Windows\Panther
2024-12-31 12:45 - 2022-02-25 18:04 - 000000000 ____D C:\Users\Dell\AppData\Local\CrashDumps
2024-12-29 11:04 - 2023-10-09 12:53 - 000000000 ____D C:\Users\Dell\Desktop\T.Hrabě
2024-12-27 18:22 - 2022-02-25 17:39 - 000000000 ____D C:\Program Files\Dell
2024-12-27 18:22 - 2022-02-25 17:20 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-27 17:20 - 2022-04-10 18:40 - 000000000 ____D C:\Program Files\dotnet
2024-12-27 14:03 - 2022-02-26 20:50 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-12-27 07:14 - 2022-02-25 16:32 - 000000000 ____D C:\Users\Dell\AppData\Local\ConnectedDevicesPlatform
2024-12-26 23:08 - 2022-02-25 16:40 - 000000000 ____D C:\Users\Dell\AppData\Local\PlaceholderTileLogoFolder
2024-12-26 19:05 - 2020-09-27 08:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-12-23 10:11 - 2022-03-01 22:22 - 000000000 ____D C:\Users\Dell\Downloads\Bitdefender Safepay
2024-12-22 15:28 - 2024-06-19 16:37 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Telegram Desktop
2024-12-21 19:33 - 2023-11-14 08:41 - 000003716 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{AD382C99-8EF8-4E3A-AC5C-C42BEFAC36A6}
2024-12-21 19:33 - 2023-11-14 08:41 - 000003592 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{419F196A-0637-4C27-8204-5997573837A9}
2024-12-20 08:20 - 2022-12-11 09:35 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-17 15:33 - 2022-02-25 18:07 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-12-17 15:33 - 2022-02-25 18:07 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-17 15:33 - 2022-02-25 17:05 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3575808364-2895728588-3092939665-1001
2024-12-17 11:47 - 2022-05-05 20:48 - 000000000 ____D C:\Users\Dell\Desktop\ZAHRADA
2024-12-14 10:31 - 2022-02-25 18:01 - 000000000 ____D C:\Program Files\Microsoft Office
2024-12-13 10:10 - 2022-02-25 22:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-13 10:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-12-13 10:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-12-13 10:08 - 2024-07-10 11:19 - 000000000 ____D C:\Windows\system32\compatrel
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-12-13 09:11 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-12-13 00:49 - 2020-09-27 07:34 - 000419072 __RSH C:\bootmgr
2024-12-13 00:48 - 2020-09-27 08:58 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-12-12 17:48 - 2022-02-25 22:52 - 000001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-12-12 13:03 - 2024-10-27 07:42 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-12-12 13:03 - 2022-02-25 18:04 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-12-10 23:39 - 2024-06-14 16:49 - 000001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-12-09 22:02 - 2022-02-25 17:40 - 000003762 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2024-12-09 22:02 - 2022-02-25 17:40 - 000003528 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2024-12-09 14:21 - 2022-10-16 22:56 - 000000000 ____D C:\Users\Dell\Desktop\Homeopatie
==================== Files in the root of some directories ========
2024-04-17 17:53 - 2024-04-17 17:53 - 000000295 _____ () C:\Users\Dell\AppData\Local\config.ini
2024-04-17 17:48 - 2024-04-17 17:48 - 000011614 _____ () C:\Users\Dell\AppData\Local\Phonebook.txt
2022-02-27 17:34 - 2022-02-27 17:34 - 000007616 _____ () C:\Users\Dell\AppData\Local\Resmon.ResmonCfg
2024-04-17 17:43 - 2024-04-17 17:43 - 000000000 _____ () C:\Users\Dell\AppData\Local\simedit.log
2024-12-31 12:45 - 2023-11-14 23:38 - 000000036 _____ () C:\Users\Dell\AppData\Local\_LOCAL_GUID
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-01-2025
Ran by Dell (07-01-2025 18:53:41)
Running from C:\Users\Dell\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5247 (X64) (2022-02-25 15:29:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3575808364-2895728588-3092939665-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3575808364-2895728588-3092939665-503 - Limited - Disabled)
Dell (S-1-5-21-3575808364-2895728588-3092939665-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-3575808364-2895728588-3092939665-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3575808364-2895728588-3092939665-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Bitdefender Antivirus (Enabled - Up to date) {0F59B032-EA77-E3A8-2382-74A4346E5522}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {37623117-A018-E2F0-08DD-DD91CABD1259}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader (HKLM\...\{2CF99470-402B-403D-AEE9-DFE55A7EFB92}) (Version: 4.33.4.0167 - Open Media LLC)
4K Video Downloader+ (HKLM\...\{FD39318C-527C-4805-8480-6E3A3D0764C8}) (Version: 1.10.4.0167 - Open Media LLC) Hidden
4K Video Downloader+ (HKLM-x32\...\{3b0c7e0e-e775-4439-88b9-ecb40a01c1b9}) (Version: 1.9.0.128 - Open Media LLC)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.005.20320 - Adobe)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)
Audacity 3.5.1 (HKLM\...\Audacity_is1) (Version: 3.5.1 - Audacity Team)
Balíček ovladače systému Windows - Hewlett-Packard Image (12/27/2006 8.0.0.0) (HKLM\...\A86F74A8853ED6B1102811674C7B366AF1B276BB) (Version: 12/27/2006 8.0.0.0 - Hewlett-Packard)
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.0.1.290 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 27.0.14.69 - Bitdefender)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 131.1.73.104 - Autoři prohlížeče Brave)
calibre 64bit (HKLM\...\{7F97780B-9EAD-4000-BD3A-F6D0FE096D56}) (Version: 6.29.0 - Kovid Goyal)
calibre 64bit (HKLM\...\{CCFCB310-562C-453D-839C-D784279AC61A}) (Version: 6.23.0 - Kovid Goyal)
Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 3.4.2.9 - Western Digital Corporation)
Dell SupportAssist (HKLM\...\{A73D9A16-C22B-4A2C-8D70-AFFDD50E2A72}) (Version: 4.6.3.23467 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{F5391400-4596-46A6-9D3C-9D7647230679}) (Version: 5.5.13.0 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{2b5a1544-c837-4b31-acb8-cb096c96013f}) (Version: 5.5.13.0 - Dell Inc.)
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
Easy Photo Scan (HKLM-x32\...\{99364024-626C-4BE1-89C8-2F207023497B}) (Version: 1.00.0018 - Seiko Epson Corporation)
ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
eObčanka (HKLM\...\{E498F9C6-8B16-4FE7-B3E9-1F30651F4910}) (Version: 3.4.4.24351 - MONET+, a.s. pro Ministerstvo vnitra České republiky)
Epson Copy Utility 4 (HKLM-x32\...\{06A7E8AB-2856-4490-BAA9-F338ABE7695A}) (Version: 4.01.0001 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{26A9B753-4B5D-46D8-A329-5CEF96FC22D2}) (Version: 4.6.5 - Seiko Epson Corporation)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.205 - Google LLC)
honestech VHS to DVD 3.0 SE (HKLM-x32\...\{2856F5EA-E98A-40E4-BAD6-8C644A4A3F3C}) (Version: 3.0 - honestech)
hp Laserjet 1005 (HKLM-x32\...\{F61F2FAB-7CBB-4745-BC52-C9FB2A0F99EF}) (Version: - )
Intel Driver && Support Assistant (HKLM-x32\...\{E2412D7F-3FB3-4638-819A-953908EA116E}) (Version: 24.6.49.8 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{E860D8DC-CF76-4E75-B248-2FEEEC5BACAD}) (Version: 2.4.10910 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{212B25D1-7216-4140-B248-D24BA0F80029}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{81274252-3CCE-4ABF-91F0-811144288963}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{927853D5-9CCC-4ED8-9C64-113EB34E8728}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client (HKLM\...\{F6AA7E43-41A4-4304-BA96-A495C5788231}) (Version: 1.45.447.1 - Intel Corporation) Hidden
Intel® Driver & Support Assistant (HKLM-x32\...\{E5FB0A2C-49A5-41B5-B5AB-249A3A05405E}) (Version: 24.6.49.8 - Intel)
iWisoft Free Video Converter 1.2 (HKLM-x32\...\iWisoft Free Video Converter_is1) (Version: 1.2 - www.easy-video-converter.com)
K-Lite Codec Pack 18.2.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 18.2.0 - KLCP)
Luxor 1.0.5.34 S (HKLM-x32\...\Luxor 1.0.5.34 S) (Version: - )
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8627.1 - Waves Audio Ltd.) Hidden
Microsoft .NET Core Host - 3.1.28 (x64) (HKLM\...\{26ECE92F-518E-40AF-9108-7B7B444A46DE}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.28 (x64) (HKLM\...\{CDEA72F4-1367-4E0A-AC5F-0EBAF7C6825A}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM\...\{3691148D-EF42-4812-8956-AE11FC413B8D}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM-x32\...\{231e3b76-4d0f-4e60-9d69-f11c9c448630}) (Version: 3.1.28.31513 - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.31 (x64) (HKLM\...\{59ED1DC1-E3E4-4BC0-B43F-143CCC38FF17}) (Version: 48.124.15198 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.11 (x64) (HKLM\...\{362B4D0D-8438-44DA-86B2-FEC44E000FCA}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.20 (x64) (HKLM\...\{76FA02FF-603F-48BB-9E3F-17ED5DB861E8}) (Version: 48.83.63169 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.31 (x64) (HKLM\...\{9992D04E-553E-4BC2-B0EC-4A394DD19986}) (Version: 48.124.15198 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.11 (x64) (HKLM\...\{F59C11F0-D73F-452B-8D1D-8C33B82D8507}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM-x32\...\{a699b48e-5748-4980-ad92-0b61b1d9d718}) (Version: 5.0.17.31213 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.20 (x64) (HKLM\...\{6CE8AD8C-E6D5-4BF7-91C3-7F8106A5CD93}) (Version: 48.83.63169 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.20 (x64) (HKLM-x32\...\{403b0cfe-5969-462d-8eb2-aafde344360e}) (Version: 6.0.20.32620 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.31 (x64) (HKLM\...\{0950F07D-F1C4-47A5-AC88-C5FAA5DC564D}) (Version: 48.124.15198 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.11 (x64) (HKLM\...\{9C80213E-9079-4561-8D57-1FDD0D62251F}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.112 - Microsoft Corporation) Hidden
Microsoft Office LTSC Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Volume - cs-cz) (Version: 16.0.14332.20828 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - cs-cz.proof (HKLM\...\ProPlus2021Volume - cs-cz.proof) (Version: 16.0.14332.20828 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.226.1110.0004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{93E32441-3402-439F-8EF7-8EC66D3B74CA}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{4ADC7996-3183-4E8D-8827-34E6558F5B83}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60830 (HKLM-x32\...\{c7ed0d4c-89c5-47fc-9e89-1088affe63f3}) (Version: 11.0.60830.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60830 (HKLM\...\{122B909F-9DCF-360E-91E7-0679E033FBE1}) (Version: 11.0.60830 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60830 (HKLM\...\{083808D6-6235-37A8-82C1-98D226EB681F}) (Version: 11.0.60830 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.31 (x64) (HKLM\...\{EFE53353-800E-4987-B965-1C968D0F23A4}) (Version: 48.124.15242 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.31 (x64) (HKLM-x32\...\{1a7abdc5-639b-4af0-87c6-dbc511750c6e}) (Version: 6.0.31.33720 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.11 (x64) (HKLM\...\{C0790AA0-0F40-4836-85B2-677B87625E63}) (Version: 64.44.23253 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.11 (x64) (HKLM-x32\...\{bd40e761-3e88-4202-9b53-26c6bed3d467}) (Version: 8.0.11.34221 - Microsoft Corporation)
MiniTool Power Data Recovery 12.1 (HKLM\...\{E1BCD081-4BF4-4E2F-832A-911EC42EF3C5}_is1) (Version: 12.1 - MiniTool Software Limited)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 133.0.3 (x64 cs)) (Version: 133.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 127.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 128.5.2 (x64 cs)) (Version: 128.5.2 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
