Kontrola FRST logu
Napsal: 29 říj 2021 19:39
Prosím o kontrolu logu. Procesor jede často na 100%, i když není nic spuštěno.
Díky P.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-10-2021
Ran by Pavel (administrator) on LAPTOP-AFCSSV23 (HP HP Pavilion Gaming Laptop 15-ec0xxx) (29-10-2021 20:26:13)
Running from C:\Users\berdi\Desktop
Loaded Profiles: sever & Pavel
Platform: Microsoft Windows 11 Home Version 21H2 22000.258 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe <2>
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe <2>
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356148.inf_amd64_49a476cb3d4116cb\B355990\atieclxx.exe <2>
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356148.inf_amd64_49a476cb3d4116cb\B355990\atiesrxx.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe <2>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe <4>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe <14>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe <2>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe <2>
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\BridgeCommunication.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe <24>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20034.345.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe <2>
(Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe <3>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [971256 2019-09-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-09-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03C17FD2-F0BC-4D35-8197-8A769BC595E8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3978624 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CF0986A-9525-4485-AC3D-CB742A9FC41F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3FEC0D25-2BBC-42A5-8ED7-797C578073B7} - System32\Tasks\CCleanerSkipUAC - sever => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {40071459-06AF-49D4-8FEA-5BC6027F05B4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
Task: {427F202F-0F7E-40D6-A1FA-D26144446C97} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {467922EF-BE8F-4324-95FE-747B18808797} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51DD30C1-F611-475B-A5EA-170D4370D453} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {556BD5B3-37FB-4C68-8B3D-4283375375FE} - System32\Tasks\CCleanerSkipUAC - Pavel => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {590A7775-91AA-4F0D-97EF-42E8791F0FF8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {59C3ED06-290A-44A5-9BFC-D1C2A869197D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753CB853-84D7-44B3-BF05-3B66C6A9B9E1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {753D7409-1DCE-40E5-88C9-712BA93818EF} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {7D32CBEA-E943-4793-8C87-CD96664A03C6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7D67C3C2-02C4-423C-9832-3B7BE5E4CF13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-09-01] (HP Inc. -> HP Inc.)
Task: {7ED79E6A-06E4-48D3-BE88-85A35F3A8458} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {8396D8EE-227B-40C2-834F-832FE1BAFADD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest
Task: {8804DA0B-64EE-47C3-B8C7-9A9108352874} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {987A2B50-51EE-4FA5-8DF6-039755B6D807} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A59B6AE-E543-455E-A8D5-B6956B51718B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9B5731B4-623E-425B-8F27-AADD517640DF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C158AD4-BA0F-4400-88B3-29F82211BE58} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C82A3DF-3B9C-44B0-9691-4208E3D6FEC1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60088 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F40E05B-C759-425F-B363-ADEBBEB0C7BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A434A5EA-0458-445D-BAC8-95D4CEB81C56} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {AA222C5E-97C2-4E20-B8DE-C6492D3AC3FB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B1AC5910-9A0D-40B4-92E1-19D3FF994357} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {B584957B-461A-4921-B1B4-9F521D2139A5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C5E01010-DA49-44C7-B1F1-9C949184F3ED} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {C726128C-4373-4C24-8F89-F5271E757575} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CA69FAB5-B128-4A15-A1DF-13A101677CCC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {CDC8A884-C649-4529-9D18-58A6BE362395} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE379FEA-3EB1-45F2-9136-0BD47EA59606} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {D97FFAC6-BE61-4B03-9C59-F1B406CEBBF4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E099332A-788C-4AFE-8E6B-F3BF0B4FB323} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F2DFBE6C-8DD0-4D46-8284-0B5FCA0A6D9E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F873D338-7B05-4C4A-A952-4BC771F040EC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {FB5CE18C-7B7F-459C-B4C3-43750EEDD455} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{22701c8f-84c5-41c7-b988-50bc4a645814}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\berdi\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-29]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default [2021-10-29]
CHR Notifications: Default -> hxxps//cz.go-travels.com
CHR HomePage: Default -> hxxp//www.google.com/
CHR StartupUrls: Default -> "hxxp//search.toggle.com/?lang=en&cid=adfaa7a7","hxxp//www.msn.com/?pc=UP97&ocid=UP97DHP&dt=07 ... oogle.com/"
CHR Extension: (Překladač Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-19]
CHR Extension: (Prezentace) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-18]
CHR Extension: (Duolingo on the Web) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2020-11-18]
CHR Extension: (Dokumenty) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-18]
CHR Extension: (Disk Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-18]
CHR Extension: (YouTube) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-18]
CHR Extension: (Google News) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc [2020-11-18]
CHR Extension: (Hudba Google Play) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Tabulky) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (Tlačítko „Uložit na Pinterest“) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-10-27]
CHR Extension: (Google Play Music) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2020-11-18]
CHR Extension: (FormApps Extension) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2020-11-18]
CHR Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ColorPick Eyedropper) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohcpnigalekghcmgcdcenkpelffpdolg [2020-12-25]
CHR Extension: (Gmail) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncHelper.exe [3253120 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe [755704 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe [754184 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe [751104 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe [754688 2021-09-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe [494688 2021-09-24] (HP Inc. -> HP Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\OneDriveUpdaterService.exe [3721600 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\NisSrv.exe [2872008 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MsMpEng.exe [128376 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [127936 2019-05-22] (Alcorlink Corp. -> )
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-10-14] (Google LLC -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-10-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-10-26] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-29 20:26 - 2021-10-29 20:26 - 000028287 _____ C:\Users\berdi\Desktop\FRST.txt
2021-10-29 20:25 - 2021-10-29 20:26 - 000000000 ____D C:\FRST
2021-10-29 20:20 - 2021-10-29 20:20 - 002310656 _____ (Farbar) C:\Users\berdi\Desktop\FRST64.exe
2021-10-29 20:08 - 2021-10-29 20:08 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - sever
2021-10-29 19:59 - 2021-10-29 20:01 - 000000000 ____D C:\Users\berdi\Documents\CCleaner_registry
2021-10-29 19:53 - 2021-10-29 20:08 - 000000000 ____D C:\Program Files\CCleaner
2021-10-29 19:53 - 2021-10-29 19:53 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-10-29 19:53 - 2021-10-29 19:53 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Pavel
2021-10-29 19:53 - 2021-10-29 19:53 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-10-29 19:53 - 2021-10-29 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-10-29 19:46 - 2021-10-29 19:46 - 036227456 _____ (Piriform Software Ltd) C:\Users\berdi\Downloads\ccsetup586.exe
2021-10-29 19:37 - 2021-10-29 19:38 - 000001025 _____ C:\Users\berdi\Desktop\shotcut.lnk
2021-10-29 19:30 - 2021-10-29 19:30 - 000001992 _____ C:\Users\berdi\Desktop\DaVinci Resolve.lnk
2021-10-29 19:29 - 2021-10-29 19:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-28 21:28 - 2021-10-28 21:28 - 000000000 ___HD C:\$WinREAgent
2021-10-27 16:30 - 2021-10-27 16:33 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky (1)
2021-10-27 16:30 - 2021-10-27 16:30 - 002890445 _____ C:\Users\berdi\Downloads\Foto myšky (1).zip
2021-10-27 16:27 - 2021-10-27 16:29 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky
2021-10-27 16:26 - 2021-10-27 16:26 - 003794128 _____ C:\Users\berdi\Downloads\Foto myšky.zip
2021-10-26 06:25 - 2021-10-26 06:25 - 004853656 _____ (Husdawg, LLC) C:\Users\berdi\Downloads\Detection.exe
2021-10-26 06:09 - 2021-10-26 06:09 - 000000000 ____D C:\Users\berdi\AppData\Local\Meltytech
2021-10-26 06:07 - 2021-10-26 06:07 - 000001899 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk
2021-10-26 06:06 - 2021-10-26 06:07 - 000000000 ____D C:\Program Files\Shotcut
2021-10-26 06:06 - 2021-10-26 06:06 - 077780472 _____ C:\Users\berdi\Downloads\shotcut-win64-210922.exe
2021-10-25 20:06 - 2021-10-25 20:06 - 000000020 ___SH C:\Users\sever\ntuser.ini
2021-10-25 20:05 - 2021-10-25 20:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-10-25 20:04 - 2021-10-25 20:04 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-10-25 20:03 - 2021-10-29 19:12 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{08FDF5A3-8CC4-42D3-BC77-0CFA46884A88}
2021-10-25 20:03 - 2021-10-28 21:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-25 20:03 - 2021-10-27 15:56 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-10-25 20:03 - 2021-10-25 20:03 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-25 20:03 - 2021-10-25 20:03 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-25 20:03 - 2021-10-25 20:03 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-25 20:03 - 2021-10-25 20:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d71c7ad2686caf
2021-10-25 20:03 - 2021-10-25 20:03 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-25 20:03 - 2021-10-25 20:03 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-25 20:03 - 2021-10-25 20:03 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2021-10-25 20:03 - 2021-10-25 20:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-10-25 20:03 - 2021-10-25 20:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-10-25 20:03 - 2021-10-25 20:03 - 000000020 ___SH C:\Users\berdi\ntuser.ini
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\AnyMP4 Studio
2021-10-25 20:03 - 2020-08-24 11:36 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3814328846-1681259996-2647774117-500
2021-10-25 20:03 - 2019-12-03 02:12 - 000002852 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-145576158-3702827341-4024398963-500
2021-10-25 20:03 - 2019-04-15 17:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2021-10-25 20:02 - 2021-10-25 20:03 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2021-10-25 20:02 - 2021-10-25 20:03 - 000017148 _____ C:\WINDOWS\diagerr.xml
2021-10-25 20:01 - 2021-10-28 21:36 - 001819258 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-25 19:59 - 2021-10-29 19:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-25 19:59 - 2021-10-25 20:03 - 000000000 ____D C:\Windows.old
2021-10-25 19:59 - 2021-10-25 19:59 - 000593240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-25 19:47 - 2021-10-25 19:59 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-10-25 19:45 - 2021-10-28 21:32 - 000000000 ____D C:\Users\berdi
2021-10-25 19:45 - 2021-10-25 20:06 - 000000000 ____D C:\Users\sever
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Šablony
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Soubory cookie
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Poslední
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Okolní tiskárny
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Okolní síť
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Nabídka Start
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Dokumenty
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Obrázky
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Hudba
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Filmy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\AppData\Local\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Šablony
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Soubory cookie
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Poslední
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Okolní tiskárny
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Okolní síť
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Nabídka Start
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Dokumenty
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Obrázky
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Hudba
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Filmy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\AppData\Local\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 ____D C:\WINDOWS\Firmware
2021-10-25 19:45 - 2021-06-05 14:04 - 000001281 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000001281 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000000407 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000000407 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 19:44 - 2021-10-25 19:47 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-10-25 19:41 - 2021-10-25 19:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 002764800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 001745736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-10-25 19:37 - 2021-10-25 19:37 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-10-25 19:37 - 2021-10-25 19:37 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-10-25 19:37 - 2021-10-25 19:37 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-25 19:37 - 2021-10-25 19:37 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000377136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-10-25 19:37 - 2021-10-25 19:37 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000269112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-10-25 19:37 - 2021-10-25 19:37 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2021-10-25 19:37 - 2021-10-25 19:37 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmview.ocx
