Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu. Díky

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Krtimir
Návštěvník
Návštěvník
Příspěvky: 41
Registrován: 11 úno 2009 22:47

Prosím o kontrolu. Díky

#1 Příspěvek od Krtimir »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-01-2023
Ran by Krtek (administrator) on KRTEK-PC (MSI MS-7693) (14-01-2023 09:50:46)
Running from C:\Users\Krtek\Downloads
Loaded Profiles: Krtek
Platform: Microsoft Windows 10 Pro Version 1909 18363.418 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Pub\PubPlatform.exe
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Logitech Gaming Software\LCore.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(explorer.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(explorer.exe ->) (Globalhop Ltd TOO -> ) C:\Users\Krtek\AppData\Local\Programs\Taskbar system\TaskbarSystem.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\68.0.2.0\crashpad_handler.exe <2>
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\68.0.2.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (GoPro) [File not signed] C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe
(explorer.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(explorer.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <7>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.152\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Company) C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe
(PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(services.exe ->) (CyberLink Corp. -> CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(services.exe ->) (GoPro Media, Inc. -> ) C:\Program Files\GoPro\Fusion Studio 1.3\GoProFusionDeviceDetection.exe
(services.exe ->) (Hewlett-Packard Company -> HP) C:\Windows\System32\HPSIsvc.exe
(services.exe ->) (HP) [File not signed] C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(services.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(services.exe ->) (Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(services.exe ->) (Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(services.exe ->) (SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (IObit CO., LTD -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(svchost.exe ->) (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [215960 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11102832 2022-08-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\" (No File)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [38916432 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [365160 2020-02-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [EPSDNMON] => C:\Program Files (x86)\EPSON Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\68.0.2.0\GoogleDriveFS.exe [50728728 2022-12-07] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [5348480 2022-05-06] (IObit CO., LTD -> IObit)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [Taskbar system] => C:\Users\Krtek\AppData\Local\Programs\Taskbar system\TaskbarSystem.exe [918040 2021-01-13] (Globalhop Ltd TOO -> ) <==== ATTENTION
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [MicrosoftEdgeAutoLaunch_1CF499D7F7782BB7BA69192466541294] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4188576 2023-01-11] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 21.220.1024.0005\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\amd64" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 21.220.1024.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\21.220.1024.0005" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 22.248.1127.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\22.248.1127.0001" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKLM\...\Windows x64\Print Processors\HP1100PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1100PP.DLL [74240 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Advanced TCP/IP Port Monitor: C:\Windows\system32\mvtcpmon.dll [541184 2009-06-25] (Marvell Semiconductor, Inc.) [File not signed]
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP280 series: C:\Windows\system32\CNMLMAA.DLL [385024 2012-03-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP280 series XPS: C:\Windows\system32\CNMXLMAA.DLL [385024 2012-03-14] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\HP1100LM: C:\Windows\system32\HP1100LM.DLL [288768 2012-08-31] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\109.0.5414.74\Installer\chrmstp.exe [2023-01-13] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CineForm Status.lnk [2018-04-10]
ShortcutTarget: CineForm Status.lnk -> C:\Program Files (x86)\CineForm\Tools\GoProCineFormStatusViewer.exe (GoPro) [File not signed]
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04E82494-5C1A-43E2-B40A-BBF5B8B1D331} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-11] (Google Inc -> Google Inc.)
Task: {07E40F00-DB05-49E6-9EE8-1A4481ECD271} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [469952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files (x86)\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {08363B75-3C63-4183-9D22-5C6ADD8CEA31} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {0AF9458D-86D8-427F-A2A0-0A9E81A972C9} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {13CD406E-FB1E-49C9-BA3D-9D6F4C65E4A9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-11] (Google Inc -> Google Inc.)
Task: {1D1E4968-EC1E-4F9A-A21C-7EA98174D013} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {205856F4-7856-4A8A-930D-7ABD7B0649D1} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {241E7E2C-56E5-40F1-8E43-8AB5B85249BE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {281F2934-3879-41F4-9AF1-17984C392119} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4954008 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
Task: {2857A256-2AA9-48E4-85C0-AF8F3BC883A9} - System32\Tasks\Opera scheduled Autoupdate 1665937226 => C:\Users\Krtek\AppData\Local\Programs\Opera\launcher.exe [2607560 2022-12-20] (Opera Norway AS -> Opera Software)