Nebesky kalendar 4 verze 4.8 (HKLM-x32\...\{6F8B3EAA-4961-4997-A9DD-7A82005CC01E}_is1) (Version: 4.8 - Zdenek Pazdera - Wendys)
Need For Speed 5 - Porsche Unleashed version 3.5 (HKLM-x32\...\{E150B284-60E4-49C4-A9E6-B06A73A169BA}_is1) (Version: 3.5 - Electronics Arts)
Nokia Connectivity Cable Driver (HKLM-x32\...\{4216D328-0FE8-48B8-85B8-BD300E6F080F}) (Version: 7.1.36.0 - Nokia)
Nokia USB Driver v1.4.0 (HKLM-x32\...\{C3863576-B663-43B9-B927-CDB79845D9D2}_is1) (Version: 1.4.0 - HMD Global)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20828 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20303 - Microsoft Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}) (Version: 10.50.2.0 - Nokia)
Phone F USB Driver (HKLM-x32\...\{91ACA30A-B6CB-4D42-8490-874C11F63269}) (Version: 3.8.0 - Mobile)
Phone M USB Driver (HKLM-x32\...\{39D82433-23F4-4234-91EC-1742687F5CF8}) (Version: 1.2.0 - Mobile)
Phone Nokia USB Driver (HKLM-x32\...\{68BA2FEC-FF61-4282-AC2C-3E464439A3D6}) (Version: 1.4.0 - Mobile)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22391 - Microsoft Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 8.1 - Power Software Ltd)
Příručky společnosti EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation)
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6111 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.54 - Piriform)
Replay Video Capture 8 (HKLM-x32\...\Replay Video Capture 8) (Version: 8.7.1 - Applian Technologies Inc.)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
Stellarium 23.1 (HKLM-x32\...\Stellarium_is1) (Version: 23.1.0 - Stellarium team)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1260 - SUPERAntiSpyware.com)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.61.3 - TeamViewer)
Telegram Desktop (HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.9 - Telegram FZ-LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Videodownloader (HKLM-x32\...\{FEEBD562-6B8E-457A-9133-89B8C1E14443}) (Version: 1.1.8 - Videodownloader)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Windows 10 Manager (HKLM\...\{6EB758F5-DBA0-4A04-A143-A69F5B0637C6}) (Version: 2.3.3 - Yamicsoft) Hidden
Windows 10 Manager (HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\Windows 10 Manager 2.3.3) (Version: 2.3.3 - Yamicsoft)
WinRAR 4.00 (HKLM-x32\...\WinRAR 4.00) (Version: - )
WinRAR 6.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.10.0 - win.rar GmbH)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_CZ_is1) (Version: 19.1707.2.30 - ZONER software)
Zoom Workplace (HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\ZoomUMX) (Version: 6.2.7 (49583) - Zoom Video Communications, Inc.)
Packages:
=========
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_4.6.2.0_x64__htrsf667h5kn2 [2024-12-27] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-21] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2024-12-24] (NVIDIA Corp.)
Total Zip -> C:\Program Files\WindowsApps\22858LISAppStudio.TotalZip_2.1.9.0_x86__jph5be7mh3xc4 [2025-01-02] (LISApp Studio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm [2024-12-23] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3575808364-2895728588-3092939665-1001_Classes\CLSID\{04271989-C4D2-9CD0-A54D-3FB4F3BFA290} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3575808364-2895728588-3092939665-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3575808364-2895728588-3092939665-1001_Classes\CLSID\{A70C074B-BC99-4454-89FF-EBB1FC232E98}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-11-04] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-11-04] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2024-05-22] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-11-04] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2024-05-22] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.MPG4] => C:\Windows\SysWOW64\MPG4C32.dll [413760 2010-03-12] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP42] => C:\Windows\SysWOW64\MPG4C32.dll [413760 2010-03-12] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP43] => C:\Windows\SysWOW64\MPG4C32.dll [413760 2010-03-12] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [180224 2008-12-04] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-06-05 15:18 - 2022-07-15 15:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2015-12-17 10:11 - 2015-12-17 10:11 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2009-10-21 16:39 - 2009-10-21 16:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2024-10-03 23:33 - 2024-10-03 23:33 - 003182080 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Dell\Desktop\avc-free.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\GoogleEarthWin.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\msert.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Nokia_PC_Suite_eng_web.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\streamingaudiorecorder-setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mprzzKBYbLy4jvbnhh7Ad48CKsMZ1ycbhGPik@m4UP0Keb34lz2QOg_kfc44032a4de10645_.exe:BDU [0]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Bitdefender Anti-tracker -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security App\bdtrackerstbie.dll [2024-12-16] (Bitdefender SRL -> Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bitdefender Anti-tracker -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security App\antispam32\bdtrackerstbie.dll [2024-12-16] (Bitdefender SRL -> Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2022-06-17 08:28 - 000000000 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %SystemRoot%\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Program Files (x86)\PC Connectivity Solution\;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\10.0\DLLShared\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Calibre2\;C:\Users\Dell\AppData\Local\Microsoft\WindowsApps;C:\Program Files\dotnet\;C:\Program Files\Calibre2\;
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\Desktop\jemné pozadí ke keltskému kříži.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Intel(R) Ethernet Connection I217-LM -> e1d68x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A"
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8D930BA3-B5AE-4BEB-8A5D-F49B11FCD2D1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9DFDCF2A-2998-4142-90CB-455351AA64C2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{95D230A0-7DAB-4322-982E-2B438DD8F978}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{00B4D3FA-9222-4450-9ECE-C43EE1BC8D7E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30C52CAE-1273-4BAE-A6D1-667471A5EFB5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F20B766C-407D-4C19-A0AA-ECBEED34EFFD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA9D6EE7-AC1F-4EB6-8DA5-EDD5861544FB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{82085CF9-B394-496C-95AA-3FADFD3F5612}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{C93BF7E3-0657-49E8-B448-232C646C27A6}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{29C7AFBB-A2C6-43B2-B4B4-6CE60B118BFE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3661FF99-C952-495B-B4DC-B3BD50625D7D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FE7A1A88-3792-4B36-BFAF-5EBB4CCC1C65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A870EA77-8327-4E21-AD1D-0AD4B3EFACE2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68C48C5C-3031-4702-B51D-7E99E0271E4C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D4985F55-B53C-4378-AC7D-452F0BD7F3BD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{770C0362-5032-4371-B725-AA0E13B916DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8191F949-174C-4578-9242-5EE36927880A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0BB103B9-3E54-4FCD-AA55-CEBF76826647}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{460A6A28-F190-48DD-94D3-49DE6B3B8606}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{127E913C-5D8F-4D7B-9ADB-E6A290DB33AC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9CD4ED36-D76E-452D-B26F-2BC5E90C49A4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{69C3C6E9-0384-4684-A184-F2844C6C6FD5}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2A946983-1673-4A61-9F69-18995B7AF3C9}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{88650254-C451-44B6-B730-59771E3762D4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{084FE8F3-DF9D-4EDA-B888-7781904F6951}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
==================== Restore Points =========================
31-12-2024 20:29:13 Revo Uninstaller's restore point - Any Video Converter 9.0.6
05-01-2025 13:19:29 NPE v6.6.0.2153
06-01-2025 11:06:20 Revo Uninstaller's restore point - Opera Stable 115.0.5322.119
07-01-2025 17:06:46 AdwCleaner_BeforeCleaning_07/01/2025_17:06:46
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/07/2025 05:12:37 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (01/07/2025 05:10:28 PM) (Source: .NET Runtime) (EventID: 1000) (User: )
Description: Agent failed to generate the default log writer. System.IO.FileNotFoundException: Could not load file or assembly 'Newtonsoft.Json, Version=13.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed'. Systém nemůže nalézt uvedený soubor.
File name: 'Newtonsoft.Json, Version=13.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed'
at Dell.Client.Framework.Common.JsonFileSettings.GetSettings[T]()
at Dell.Client.Framework.Common.LogFileWriter..ctor(IApplicationSettings settingsHelper, IRegistryWrapper registryWrapper, LogMsgType defaultVerbosity, String verbosityRegKey, IFilesystem filesystem, String logRootFolder, String fileName, FileSecurity fileSecurity, RolloverScheme loggingScheme, Boolean logFilename, Boolean logFileNumber, Boolean logMethod)
at Dell.Client.Framework.Agent.Agent..ctor(IAgentConfig config)
Error: (01/07/2025 05:10:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ServiceShell.exe, verze: 5.4.0.109, časové razítko: 0x67347b7d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.5198, časové razítko: 0xd1eefc71
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000003b699
ID chybujícího procesu: 0x2430
Čas spuštění chybující aplikace: 0x01db611ea7f74fcb
Cesta k chybující aplikaci: C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: aafac405-1483-48a7-b0fd-72e46c9e67b8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2025 05:10:23 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: ServiceShell.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na Dell.Asimov.ServiceShell.Program.Main()
Error: (01/07/2025 09:09:15 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (01/06/2025 11:06:19 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen..To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.
Operace:
Shromažďování dat modulu pro zápis
Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {bd3d7ce3-363d-43e0-a027-19f65fe731c0}
Error: (01/06/2025 08:32:09 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (01/05/2025 05:01:18 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
System errors:
=============
Error: (01/07/2025 06:00:01 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (01/07/2025 05:10:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (01/07/2025 05:10:27 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (60000 ms).
Error: (01/07/2025 05:10:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Dell Client Management Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (01/07/2025 05:10:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Dell Client Management Service bylo dosaženo časového limitu (60000 ms).