2021-10-25 19:37 - 2021-10-25 19:37 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2021-10-25 19:37 - 2021-10-25 19:37 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000014580 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2021-10-25 19:37 - 2021-10-25 19:37 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2021-10-25 19:37 - 2021-10-25 19:37 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2021-10-25 19:37 - 2021-10-25 19:37 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2021-10-25 19:36 - 2021-10-25 19:36 - 002310384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-25 19:36 - 2021-10-25 19:36 - 001856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-25 19:36 - 2021-10-25 19:36 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-25 19:36 - 2021-10-25 19:36 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-25 19:36 - 2021-10-25 19:36 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmview.ocx
2021-10-25 19:36 - 2021-10-25 19:36 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-10-25 19:36 - 2021-10-25 19:36 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2021-10-25 19:34 - 2021-10-25 20:23 - 000000000 ____D C:\WINDOWS\HoloShell
2021-10-25 19:34 - 2021-10-25 19:43 - 000000000 ____D C:\WINDOWS\TextInput
2021-10-25 19:33 - 2021-10-25 19:33 - 001368296 _____ C:\WINDOWS\system32\PerceptionSimulationRightHandModel.glb
2021-10-25 19:33 - 2021-10-25 19:33 - 001366268 _____ C:\WINDOWS\system32\PerceptionSimulationLeftHandModel.glb
2021-10-25 19:33 - 2021-10-25 19:33 - 000000002 _____ C:\WINDOWS\system32\hologramcompositor.lock
2021-10-25 19:31 - 2021-10-25 19:31 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-10-25 19:31 - 2021-10-25 19:31 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files\MSBuild
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-25 19:19 - 2021-10-25 19:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-10-25 18:36 - 2021-10-29 19:56 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-25 12:14 - 2021-10-25 12:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (2).pdf
2021-10-25 12:14 - 2021-10-25 12:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (1).pdf
2021-10-25 12:05 - 2021-10-25 12:05 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ.pdf
2021-10-24 21:12 - 2021-10-24 21:13 - 272367931 _____ C:\Users\berdi\Timeline 1.mov
2021-10-24 16:12 - 2021-10-24 16:12 - 000000000 ____D C:\Users\berdi\Documents\Blackmagic Design
2021-10-24 16:06 - 2021-10-24 16:06 - 000000000 ____D C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows
2021-10-24 15:45 - 2021-10-24 15:52 - 2718482084 _____ C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows.zip
2021-10-23 20:27 - 2021-10-23 20:27 - 000000000 ____D C:\Users\berdi\AppData\Local\RawTherapee
2021-10-23 20:26 - 2021-10-23 20:26 - 049726890 _____ (rawtherapee.com ) C:\Users\berdi\Downloads\RawTherapee_5.8.exe
2021-10-23 20:13 - 2021-10-25 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-10-23 20:13 - 2021-10-24 11:56 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Slides.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Sheets.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001894 _____ C:\Users\berdi\Desktop\Google Docs.lnk
2021-10-23 20:13 - 2021-10-14 14:25 - 000389640 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3525.sys
2021-10-23 20:12 - 2021-10-23 20:13 - 000000000 ____D C:\Users\berdi\AppData\Roaming\PhotoScape
2021-10-23 20:11 - 2021-10-23 20:11 - 021025552 _____ (Mooii) C:\Users\berdi\Downloads\PhotoScapeSetup_V3-7.exe
2021-10-23 20:06 - 2021-10-23 20:06 - 000008181 _____ C:\Users\berdi\AppData\Local\recently-used.xbel
2021-10-23 09:20 - 2021-10-23 09:20 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-23 09:20 - 2021-10-23 09:20 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-22 17:46 - 2021-10-22 17:46 - 000689956 _____ C:\Users\sever\Desktop\Nabídka_4soft_O1-51821_N-VA_Brandýs_nad_Labem.pdf
2021-10-21 19:39 - 2021-10-21 19:48 - 000000000 ____D C:\Users\berdi\Documents\DJI
2021-10-21 19:38 - 2021-10-25 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2021-10-21 19:38 - 2021-10-21 19:48 - 000000000 ____D C:\Users\berdi\AppData\Local\DJI Assistant 2
2021-10-21 19:38 - 2021-10-21 19:38 - 000001498 _____ C:\Users\Public\Desktop\DJI Assistant 2 (Consumer Drones Series).lnk
2021-10-19 21:25 - 2021-10-19 21:27 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak
2021-10-19 21:25 - 2021-10-19 21:25 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Videa
2021-10-19 21:24 - 2021-10-19 21:24 - 017591927 _____ C:\Users\berdi\Downloads\Fwd_ Videa.zip
2021-10-19 21:24 - 2021-10-19 21:24 - 010120515 _____ C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak.zip
2021-10-19 20:56 - 2021-10-19 21:08 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 3
2021-10-19 20:55 - 2021-10-19 21:07 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 2
2021-10-19 20:55 - 2021-10-19 21:04 - 000000000 ____D C:\Users\berdi\Downloads\Foto dravci 1
2021-10-19 20:55 - 2021-10-19 20:55 - 008320179 _____ C:\Users\berdi\Downloads\Foto dravci 1.zip
2021-10-19 20:55 - 2021-10-19 20:55 - 007970400 _____ C:\Users\berdi\Downloads\Dravci 2.zip
2021-10-19 20:55 - 2021-10-19 20:55 - 002607756 _____ C:\Users\berdi\Downloads\Dravci 3.zip
2021-10-19 19:49 - 2021-10-19 20:46 - 000000000 ____D C:\Users\berdi\Downloads\prilohy_69267
2021-10-19 19:48 - 2021-10-19 19:48 - 015886397 _____ C:\Users\berdi\Downloads\prilohy_69267.zip
2021-10-18 17:03 - 2021-10-18 17:03 - 000000000 ____D C:\Users\berdi\AppData\Local\SolidDocuments
2021-10-18 17:01 - 2021-10-18 17:06 - 000000000 ____D C:\Users\sever\Desktop\Děti s vývojovou disfázií - KURS
2021-10-18 17:01 - 2021-10-18 17:01 - 000000000 ____D C:\Users\sever\Desktop\Pomoc při logopedických problémech v MŠ a ZŠ
2021-10-17 13:38 - 2021-10-22 17:43 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-17 13:38 - 2021-10-22 17:43 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-10-17 13:38 - 2021-10-17 13:38 - 000000000 ____D C:\Users\sever\AppData\Local\SolidDocuments
2021-10-17 13:38 - 2021-10-17 13:38 - 000000000 ____D C:\Program Files\Adobe
2021-10-17 13:37 - 2021-10-17 13:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-16 20:40 - 2021-10-21 19:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJI Assistant 2
2021-10-16 20:40 - 2021-10-16 20:41 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJIAssistant2
2021-10-16 20:40 - 2021-10-16 20:40 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Electron
2021-10-16 20:39 - 2021-10-21 19:34 - 000000000 ____D C:\Program Files (x86)\DJI Product
2021-10-16 12:36 - 2021-10-16 12:36 - 000000000 ____D C:\Users\sever\AppData\Roaming\HpUpdate
2021-10-15 07:13 - 2021-10-15 07:13 - 001231452 _____ C:\Users\sever\Downloads\směrnice_řády_vnitřní_předpisy_ve_školství.pdf
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\Users\sever\AppData\Local\AnyMP4 Studio
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\ProgramData\Apple
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\Program Files\AnyMP4 Studio
2021-10-13 19:59 - 2021-10-13 20:00 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (2)
2021-10-13 19:58 - 2021-10-13 19:59 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (1)
2021-10-13 19:57 - 2021-10-13 19:58 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky
2021-10-13 19:42 - 2021-10-13 19:42 - 000085846 _____ C:\Users\sever\Documents\Jazyková příprava.pdf
2021-10-12 19:01 - 2021-10-12 19:01 - 000000000 ____D C:\Users\berdi\AppData\Local\Apps\2.0
2021-10-11 08:00 - 2021-10-11 08:00 - 000000000 ____D C:\Program Files\Microsoft.WebView2.FixedVersionRuntime.92.0.902.73.x64
2021-10-07 18:16 - 2021-10-07 18:16 - 000275885 _____ C:\Users\sever\Downloads\Kniha2014_zkratky.pdf
2021-10-07 18:04 - 2021-10-07 18:04 - 000149149 _____ C:\Users\sever\Downloads\Úprava rozpočtu k 30. 9. 2021 – Brandýs.xlsx
2021-10-05 23:32 - 2021-10-05 23:32 - 001210789 _____ C:\Users\berdi\Documents\Krtečci_210310 (2)re.xcf
2021-10-05 21:09 - 2021-10-05 21:09 - 000136581 _____ C:\Users\berdi\Documents\SablonyIII.pdf
2021-10-04 19:35 - 2021-10-04 19:35 - 002864361 _____ C:\Users\berdi\Downloads\images.zip
2021-10-04 19:35 - 2021-10-04 19:35 - 000000000 ____D C:\Users\berdi\Downloads\images
2021-10-04 19:06 - 2021-10-04 19:07 - 000000000 ____D C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”
2021-10-04 19:05 - 2021-10-04 19:05 - 009629583 _____ C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”.zip
2021-10-03 17:13 - 2021-10-03 17:27 - 000000000 ____D C:\Users\berdi\Downloads\Fotky
2021-10-03 17:12 - 2021-10-03 17:12 - 004836455 _____ C:\Users\berdi\Downloads\Fotky.zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-29 20:21 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-10-29 20:10 - 2020-08-24 11:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-29 20:09 - 2020-11-17 19:50 - 000000000 ____D C:\Users\sever\AppData\Local\CrashDumps
2021-10-29 20:08 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-29 20:08 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-29 20:08 - 2020-11-17 21:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-29 20:08 - 2020-11-17 17:33 - 000000000 ___RD C:\Users\sever\OneDrive
2021-10-29 20:08 - 2020-11-17 17:32 - 000000000 ____D C:\Users\sever\AppData\Local\D3DSCache
2021-10-29 20:08 - 2020-11-17 17:31 - 000000000 ____D C:\Users\sever\AppData\Local\Packages
2021-10-29 19:56 - 2020-11-22 11:55 - 000000000 ____D C:\Users\berdi\AppData\Local\CrashDumps
2021-10-29 19:54 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\D3DSCache
2021-10-29 19:30 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2021-10-29 19:29 - 2020-11-22 13:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-29 19:29 - 2020-11-22 13:52 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2021-10-29 19:29 - 2020-11-22 12:56 - 000000000 ____D C:\Program Files\Blackmagic Design
2021-10-28 21:48 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-28 21:36 - 2021-06-05 19:20 - 000760130 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-28 21:36 - 2021-06-05 19:20 - 000168452 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-28 21:33 - 2020-11-17 19:28 - 000000000 ___RD C:\Users\berdi\OneDrive
2021-10-28 21:32 - 2021-06-22 17:51 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-10-28 21:32 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\OCR
2021-10-28 21:32 - 2021-06-05 14:01 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-10-28 21:32 - 2021-03-19 06:41 - 000012288 ___SH C:\DumpStack.log.tmp
2021-10-28 21:28 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-27 15:56 - 2021-06-22 17:48 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-26 06:28 - 2019-04-15 17:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-26 06:10 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\appcompat
2021-10-26 06:04 - 2020-11-17 19:40 - 000000000 ____D C:\Users\berdi\AppData\Local\PlaceholderTileLogoFolder
2021-10-25 20:55 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\Packages
2021-10-25 20:23 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-10-25 20:23 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\NVIDIA Corporation
2021-10-25 20:22 - 2020-11-17 17:33 - 000000000 ____D C:\Users\sever\AppData\Local\NVIDIA Corporation
2021-10-25 20:20 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Packages
2021-10-25 20:18 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\servicing
2021-10-25 20:07 - 2020-11-17 21:16 - 000000000 ____D C:\Users\sever\AppData\Local\Google
2021-10-25 20:06 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-25 20:06 - 2019-04-15 17:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Windows NT
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-25 20:03 - 2021-06-05 14:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-25 20:01 - 2020-11-17 21:16 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-25 20:00 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-25 19:59 - 2021-09-22 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-10-25 19:59 - 2021-09-22 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-10-25 19:59 - 2021-07-09 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2021-10-25 19:59 - 2021-06-22 23:50 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\spool
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-25 19:59 - 2021-06-05 14:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-10-25 19:59 - 2021-05-08 21:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2021-10-25 19:59 - 2021-03-11 19:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2021-10-25 19:59 - 2020-12-31 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-25 19:59 - 2020-11-24 23:18 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultima Online DP2
2021-10-25 19:59 - 2020-11-22 16:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-10-25 19:59 - 2020-11-18 19:48 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 19:59 - 2020-11-17 20:41 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-10-25 19:59 - 2020-11-17 19:48 - 000000000 ____D C:\Program Files\UNP
2021-10-25 19:59 - 2020-11-17 17:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-25 19:59 - 2020-08-24 11:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-10-25 19:59 - 2020-08-24 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-10-25 19:59 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2021-10-25 19:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-10-25 19:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-10-25 19:55 - 2021-06-05 14:14 - 000000000 ____D C:\WINDOWS\Setup
2021-10-25 19:52 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\USOPrivate
2021-10-25 19:51 - 2021-06-05 14:10 - 000000000 __RHD C:\Users\Public\Libraries
2021-10-25 19:43 - 2021-06-05 19:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Common Files\System
2021-10-25 19:42 - 2021-06-05 19:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-10-25 19:42 - 2021-06-05 19:28 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-10-25 19:34 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemApps
2021-10-25 19:31 - 2021-06-05 19:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-10-25 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-10-25 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-10-24 16:14 - 2021-01-14 18:58 - 000000000 ____D C:\Users\berdi\AppData\Local\cache
2021-10-24 16:11 - 2020-11-18 19:45 - 000000000 ____D C:\Users\berdi\AppData\Local\Google
2021-10-24 16:11 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-24 14:10 - 2021-05-08 20:51 - 000000000 ____D C:\Users\berdi\AppData\Local\babl-0.1
2021-10-23 20:13 - 2020-11-17 21:16 - 000000000 ____D C:\Program Files\Google