Task: {289A25D6-A58B-462D-BB87-0EDCCD3059A7} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {294D45D6-0AE8-445C-95A0-C17A485E2538} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [976832 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2AE599B0-925A-4DE4-8394-184C77B138A2} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\Driver Booster\Scheduler.exe [149776 2018-12-28] (IObit Information Technology -> IObit)
Task: {2F3ACA52-0330-409C-91F1-957D6E221850} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {390EA5F9-3A0B-4EE3-BEDD-231FCC0DAF2D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {3C876A08-DC45-485F-A0CC-36CF580A3A4D} - System32\Tasks\CCleanerSkipUAC - Krtek => C:\Program Files\CCleaner\CCleaner.exe [32602448 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {4164F06B-A85C-4B12-94C5-33032E5A78A2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /PBDADiscovery (No File)
Task: {42F99A7E-170C-4F09-BD56-C7A2BB1F44C4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {45C308F2-5B75-47B2-81FF-88A0D6CC9407} - System32\Tasks\EPSON Perfection V19 Update => C:\Program Files (x86)\epson\escndv\update\e_dtsksd.exe [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
Task: {46852531-6C81-4165-BA79-2A9753C53847} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {48109E3F-91DB-4478-AD55-50AE8CAB5E71} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {4F9BDF50-66E0-40B7-81E4-C15FC3B57B7A} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [File not signed]
Task: {52B903BC-5555-4270-8D41-A436D2CD6777} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {573FCE9D-8574-4737-8C4E-4867EF0F2837} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (No File)
Task: {5764C0E0-2CCF-4989-A146-FD6E18D82DD8} - System32\Tasks\{DF0DE1F5-7E1E-4259-ADE0-598EB9F50B7E} => C:\Windows\system32\pcalua.exe -a C:\Users\Krtek\Downloads\KiesSetup.exe -d C:\Users\Krtek\Downloads
Task: {58014695-BFB2-4C57-BE69-B4B67003107F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5D34930F-9B8F-41C4-84E2-28FF5A385CBD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1552376 2022-09-26] (Adobe Inc. -> Adobe Inc.)
Task: {64B73BA6-6DAE-4DC3-A706-D2BEF159EDED} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2069952 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {658239F1-DEF9-4A51-BE77-04AF2FB6DA18} - \Microsoft\Windows\Setup\EOSNotify -> No File <==== ATTENTION
Task: {6C623AA2-1A0D-43FC-A4CB-2AFF0565B34C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {6FDB325C-D9E3-4BB7-9797-312732E4CCF5} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [334848 2019-07-13] (Microsoft Corporation) [File not signed]
Task: {7951E674-B6F1-4655-B5CD-44FB81590616} - System32\Tasks\ASC_SkipUac_Krtek => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [10951808 2022-05-12] (IObit CO., LTD -> IObit)
Task: {7BBA0FC1-B292-452F-864F-EC5F044FC0F6} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4669264 2022-12-09] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "0781ab7e-bc94-4228-81eb-d05d5776d1ac" --version "6.07.10191" --silent
Task: {81418FC4-4635-4141-A9E1-F8442AE5151D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2250576 2022-05-24] (Avast Software s.r.o. -> Avast Software)
Task: {883DD2B4-34A8-406E-A3C4-3E0BD167D46B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0) (No File)
Task: {89BA2692-3248-476B-B2BC-15F42D6ECA9A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (No File)
Task: {8E1E4E80-A6E1-4275-A7DB-3F0CFC11065A} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [5467264 2022-05-12] (IObit CO., LTD -> IObit)
Task: {911EA493-0412-4E09-8B8D-10F098BD0A93} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {986E3AF0-FB45-4424-9286-C8E5CBFF074F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {A36A1A3C-CC31-432F-8938-69DEC8267E60} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (No File)
Task: {A439BA6D-4C34-4303-AC4F-4E1E1799BCA9} - System32\Tasks\Driver Booster SkipUAC (Krtek) => C:\Program Files (x86)\IObit\Driver Booster\Driver Booster\DriverBooster.exe [7416592 2019-01-24] (IObit Information Technology -> IObit) [File not signed]
Task: {A666148D-3CA9-489B-AE0A-557E9B802242} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [662464 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A66D7C01-B57A-41C3-BB89-54B6094D5926} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {ABA19A95-08B6-46D8-A281-E4742B765145} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2022-12-09] (Piriform Software Ltd -> Piriform)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {B45D4A96-23F6-4BB1-9BF0-096EEFB41250} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
Task: {B6E53EE5-506F-4D8C-82F3-945EAAB53563} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {B8CC594E-FC71-4A77-906E-CBFE30B5C9CF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {BB65AD9E-C620-4A38-A45B-6E5455752038} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [757184 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BEBD96B4-7FEE-4B63-B37B-8148A37C60F4} - \Microsoft\Windows\Setup\EOSNotify2 -> No File <==== ATTENTION
Task: {D060C8C1-C473-43F9-8F77-FF15F62620BC} - System32\Tasks\{6798C9B9-5F7D-4165-98DF-48F81591E91F} => C:\Windows\system32\pcalua.exe -a I:\Soubor-Mystwood.Manor_503045\Setup_201.exe -d I:\Soubor-Mystwood.Manor_503045
Task: {E6E585F3-2302-4769-B5C5-AF9C84A7B62E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {E79520FC-FC2A-4D1D-979D-75C3273847EB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {EC21A160-0193-47ED-B06D-53AB887F0608} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (No File)
Task: {EE88F3BB-784D-4013-9F62-61D9CA621D05} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {F0A35B32-670C-4B2C-AFC1-A6133AB902B1} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\Advanced SystemCare\sump.exe /sup2 (No File)
Task: {F44F7859-A34D-4D65-91D9-7CF470E963A0} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [510912 2018-03-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F8D7822D-CC1A-40D2-9A4E-8AAE31C68631} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {F9477B4B-82C9-4B11-AF7D-3B93C55DD43A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (No File)
Task: {FFEC99B9-207D-4502-859D-F7890DA54EAC} - System32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F} => C:\Windows\system32\pcalua.exe -a C:\Users\Krtek\Downloads\irfanview_lang_czech.exe -d C:\Users\Krtek\Downloads