Error: (01/07/2025 05:07:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Bitdefender Agent RedLine Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (01/07/2025 05:07:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/07/2025 05:07:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Dell Data Vault Collector byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Windows Defender:
================
Date: 2023-07-09 23:34:50
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {65F7AB72-B366-4681-AACB-01DCDCB0722A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-07-09 09:23:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {AF16C3ED-F4A3-44EE-BF98-30517CB20EC5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-07-08 12:51:37
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Script/Wacatac.B!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: containerfile:_C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23; file:_C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23->(GZip)
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Uživatel
Uživatel: DESKTOP-3BEIBK0\Dell
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.391.3899.0, AS: 1.391.3899.0, NIS: 1.391.3899.0
Verze modulu: AM: 1.1.23050.3, NIS: 1.1.23050.3
Date: 2023-07-08 12:51:37
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Tiggre!rfn
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: containerfile:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar; containerfile:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\Yamicsoft.All.Windows.ManagerCZECH-RaK.rar; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.exe; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar->Keygen.exe; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\Yamicsoft.All.Windows.ManagerCZECH-RaK.rar->keygen\Keygen.exe; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\Yamicsoft.All.Windows.ManagerCZECH-RaK.rar->keygen\Keygen.rar->Keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel: DESKTOP-3BEIBK0\Dell
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.391.3899.0, AS: 1.391.3899.0, NIS: 1.391.3899.0
Verze modulu: AM: 1.1.23050.3, NIS: 1.1.23050.3
Date: 2023-07-06 23:20:28
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {EFABFFF2-3561-49BB-B2BD-D5F4EC0867FD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-07-08 11:04:52
Description:
Antivirová ochrana v programu Microsoft Defender Sledování prostředků: Spotřeba paměti překročila svůj limit.
Počet přístupů: 50
Aktuální prahová hodnota: 3145780
Date: 2023-07-08 11:04:52
Description:
Antivirová ochrana v programu Microsoft Defender Sledování prostředků: Spotřeba paměti překročila svůj limit.
Počet přístupů: 49
Aktuální prahová hodnota: 3145780
Date: 2023-06-01 16:53:56
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.136.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-04-17 15:00:21
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.387.1309.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20200.4
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2025-01-07 17:32:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender Security\bdamsi\dlls_267084288522199829\antimalware_provider64.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. A34 10/19/2020
Motherboard: Dell Inc. 0K240Y
Processor: Intel(R) Xeon(R) CPU E5-1620 v3 @ 3.50GHz
Percentage of memory in use: 22%
Total physical RAM: 32682.35 MB
Available physical RAM: 25427.81 MB
Total Virtual: 40618.35 MB
Available Virtual: 33021.33 MB
==================== Drives ================================
Drive c: (Win10Pro) (Fixed) (Total:465.71 GB) (Free:195.34 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:465.76 GB) (Free:111.06 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
Drive e: (Nový svazek) (Fixed) (Total:698.62 GB) (Free:603.7 GB) (Model: WDC WD7502AAEX-00Y9A0) exFAT
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: C1167737)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 726BB4AA)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: F4686BFF)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by Dell (administrator) on DESKTOP-3BEIBK0 (Dell Inc. Precision Tower 5810) (07-01-2025 18:52:30)
Running from C:\Users\Dell\Desktop\FRST64.exe
Loaded Profiles: Dell
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5247 (X64) Language: Čeština (Česko)
Default browser: Brave
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.0.1.290\DiscoverySrv.exe
(C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdntwrk.exe
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bduserhost.exe <3>
(C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe ->) (S.C. BITDEFENDER S.R.L. -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\wsccommunicator.exe
(C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.UserProcess.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files (x86)\Dell\UpdateService\DCF\Dell.Update.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> ) C:\Program Files\Dell\DTP\DiagnosticsSubAgent\Dell.TechHub.Diagnostics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.CoreServices.Client.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\AnalyticsSubAgent\Dell.TechHub.Analytics.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\DataManagerSubAgent\Dell.TechHub.DataManager.SubAgent.exe
(C:\Program Files\Dell\TechHub\Dell.TechHub.exe ->) (Dell Technologies Inc. -> Dell, Inc.) C:\Program Files\Dell\DTP\InstrumentationSubAgent\Dell.TechHub.Instrumentation.SubAgent.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24112.22.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(explorer.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe <3>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(services.exe ->) (Dell Technologies Inc. -> Dell Technologies Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(services.exe ->) (Dell Technologies Inc. -> Dell) C:\Program Files\Dell\TechHub\Dell.TechHub.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(services.exe ->) (Intel Corporation -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(services.exe ->) (Intel Corporation -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (RealDefense LLC -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(services.exe ->) (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8830744 2016-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1437976 2016-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security App\bdagent.exe [1088776 2024-12-16] (Bitdefender SRL -> Bitdefender)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [350032 2022-07-21] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM\...\Windows x64\Print Processors\HP1006PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1006PP.dll [65024 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\HP B911 Status Monitor: C:\Windows\system32\hpinkstsB911LM.dll [329576 2012-04-20] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\...\Print\Monitors\HP1006LM: C:\Windows\system32\HP1006LM.DLL [198144 2013-04-15] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.205\Installer\chrmstp.exe [2024-12-20] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.104\Installer\chrmstp.exe [2025-01-05] (Brave Software, Inc. -> Brave Software, Inc.)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {ADC7C7E5-59C2-4E18-BBE1-2C6F1DF75208} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {F365CD46-05F9-46F1-8329-2E575D6A5BB8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928 2022-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {260DB063-4066-4377-B728-CEA201006AD1} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.0.1.290\WatchDog.exe [1156904 2024-11-20] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.0.1.290\repair
Task: {D039BB1A-4C03-4E23-86D1-2CC5F8495F08} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{6DE3B3C7-3835-4C21-B395-CAC6D9E65FEF} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {23CF7694-A113-434B-AD4F-FB398A283322} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{8F308C18-D96C-4CAF-83E2-B6312446BCFB} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {BA922053-14E3-44C7-B3EC-A618C3E80E97} - System32\Tasks\EPSON Perfection V19 Update => C:\Program Files (x86)\epson\escndv\update\e_dtsksd.exe [690536 2013-11-21] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {7C8A53AD-B550-471F-B8DA-59D4808C23EA} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [668464 2017-02-24] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {A3426DE7-508B-4C01-AFFE-DD50BD94161B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [6164192 2024-09-23] (Intel Corporation -> Intel Corporation)
Task: {D7ED046C-8944-487B-8105-4E396A0DD27E} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [6164192 2024-09-23] (Intel Corporation -> Intel Corporation)
Task: {A5D5631E-5755-4DB1-A73E-1B00B7C4CC4D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe --automatic (No File)
Task: {CEFDC571-D847-47D8-88ED-6FB160E296C0} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2113024 2023-12-13] () [File not signed]
Task: {8886B9FE-DE6B-4F5D-BC4D-BDEDC817D90B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917888 2024-11-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {B9E56DAB-62FB-477C-A915-0707E21C77D1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21917888 2024-11-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {0D839281-555B-4876-AFEA-7F73AFA8EF96} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141408 2024-12-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B00D63D-C4E3-4307-BF17-4776A024484F} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [141408 2024-12-14] (Microsoft Corporation -> Microsoft Corporation)
Task: {55AF79C5-8522-4603-A14C-D467F7C7A7FC} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3575808364-2895728588-3092939665-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {6E628816-D138-4A81-9143-83F0097B391D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {1744BE7E-6B93-4108-99D1-00DECFDD0BF3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1277480 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files\NVIDIA Corporation\NvContainer\-d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {C3F20B46-139A-4740-9BEA-72AA08008EBE} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3347496 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8FD9FDD-9944-4BDF-A26A-9417D32E097C} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646696 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation) -> C:\Program Files (x86)\NVIDIA Corporation\NvNode\--launcher=TaskScheduler
Task: {7A378495-D896-40DC-BF58-8CC2763A35E1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {007754A4-4745-4688-8AAC-090B238AA722} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [908328 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F1F5B184-7274-47A7-843C-4CE3FEB4F3DD} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {772A1E20-5158-4ED7-8636-1494EEC573A2} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25EBDE6F-8A68-4474-8525-DFFAEC4196A8} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {801FA978-D5DA-4B7C-A5C5-88809D048E72} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1673768 2024-06-11] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A630D924-D122-4356-8BCE-3F7F1B0237F5} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214288 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {3D26A3E9-0011-4E71-934F-FEFF54A3FB2C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-3575808364-2895728588-3092939665-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4214288 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {1649D0BF-50C4-4876-86B7-542D6E266A13} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1437976 2016-11-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
Task: {E8C369C5-CDE4-430D-9333-46C8878415F1} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => C:\Windows\system32\WindowsPowerShell\v1.0\powershell.exe [455680 2024-02-14] (Microsoft Windows -> Microsoft Corporation) -> C:\Program Files\Intel\SUR\QUEENCREEK\x64\-Command "Start-Process -WindowStyle Hidden task.bat"
Task: {88BD5B2B-88A3-42AB-8BE3-0821BC83099F} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-3575808364-2895728588-3092939665-1001 => C:\Users\Dell\AppData\Roaming\Zoom\bin\Zoom.exe [435000 2024-11-26] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON Perfection V19 Update.job => C:\Program Files (x86)\epson\escndv\update\e_dtsksd.exe7/EXE_S:EPSON Perfection V19,ES010C.DAT /F:UpdateDESKTOP-3BEIBK0\DellĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 04 C:\Windows\SysWOW64\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 05 C:\Windows\SysWOW64\NLAapi.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [0 2024-03-13] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6722173e-f630-499a-978c-759ddafa5161}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6722173e-f630-499a-978c-759ddafa5161}: [DhcpDomain] home
Tcpip\..\Interfaces\{8d212bba-3849-405b-a099-f1b5c4f742f4}: [DhcpNameServer] 86.49.5.221 86.49.5.222
Tcpip\..\Interfaces\{8d212bba-3849-405b-a099-f1b5c4f742f4}: [DhcpDomain] home
Tcpip\..\Interfaces\{deb96843-c1ce-4dc1-9799-848c4e63bd30}: [DhcpNameServer] 192.168.10.152
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-05]
Edge Notifications: Default -> hxxps://ctt4r3m071bc73950vb0.enhanceconnection.co.in; hxxps://mm4rv676qtk8bx.enhanceconnection.co.in; hxxps://uxho4gn6rb26up.enhanceconnection.co.in
Edge StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://echo24.cz/"
Edge Session Restore: Default -> is enabled.