2021-10-22 17:56 - 2021-09-16 21:47 - 000000000 ____D C:\Users\berdi\AppData\Local\ElevatedDiagnostics
2021-10-22 17:42 - 2021-05-10 19:04 - 000000000 ____D C:\Users\sever\AppData\Local\Adobe
2021-10-19 17:56 - 2021-06-22 18:56 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-18 17:03 - 2021-03-07 18:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Adobe
2021-10-18 17:03 - 2021-03-07 18:30 - 000000000 ____D C:\Users\berdi\AppData\Local\Adobe
2021-10-17 13:38 - 2021-03-19 06:48 - 000000000 ____D C:\Users\sever\AppData\Roaming\Adobe
2021-10-17 13:37 - 2021-05-08 21:12 - 000000000 ____D C:\ProgramData\Adobe
2021-10-14 06:49 - 2020-11-17 19:51 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-14 06:49 - 2020-11-17 19:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 19:35 - 2020-11-17 17:33 - 000000000 ____D C:\Users\sever\AppData\Local\PlaceholderTileLogoFolder
2021-10-05 23:40 - 2021-05-23 14:09 - 000000000 ____D C:\Users\berdi\AppData\Local\gtk-2.0
2021-10-05 19:01 - 2020-12-31 21:22 - 000191832 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-10-05 19:01 - 2020-12-31 21:22 - 000000000 ____D C:\Program Files\Java
2021-10-04 20:21 - 2020-12-25 22:03 - 000000000 ____D C:\Users\berdi\AppData\Roaming\HP
2021-10-04 19:01 - 2020-11-17 19:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-01 22:03 - 2021-07-17 10:19 - 004968448 _____ C:\Users\berdi\Documents\Mateřská škola.accdb
==================== Files in the root of some directories ========
2021-01-14 19:43 - 2021-01-14 19:43 - 000097505 _____ () C:\Users\berdi\AppData\Roaming\Crescendo.dmp
2021-10-23 20:06 - 2021-10-23 20:06 - 000008181 _____ () C:\Users\berdi\AppData\Local\recently-used.xbel
2020-11-18 20:37 - 2020-11-18 20:37 - 000000017 _____ () C:\Users\berdi\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-10-2021
Ran by Pavel (29-10-2021 20:27:31)
Running from C:\Users\berdi\Desktop
Microsoft Windows 11 Home Version 21H2 22000.258 (X64) (2021-10-25 18:03:09)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-626895236-950452568-4050494843-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-626895236-950452568-4050494843-503 - Limited - Disabled)
Guest (S-1-5-21-626895236-950452568-4050494843-501 - Limited - Disabled)
Pavel (S-1-5-21-626895236-950452568-4050494843-1002 - Administrator - Enabled) => C:\Users\berdi
sever (S-1-5-21-626895236-950452568-4050494843-1001 - Administrator - Enabled) => C:\Users\sever
vikib (S-1-5-21-626895236-950452568-4050494843-1005 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-626895236-950452568-4050494843-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader (HKLM\...\{50F633D3-DE52-4709-AD1B-A09B5B0D86C1}) (Version: 4.14.1.4020 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{33a1766b-73d6-42ce-b3ff-317e5db3e9a7}) (Version: 4.14.1.4020 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0807.2241.40847 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK Alpha (HKLM\...\{716F53C3-0B3F-4FB7-9AD7-9BC7DB7134A1}) (Version: 1.3.0.0533 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{685BAD50-A3AA-4B91-A15B-77F9DC7346D4}) (Version: 3.57.4043.4118 - Google, Inc.)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform)
Crescendo Music Notation Editor (HKLM-x32\...\Crescendo) (Version: 1.14 - NCH Software)
DaVinci Resolve (HKLM\...\{EB2DCFCD-3A03-4E68-9A1E-1CD4112386FC}) (Version: 17.4.00012 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
DJI Assistant 2 (Consumer Drones Series) version V2.1.5.8 (HKLM-x32\...\{7369D6A6-CBF3-428F-8C82-3D647630FC9A}_is1) (Version: V2.1.5.8 - DJI)
GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 52.0.6.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Photosmart C4200 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{276C40A7-8110-4976-80D2-39C669B84D32}) (Version: 14.0 - HP)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Inkscape (HKLM\...\{1E74336F-9E7A-4070-BAA7-716A504FB9B0}) (Version: 1.0.0 - Inkscape)
Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14430.20306 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 462.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.80 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
PSPad editor (HKLM\...\PSPad editor_is1) (Version: 5.0.5.567 - Jan Fiala)
Shotcut (HKLM\...\Shotcut) (Version: 21.09.22 - Meltytech, LLC)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Zoom (HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.)
Packages:
=========
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.7.195.0_x64__v10z8vjag6ke6 [2021-10-25] (HP Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-06-15] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-25] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-10-25] (Facebook Inc)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.0.6.0_x64__v10z8vjag6ke6 [2020-08-24] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-24] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.0.0_x64__v10z8vjag6ke6 [2021-10-15] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-11] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.9.58.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6 [2021-08-03] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-09] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-25] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0 [2021-10-25] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\nvshext.dll [2021-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers1_S-1-5-21-626895236-950452568-4050494843-1002: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Hudba Google Play.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
==================== Loaded Modules (Whitelisted) =============
2019-01-08 13:03 - 2019-01-08 13:03 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2019-01-08 13:03 - 2019-01-08 13:03 - 003598336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2021-03-11 19:14 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Program Files\PSPad editor\pspshellx64.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\92637a3c2065a1153c4f965968887fe1\Interop.IWshRuntimeLibrary.ni.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\adafd17e68fc81abf9353000780a7c63\Hardcodet.Wpf.TaskbarNotification.ni.dll
2021-03-07 08:37 - 2021-03-07 08:37 - 000014336 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2021-10-27 16:07 - 2021-10-27 16:07 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\7872127d7872dfaf051d5c7c4f74ef56\NAudio.ni.dll
2021-06-22 18:56 - 2021-06-22 18:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2021-06-22 18:56 - 2021-06-22 18:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2021-10-25 20:20 - 2021-10-25 20:20 - 000137152 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20034.345.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 003060736 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\bffc48840549adf535e98c03804ad000\Newtonsoft.Json.ni.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\034c3e5ee114fd6d0b2bfb7360b20aa9\log4net.ni.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000414208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000516608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 001441280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-08-07 22:39 - 2019-08-07 22:39 - 005999104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 006413824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 001141760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000339968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 004143104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 003840000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000332800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000349184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 080959488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 005622272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000190464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 002825216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000137216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2021-03-07] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2021-03-07] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sever\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{795C76F0-40E4-4CD7-9CAC-5B680B956E15}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{E705B4B5-92DF-4F6A-9B6D-5976A0D8BBCD}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [{2102EC06-985E-43AA-A4FB-1534BD718315}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7B7CC774-4F66-451C-9380-A26E93F3DCFE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07B2762C-86C4-4FE6-AE0B-8B2424C68812}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{68E2A6A8-1A1D-42BC-9B16-6CFB33EC9AF0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D40DDF2-0A7E-4018-95F2-3A07B7AD033D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF82CB62-5C3B-4E02-9AEF-203AFE2E156D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{3AD73BC4-CA38-439E-880B-B87EA7908B7E}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{EE9102E4-605E-48B8-8C24-A9AF4CB6385D}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{83BC7353-9138-4269-AD1C-54B9B43278D9}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{0EF8FD87-2288-40EE-B3F4-7C7B213F6B03}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [{6D7E9258-374B-42EF-A08C-B5DA13B8CB85}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D7377C96-06BE-4AB0-9A00-356DAC33F769}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{68A40398-8D79-4642-BBD9-B7DCD1583C08}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [UDP Query User{E7854A38-1E18-4DAF-A556-F2150934493B}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{13F97527-78DB-4AA6-A450-27D6E4D7BFD3}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{8CA7AEBF-D9A7-44FB-9DB5-5A8A5DD9DB66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F5EBED-DC73-4581-BA30-D1F44D0195F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48BD1678-C870-4DAB-8145-8BB940D9E74E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1317AB1-0416-44C7-839A-FFDAE0987190}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{90135E6A-0B02-466F-A966-D015A8E5BA64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0FC7A750-6829-4FB7-9197-49E45EB10B66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50A7C865-B44B-49E3-B7F6-E399A22F2F7C}] => (Allow) C:\Users\sever\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{EAC0DB97-9364-4B67-A8A6-A65CAC8EAC3F}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{39151168-B132-4EAC-BFDD-897532EE4CA8}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{8F9D30EC-8891-4318-9564-2CDBB3963574}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{CC437015-3D5B-4922-8303-9D07CA3E44E4}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{F0058689-3572-41E9-859E-2F78430DC054}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{625E177E-6206-4EBA-A3DD-59B6E86D3AC7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{108D5FA7-BCCA-44C1-9CC6-9FC72C2472BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8A82CCD1-46EC-44A3-BC0E-F9AB17988B14}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{091C4D75-1DBF-45AB-8375-25D69EC7C78A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1A60EBD1-8214-45A7-B938-EEDE49C085BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F137FE90-7CE6-40B0-A28F-220F42D28AD7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1A89581A-160C-4940-977C-7B4CE8F95ECD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{344AE34A-8A1E-4B17-B3BD-F19C7D0271F2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{983E8829-A0D5-49F6-9301-9D38FC57A5C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{31281DB8-3B13-4F09-82BB-7D52DE7658D7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{BC298BEA-A791-4AA7-91D2-501B7C7DE752}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{20A33D2F-5C99-46D1-A54F-C81C256F17CA}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D4ADE2B2-593B-4463-B05B-9E7575D654EE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{27E988B7-9E4C-4B2B-80AD-BD1C56895FB7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{FA936AD3-E8F2-42B7-9661-84C87FBF2308}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{86EA1FF8-7500-49F0-8CE9-F74613C2514D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
==================== Restore Points =========================
25-10-2021 21:05:41 Removed MuseScore 3
29-10-2021 19:29:36 Installed DaVinci Resolve
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2021 09:32:44 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:46 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 5a9716f1-34d2-4fd0-8c36-7c982435940e
Metoda: GET(234ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/28/2021 09:32:43 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:45 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 60600997-6f2c-4315-bd5c-2d6f1135b28a
Metoda: GET(390ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:56 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Oct 2021 04:26:58 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 51ba5889-c42f-4ae4-82c7-324baf750a97
Metoda: GET(203ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:55 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Oct 2021 04:26:58 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: f5368a9d-c724-4724-a92b-31b5631b44fc
Metoda: GET(313ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:20 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (10/26/2021 06:26:20 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (10/25/2021 08:54:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Microsoft.Photos.exe, verze: 2021.21090.10007.0, časové razítko: 0x613c237b
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.22000.132, časové razítko: 0xf9ab3e3e
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000010a4f4
ID chybujícího procesu: 0x2c24
Čas spuštění chybující aplikace: 0x01d7c9cac9a4b296
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\twinapi.appcore.dll
ID zprávy: 36d86c3b-15e8-4731-ab69-4579abd8739c
Úplný název chybujícího balíčku: Microsoft.Windows.Photos_2021.21090.10007.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/25/2021 08:08:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program StartMenuExperienceHost.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1b94
Čas spuštění: 01d7c9cb1df29330
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
ID hlášení: c8e611ba-7713-403d-acb0-455bf5bdb5b4
Úplný název balíčku s chybou: Microsoft.Windows.StartMenuExperienceHost_10.0.22000.37_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
System errors:
=============
Error: (10/29/2021 07:06:38 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/28/2021 09:56:24 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/28/2021 09:33:22 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800f0823): 2021-10 Kumulativní aktualizace pro Windows 11 pro systémy typu x64 (KB5006746).
Error: (10/27/2021 04:25:44 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/27/2021 03:56:37 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/26/2021 07:59:36 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/26/2021 06:04:14 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/25/2021 09:09:52 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-AFCSSV23)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================Event[0]
Date: 2021-10-29 19:26:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9C297418-E446-45F9-925F-759DFDCE4CDF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[1]
Date: 2021-10-28 08:26:51
Description:
N/A
CodeIntegrity:
===============
Date: 2021-10-26 06:21:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: AMI F.12 12/21/2020
Motherboard: HP 86D4
Processor: AMD Ryzen 5 3550H with Radeon Vega Mobile Gfx
Percentage of memory in use: 42%
Total physical RAM: 14213.14 MB
Available physical RAM: 8138.2 MB
Total Virtual: 17413.14 MB
Available Virtual: 7041.17 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:476.08 GB) (Free:331.82 GB) NTFS
\\?\Volume{60399fc6-b5cc-40c7-9724-2ead35b90910}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{b6163c22-e199-4cd6-8c7a-be6637a8ba63}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 52F19EB3)
Partition: GPT.
==================== End of Addition.txt =======================
Díky P.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-10-2021
Ran by Pavel (administrator) on LAPTOP-AFCSSV23 (HP HP Pavilion Gaming Laptop 15-ec0xxx) (29-10-2021 20:26:13)
Running from C:\Users\berdi\Desktop
Loaded Profiles: sever & Pavel
Platform: Microsoft Windows 11 Home Version 21H2 22000.258 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe <2>
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe <2>
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356148.inf_amd64_49a476cb3d4116cb\B355990\atieclxx.exe <2>
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0356148.inf_amd64_49a476cb3d4116cb\B355990\atiesrxx.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe <2>
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Google LLC -> ) C:\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe <4>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <11>
(Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe <14>
(Hewlett-Packard Company -> Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe <2>
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe <2>
(HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\BridgeCommunication.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe
(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe
(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6\HP.JumpStarts.exe
(HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe <2>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe <24>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileCoAuth.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_3.2109.6305.0_x64__8wekyb3d8bbwe\Cortana.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <5>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\NisSrv.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20034.345.0_x64__cw5n1h2txyewy\Dashboard\Widgets.exe <2>
(Microsoft) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe <3>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe <2>
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <3>
(Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [971256 2019-09-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-06-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-19\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-20\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-20\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HpseuHostLauncher.exe [525312 2021-08-02] (HP Inc.) [File not signed]
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2340224 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\52.0.6.0\GoogleDriveFS.exe [54107992 2021-10-18] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [35116160 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\PCL hpz3lw71: C:\windows\system32\hpz3lw71.dll [46080 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\95.0.4638.54\Installer\chrmstp.exe [2021-10-21] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
Startup: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Poslat do aplikace OneNote.lnk [2021-09-16]
ShortcutTarget: Poslat do aplikace OneNote.lnk -> C:\Program Files\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {03C17FD2-F0BC-4D35-8197-8A769BC595E8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [3978624 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {3CF0986A-9525-4485-AC3D-CB742A9FC41F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3FEC0D25-2BBC-42A5-8ED7-797C578073B7} - System32\Tasks\CCleanerSkipUAC - sever => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {40071459-06AF-49D4-8FEA-5BC6027F05B4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-10-19] (Piriform Software Ltd -> Piriform)
Task: {427F202F-0F7E-40D6-A1FA-D26144446C97} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => cmd /c start hpdiags:
Task: {467922EF-BE8F-4324-95FE-747B18808797} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {51DD30C1-F611-475B-A5EA-170D4370D453} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => cmd /c start hpdiags://BHM2
Task: {556BD5B3-37FB-4C68-8B3D-4283375375FE} - System32\Tasks\CCleanerSkipUAC - Pavel => C:\Program Files\CCleaner\CCleaner.exe [29200512 2021-10-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {590A7775-91AA-4F0D-97EF-42E8791F0FF8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {59C3ED06-290A-44A5-9BFC-D1C2A869197D} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {753CB853-84D7-44B3-BF05-3B66C6A9B9E1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {753D7409-1DCE-40E5-88C9-712BA93818EF} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => cmd /c start hpdiags://LaunchUI
Task: {7D32CBEA-E943-4793-8C87-CD96664A03C6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {7D67C3C2-02C4-423C-9832-3B7BE5E4CF13} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [136368 2021-09-01] (HP Inc. -> HP Inc.)
Task: {7ED79E6A-06E4-48D3-BE88-85A35F3A8458} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644472 2019-06-21] (HP Inc. -> HP Inc.)
Task: {8396D8EE-227B-40C2-834F-832FE1BAFADD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => cmd /c start hpdiags://BatteryStatusTest
Task: {8804DA0B-64EE-47C3-B8C7-9A9108352874} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {89ED6EFD-481E-4FCA-8AB1-139B3EFF4725} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {987A2B50-51EE-4FA5-8DF6-039755B6D807} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A59B6AE-E543-455E-A8D5-B6956B51718B} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9B5731B4-623E-425B-8F27-AADD517640DF} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C158AD4-BA0F-4400-88B3-29F82211BE58} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [21978504 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C82A3DF-3B9C-44B0-9691-4208E3D6FEC1} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60088 2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {9F40E05B-C759-425F-B363-ADEBBEB0C7BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A434A5EA-0458-445D-BAC8-95D4CEB81C56} - System32\Tasks\HP\Consent Manager Launcher => sc start hptouchpointanalyticsservice
Task: {AA222C5E-97C2-4E20-B8DE-C6492D3AC3FB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => cmd /c start hpdiags://BatteryStatusError
Task: {B13CD99A-CF0D-4E32-AAA6-8AE9A12DD23E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2020-11-17] (Google LLC -> Google LLC)
Task: {B1AC5910-9A0D-40B4-92E1-19D3FF994357} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => cmd /c start hpdiags://BCF
Task: {B584957B-461A-4921-B1B4-9F521D2139A5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C5E01010-DA49-44C7-B1F1-9C949184F3ED} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => cmd /c start hpdiags://BHM1
Task: {C726128C-4373-4C24-8F89-F5271E757575} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1562376 2021-08-16] (Adobe Inc. -> Adobe Inc.)
Task: {CA69FAB5-B128-4A15-A1DF-13A101677CCC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {CDC8A884-C649-4529-9D18-58A6BE362395} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE379FEA-3EB1-45F2-9136-0BD47EA59606} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => cmd /c start hpdiags://ABO
Task: {D97FFAC6-BE61-4B03-9C59-F1B406CEBBF4} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E099332A-788C-4AFE-8E6B-F3BF0B4FB323} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MpCmdRun.exe [901056 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F2DFBE6C-8DD0-4D46-8284-0B5FCA0A6D9E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [134504 2021-10-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F873D338-7B05-4C4A-A952-4BC771F040EC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => cmd /c start hpdiags://SmartCheckError
Task: {FB5CE18C-7B7F-459C-B4C3-43750EEDD455} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{22701c8f-84c5-41c7-b988-50bc4a645814}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\berdi\AppData\Local\Microsoft\Edge\User Data\Default [2021-10-29]
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\dtplugin\npDeployJava1.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.301.2 -> C:\Program Files\Java\jre1.8.0_301\bin\plugin2\npjp2.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-06-22] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default [2021-10-29]
CHR Notifications: Default -> hxxps//cz.go-travels.com
CHR HomePage: Default -> hxxp//www.google.com/
CHR StartupUrls: Default -> "hxxp//search.toggle.com/?lang=en&cid=adfaa7a7","hxxp//www.msn.com/?pc=UP97&ocid=UP97DHP&dt=07 ... oogle.com/"
CHR Extension: (Překladač Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2021-08-19]
CHR Extension: (Prezentace) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-11-18]
CHR Extension: (Duolingo on the Web) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2020-11-18]
CHR Extension: (Dokumenty) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-11-18]
CHR Extension: (Disk Google) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-18]
CHR Extension: (YouTube) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-11-18]
CHR Extension: (Google News) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dllkocilcinkggkchnjgegijklcililc [2020-11-18]
CHR Extension: (Hudba Google Play) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fahmaaghhglfmonjliepjlchgpgfmobi [2020-11-21]
CHR Extension: (Tabulky) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-11-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-10-15]
CHR Extension: (Tlačítko „Uložit na Pinterest“) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2021-10-27]
CHR Extension: (Google Play Music) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2020-11-18]
CHR Extension: (FormApps Extension) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2020-11-18]
CHR Extension: (Rozšíření Google Keep pro Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2021-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (ColorPick Eyedropper) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohcpnigalekghcmgcdcenkpelffpdolg [2020-12-25]
CHR Extension: (Gmail) - C:\Users\berdi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-18]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169728 2021-08-16] (Adobe Inc. -> Adobe Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9251696 2021-10-11] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncHelper.exe [3253120 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\AppHelperCap.exe [755704 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\DiagsCap.exe [754184 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\NetworkCap.exe [751104 2021-09-24] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_f70676215ebef294\x64\OmenCap.exe [688160 2021-05-10] (HP Inc. -> HP Inc.)