Edge Extension: (Bitdefender Anti-tracker) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dbconhplchnbippmjabbcedokimacfjl [2024-07-19]
Edge Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-22]
Edge Extension: (Edge relevant text changes) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-19]
Edge HKLM-x32\...\Edge\Extension: [dbconhplchnbippmjabbcedokimacfjl]
FireFox:
========
FF DefaultProfile: daveg82e.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\daveg82e.default [2023-07-26]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\t97180j1.default-release-1718380180500 [2025-01-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Systems Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2023-07-26] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2023-07-26] <==== ATTENTION
Chrome:
=======
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2025-01-07]
CHR Notifications: Default -> hxxps://www.ce5.cz
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-12-18]
CHR Extension: (Bitdefender Anti-tracker) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2024-07-01]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-03]
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-16]
CHR HKLM-x32\...\Chrome\Extension: [khndhdhbebhaddchcgnalcjlaekbbeof]
Brave:
=======
BRA Profile: C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-01-07]
BRA Extension: (Bitdefender Anti-tracker) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\khndhdhbebhaddchcgnalcjlaekbbeof [2025-01-05]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-01-06]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-01-07]
BRA Extension: (Brave NTP background images) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-01-05]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-01-07]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-01-07]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\efkihffiamafhbhefjaljejgdpkelpal [2025-01-07]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-01-05]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2025-01-05]
BRA Extension: (Brave Ads Resources) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\iejekkikpddbbockoldagmfcdbffomfc [2025-01-05]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-01-07]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-01-05]
BRA Extension: (Brave Ad Block Updater (EasyList Czech and Slovak (plaintext))) - C:\Users\Dell\AppData\Local\BraveSoftware\Brave-Browser\User Data\oegebjahecghlckbhkmojgnpcgdeajdi [2025-01-07]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [231456 2024-10-27] (RealDefense LLC -> SUPERAntiSpyware.com)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257928 2022-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S3 aspnet_state; C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [32768 2004-07-15] (Microsoft Corporation) [File not signed]
R2 BDAppSrv; C:\Program Files\Bitdefender\Bitdefender Security App\bdservicehost.exe [851640 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 BDProtSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2946088 2023-08-31] (Bitdefender SRL -> Bitdefender)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
R2 BDSafepaySrv; C:\Program Files\Bitdefender\Bitdefender Security App\Safepay\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\131.1.73.104\elevation_service.exe [2737168 2024-12-19] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2025-01-05] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9203384 2024-09-20] (Microsoft Corporation -> Microsoft Corporation)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [460176 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [154512 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [482704 2024-07-15] (Dell Technologies Inc. -> Dell Technologies Inc.)
S2 DellClientManagementService; C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe [51648 2024-11-13] (Dell Technologies Inc. -> )
R2 DellTechHub; C:\Program Files\Dell\TechHub\Dell.TechHub.exe [154544 2024-11-14] (Dell Technologies Inc. -> Dell)
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [47000 2024-11-25] (Intel Corporation -> Intel)
R2 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [330136 2024-11-25] (Intel Corporation -> Intel)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [206304 2022-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncHelper.exe [3528208 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\Display.NvContainer\NVDisplay.Container.exe [1275000 2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.226.1110.0004\OneDriveUpdaterService.exe [3873312 2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [714200 2024-11-20] (Bitdefender SRL -> Bitdefender)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559368 2024-11-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [628736 2010-12-08] (Nokia) [File not signed]
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [149832 2024-12-19] (Dell Technologies Inc. -> Dell Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [22593840 2024-12-12] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [291224 2024-12-16] (Bitdefender SRL -> Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [852152 2024-12-16] (Bitdefender SRL -> Bitdefender)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\NisSrv.exe [3232576 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe [133592 2023-06-13] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [7505856 2024-09-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender S.R.L. Bucharest, ROMANIA)
R2 BdDci4; C:\Windows\system32\DRIVERS\bddci4.sys [969664 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [24568 2023-11-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Bitdefender)
R3 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [49200 2023-08-21] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender SRL)
S3 bduefiscan; C:\Windows\system32\DRIVERS\bduefiscan.sys [42432 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R3 DBUtilDrv2; C:\Windows\System32\drivers\DBUtilDrv2.sys [24968 2024-06-09] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
R3 DellInstrumentation; C:\Windows\System32\drivers\DellInstrumentation.sys [44472 2024-12-18] (Microsoft Windows Hardware Compatibility Publisher -> Dell)
S3 DPMDriver; C:\Windows\System32\drivers\DPMDriver.sys [139680 2022-12-08] (IndiLogic LLC -> Dell Inc.)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2022-03-06] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47672 2022-03-06] (Disc Soft Ltd -> Disc Soft Ltd)
R1 Gemma; C:\Windows\System32\DRIVERS\gemma.sys [1490896 2024-09-05] (Microsoft Windows Hardware Compatibility Publisher -> BitDefender S.R.L. Bucharest, ROMANIA)
R2 Ignisv2; C:\Windows\system32\DRIVERS\ignisv2.sys [849968 2024-05-30] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [47240 2024-04-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pccsmcfd; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [25600 2008-08-28] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [23072 2024-10-27] (RealDefense LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [15600 2023-08-25] (RealDefense, LLC -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 trufos; C:\Windows\System32\DRIVERS\trufos.sys [629184 2023-11-15] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
R0 vlflt; C:\Windows\System32\DRIVERS\vlflt.sys [1403456 2024-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Bitdefender)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [49560 2023-06-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [498944 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [99568 2023-06-13] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-07 18:50 - 2025-01-07 18:51 - 000054801 _____ C:\Users\Dell\Desktop\Addition.txt
2025-01-07 18:48 - 2025-01-07 18:53 - 000041868 _____ C:\Users\Dell\Desktop\FRST.txt
2025-01-07 18:48 - 2025-01-07 18:52 - 000000000 ____D C:\FRST
2025-01-07 18:31 - 2025-01-07 18:31 - 002403840 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2025-01-07 17:02 - 2025-01-07 17:07 - 000000000 ____D C:\AdwCleaner
2025-01-07 17:00 - 2025-01-07 17:00 - 008790880 _____ (Malwarebytes) C:\Users\Dell\Desktop\adwcleaner.exe
2025-01-06 19:21 - 2025-01-06 19:21 - 000001688 _____ C:\Users\Dell\Desktop\ReplayVideo.exe – zástupce.lnk
2025-01-05 21:32 - 2025-01-05 21:32 - 000003866 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineUA{8F308C18-D96C-4CAF-83E2-B6312446BCFB}
2025-01-05 21:32 - 2025-01-05 21:32 - 000003742 _____ C:\Windows\system32\Tasks\BraveSoftwareUpdateTaskMachineCore{6DE3B3C7-3835-4C21-B395-CAC6D9E65FEF}
2025-01-05 21:32 - 2025-01-05 21:32 - 000002448 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2025-01-05 21:32 - 2025-01-05 21:32 - 000002407 _____ C:\Users\Public\Desktop\Brave.lnk
2025-01-05 21:32 - 2025-01-05 21:32 - 000000000 ____D C:\Users\Dell\AppData\Local\BraveSoftware
2025-01-05 21:32 - 2025-01-05 21:32 - 000000000 ____D C:\Program Files\BraveSoftware
2025-01-05 21:32 - 2025-01-05 21:32 - 000000000 ____D C:\Program Files (x86)\BraveSoftware
2025-01-05 20:27 - 2025-01-05 20:27 - 001276704 _____ (BraveSoftware Inc.) C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe
2025-01-05 13:17 - 2025-01-05 13:20 - 000000000 ____D C:\Users\Dell\AppData\Local\NPE
2025-01-05 13:17 - 2025-01-05 13:17 - 000000000 ____D C:\ProgramData\Norton
2025-01-05 13:16 - 2025-01-05 13:17 - 016995528 _____ (NortonLifeLock Inc.) C:\Users\Dell\Desktop\NPE.exe
2025-01-02 11:43 - 2025-01-02 11:43 - 000266735 _____ C:\Users\Dell\Desktop\Část 1.2
2025-01-01 15:31 - 2025-01-01 15:31 - 000262628 _____ C:\Users\Dell\Desktop\Mělník-1.pololetí2025.pdf
2025-01-01 11:32 - 2025-01-05 13:21 - 000438968 _____ C:\Windows\system32\FNTCACHE.DAT
2024-12-31 22:26 - 2024-12-31 22:26 - 251575648 _____ (Anvsoft) C:\Users\Dell\Desktop\avc-free.exe
2024-12-31 20:37 - 2024-12-31 20:37 - 000001154 _____ C:\Users\Dell\Desktop\iWisoft Free Video Converter.lnk
2024-12-31 20:37 - 2024-12-31 20:37 - 000000000 ____D C:\Users\Dell\Documents\iWisoft Free Video Converter
2024-12-31 20:37 - 2024-12-31 20:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iWisoft Free Video Converter
2024-12-31 20:37 - 2024-12-31 20:37 - 000000000 ____D C:\Program Files (x86)\iWisoft Free Video Converter
2024-12-31 20:37 - 2009-09-29 20:57 - 000758018 _____ C:\Windows\SysWOW64\xvidcore.dll
2024-12-31 20:37 - 2008-12-04 21:46 - 000180224 _____ C:\Windows\SysWOW64\xvidvfw.dll
2024-12-31 20:37 - 2008-10-08 10:16 - 000139264 _____ (hxxp://www.xvid.org) C:\Windows\SysWOW64\xvid.ax
2024-12-31 12:45 - 2023-11-14 23:38 - 000000036 _____ C:\Users\Dell\AppData\Local\_LOCAL_GUID
2024-12-31 12:44 - 2024-12-31 12:44 - 000000000 ____D C:\Users\Dell\AppData\Local\any video converter-updater
2024-12-27 17:21 - 2024-12-27 17:21 - 000000000 ____D C:\Program Files (x86)\Dell
2024-12-27 17:10 - 2024-12-27 17:10 - 000000000 ____D C:\Users\Dell\Downloads\SupportAssistAgent
2024-12-27 15:45 - 2024-12-27 15:45 - 000001678 _____ C:\Users\Dell\Desktop\EopAuthApp.exe – zástupce.lnk
2024-12-27 15:35 - 2024-12-27 15:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eObčanka
2024-12-27 15:34 - 2024-12-27 15:34 - 000000000 ____D C:\Program Files\eObcanka
2024-12-27 13:26 - 2024-12-27 13:26 - 144763520 _____ C:\Users\Dell\Desktop\eObcanka_x64.exe