R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_fac814d252ae9e85\x64\SysInfoCap.exe [754688 2021-09-24] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_87bd97ebe57d6f93\x64\TouchpointAnalyticsClientService.exe [494688 2021-09-24] (HP Inc. -> HP Inc.)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\21.205.1003.0003\OneDriveUpdaterService.exe [3721600 2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\NisSrv.exe [2872008 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2110.5-0\MsMpEng.exe [128376 2021-10-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AmUStor; C:\WINDOWS\system32\drivers\AmUStorU.sys [127936 2019-05-22] (Alcorlink Corp. -> )
R1 googledrivefs3525; C:\WINDOWS\System32\DRIVERS\googledrivefs3525.sys [389640 2021-10-14] (Google LLC -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1f5602eb8a12ac4c\x64\hpcustomcapdriver.sys [25024 2019-04-18] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_326f2e1d16385daf\x64\hpomencustomcapdriver.sys [23888 2019-05-03] (HP Inc. -> HP Inc.)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [70560 2018-09-03] (Realtek Semiconductor Corp. -> Realtek)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_e84845c70c38fbe7\x64\ViGEmBus.sys [74648 2018-08-01] (HP Inc. -> Benjamin Höglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48520 2021-10-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [435424 2021-10-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [86240 2021-10-26] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2020-06-08] (HP Inc. -> HP)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-29 20:26 - 2021-10-29 20:26 - 000028287 _____ C:\Users\berdi\Desktop\FRST.txt
2021-10-29 20:25 - 2021-10-29 20:26 - 000000000 ____D C:\FRST
2021-10-29 20:20 - 2021-10-29 20:20 - 002310656 _____ (Farbar) C:\Users\berdi\Desktop\FRST64.exe
2021-10-29 20:08 - 2021-10-29 20:08 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - sever
2021-10-29 19:59 - 2021-10-29 20:01 - 000000000 ____D C:\Users\berdi\Documents\CCleaner_registry
2021-10-29 19:53 - 2021-10-29 20:08 - 000000000 ____D C:\Program Files\CCleaner
2021-10-29 19:53 - 2021-10-29 19:53 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-10-29 19:53 - 2021-10-29 19:53 - 000002904 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Pavel
2021-10-29 19:53 - 2021-10-29 19:53 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-10-29 19:53 - 2021-10-29 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-10-29 19:46 - 2021-10-29 19:46 - 036227456 _____ (Piriform Software Ltd) C:\Users\berdi\Downloads\ccsetup586.exe
2021-10-29 19:37 - 2021-10-29 19:38 - 000001025 _____ C:\Users\berdi\Desktop\shotcut.lnk
2021-10-29 19:30 - 2021-10-29 19:30 - 000001992 _____ C:\Users\berdi\Desktop\DaVinci Resolve.lnk
2021-10-29 19:29 - 2021-10-29 19:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-28 21:28 - 2021-10-28 21:28 - 000000000 ___HD C:\$WinREAgent
2021-10-27 16:30 - 2021-10-27 16:33 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky (1)
2021-10-27 16:30 - 2021-10-27 16:30 - 002890445 _____ C:\Users\berdi\Downloads\Foto myšky (1).zip
2021-10-27 16:27 - 2021-10-27 16:29 - 000000000 ____D C:\Users\berdi\Downloads\Foto myšky
2021-10-27 16:26 - 2021-10-27 16:26 - 003794128 _____ C:\Users\berdi\Downloads\Foto myšky.zip
2021-10-26 06:25 - 2021-10-26 06:25 - 004853656 _____ (Husdawg, LLC) C:\Users\berdi\Downloads\Detection.exe
2021-10-26 06:09 - 2021-10-26 06:09 - 000000000 ____D C:\Users\berdi\AppData\Local\Meltytech
2021-10-26 06:07 - 2021-10-26 06:07 - 000001899 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shotcut.lnk
2021-10-26 06:06 - 2021-10-26 06:07 - 000000000 ____D C:\Program Files\Shotcut
2021-10-26 06:06 - 2021-10-26 06:06 - 077780472 _____ C:\Users\berdi\Downloads\shotcut-win64-210922.exe
2021-10-25 20:06 - 2021-10-25 20:06 - 000000020 ___SH C:\Users\sever\ntuser.ini
2021-10-25 20:05 - 2021-10-25 20:07 - 000000000 ____D C:\WINDOWS\system32\Tasks\Agent Activation Runtime
2021-10-25 20:04 - 2021-10-25 20:04 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2021-10-25 20:03 - 2021-10-29 19:12 - 000004208 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{08FDF5A3-8CC4-42D3-BC77-0CFA46884A88}
2021-10-25 20:03 - 2021-10-28 21:32 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-10-25 20:03 - 2021-10-27 15:56 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2021-10-25 20:03 - 2021-10-25 20:03 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-10-25 20:03 - 2021-10-25 20:03 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2021-10-25 20:03 - 2021-10-25 20:03 - 000003402 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-10-25 20:03 - 2021-10-25 20:03 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000003318 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d71c7ad2686caf
2021-10-25 20:03 - 2021-10-25 20:03 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-10-25 20:03 - 2021-10-25 20:03 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000003178 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-10-25 20:03 - 2021-10-25 20:03 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002948 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002766 _____ C:\WINDOWS\system32\Tasks\HPAudioSwitch
2021-10-25 20:03 - 2021-10-25 20:03 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-10-25 20:03 - 2021-10-25 20:03 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN
2021-10-25 20:03 - 2021-10-25 20:03 - 000002122 _____ C:\WINDOWS\system32\Tasks\StartDVR
2021-10-25 20:03 - 2021-10-25 20:03 - 000000020 ___SH C:\Users\berdi\ntuser.ini
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\NCH Software
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2021-10-25 20:03 - 2021-10-25 20:03 - 000000000 ____D C:\WINDOWS\system32\Tasks\AnyMP4 Studio
2021-10-25 20:03 - 2020-08-24 11:36 - 000002856 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3814328846-1681259996-2647774117-500
2021-10-25 20:03 - 2019-12-03 02:12 - 000002852 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-145576158-3702827341-4024398963-500
2021-10-25 20:03 - 2019-04-15 17:41 - 000003390 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-913737145-1433743232-4147240673-500
2021-10-25 20:02 - 2021-10-25 20:03 - 000017148 _____ C:\WINDOWS\diagwrn.xml
2021-10-25 20:02 - 2021-10-25 20:03 - 000017148 _____ C:\WINDOWS\diagerr.xml
2021-10-25 20:01 - 2021-10-28 21:36 - 001819258 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-10-25 19:59 - 2021-10-29 19:06 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-10-25 19:59 - 2021-10-25 20:03 - 000000000 ____D C:\Windows.old
2021-10-25 19:59 - 2021-10-25 19:59 - 000593240 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-10-25 19:47 - 2021-10-25 19:59 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2021-10-25 19:45 - 2021-10-28 21:32 - 000000000 ____D C:\Users\berdi
2021-10-25 19:45 - 2021-10-25 20:06 - 000000000 ____D C:\Users\sever
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Šablony
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Soubory cookie
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Poslední
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Okolní tiskárny
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Okolní síť
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Nabídka Start
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Dokumenty
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Obrázky
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Hudba
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Documents\Filmy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\sever\AppData\Local\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Šablony
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Soubory cookie
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Poslední
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Okolní tiskárny
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Okolní síť
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Nabídka Start
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Dokumenty
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Obrázky
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Hudba
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Documents\Filmy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 _SHDL C:\Users\berdi\AppData\Local\Data aplikací
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 ____D C:\WINDOWS\system32\AMD
2021-10-25 19:45 - 2021-10-25 19:45 - 000000000 ____D C:\WINDOWS\Firmware
2021-10-25 19:45 - 2021-06-05 14:04 - 000001281 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000001281 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000000407 _____ C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 19:45 - 2021-06-05 14:04 - 000000407 _____ C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Explorer.lnk
2021-10-25 19:44 - 2021-10-25 19:47 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2021-10-25 19:41 - 2021-10-25 19:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-10-25 19:41 - 2021-10-25 19:41 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 002764800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-10-25 19:37 - 2021-10-25 19:37 - 001745736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-10-25 19:37 - 2021-10-25 19:37 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-10-25 19:37 - 2021-10-25 19:37 - 000617648 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-10-25 19:37 - 2021-10-25 19:37 - 000453120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-10-25 19:37 - 2021-10-25 19:37 - 000425984 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000377136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-10-25 19:37 - 2021-10-25 19:37 - 000360448 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000335872 _____ C:\WINDOWS\system32\Windows.Internal.UI.Dialogs.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000269112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-10-25 19:37 - 2021-10-25 19:37 - 000267264 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Dialogs.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssText3d.scr
2021-10-25 19:37 - 2021-10-25 19:37 - 000221184 _____ C:\WINDOWS\SysWOW64\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmview.ocx
2021-10-25 19:37 - 2021-10-25 19:37 - 000099560 _____ C:\WINDOWS\system32\wow64con.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000041594 _____ C:\WINDOWS\SysWOW64\ctac.json
2021-10-25 19:37 - 2021-10-25 19:37 - 000036864 _____ C:\WINDOWS\system32\umpodev.dll
2021-10-25 19:37 - 2021-10-25 19:37 - 000014580 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriUHMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009522 _____ C:\WINDOWS\system32\ResPriHMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000009402 _____ C:\WINDOWS\system32\ResPriHMImageListLowCost