2024-12-27 07:18 - 2024-12-27 07:18 - 000000000 ____D C:\Users\Dell\AppData\Local\Backup
2024-12-20 22:44 - 2024-12-20 22:50 - 1265593653 _____ C:\Users\Dell\Downloads\Vyhnání z ráje_2001_CZ.mp4
2024-12-20 21:49 - 2024-12-20 21:53 - 2763661532 _____ C:\Users\Dell\Downloads\Source Zdroj je v tebe.avi
2024-12-20 21:33 - 2024-12-20 21:33 - 230212992 _____ C:\Users\Dell\Downloads\Nepotvrzeno 46052.crdownload
2024-12-20 18:06 - 2024-12-20 18:06 - 000001551 _____ C:\Users\Dell\Desktop\stellarium.exe – zástupce.lnk
2024-12-19 14:56 - 2025-01-04 23:46 - 000000000 ____D C:\Users\Dell\Desktop\OKRUŽNÍ
2024-12-18 19:15 - 2024-12-18 19:15 - 000419632 _____ C:\Users\Dell\Downloads\Počem muži touží.html
2024-12-18 19:15 - 2024-12-18 19:15 - 000000000 ____D C:\Users\Dell\Downloads\Počem muži touží_files
2024-12-13 00:49 - 2024-12-13 00:49 - 000022205 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-12-13 00:48 - 2024-12-13 00:48 - 000022205 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2024-12-13 00:33 - 2024-12-13 00:33 - 000000000 ___HD C:\$WinREAgent
2024-12-12 15:07 - 2024-12-13 10:10 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-12-10 20:07 - 2024-12-13 10:10 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-12-10 15:34 - 2024-12-10 15:34 - 000174227 _____ C:\Users\Dell\Desktop\zadostsmlouvaopripojenikdsnn_form.1.pdf
2024-12-10 13:29 - 2024-12-10 13:29 - 000119056 _____ C:\Users\Dell\Desktop\zadostsmlouvaopripojenikdsnn_form.pdf
2024-12-09 22:02 - 2024-12-09 22:02 - 000003600 _____ C:\Windows\system32\Tasks\USER_ESRV_SVC_QUEENCREEK
2024-12-09 22:02 - 2024-10-03 23:33 - 000049888 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\semav6msr64.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-01-07 18:53 - 2022-02-25 17:43 - 000000000 ____D C:\Temp
2025-01-07 18:51 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2025-01-07 18:37 - 2022-02-25 17:32 - 000000000 ____D C:\Windows\SystemTemp
2025-01-07 18:25 - 2020-09-27 06:55 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-01-07 17:42 - 2022-09-27 20:24 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-01-07 17:32 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-07 17:32 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2025-01-07 17:32 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-07 17:12 - 2022-02-25 16:33 - 001835260 _____ C:\Windows\system32\PerfStringBackup.INI
2025-01-07 17:12 - 2019-12-07 15:43 - 000762744 _____ C:\Windows\system32\perfh005.dat
2025-01-07 17:12 - 2019-12-07 15:43 - 000169890 _____ C:\Windows\system32\perfc005.dat
2025-01-07 17:08 - 2022-02-25 18:27 - 000000000 ____D C:\Program Files\TeamViewer
2025-01-07 17:08 - 2022-02-25 17:20 - 000000000 ____D C:\ProgramData\NVIDIA
2025-01-07 17:08 - 2020-09-27 08:56 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-01-07 17:08 - 2020-09-27 06:55 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-07 17:07 - 2022-02-25 17:41 - 000000000 ____D C:\Users\Dell\Documents\Dell
2025-01-07 17:07 - 2022-02-25 17:39 - 000000000 ____D C:\ProgramData\Dell
2025-01-07 17:07 - 2019-12-07 10:03 - 000524288 _____ C:\Windows\system32\config\BBI
2025-01-07 17:01 - 2022-08-14 13:36 - 000004210 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{9A2F5113-4EB7-40FF-BF4C-5E4001B07E76}
2025-01-07 09:26 - 2022-02-25 16:33 - 000000000 ____D C:\Users\Dell\AppData\Local\D3DSCache
2025-01-07 00:31 - 2023-09-02 22:37 - 000000000 ____D C:\Users\Dell\AppData\Roaming\vlc
2025-01-06 23:58 - 2023-05-15 22:40 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Stellarium
2025-01-06 21:35 - 2023-04-01 22:13 - 000000000 ____D C:\Users\Dell\Desktop\RECEPTY
2025-01-06 21:26 - 2022-02-25 16:32 - 000000000 ____D C:\Users\Dell\AppData\Local\Packages
2025-01-05 19:38 - 2024-10-16 23:03 - 000000000 ____D C:\Program Files\Recuva
2025-01-05 13:21 - 2023-03-24 22:23 - 000000000 ____D C:\Program Files (x86)\Replay Video Capture 8
2025-01-05 13:21 - 2019-12-07 10:03 - 000131072 _____ C:\Windows\system32\config\ELAM
2025-01-04 23:58 - 2022-05-05 13:12 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Excel
2025-01-04 23:37 - 2024-10-16 20:59 - 000000000 ____D C:\Users\Dell\Desktop\HUDBA
2025-01-04 23:26 - 2022-02-26 23:19 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Office
2025-01-04 23:24 - 2022-02-26 23:19 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Word
2025-01-03 10:11 - 2022-02-25 18:27 - 000000000 ____D C:\Users\Dell\AppData\Local\TeamViewer
2025-01-02 11:50 - 2020-09-27 08:59 - 000000000 ____D C:\ProgramData\Packages
2025-01-01 11:32 - 2022-02-25 16:25 - 000000000 ____D C:\Windows\Panther
2024-12-31 12:45 - 2022-02-25 18:04 - 000000000 ____D C:\Users\Dell\AppData\Local\CrashDumps
2024-12-29 11:04 - 2023-10-09 12:53 - 000000000 ____D C:\Users\Dell\Desktop\T.Hrabě
2024-12-27 18:22 - 2022-02-25 17:39 - 000000000 ____D C:\Program Files\Dell
2024-12-27 18:22 - 2022-02-25 17:20 - 000000000 ____D C:\ProgramData\Package Cache
2024-12-27 17:20 - 2022-04-10 18:40 - 000000000 ____D C:\Program Files\dotnet
2024-12-27 14:03 - 2022-02-26 20:50 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-12-27 07:14 - 2022-02-25 16:32 - 000000000 ____D C:\Users\Dell\AppData\Local\ConnectedDevicesPlatform
2024-12-26 23:08 - 2022-02-25 16:40 - 000000000 ____D C:\Users\Dell\AppData\Local\PlaceholderTileLogoFolder
2024-12-26 19:05 - 2020-09-27 08:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-12-23 10:11 - 2022-03-01 22:22 - 000000000 ____D C:\Users\Dell\Downloads\Bitdefender Safepay
2024-12-22 15:28 - 2024-06-19 16:37 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Telegram Desktop
2024-12-21 19:33 - 2023-11-14 08:41 - 000003716 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{AD382C99-8EF8-4E3A-AC5C-C42BEFAC36A6}
2024-12-21 19:33 - 2023-11-14 08:41 - 000003592 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{419F196A-0637-4C27-8204-5997573837A9}
2024-12-20 08:20 - 2022-12-11 09:35 - 000002255 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-17 15:33 - 2022-02-25 18:07 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-12-17 15:33 - 2022-02-25 18:07 - 000002138 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-12-17 15:33 - 2022-02-25 17:05 - 000003596 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3575808364-2895728588-3092939665-1001
2024-12-17 11:47 - 2022-05-05 20:48 - 000000000 ____D C:\Users\Dell\Desktop\ZAHRADA
2024-12-14 10:31 - 2022-02-25 18:01 - 000000000 ____D C:\Program Files\Microsoft Office
2024-12-13 10:10 - 2022-02-25 22:52 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-13 10:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2024-12-13 10:09 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2024-12-13 10:08 - 2024-07-10 11:19 - 000000000 ____D C:\Windows\system32\compatrel
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\PrintDialog
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\setup
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellExperiences
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ShellComponents
2024-12-13 10:08 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2024-12-13 09:11 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2024-12-13 00:49 - 2020-09-27 07:34 - 000419072 __RSH C:\bootmgr
2024-12-13 00:48 - 2020-09-27 08:58 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2024-12-12 17:48 - 2022-02-25 22:52 - 000001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-12-12 13:03 - 2024-10-27 07:42 - 000002081 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-12-12 13:03 - 2022-02-25 18:04 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-12-10 23:39 - 2024-06-14 16:49 - 000001013 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-12-09 22:02 - 2022-02-25 17:40 - 000003762 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132
2024-12-09 22:02 - 2022-02-25 17:40 - 000003528 _____ C:\Windows\system32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon
2024-12-09 14:21 - 2022-10-16 22:56 - 000000000 ____D C:\Users\Dell\Desktop\Homeopatie
==================== Files in the root of some directories ========
2024-04-17 17:53 - 2024-04-17 17:53 - 000000295 _____ () C:\Users\Dell\AppData\Local\config.ini
2024-04-17 17:48 - 2024-04-17 17:48 - 000011614 _____ () C:\Users\Dell\AppData\Local\Phonebook.txt
2022-02-27 17:34 - 2022-02-27 17:34 - 000007616 _____ () C:\Users\Dell\AppData\Local\Resmon.ResmonCfg
2024-04-17 17:43 - 2024-04-17 17:43 - 000000000 _____ () C:\Users\Dell\AppData\Local\simedit.log
2024-12-31 12:45 - 2023-11-14 23:38 - 000000036 _____ () C:\Users\Dell\AppData\Local\_LOCAL_GUID
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-01-2025
Ran by Dell (07-01-2025 18:53:41)
Running from C:\Users\Dell\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5247 (X64) (2022-02-25 15:29:05)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3575808364-2895728588-3092939665-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3575808364-2895728588-3092939665-503 - Limited - Disabled)
Dell (S-1-5-21-3575808364-2895728588-3092939665-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-3575808364-2895728588-3092939665-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3575808364-2895728588-3092939665-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Bitdefender Antivirus (Enabled - Up to date) {0F59B032-EA77-E3A8-2382-74A4346E5522}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {37623117-A018-E2F0-08DD-DD91CABD1259}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader (HKLM\...\{2CF99470-402B-403D-AEE9-DFE55A7EFB92}) (Version: 4.33.4.0167 - Open Media LLC)
4K Video Downloader+ (HKLM\...\{FD39318C-527C-4805-8480-6E3A3D0764C8}) (Version: 1.10.4.0167 - Open Media LLC) Hidden
4K Video Downloader+ (HKLM-x32\...\{3b0c7e0e-e775-4439-88b9-ecb40a01c1b9}) (Version: 1.9.0.128 - Open Media LLC)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.005.20320 - Adobe)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 12.0 (HKLM-x32\...\{AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B}) (Version: 12.0.7.148 - Adobe Systems, Inc)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.7 - Sereby Corporation)
Audacity 3.5.1 (HKLM\...\Audacity_is1) (Version: 3.5.1 - Audacity Team)
Balíček ovladače systému Windows - Hewlett-Packard Image (12/27/2006 8.0.0.0) (HKLM\...\A86F74A8853ED6B1102811674C7B366AF1B276BB) (Version: 12/27/2006 8.0.0.0 - Hewlett-Packard)
Balíček ovladače systému Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.0.1.290 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 27.0.14.69 - Bitdefender)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 131.1.73.104 - Autoři prohlížeče Brave)
calibre 64bit (HKLM\...\{7F97780B-9EAD-4000-BD3A-F6D0FE096D56}) (Version: 6.29.0 - Kovid Goyal)
calibre 64bit (HKLM\...\{CCFCB310-562C-453D-839C-D784279AC61A}) (Version: 6.23.0 - Kovid Goyal)
Dashboard (HKLM-x32\...\Western Digital SSD Dashboard) (Version: 3.4.2.9 - Western Digital Corporation)
Dell SupportAssist (HKLM\...\{A73D9A16-C22B-4A2C-8D70-AFFDD50E2A72}) (Version: 4.6.3.23467 - Dell Inc.)
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM\...\{F5391400-4596-46A6-9D3C-9D7647230679}) (Version: 5.5.13.0 - Dell Inc.) Hidden
Dell SupportAssist OS Recovery Plugin for Dell Update (HKLM-x32\...\{2b5a1544-c837-4b31-acb8-cb096c96013f}) (Version: 5.5.13.0 - Dell Inc.)