2021-10-25 19:37 - 2021-10-25 19:37 - 000008964 _____ C:\WINDOWS\system32\ResPriLMImageList
2021-10-25 19:37 - 2021-10-25 19:37 - 000008870 _____ C:\WINDOWS\system32\ResPriImageListLowCost
2021-10-25 19:37 - 2021-10-25 19:37 - 000003366 _____ C:\WINDOWS\SysWOW64\AppxProvisioning.xml
2021-10-25 19:37 - 2021-10-25 19:37 - 000003366 _____ C:\WINDOWS\system32\AppxProvisioning.xml
2021-10-25 19:36 - 2021-10-25 19:36 - 002310384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-10-25 19:36 - 2021-10-25 19:36 - 001856848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-10-25 19:36 - 2021-10-25 19:36 - 000727576 _____ C:\WINDOWS\system32\TextShaping.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-10-25 19:36 - 2021-10-25 19:36 - 000614400 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000311296 _____ C:\WINDOWS\system32\Microsoft.Internal.FrameworkUdk.System.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000258048 _____ C:\WINDOWS\system32\CoreMas.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000180224 _____ C:\WINDOWS\system32\CloudExperienceHostRedirection.dll
2021-10-25 19:36 - 2021-10-25 19:36 - 000172032 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-10-25 19:36 - 2021-10-25 19:36 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmview.ocx
2021-10-25 19:36 - 2021-10-25 19:36 - 000077824 _____ C:\WINDOWS\system32\runexehelper.exe
2021-10-25 19:36 - 2021-10-25 19:36 - 000041594 _____ C:\WINDOWS\system32\ctac.json
2021-10-25 19:34 - 2021-10-25 20:23 - 000000000 ____D C:\WINDOWS\HoloShell
2021-10-25 19:34 - 2021-10-25 19:43 - 000000000 ____D C:\WINDOWS\TextInput
2021-10-25 19:33 - 2021-10-25 19:33 - 001368296 _____ C:\WINDOWS\system32\PerceptionSimulationRightHandModel.glb
2021-10-25 19:33 - 2021-10-25 19:33 - 001366268 _____ C:\WINDOWS\system32\PerceptionSimulationLeftHandModel.glb
2021-10-25 19:33 - 2021-10-25 19:33 - 000000002 _____ C:\WINDOWS\system32\hologramcompositor.lock
2021-10-25 19:31 - 2021-10-25 19:31 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2021-10-25 19:31 - 2021-10-25 19:31 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files\Reference Assemblies
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files\MSBuild
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2021-10-25 19:26 - 2021-10-25 19:26 - 000000000 ____D C:\Program Files (x86)\MSBuild
2021-10-25 19:19 - 2021-10-25 19:19 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2021-10-25 18:36 - 2021-10-29 19:56 - 000000000 ___DC C:\WINDOWS\Panther
2021-10-25 12:14 - 2021-10-25 12:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (2).pdf
2021-10-25 12:14 - 2021-10-25 12:14 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ (1).pdf
2021-10-25 12:05 - 2021-10-25 12:05 - 000242285 _____ C:\Users\sever\Downloads\PTV_TPS_CZ_CZ.pdf
2021-10-24 21:12 - 2021-10-24 21:13 - 272367931 _____ C:\Users\berdi\Timeline 1.mov
2021-10-24 16:12 - 2021-10-24 16:12 - 000000000 ____D C:\Users\berdi\Documents\Blackmagic Design
2021-10-24 16:06 - 2021-10-24 16:06 - 000000000 ____D C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows
2021-10-24 15:45 - 2021-10-24 15:52 - 2718482084 _____ C:\Users\berdi\Downloads\DaVinci_Resolve_17.4_Windows.zip
2021-10-23 20:27 - 2021-10-23 20:27 - 000000000 ____D C:\Users\berdi\AppData\Local\RawTherapee
2021-10-23 20:26 - 2021-10-23 20:26 - 049726890 _____ (rawtherapee.com ) C:\Users\berdi\Downloads\RawTherapee_5.8.exe
2021-10-23 20:13 - 2021-10-25 19:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-10-23 20:13 - 2021-10-24 11:56 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Slides.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001906 _____ C:\Users\berdi\Desktop\Google Sheets.lnk
2021-10-23 20:13 - 2021-10-24 11:56 - 000001894 _____ C:\Users\berdi\Desktop\Google Docs.lnk
2021-10-23 20:13 - 2021-10-14 14:25 - 000389640 _____ (Google, Inc.) C:\WINDOWS\system32\Drivers\googledrivefs3525.sys
2021-10-23 20:12 - 2021-10-23 20:13 - 000000000 ____D C:\Users\berdi\AppData\Roaming\PhotoScape
2021-10-23 20:11 - 2021-10-23 20:11 - 021025552 _____ (Mooii) C:\Users\berdi\Downloads\PhotoScapeSetup_V3-7.exe
2021-10-23 20:06 - 2021-10-23 20:06 - 000008181 _____ C:\Users\berdi\AppData\Local\recently-used.xbel
2021-10-23 09:20 - 2021-10-23 09:20 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk
2021-10-23 09:20 - 2021-10-23 09:20 - 000000000 ____D C:\Program Files\PCHealthCheck
2021-10-22 17:46 - 2021-10-22 17:46 - 000689956 _____ C:\Users\sever\Desktop\Nabídka_4soft_O1-51821_N-VA_Brandýs_nad_Labem.pdf
2021-10-21 19:39 - 2021-10-21 19:48 - 000000000 ____D C:\Users\berdi\Documents\DJI
2021-10-21 19:38 - 2021-10-25 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DJI Product
2021-10-21 19:38 - 2021-10-21 19:48 - 000000000 ____D C:\Users\berdi\AppData\Local\DJI Assistant 2
2021-10-21 19:38 - 2021-10-21 19:38 - 000001498 _____ C:\Users\Public\Desktop\DJI Assistant 2 (Consumer Drones Series).lnk
2021-10-19 21:25 - 2021-10-19 21:27 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak
2021-10-19 21:25 - 2021-10-19 21:25 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Videa
2021-10-19 21:24 - 2021-10-19 21:24 - 017591927 _____ C:\Users\berdi\Downloads\Fwd_ Videa.zip
2021-10-19 21:24 - 2021-10-19 21:24 - 010120515 _____ C:\Users\berdi\Downloads\Fwd_ Třídou Káčátek létal drak.zip
2021-10-19 20:56 - 2021-10-19 21:08 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 3
2021-10-19 20:55 - 2021-10-19 21:07 - 000000000 ____D C:\Users\berdi\Downloads\Dravci 2
2021-10-19 20:55 - 2021-10-19 21:04 - 000000000 ____D C:\Users\berdi\Downloads\Foto dravci 1
2021-10-19 20:55 - 2021-10-19 20:55 - 008320179 _____ C:\Users\berdi\Downloads\Foto dravci 1.zip
2021-10-19 20:55 - 2021-10-19 20:55 - 007970400 _____ C:\Users\berdi\Downloads\Dravci 2.zip
2021-10-19 20:55 - 2021-10-19 20:55 - 002607756 _____ C:\Users\berdi\Downloads\Dravci 3.zip
2021-10-19 19:49 - 2021-10-19 20:46 - 000000000 ____D C:\Users\berdi\Downloads\prilohy_69267
2021-10-19 19:48 - 2021-10-19 19:48 - 015886397 _____ C:\Users\berdi\Downloads\prilohy_69267.zip
2021-10-18 17:03 - 2021-10-18 17:03 - 000000000 ____D C:\Users\berdi\AppData\Local\SolidDocuments
2021-10-18 17:01 - 2021-10-18 17:06 - 000000000 ____D C:\Users\sever\Desktop\Děti s vývojovou disfázií - KURS
2021-10-18 17:01 - 2021-10-18 17:01 - 000000000 ____D C:\Users\sever\Desktop\Pomoc při logopedických problémech v MŠ a ZŠ
2021-10-17 13:38 - 2021-10-22 17:43 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2021-10-17 13:38 - 2021-10-22 17:43 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat DC.lnk
2021-10-17 13:38 - 2021-10-17 13:38 - 000000000 ____D C:\Users\sever\AppData\Local\SolidDocuments
2021-10-17 13:38 - 2021-10-17 13:38 - 000000000 ____D C:\Program Files\Adobe
2021-10-17 13:37 - 2021-10-17 13:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-10-16 20:40 - 2021-10-21 19:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJI Assistant 2
2021-10-16 20:40 - 2021-10-16 20:41 - 000000000 ____D C:\Users\berdi\AppData\Roaming\DJIAssistant2
2021-10-16 20:40 - 2021-10-16 20:40 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Electron
2021-10-16 20:39 - 2021-10-21 19:34 - 000000000 ____D C:\Program Files (x86)\DJI Product
2021-10-16 12:36 - 2021-10-16 12:36 - 000000000 ____D C:\Users\sever\AppData\Roaming\HpUpdate
2021-10-15 07:13 - 2021-10-15 07:13 - 001231452 _____ C:\Users\sever\Downloads\směrnice_řády_vnitřní_předpisy_ve_školství.pdf
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\Users\sever\AppData\Local\AnyMP4 Studio
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\ProgramData\Apple
2021-10-14 19:01 - 2021-10-14 19:01 - 000000000 ____D C:\Program Files\AnyMP4 Studio
2021-10-13 19:59 - 2021-10-13 20:00 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (2)
2021-10-13 19:58 - 2021-10-13 19:59 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky (1)
2021-10-13 19:57 - 2021-10-13 19:58 - 000000000 ____D C:\Users\berdi\Downloads\Fwd_ Foto myšky
2021-10-13 19:42 - 2021-10-13 19:42 - 000085846 _____ C:\Users\sever\Documents\Jazyková příprava.pdf
2021-10-12 19:01 - 2021-10-12 19:01 - 000000000 ____D C:\Users\berdi\AppData\Local\Apps\2.0
2021-10-11 08:00 - 2021-10-11 08:00 - 000000000 ____D C:\Program Files\Microsoft.WebView2.FixedVersionRuntime.92.0.902.73.x64
2021-10-07 18:16 - 2021-10-07 18:16 - 000275885 _____ C:\Users\sever\Downloads\Kniha2014_zkratky.pdf
2021-10-07 18:04 - 2021-10-07 18:04 - 000149149 _____ C:\Users\sever\Downloads\Úprava rozpočtu k 30. 9. 2021 – Brandýs.xlsx
2021-10-05 23:32 - 2021-10-05 23:32 - 001210789 _____ C:\Users\berdi\Documents\Krtečci_210310 (2)re.xcf
2021-10-05 21:09 - 2021-10-05 21:09 - 000136581 _____ C:\Users\berdi\Documents\SablonyIII.pdf
2021-10-04 19:35 - 2021-10-04 19:35 - 002864361 _____ C:\Users\berdi\Downloads\images.zip
2021-10-04 19:35 - 2021-10-04 19:35 - 000000000 ____D C:\Users\berdi\Downloads\images
2021-10-04 19:06 - 2021-10-04 19:07 - 000000000 ____D C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”
2021-10-04 19:05 - 2021-10-04 19:05 - 009629583 _____ C:\Users\berdi\Downloads\Divadelko ,, O veliké řepě”.zip
2021-10-03 17:13 - 2021-10-03 17:27 - 000000000 ____D C:\Users\berdi\Downloads\Fotky
2021-10-03 17:12 - 2021-10-03 17:12 - 004836455 _____ C:\Users\berdi\Downloads\Fotky.zip
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-10-29 20:21 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemTemp
2021-10-29 20:10 - 2020-08-24 11:42 - 000000000 ____D C:\ProgramData\NVIDIA
2021-10-29 20:09 - 2020-11-17 19:50 - 000000000 ____D C:\Users\sever\AppData\Local\CrashDumps
2021-10-29 20:08 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-10-29 20:08 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-10-29 20:08 - 2020-11-17 21:16 - 000000000 ____D C:\Program Files (x86)\Google
2021-10-29 20:08 - 2020-11-17 17:33 - 000000000 ___RD C:\Users\sever\OneDrive
2021-10-29 20:08 - 2020-11-17 17:32 - 000000000 ____D C:\Users\sever\AppData\Local\D3DSCache
2021-10-29 20:08 - 2020-11-17 17:31 - 000000000 ____D C:\Users\sever\AppData\Local\Packages
2021-10-29 19:56 - 2020-11-22 11:55 - 000000000 ____D C:\Users\berdi\AppData\Local\CrashDumps
2021-10-29 19:54 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\D3DSCache
2021-10-29 19:30 - 2021-06-05 14:09 - 000000000 ____D C:\WINDOWS\INF
2021-10-29 19:29 - 2020-11-22 13:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2021-10-29 19:29 - 2020-11-22 13:52 - 000000000 ____D C:\Program Files (x86)\Blackmagic Design
2021-10-29 19:29 - 2020-11-22 12:56 - 000000000 ____D C:\Program Files\Blackmagic Design
2021-10-28 21:48 - 2021-06-05 14:10 - 000000000 ___HD C:\Program Files\WindowsApps
2021-10-28 21:36 - 2021-06-05 19:20 - 000760130 _____ C:\WINDOWS\system32\perfh005.dat
2021-10-28 21:36 - 2021-06-05 19:20 - 000168452 _____ C:\WINDOWS\system32\perfc005.dat
2021-10-28 21:33 - 2020-11-17 19:28 - 000000000 ___RD C:\Users\berdi\OneDrive