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
Easy Photo Scan (HKLM-x32\...\{99364024-626C-4BE1-89C8-2F207023497B}) (Version: 1.00.0018 - Seiko Epson Corporation)
ENE_QSI_Loki_HAL (HKLM\...\{BDE43F26-5917-44F8-B86A-F1D9A6B80B32}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
ENE_QSI_Loki_HAL (HKLM-x32\...\{205ef3a8-937b-43cb-90fc-2f58f71408d8}) (Version: 1.0.3.0 - ENE TECHNOLOGY INC.) Hidden
eObčanka (HKLM\...\{E498F9C6-8B16-4FE7-B3E9-1F30651F4910}) (Version: 3.4.4.24351 - MONET+, a.s. pro Ministerstvo vnitra České republiky)
Epson Copy Utility 4 (HKLM-x32\...\{06A7E8AB-2856-4490-BAA9-F338ABE7695A}) (Version: 4.01.0001 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{26A9B753-4B5D-46D8-A329-5CEF96FC22D2}) (Version: 4.6.5 - Seiko Epson Corporation)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.205 - Google LLC)
honestech VHS to DVD 3.0 SE (HKLM-x32\...\{2856F5EA-E98A-40E4-BAD6-8C644A4A3F3C}) (Version: 3.0 - honestech)
hp Laserjet 1005 (HKLM-x32\...\{F61F2FAB-7CBB-4745-BC52-C9FB2A0F99EF}) (Version: - )
Intel Driver && Support Assistant (HKLM-x32\...\{E2412D7F-3FB3-4638-819A-953908EA116E}) (Version: 24.6.49.8 - Intel) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{E860D8DC-CF76-4E75-B248-2FEEEC5BACAD}) (Version: 2.4.10910 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{212B25D1-7216-4140-B248-D24BA0F80029}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{81274252-3CCE-4ABF-91F0-811144288963}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{927853D5-9CCC-4ED8-9C64-113EB34E8728}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client (HKLM\...\{F6AA7E43-41A4-4304-BA96-A495C5788231}) (Version: 1.45.447.1 - Intel Corporation) Hidden
Intel® Driver & Support Assistant (HKLM-x32\...\{E5FB0A2C-49A5-41B5-B5AB-249A3A05405E}) (Version: 24.6.49.8 - Intel)
iWisoft Free Video Converter 1.2 (HKLM-x32\...\iWisoft Free Video Converter_is1) (Version: 1.2 - www.easy-video-converter.com)
K-Lite Codec Pack 18.2.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 18.2.0 - KLCP)
Luxor 1.0.5.34 S (HKLM-x32\...\Luxor 1.0.5.34 S) (Version: - )
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.8627.1 - Waves Audio Ltd.) Hidden
Microsoft .NET Core Host - 3.1.28 (x64) (HKLM\...\{26ECE92F-518E-40AF-9108-7B7B444A46DE}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Host FX Resolver - 3.1.28 (x64) (HKLM\...\{CDEA72F4-1367-4E0A-AC5F-0EBAF7C6825A}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM\...\{3691148D-EF42-4812-8956-AE11FC413B8D}) (Version: 24.112.31513 - Microsoft Corporation) Hidden
Microsoft .NET Core Runtime - 3.1.28 (x64) (HKLM-x32\...\{231e3b76-4d0f-4e60-9d69-f11c9c448630}) (Version: 3.1.28.31513 - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM-x32\...\M2833941) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version: - )
Microsoft .NET Host - 5.0.17 (x64) (HKLM\...\{E663ED1E-899C-40E8-91D0-8D37B95E3C69}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host - 6.0.31 (x64) (HKLM\...\{59ED1DC1-E3E4-4BC0-B43F-143CCC38FF17}) (Version: 48.124.15198 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.11 (x64) (HKLM\...\{362B4D0D-8438-44DA-86B2-FEC44E000FCA}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 5.0.17 (x64) (HKLM\...\{8BA25391-0BE6-443A-8EBF-86A29BAFC479}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.20 (x64) (HKLM\...\{76FA02FF-603F-48BB-9E3F-17ED5DB861E8}) (Version: 48.83.63169 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.31 (x64) (HKLM\...\{9992D04E-553E-4BC2-B0EC-4A394DD19986}) (Version: 48.124.15198 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.11 (x64) (HKLM\...\{F59C11F0-D73F-452B-8D1D-8C33B82D8507}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM\...\{5A66E598-37BD-4C8A-A7CB-A71C32ABCD78}) (Version: 40.68.31213 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 5.0.17 (x64) (HKLM-x32\...\{a699b48e-5748-4980-ad92-0b61b1d9d718}) (Version: 5.0.17.31213 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.20 (x64) (HKLM\...\{6CE8AD8C-E6D5-4BF7-91C3-7F8106A5CD93}) (Version: 48.83.63169 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.20 (x64) (HKLM-x32\...\{403b0cfe-5969-462d-8eb2-aafde344360e}) (Version: 6.0.20.32620 - Microsoft Corporation)
Microsoft .NET Runtime - 6.0.31 (x64) (HKLM\...\{0950F07D-F1C4-47A5-AC88-C5FAA5DC564D}) (Version: 48.124.15198 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.11 (x64) (HKLM\...\{9C80213E-9079-4561-8D57-1FDD0D62251F}) (Version: 64.44.23191 - Microsoft Corporation) Hidden
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.112 - Microsoft Corporation) Hidden
Microsoft Office LTSC Professional Plus 2021 - cs-cz (HKLM\...\ProPlus2021Volume - cs-cz) (Version: 16.0.14332.20828 - Microsoft Corporation)
Microsoft Office LTSC Professional Plus 2021 - cs-cz.proof (HKLM\...\ProPlus2021Volume - cs-cz.proof) (Version: 16.0.14332.20828 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.226.1110.0004 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft VC++ redistributables repacked. (HKLM\...\{93E32441-3402-439F-8EF7-8EC66D3B74CA}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft VC++ redistributables repacked. (HKLM-x32\...\{4ADC7996-3183-4E8D-8827-34E6558F5B83}) (Version: 12.0.0.0 - Intel Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60830 (HKLM-x32\...\{c7ed0d4c-89c5-47fc-9e89-1088affe63f3}) (Version: 11.0.60830.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60830 (HKLM\...\{122B909F-9DCF-360E-91E7-0679E033FBE1}) (Version: 11.0.60830 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60830 (HKLM\...\{083808D6-6235-37A8-82C1-98D226EB681F}) (Version: 11.0.60830 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.31 (x64) (HKLM\...\{EFE53353-800E-4987-B965-1C968D0F23A4}) (Version: 48.124.15242 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.31 (x64) (HKLM-x32\...\{1a7abdc5-639b-4af0-87c6-dbc511750c6e}) (Version: 6.0.31.33720 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.11 (x64) (HKLM\...\{C0790AA0-0F40-4836-85B2-677B87625E63}) (Version: 64.44.23253 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.11 (x64) (HKLM-x32\...\{bd40e761-3e88-4202-9b53-26c6bed3d467}) (Version: 8.0.11.34221 - Microsoft Corporation)
MiniTool Power Data Recovery 12.1 (HKLM\...\{E1BCD081-4BF4-4E2F-832A-911EC42EF3C5}_is1) (Version: 12.1 - MiniTool Software Limited)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 133.0.3 (x64 cs)) (Version: 133.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 127.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 128.5.2 (x64 cs)) (Version: 128.5.2 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
Nebesky kalendar 4 verze 4.8 (HKLM-x32\...\{6F8B3EAA-4961-4997-A9DD-7A82005CC01E}_is1) (Version: 4.8 - Zdenek Pazdera - Wendys)
Need For Speed 5 - Porsche Unleashed version 3.5 (HKLM-x32\...\{E150B284-60E4-49C4-A9E6-B06A73A169BA}_is1) (Version: 3.5 - Electronics Arts)
Nokia Connectivity Cable Driver (HKLM-x32\...\{4216D328-0FE8-48B8-85B8-BD300E6F080F}) (Version: 7.1.36.0 - Nokia)
Nokia USB Driver v1.4.0 (HKLM-x32\...\{C3863576-B663-43B9-B927-CDB79845D9D2}_is1) (Version: 1.4.0 - HMD Global)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.28.0.417 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.28.0.417 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20828 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20303 - Microsoft Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{D4AEC53C-1720-41D9-B6D7-6A60DE62D444}) (Version: 10.50.2.0 - Nokia)
Phone F USB Driver (HKLM-x32\...\{91ACA30A-B6CB-4D42-8490-874C11F63269}) (Version: 3.8.0 - Mobile)
Phone M USB Driver (HKLM-x32\...\{39D82433-23F4-4234-91EC-1742687F5CF8}) (Version: 1.2.0 - Mobile)
Phone Nokia USB Driver (HKLM-x32\...\{68BA2FEC-FF61-4282-AC2C-3E464439A3D6}) (Version: 1.4.0 - Mobile)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22391 - Microsoft Corporation)
PowerISO (HKLM-x32\...\PowerISO) (Version: 8.1 - Power Software Ltd)
Příručky společnosti EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation)
Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6111 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.54 - Piriform)
Replay Video Capture 8 (HKLM-x32\...\Replay Video Capture 8) (Version: 8.7.1 - Applian Technologies Inc.)
Revo Uninstaller 2.4.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.5 - VS Revo Group, Ltd.)
Stellarium 23.1 (HKLM-x32\...\Stellarium_is1) (Version: 23.1.0 - Stellarium team)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1260 - SUPERAntiSpyware.com)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.61.3 - TeamViewer)
Telegram Desktop (HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.9 - Telegram FZ-LLC)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.00 - Ghisler Software GmbH)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{85C69797-7336-4E83-8D97-32A7C8465A3B}) (Version: 8.94.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{B9A7A138-BFD5-4C73-A269-F78CCA28150E}) (Version: 8.94.0.0 - Microsoft Corporation)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
Videodownloader (HKLM-x32\...\{FEEBD562-6B8E-457A-9133-89B8C1E14443}) (Version: 1.1.8 - Videodownloader)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN)
Windows 10 Manager (HKLM\...\{6EB758F5-DBA0-4A04-A143-A69F5B0637C6}) (Version: 2.3.3 - Yamicsoft) Hidden
Windows 10 Manager (HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\Windows 10 Manager 2.3.3) (Version: 2.3.3 - Yamicsoft)
WinRAR 4.00 (HKLM-x32\...\WinRAR 4.00) (Version: - )
WinRAR 6.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.10.0 - win.rar GmbH)
Zoner Photo Studio X (HKLM\...\ZonerPhotoStudioX_CZ_is1) (Version: 19.1707.2.30 - ZONER software)
Zoom Workplace (HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\ZoomUMX) (Version: 6.2.7 (49583) - Zoom Video Communications, Inc.)
Packages:
=========
Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_4.6.2.0_x64__htrsf667h5kn2 [2024-12-27] (Dell Inc)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-07-21] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2024-12-24] (NVIDIA Corp.)