2021-10-28 21:32 - 2021-06-22 17:51 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2021-10-28 21:32 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\OCR
2021-10-28 21:32 - 2021-06-05 14:01 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-10-28 21:32 - 2021-03-19 06:41 - 000012288 ___SH C:\DumpStack.log.tmp
2021-10-28 21:28 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-10-27 15:56 - 2021-06-22 17:48 - 000002137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-10-26 06:28 - 2019-04-15 17:38 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-10-26 06:10 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\appcompat
2021-10-26 06:04 - 2020-11-17 19:40 - 000000000 ____D C:\Users\berdi\AppData\Local\PlaceholderTileLogoFolder
2021-10-25 20:55 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\Packages
2021-10-25 20:23 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-10-25 20:23 - 2020-11-17 19:22 - 000000000 ____D C:\Users\berdi\AppData\Local\NVIDIA Corporation
2021-10-25 20:22 - 2020-11-17 17:33 - 000000000 ____D C:\Users\sever\AppData\Local\NVIDIA Corporation
2021-10-25 20:20 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Packages
2021-10-25 20:18 - 2021-06-05 14:01 - 000000000 ____D C:\WINDOWS\servicing
2021-10-25 20:07 - 2020-11-17 21:16 - 000000000 ____D C:\Users\sever\AppData\Local\Google
2021-10-25 20:06 - 2021-06-05 14:10 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-10-25 20:06 - 2019-04-15 17:39 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Windows NT
2021-10-25 20:03 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Windows Defender
2021-10-25 20:03 - 2021-06-05 14:01 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-10-25 20:01 - 2020-11-17 21:16 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-10-25 20:00 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-10-25 19:59 - 2021-09-22 19:03 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-10-25 19:59 - 2021-09-22 19:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2021-10-25 19:59 - 2021-07-09 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2021-10-25 19:59 - 2021-06-22 23:50 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\spool
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ServiceState
2021-10-25 19:59 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-10-25 19:59 - 2021-06-05 14:08 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2021-10-25 19:59 - 2021-05-08 21:24 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Inkscape
2021-10-25 19:59 - 2021-03-11 19:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PSPad editor
2021-10-25 19:59 - 2020-12-31 21:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-10-25 19:59 - 2020-11-24 23:18 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultima Online DP2
2021-10-25 19:59 - 2020-11-22 16:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2021-10-25 19:59 - 2020-11-18 19:48 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2021-10-25 19:59 - 2020-11-17 20:41 - 000000000 ____D C:\Users\sever\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2021-10-25 19:59 - 2020-11-17 19:48 - 000000000 ____D C:\Program Files\UNP
2021-10-25 19:59 - 2020-11-17 17:37 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-10-25 19:59 - 2020-08-24 11:42 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2021-10-25 19:59 - 2020-08-24 11:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2021-10-25 19:59 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings
2021-10-25 19:59 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2021-10-25 19:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2021-10-25 19:55 - 2021-06-05 14:14 - 000000000 ____D C:\WINDOWS\Setup
2021-10-25 19:52 - 2021-06-05 14:10 - 000000000 ____D C:\ProgramData\USOPrivate
2021-10-25 19:51 - 2021-06-05 14:10 - 000000000 __RHD C:\Users\Public\Libraries
2021-10-25 19:43 - 2021-06-05 19:28 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemResources
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\id-ID
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\appraiser
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\Provisioning
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-10-25 19:43 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files\Common Files\System
2021-10-25 19:42 - 2021-06-05 19:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-10-25 19:42 - 2021-06-05 19:28 - 000021047 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2021-10-25 19:34 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SystemApps
2021-10-25 19:31 - 2021-06-05 19:28 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\winrm
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\WCN
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\slmgr
2021-10-25 19:31 - 2021-06-05 19:20 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-10-25 19:31 - 2021-06-05 14:10 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2021-10-25 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2021-10-25 19:26 - 2021-06-05 14:10 - 000000000 ____D C:\WINDOWS\system32\MUI
2021-10-24 16:14 - 2021-01-14 18:58 - 000000000 ____D C:\Users\berdi\AppData\Local\cache
2021-10-24 16:11 - 2020-11-18 19:45 - 000000000 ____D C:\Users\berdi\AppData\Local\Google
2021-10-24 16:11 - 2020-08-24 11:41 - 000000000 ____D C:\ProgramData\Package Cache
2021-10-24 14:10 - 2021-05-08 20:51 - 000000000 ____D C:\Users\berdi\AppData\Local\babl-0.1
2021-10-23 20:13 - 2020-11-17 21:16 - 000000000 ____D C:\Program Files\Google
2021-10-22 17:56 - 2021-09-16 21:47 - 000000000 ____D C:\Users\berdi\AppData\Local\ElevatedDiagnostics
2021-10-22 17:42 - 2021-05-10 19:04 - 000000000 ____D C:\Users\sever\AppData\Local\Adobe
2021-10-19 17:56 - 2021-06-22 18:56 - 000000000 ____D C:\Program Files\Microsoft Office
2021-10-18 17:03 - 2021-03-07 18:30 - 000000000 ____D C:\Users\berdi\AppData\Roaming\Adobe
2021-10-18 17:03 - 2021-03-07 18:30 - 000000000 ____D C:\Users\berdi\AppData\Local\Adobe
2021-10-17 13:38 - 2021-03-19 06:48 - 000000000 ____D C:\Users\sever\AppData\Roaming\Adobe
2021-10-17 13:37 - 2021-05-08 21:12 - 000000000 ____D C:\ProgramData\Adobe
2021-10-14 06:49 - 2020-11-17 19:51 - 139806512 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-10-14 06:49 - 2020-11-17 19:51 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-10-13 19:35 - 2020-11-17 17:33 - 000000000 ____D C:\Users\sever\AppData\Local\PlaceholderTileLogoFolder
2021-10-05 23:40 - 2021-05-23 14:09 - 000000000 ____D C:\Users\berdi\AppData\Local\gtk-2.0
2021-10-05 19:01 - 2020-12-31 21:22 - 000191832 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2021-10-05 19:01 - 2020-12-31 21:22 - 000000000 ____D C:\Program Files\Java
2021-10-04 20:21 - 2020-12-25 22:03 - 000000000 ____D C:\Users\berdi\AppData\Roaming\HP
2021-10-04 19:01 - 2020-11-17 19:50 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-10-01 22:03 - 2021-07-17 10:19 - 004968448 _____ C:\Users\berdi\Documents\Mateřská škola.accdb
==================== Files in the root of some directories ========
2021-01-14 19:43 - 2021-01-14 19:43 - 000097505 _____ () C:\Users\berdi\AppData\Roaming\Crescendo.dmp
2021-10-23 20:06 - 2021-10-23 20:06 - 000008181 _____ () C:\Users\berdi\AppData\Local\recently-used.xbel
2020-11-18 20:37 - 2020-11-18 20:37 - 000000017 _____ () C:\Users\berdi\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-10-2021
Ran by Pavel (29-10-2021 20:27:31)
Running from C:\Users\berdi\Desktop
Microsoft Windows 11 Home Version 21H2 22000.258 (X64) (2021-10-25 18:03:09)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-626895236-950452568-4050494843-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-626895236-950452568-4050494843-503 - Limited - Disabled)
Guest (S-1-5-21-626895236-950452568-4050494843-501 - Limited - Disabled)
Pavel (S-1-5-21-626895236-950452568-4050494843-1002 - Administrator - Enabled) => C:\Users\berdi
sever (S-1-5-21-626895236-950452568-4050494843-1001 - Administrator - Enabled) => C:\Users\sever
vikib (S-1-5-21-626895236-950452568-4050494843-1005 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-626895236-950452568-4050494843-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
FW: McAfee Firewall (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4K Video Downloader (HKLM\...\{50F633D3-DE52-4709-AD1B-A09B5B0D86C1}) (Version: 4.14.1.4020 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{33a1766b-73d6-42ce-b3ff-317e5db3e9a7}) (Version: 4.14.1.4020 - Open Media LLC)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 21.007.20099 - Adobe)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0807.2241.40847 - Advanced Micro Devices, Inc.)
AMD Ryzen Master SDK Alpha (HKLM\...\{716F53C3-0B3F-4FB7-9AD7-9BC7DB7134A1}) (Version: 1.3.0.0533 - Advanced Micro Devices, Inc.)
Backup and Sync from Google (HKLM\...\{685BAD50-A3AA-4B91-A15B-77F9DC7346D4}) (Version: 3.57.4043.4118 - Google, Inc.)
Blackmagic RAW Common Components (HKLM\...\{94C42023-ECF5-46E6-ACB4-2AED536B205D}) (Version: 2.2 - Blackmagic Design)
CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform)
Crescendo Music Notation Editor (HKLM-x32\...\Crescendo) (Version: 1.14 - NCH Software)
DaVinci Resolve (HKLM\...\{EB2DCFCD-3A03-4E68-9A1E-1CD4112386FC}) (Version: 17.4.00012 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{7667C543-084F-47F7-BC60-175FC25E9D6F}) (Version: 2.0.1.0 - Blackmagic Design)
DJI Assistant 2 (Consumer Drones Series) version V2.1.5.8 (HKLM-x32\...\{7369D6A6-CBF3-428F-8C82-3D647630FC9A}_is1) (Version: V2.1.5.8 - DJI)
GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 52.0.6.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 95.0.4638.54 - Google LLC)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP Photosmart C4200 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{276C40A7-8110-4976-80D2-39C669B84D32}) (Version: 14.0 - HP)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Inkscape (HKLM\...\{1E74336F-9E7A-4070-BAA7-716A504FB9B0}) (Version: 1.0.0 - Inkscape)
Java 8 Update 301 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180301F0}) (Version: 8.0.3010.9 - Oracle Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{88EC8D4A-54AB-4A7F-BDE9-4AD906D9D11F}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Microsoft 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.14430.20306 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 95.0.1020.30 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29913 (HKLM-x32\...\{03d1453c-7d5c-479c-afea-8482f406e036}) (Version: 14.28.29913.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 462.80 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 462.80 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
PSPad editor (HKLM\...\PSPad editor_is1) (Version: 5.0.5.567 - Jan Fiala)
Shotcut (HKLM\...\Shotcut) (Version: 21.09.22 - Meltytech, LLC)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.51 - Ghisler Software GmbH)
Zoom (HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.)