Total Zip -> C:\Program Files\WindowsApps\22858LISAppStudio.TotalZip_2.1.9.0_x86__jph5be7mh3xc4 [2025-01-02] (LISApp Studio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2450.6.0_x64__cv1g1gvanyjgm [2024-12-23] (WhatsApp Inc.) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3575808364-2895728588-3092939665-1001_Classes\CLSID\{04271989-C4D2-9CD0-A54D-3FB4F3BFA290} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3575808364-2895728588-3092939665-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3575808364-2895728588-3092939665-1001_Classes\CLSID\{A70C074B-BC99-4454-89FF-EBB1FC232E98}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-11-04] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-11-04] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2024-05-22] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.226.1110.0004\FileSyncShell64.dll [2024-12-17] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispig.inf_amd64_0afec3f2050014a0\nvshext.dll [2024-09-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2021-11-04] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2024-05-22] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-01-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.MPG4] => C:\Windows\SysWOW64\MPG4C32.dll [413760 2010-03-12] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP42] => C:\Windows\SysWOW64\MPG4C32.dll [413760 2010-03-12] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.MP43] => C:\Windows\SysWOW64\MPG4C32.dll [413760 2010-03-12] (Microsoft Corporation) [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [180224 2008-12-04] () [File not signed]
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2023-06-05 15:18 - 2022-07-15 15:00 - 000094720 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2015-12-17 10:11 - 2015-12-17 10:11 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll
2009-10-21 16:39 - 2009-10-21 16:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
2024-10-03 23:33 - 2024-10-03 23:33 - 003182080 _____ (SQLite Development Team) [File not signed] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Dell\Desktop\avc-free.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\GoogleEarthWin.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\msert.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Nokia_PC_Suite_eng_web.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\streamingaudiorecorder-setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mprzzKBYbLy4jvbnhh7Ad48CKsMZ1ycbhGPik@m4UP0Keb34lz2QOg_kfc44032a4de10645_.exe:BDU [0]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Bitdefender Anti-tracker -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security App\bdtrackerstbie.dll [2024-12-16] (Bitdefender SRL -> Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Bitdefender Anti-tracker -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender Security App\antispam32\bdtrackerstbie.dll [2024-12-16] (Bitdefender SRL -> Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-25] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2022-06-17 08:28 - 000000000 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %SystemRoot%\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Program Files (x86)\PC Connectivity Solution\;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\;C:\Program Files (x86)\Common Files\Roxio Shared\10.0\DLLShared\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Calibre2\;C:\Users\Dell\AppData\Local\Microsoft\WindowsApps;C:\Program Files\dotnet\;C:\Program Files\Calibre2\;
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\Desktop\jemné pozadí ke keltskému kříži.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Intel(R) Ethernet Connection I217-LM -> e1d68x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A"
HKU\S-1-5-21-3575808364-2895728588-3092939665-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8D930BA3-B5AE-4BEB-8A5D-F49B11FCD2D1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9DFDCF2A-2998-4142-90CB-455351AA64C2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{95D230A0-7DAB-4322-982E-2B438DD8F978}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{00B4D3FA-9222-4450-9ECE-C43EE1BC8D7E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{30C52CAE-1273-4BAE-A6D1-667471A5EFB5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F20B766C-407D-4C19-A0AA-ECBEED34EFFD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA9D6EE7-AC1F-4EB6-8DA5-EDD5861544FB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{82085CF9-B394-496C-95AA-3FADFD3F5612}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{C93BF7E3-0657-49E8-B448-232C646C27A6}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{29C7AFBB-A2C6-43B2-B4B4-6CE60B118BFE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{3661FF99-C952-495B-B4DC-B3BD50625D7D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FE7A1A88-3792-4B36-BFAF-5EBB4CCC1C65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A870EA77-8327-4E21-AD1D-0AD4B3EFACE2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{68C48C5C-3031-4702-B51D-7E99E0271E4C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D4985F55-B53C-4378-AC7D-452F0BD7F3BD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{770C0362-5032-4371-B725-AA0E13B916DC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8191F949-174C-4578-9242-5EE36927880A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0BB103B9-3E54-4FCD-AA55-CEBF76826647}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{460A6A28-F190-48DD-94D3-49DE6B3B8606}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{127E913C-5D8F-4D7B-9ADB-E6A290DB33AC}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.112\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9CD4ED36-D76E-452D-B26F-2BC5E90C49A4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{69C3C6E9-0384-4684-A184-F2844C6C6FD5}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2A946983-1673-4A61-9F69-18995B7AF3C9}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{88650254-C451-44B6-B730-59771E3762D4}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{084FE8F3-DF9D-4EDA-B888-7781904F6951}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
==================== Restore Points =========================
31-12-2024 20:29:13 Revo Uninstaller's restore point - Any Video Converter 9.0.6
05-01-2025 13:19:29 NPE v6.6.0.2153
06-01-2025 11:06:20 Revo Uninstaller's restore point - Opera Stable 115.0.5322.119
07-01-2025 17:06:46 AdwCleaner_BeforeCleaning_07/01/2025_17:06:46
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (01/07/2025 05:12:37 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (01/07/2025 05:10:28 PM) (Source: .NET Runtime) (EventID: 1000) (User: )
Description: Agent failed to generate the default log writer. System.IO.FileNotFoundException: Could not load file or assembly 'Newtonsoft.Json, Version=13.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed'. Systém nemůže nalézt uvedený soubor.
File name: 'Newtonsoft.Json, Version=13.0.0.0, Culture=neutral, PublicKeyToken=30ad4fe6b2a6aeed'
at Dell.Client.Framework.Common.JsonFileSettings.GetSettings[T]()
at Dell.Client.Framework.Common.LogFileWriter..ctor(IApplicationSettings settingsHelper, IRegistryWrapper registryWrapper, LogMsgType defaultVerbosity, String verbosityRegKey, IFilesystem filesystem, String logRootFolder, String fileName, FileSecurity fileSecurity, RolloverScheme loggingScheme, Boolean logFilename, Boolean logFileNumber, Boolean logMethod)
at Dell.Client.Framework.Agent.Agent..ctor(IAgentConfig config)
Error: (01/07/2025 05:10:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ServiceShell.exe, verze: 5.4.0.109, časové razítko: 0x67347b7d
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.5198, časové razítko: 0xd1eefc71
Kód výjimky: 0xe0434352
Posun chyby: 0x000000000003b699
ID chybujícího procesu: 0x2430
Čas spuštění chybující aplikace: 0x01db611ea7f74fcb
Cesta k chybující aplikaci: C:\Program Files (x86)\Dell\UpdateService\ServiceShell.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: aafac405-1483-48a7-b0fd-72e46c9e67b8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/07/2025 05:10:23 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: ServiceShell.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.FileNotFoundException
na Dell.Asimov.ServiceShell.Program.Main()
Error: (01/07/2025 09:09:15 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (01/06/2025 11:06:19 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen..To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.
Operace:
Shromažďování dat modulu pro zápis
Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {bd3d7ce3-363d-43e0-a027-19f65fe731c0}
Error: (01/06/2025 08:32:09 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
Error: (01/05/2025 05:01:18 PM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: DESKTOP-3BEIBK0)
Description: Nelze otevřít objekt výkonu služby serveru. Vrácený kód stavu představují první čtyři bajty (DWORD) datové části.
System errors:
=============
Error: (01/07/2025 06:00:01 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (01/07/2025 05:10:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (01/07/2025 05:10:27 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (60000 ms).
Error: (01/07/2025 05:10:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Dell Client Management Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (01/07/2025 05:10:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Dell Client Management Service bylo dosaženo časového limitu (60000 ms).
Error: (01/07/2025 05:07:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Bitdefender Agent RedLine Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (01/07/2025 05:07:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (01/07/2025 05:07:02 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Dell Data Vault Collector byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Windows Defender:
================
Date: 2023-07-09 23:34:50
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {65F7AB72-B366-4681-AACB-01DCDCB0722A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-07-09 09:23:41
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {AF16C3ED-F4A3-44EE-BF98-30517CB20EC5}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2023-07-08 12:51:37
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Script/Wacatac.B!ml
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: containerfile:_C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23; file:_C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23->(GZip)
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Uživatel
Uživatel: DESKTOP-3BEIBK0\Dell
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.391.3899.0, AS: 1.391.3899.0, NIS: 1.391.3899.0
Verze modulu: AM: 1.1.23050.3, NIS: 1.1.23050.3
Date: 2023-07-08 12:51:37
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Tiggre!rfn
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: containerfile:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar; containerfile:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\Yamicsoft.All.Windows.ManagerCZECH-RaK.rar; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.exe; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar->Keygen.exe; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\Yamicsoft.All.Windows.ManagerCZECH-RaK.rar->keygen\Keygen.exe; file:_D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\Yamicsoft.All.Windows.ManagerCZECH-RaK.rar->keygen\Keygen.rar->Keygen.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel: DESKTOP-3BEIBK0\Dell
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.391.3899.0, AS: 1.391.3899.0, NIS: 1.391.3899.0
Verze modulu: AM: 1.1.23050.3, NIS: 1.1.23050.3
Date: 2023-07-06 23:20:28
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {EFABFFF2-3561-49BB-B2BD-D5F4EC0867FD}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[0]:
Date: 2023-07-08 11:04:52
Description:
Antivirová ochrana v programu Microsoft Defender Sledování prostředků: Spotřeba paměti překročila svůj limit.
Počet přístupů: 50
Aktuální prahová hodnota: 3145780
Date: 2023-07-08 11:04:52
Description:
Antivirová ochrana v programu Microsoft Defender Sledování prostředků: Spotřeba paměti překročila svůj limit.
Počet přístupů: 49
Aktuální prahová hodnota: 3145780
Date: 2023-06-01 16:53:56
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.391.136.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.23050.3
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
Date: 2023-04-17 15:00:21
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.387.1309.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.20200.4
Kód chyby: 0x80240438
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===============
Date: 2025-01-07 17:32:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender Security\bdamsi\dlls_267084288522199829\antimalware_provider64.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. A34 10/19/2020
Motherboard: Dell Inc. 0K240Y
Processor: Intel(R) Xeon(R) CPU E5-1620 v3 @ 3.50GHz
Percentage of memory in use: 22%
Total physical RAM: 32682.35 MB
Available physical RAM: 25427.81 MB
Total Virtual: 40618.35 MB
Available Virtual: 33021.33 MB
==================== Drives ================================
Drive c: (Win10Pro) (Fixed) (Total:465.71 GB) (Free:195.34 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Data) (Fixed) (Total:465.76 GB) (Free:111.06 GB) (Model: WDC WDS500G2B0A-00SM50) NTFS
Drive e: (Nový svazek) (Fixed) (Total:698.62 GB) (Free:603.7 GB) (Model: WDC WD7502AAEX-00Y9A0) exFAT
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: C1167737)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 726BB4AA)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: F4686BFF)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
- Rudy
- Site Admin
- Příspěvky: 118960
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Microsoft Edge - virus?
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Winsock: Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 04 C:\Windows\SysWOW64\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 05 C:\Windows\SysWOW64\NLAapi.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [0 2024-03-13] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Systems Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2023-07-26] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2023-07-26] <==== ATTENTION
AlternateDataStreams: C:\Users\Dell\Desktop\avc-free.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\GoogleEarthWin.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\msert.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Nokia_PC_Suite_eng_web.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\streamingaudiorecorder-setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mprzzKBYbLy4jvbnhh7Ad48CKsMZ1ycbhGPik@m4UP0Keb34lz2QOg_kfc44032a4de10645_.exe:BDU [0]
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23
D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar
D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.exe
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Microsoft Edge - virus?