Packages:
=========
B&O Audio Control -> C:\Program Files\WindowsApps\AD2F1837.BOAudioControl_1.7.195.0_x64__v10z8vjag6ke6 [2021-10-25] (HP Inc.)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-06-15] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-10-25] (Microsoft Corporation)
Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2021-10-25] (Facebook Inc)
HP CoolSense -> C:\Program Files\WindowsApps\AD2F1837.HPCoolSense_1.0.6.0_x64__v10z8vjag6ke6 [2020-08-24] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2021-05-24] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.0.0_x64__v10z8vjag6ke6 [2021-10-15] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2021-04-11] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_131.1.242.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.9.58.0_x64__v10z8vjag6ke6 [2021-10-01] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6 [2021-08-03] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-09] (Microsoft Studios) [MS Ad]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-10-25] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0 [2021-10-25] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-626895236-950452568-4050494843-1002_Classes\CLSID\{ED90173A-3B4C-4E7E-B9CF-79714425D4B5}\InprocServer32 -> C:\Program Files\PSPad editor\pspshellx64.dll () [File not signed]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.205.1003.0003\FileSyncShell64.dll [2021-10-27] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-08-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhm.inf_amd64_6f7f22b0a5610d99\nvshext.dll [2021-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers1_S-1-5-21-626895236-950452568-4050494843-1002: [EditWithPSPad] -> {ED90173A-3B4C-4E7E-B9CF-79714425D4B5} => C:\Program Files\PSPad editor\pspshellx64.dll [2014-11-02] () [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\berdi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Hudba Google Play.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fahmaaghhglfmonjliepjlchgpgfmobi
==================== Loaded Modules (Whitelisted) =============
2019-01-08 13:03 - 2019-01-08 13:03 - 000017920 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2019-01-08 13:03 - 2019-01-08 13:03 - 003598336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2021-03-11 19:14 - 2014-11-02 19:45 - 000029184 _____ () [File not signed] C:\Program Files\PSPad editor\pspshellx64.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\92637a3c2065a1153c4f965968887fe1\Interop.IWshRuntimeLibrary.ni.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\adafd17e68fc81abf9353000780a7c63\Hardcodet.Wpf.TaskbarNotification.ni.dll
2021-03-07 08:37 - 2021-03-07 08:37 - 000014336 _____ (HP Inc.) [File not signed] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.2.11.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2021-10-27 16:07 - 2021-10-27 16:07 - 001701888 _____ (Mark Heath & Contributors) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\7872127d7872dfaf051d5c7c4f74ef56\NAudio.ni.dll
2021-06-22 18:56 - 2021-06-22 18:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2021-06-22 18:56 - 2021-06-22 18:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2021-10-25 20:20 - 2021-10-25 20:20 - 000137152 _____ (Microsoft Windows -> Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_421.20034.345.0_x64__cw5n1h2txyewy\Dashboard\WebView2Loader.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 003060736 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\bffc48840549adf535e98c03804ad000\Newtonsoft.Json.ni.dll
2021-10-27 16:07 - 2021-10-27 16:07 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\034c3e5ee114fd6d0b2bfb7360b20aa9\log4net.ni.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000414208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000516608 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 001441280 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-08-07 22:39 - 2019-08-07 22:39 - 005999104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 006413824 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 001141760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000339968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 004143104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 003840000 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000332800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000349184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 080959488 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 005622272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000463360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 000190464 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2019-01-08 13:03 - 2019-01-08 13:03 - 002825216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000330752 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000137216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000090112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2019-01-08 13:04 - 2019-01-08 13:04 - 000136192 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//www.msn.com/?pc=HCTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKLM -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC
SearchScopes: HKLM-x32 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1001 -> {71344697-58F8-4C37-AD15-0252409F3736} URL = hxxp//www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
SearchScopes: HKU\S-1-5-21-626895236-950452568-4050494843-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&for ... TR&pc=HCTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_301\bin\ssv.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_301\bin\jp2ssv.dll [2021-10-05] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2021-03-07] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2021-03-07] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-10-04] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1001\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-626895236-950452568-4050494843-1002\...\sharepoint.com -> hxxps://wiedencz-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-626895236-950452568-4050494843-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sever\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-21-626895236-950452568-4050494843-1002\Control Panel\Desktop\\Wallpaper -> C:\windows\web\wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
Network Binding:
=============
Ethernet: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
Wi-Fi: Realtek LightWeight Filter (NDIS6.40) -> nt_rtf64 (enabled)
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [UDP Query User{795C76F0-40E4-4CD7-9CAC-5B680B956E15}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [TCP Query User{E705B4B5-92DF-4F6A-9B6D-5976A0D8BBCD}C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe] => (Allow) C:\program files (x86)\blackmagic design\davinci control panels\setup utility\davinci control panels setup.exe (Blackmagic Design Pty Ltd -> Blackmagic Design)
FirewallRules: [{2102EC06-985E-43AA-A4FB-1534BD718315}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\95.0.1020.30\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7B7CC774-4F66-451C-9380-A26E93F3DCFE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{07B2762C-86C4-4FE6-AE0B-8B2424C68812}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{68E2A6A8-1A1D-42BC-9B16-6CFB33EC9AF0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4D40DDF2-0A7E-4018-95F2-3A07B7AD033D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AF82CB62-5C3B-4E02-9AEF-203AFE2E156D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{3AD73BC4-CA38-439E-880B-B87EA7908B7E}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{EE9102E4-605E-48B8-8C24-A9AF4CB6385D}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservicecore.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [UDP Query User{83BC7353-9138-4269-AD1C-54B9B43278D9}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [TCP Query User{0EF8FD87-2288-40EE-B3F4-7C7B213F6B03}C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe] => (Allow) C:\program files (x86)\dji product\dji assistant 2 (consumer drones series)\djiengine\djiservice.exe (SZ DJI Technology Co., Ltd. -> )
FirewallRules: [{6D7E9258-374B-42EF-A08C-B5DA13B8CB85}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D7377C96-06BE-4AB0-9A00-356DAC33F769}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{68A40398-8D79-4642-BBD9-B7DCD1583C08}] => (Allow) C:\hp\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [UDP Query User{E7854A38-1E18-4DAF-A556-F2150934493B}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{13F97527-78DB-4AA6-A450-27D6E4D7BFD3}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{8CA7AEBF-D9A7-44FB-9DB5-5A8A5DD9DB66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{34F5EBED-DC73-4581-BA30-D1F44D0195F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{48BD1678-C870-4DAB-8145-8BB940D9E74E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A1317AB1-0416-44C7-839A-FFDAE0987190}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{90135E6A-0B02-466F-A966-D015A8E5BA64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0FC7A750-6829-4FB7-9197-49E45EB10B66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{50A7C865-B44B-49E3-B7F6-E399A22F2F7C}] => (Allow) C:\Users\sever\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{EAC0DB97-9364-4B67-A8A6-A65CAC8EAC3F}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{39151168-B132-4EAC-BFDD-897532EE4CA8}C:\totalcmd\totalcmd64.exe] => (Allow) C:\totalcmd\totalcmd64.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{8F9D30EC-8891-4318-9564-2CDBB3963574}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{CC437015-3D5B-4922-8303-9D07CA3E44E4}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [{F0058689-3572-41E9-859E-2F78430DC054}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{625E177E-6206-4EBA-A3DD-59B6E86D3AC7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_21253.510.996.1465_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{108D5FA7-BCCA-44C1-9CC6-9FC72C2472BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8A82CCD1-46EC-44A3-BC0E-F9AB17988B14}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{091C4D75-1DBF-45AB-8375-25D69EC7C78A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1A60EBD1-8214-45A7-B938-EEDE49C085BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F137FE90-7CE6-40B0-A28F-220F42D28AD7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1A89581A-160C-4940-977C-7B4CE8F95ECD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{344AE34A-8A1E-4B17-B3BD-F19C7D0271F2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{983E8829-A0D5-49F6-9301-9D38FC57A5C0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{31281DB8-3B13-4F09-82BB-7D52DE7658D7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{BC298BEA-A791-4AA7-91D2-501B7C7DE752}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{20A33D2F-5C99-46D1-A54F-C81C256F17CA}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D4ADE2B2-593B-4463-B05B-9E7575D654EE}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{27E988B7-9E4C-4B2B-80AD-BD1C56895FB7}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{FA936AD3-E8F2-42B7-9661-84C87FBF2308}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{86EA1FF8-7500-49F0-8CE9-F74613C2514D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
==================== Restore Points =========================
25-10-2021 21:05:41 Removed MuseScore 3
29-10-2021 19:29:36 Installed DaVinci Resolve
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/28/2021 09:32:44 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:46 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 5a9716f1-34d2-4fd0-8c36-7c982435940e
Metoda: GET(234ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/28/2021 09:32:43 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Thu, 28 Oct 2021 19:32:45 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 60600997-6f2c-4315-bd5c-2d6f1135b28a
Metoda: GET(390ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:56 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\LAPTOP-AFCSSV23$ přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Oct 2021 04:26:58 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 51ba5889-c42f-4ae4-82c7-324baf750a97
Metoda: GET(203ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:55 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro Místní systém přes https://AMD-KeyId-578c545f796951421221a ... s/Aik/scep se nepovedla:
GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 26 Oct 2021 04:26:58 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: f5368a9d-c724-4724-a92b-31b5631b44fc
Metoda: GET(313ms)
Fáze: GetCACaps
Nenalezeno (404) 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)
Error: (10/26/2021 06:26:20 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (10/26/2021 06:26:20 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (10/25/2021 08:54:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Microsoft.Photos.exe, verze: 2021.21090.10007.0, časové razítko: 0x613c237b
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.22000.132, časové razítko: 0xf9ab3e3e
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000010a4f4
ID chybujícího procesu: 0x2c24
Čas spuštění chybující aplikace: 0x01d7c9cac9a4b296
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2021.21090.10007.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\twinapi.appcore.dll
ID zprávy: 36d86c3b-15e8-4731-ab69-4579abd8739c
Úplný název chybujícího balíčku: Microsoft.Windows.Photos_2021.21090.10007.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App
Error: (10/25/2021 08:08:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program StartMenuExperienceHost.exe verze 0.0.0.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 1b94
Čas spuštění: 01d7c9cb1df29330
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
ID hlášení: c8e611ba-7713-403d-acb0-455bf5bdb5b4
Úplný název balíčku s chybou: Microsoft.Windows.StartMenuExperienceHost_10.0.22000.37_neutral_neutral_cw5n1h2txyewy
ID aplikace relativní podle balíčku s chybou: App
Typ zablokování: Quiesce
System errors:
=============
Error: (10/29/2021 07:06:38 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/28/2021 09:56:24 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/28/2021 09:33:22 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x800f0823): 2021-10 Kumulativní aktualizace pro Windows 11 pro systémy typu x64 (KB5006746).
Error: (10/27/2021 04:25:44 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/27/2021 03:56:37 PM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/26/2021 07:59:36 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/26/2021 06:04:14 AM) (Source: Server) (EventID: 2505) (User: )
Description: Server nemohl vytvořit vazbu na přenos \Device\NetBT_Tcpip_{22701C8F-84C5-41C7-B988-50BC4A645814}, protože jiný počítač v síti má stejný název. Server nelze spustit.
Error: (10/25/2021 09:09:52 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-AFCSSV23)
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================Event[0]
Date: 2021-10-29 19:26:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {9C297418-E446-45F9-925F-759DFDCE4CDF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Event[1]
Date: 2021-10-28 08:26:51
Description:
N/A
CodeIntegrity:
===============
Date: 2021-10-26 06:21:46
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume3\Program Files\Google\Drive File Stream\52.0.6.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: AMI F.12 12/21/2020
Motherboard: HP 86D4
Processor: AMD Ryzen 5 3550H with Radeon Vega Mobile Gfx
Percentage of memory in use: 42%
Total physical RAM: 14213.14 MB
Available physical RAM: 8138.2 MB
Total Virtual: 17413.14 MB
Available Virtual: 7041.17 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:476.08 GB) (Free:331.82 GB) NTFS
\\?\Volume{60399fc6-b5cc-40c7-9724-2ead35b90910}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{b6163c22-e199-4cd6-8c7a-be6637a8ba63}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 52F19EB3)
Partition: GPT.
==================== End of Addition.txt =======================