Fix result of Farbar Recovery Scan Tool (x64) Version: 04-01-2025
Ran by Dell (07-01-2025 20:10:15) Run:1
Running from C:\Users\Dell\Desktop
Loaded Profiles: Dell
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Winsock: Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 04 C:\Windows\SysWOW64\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 05 C:\Windows\SysWOW64\NLAapi.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [0 2024-03-13] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Systems Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2023-07-26] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2023-07-26] <==== ATTENTION
AlternateDataStreams: C:\Users\Dell\Desktop\avc-free.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\GoogleEarthWin.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\msert.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Nokia_PC_Suite_eng_web.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\streamingaudiorecorder-setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mprzzKBYbLy4jvbnhh7Ad48CKsMZ1ycbhGPik@m4UP0Keb34lz2QOg_kfc44032a4de10645_.exe:BDU [0]
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23
D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar
D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"C:\Windows\system32\GroupPolicy\Machine" Folder move:
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E}" => removed successfully
Winsock: Catalog5 000000000001\\LibraryPath => restored successfully (%SystemRoot%\system32\napinsp.dll)
Winsock: Catalog5 000000000002\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
Winsock: Catalog5 000000000003\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004 => removed successfully
Winsock: Catalog5 000000000005\\LibraryPath => restored successfully (%SystemRoot%\system32\NLAapi.dll)
Winsock: Catalog5 000000000006\\LibraryPath => restored successfully (%SystemRoot%\System32\mswsock.dll)
Winsock: Catalog5 000000000007\\LibraryPath => restored successfully (%SystemRoot%\System32\winrnr.dll)
The possible legit Catalog entry "000000000001" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000002" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000003" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000004" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000005" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000006" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000007" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000008" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000009" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000010" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000011" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000012" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000013" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000014" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
Winsock: Catalog5-x64 000000000001\\LibraryPath => restored successfully (%SystemRoot%\system32\napinsp.dll)
Winsock: Catalog5-x64 000000000002\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
Winsock: Catalog5-x64 000000000003\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64\000000000004 => removed successfully
Winsock: Catalog5-x64 000000000005\\LibraryPath => restored successfully (%SystemRoot%\system32\NLAapi.dll)
Winsock: Catalog5-x64 000000000006\\LibraryPath => restored successfully (%SystemRoot%\System32\mswsock.dll)
Winsock: Catalog5-x64 000000000007\\LibraryPath => restored successfully (%SystemRoot%\System32\winrnr.dll)
The possible legit Catalog entry "000000000001" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000002" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000003" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000004" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000005" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000006" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000007" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000008" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000009" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000010" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000011" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000012" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000013" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000014" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer => removed successfully
HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 => removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.18 => removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.19 => removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.20 => removed successfully
HKLM\Software\MozillaPlugins\Adobe Acrobat => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 => removed successfully
C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js => moved successfully
C:\Program Files\mozilla firefox\bd_config.cfg => moved successfully
C:\Users\Dell\Desktop\avc-free.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\eObcanka_x64.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\FRST64.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\GoogleEarthWin.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\msert.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\eObcanka_x64.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\Nokia_PC_Suite_eng_web.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\streamingaudiorecorder-setup.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\vidcombo_1.2.0(1).exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\vidcombo_1.2.0.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mprzzKBYbLy4jvbnhh7Ad48CKsMZ1ycbhGPik@m4UP0Keb34lz2QOg_kfc44032a4de10645_.exe => ":BDU" ADS removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23" => not found
"D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar" => not found
"D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 2413734605 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1207145 B
Edge => 0 B
Chrome => 2304919881 B
Brave => 415463010 B
Firefox => 385862147 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile32 => 6951 B
LocalService => 6951 B
NetworkService => 6951 B
Dell => 17271619 B
RecycleBin => 0 B
EmptyTemp: => 5.2 GB temporary data Removed.
================================
The system needed a reboot.
Ran by Dell (07-01-2025 20:10:15) Run:1
Running from C:\Users\Dell\Desktop
Loaded Profiles: Dell
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
Task: {5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Winsock: Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 04 C:\Windows\SysWOW64\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 05 C:\Windows\SysWOW64\NLAapi.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 01 C:\Windows\system32\napinsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 02 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 03 C:\Windows\system32\pnrpnsp.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 04 C:\Windows\system32\wshbth.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 05 C:\Windows\system32\NLAapi.dll [0 2024-03-13] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 06 C:\Windows\System32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog5-x64 07 C:\Windows\System32\winrnr.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 01 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 02 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 03 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 04 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 05 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 06 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 07 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 08 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 09 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 10 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 11 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 12 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 13 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
Winsock: Catalog9-x64 14 C:\Windows\system32\mswsock.dll [0 2023-11-15] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.19 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2023-10-30] (VideoLAN) <==== ATTENTION [zero byte File/Folder]
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Systems Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll [2022-03-06] () <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2013-12-05] (Adobe Systems, Inc.) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll [2013-09-13] ( Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2022-02-25] (Microsoft Corporation) <==== ATTENTION [zero byte File/Folder]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js [2023-07-26] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\bd_config.cfg [2023-07-26] <==== ATTENTION
AlternateDataStreams: C:\Users\Dell\Desktop\avc-free.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\GoogleEarthWin.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Desktop\msert.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\eObcanka_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Nokia_PC_Suite_eng_web.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\streamingaudiorecorder-setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\vidcombo_1.2.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Dell\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mprzzKBYbLy4jvbnhh7Ad48CKsMZ1ycbhGPik@m4UP0Keb34lz2QOg_kfc44032a4de10645_.exe:BDU [0]
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23
D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar
D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"C:\Windows\system32\GroupPolicy\Machine" Folder move:
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
C:\ProgramData\NTUSER.pol => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5EDCFDC3-B7CB-4B04-9CA5-EC5F7930FD37}" => removed successfully
C:\Windows\System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{DCD9D709-035F-463B-8C79-40ADC42A642E}" => removed successfully
Winsock: Catalog5 000000000001\\LibraryPath => restored successfully (%SystemRoot%\system32\napinsp.dll)
Winsock: Catalog5 000000000002\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
Winsock: Catalog5 000000000003\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000004 => removed successfully
Winsock: Catalog5 000000000005\\LibraryPath => restored successfully (%SystemRoot%\system32\NLAapi.dll)
Winsock: Catalog5 000000000006\\LibraryPath => restored successfully (%SystemRoot%\System32\mswsock.dll)
Winsock: Catalog5 000000000007\\LibraryPath => restored successfully (%SystemRoot%\System32\winrnr.dll)
The possible legit Catalog entry "000000000001" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000002" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000003" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000004" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000005" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000006" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000007" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000008" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000009" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000010" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000011" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000012" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000013" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000014" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
Winsock: Catalog5-x64 000000000001\\LibraryPath => restored successfully (%SystemRoot%\system32\napinsp.dll)
Winsock: Catalog5-x64 000000000002\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
Winsock: Catalog5-x64 000000000003\\LibraryPath => restored successfully (%SystemRoot%\system32\pnrpnsp.dll)
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64\000000000004 => removed successfully
Winsock: Catalog5-x64 000000000005\\LibraryPath => restored successfully (%SystemRoot%\system32\NLAapi.dll)
Winsock: Catalog5-x64 000000000006\\LibraryPath => restored successfully (%SystemRoot%\System32\mswsock.dll)
Winsock: Catalog5-x64 000000000007\\LibraryPath => restored successfully (%SystemRoot%\System32\winrnr.dll)
The possible legit Catalog entry "000000000001" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000002" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000003" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000004" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000005" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000006" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000007" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000008" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000009" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000010" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000011" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000012" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000013" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
The possible legit Catalog entry "000000000014" will not be deleted with FRST. Instead, "netsh winsock reset" can be used.
HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer => removed successfully
HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 => removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.18 => removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.19 => removed successfully
HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.20 => removed successfully
HKLM\Software\MozillaPlugins\Adobe Acrobat => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0 => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0 => removed successfully
C:\Program Files\mozilla firefox\defaults\pref\bd_js_config.js => moved successfully
C:\Program Files\mozilla firefox\bd_config.cfg => moved successfully
C:\Users\Dell\Desktop\avc-free.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\BraveBrowserSetup-BRV010.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\eObcanka_x64.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\FRST64.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\GoogleEarthWin.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Desktop\msert.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\eObcanka_x64.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\Nokia_PC_Suite_eng_web.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\streamingaudiorecorder-setup.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\vidcombo_1.2.0(1).exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\vidcombo_1.2.0.exe => ":BDU" ADS removed successfully
C:\Users\Dell\Downloads\Zoom_cm_fo42pnktZ9vvrZo4_mprzzKBYbLy4jvbnhh7Ad48CKsMZ1ycbhGPik@m4UP0Keb34lz2QOg_kfc44032a4de10645_.exe => ":BDU" ADS removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\System32\blank.htm" => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\"Local Page"="C:\Windows\SysWOW64\blank.htm" => value restored successfully
"C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Cache\Cache_Data\f_000c23" => not found
"D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.rar" => not found
"D:\Down\Fungující věci\Yamicsoft.All.Windows.ManagerCZECH-RaK\keygen\Keygen.exe" => not found
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1572864 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 2413734605 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1207145 B
Edge => 0 B
Chrome => 2304919881 B
Brave => 415463010 B
Firefox => 385862147 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile32 => 6951 B
LocalService => 6951 B
NetworkService => 6951 B
Dell => 17271619 B
RecycleBin => 0 B
EmptyTemp: => 5.2 GB temporary data Removed.
================================
The system needed a reboot.
- Rudy
- Site Admin
- Příspěvky: 118960
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Microsoft Edge - virus?
Smazáno. Zmizely ty hlášky?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Microsoft Edge - virus?
Myslíte tyhle?
https://ibb.co/Mcb5K8X
https://ibb.co/4m8JvWp
ty zmizely včera po odinstalování Edge a Netflixu. Ale žádný antivirus nic nenašel a já nevím, jestli můžu Edge znovu nainstalovat.
https://ibb.co/Mcb5K8X
https://ibb.co/4m8JvWp
ty zmizely včera po odinstalování Edge a Netflixu. Ale žádný antivirus nic nenašel a já nevím, jestli můžu Edge znovu nainstalovat.
- Rudy
- Site Admin
- Příspěvky: 118960
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Microsoft Edge - virus?
Ano, ty. Pokud budete instalovat Edge, proveďte čistou instalaci. Jinak by PC mělo být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Microsoft Edge - virus?
Už jsem se osmělil a naistaloval jsem ho z nějakých stránek Microsoftu. Už běží nějakou dobu a zatím je to dobrý.
Takže díky a přeju dobrou noc.
Milda
Takže díky a přeju dobrou noc.
Milda
- Rudy
- Site Admin
- Příspěvky: 118960
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Microsoft Edge - virus?
Mějte se též!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.