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\EPSON Perfection V19 Update.job => C:\Program Files (x86)\epson\escndv\update\e_dtsksd.exe7/EXE_S:EPSON Perfection V19,ES010C.DAT /F:UpdateKrtekĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{45999B2E-EB4C-4D16-95E9-5EF7FE832B1C}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{F249FF78-3AB7-4D0F-BB7F-04D0A140707A}: [DhcpNameServer] 62.129.50.20 62.129.32.100

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Krtek\AppData\Local\Microsoft\Edge\User Data\Default [2023-01-14]
Edge HomePage: Default -> hxxp://www.seznam.cz/

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: (SmartPrintButton) - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2011-01-26] [Legacy] [not signed]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.14 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.16 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-06-18] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2022-12-24] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Krtek\AppData\Local\Google\Chrome\User Data\Default [2023-01-14]
CHR Notifications: Default -> hxxps://calendar.google.com; hxxps://mail.google.com; hxxps://web.whatsapp.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://kkliptakov.websnadno.cz/"
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Krtek\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2022-12-23]
CHR Extension: (Dokumenty Google offline) - C:\Users\Krtek\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-11-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Krtek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Profile: C:\Users\Krtek\AppData\Local\Google\Chrome\User Data\System Profile [2023-01-12]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]

Opera:
=======
OPR Profile: C:\Users\Krtek\AppData\Roaming\Opera Software\Opera Stable [2023-01-14]
OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=o ... utEncoding}
OPR Extension: (Rich Hints Agent) - C:\Users\Krtek\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2022-10-16]
OPR Extension: (Amazon Assistant Promotion) - C:\Users\Krtek\AppData\Roaming\Opera Software\Opera Stable\Extensions\kbmoiomgmchbpihhdpabemajcbjpcijk [2022-10-16]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2022-09-26] (Adobe Inc. -> Adobe Inc.)
R2 AdvancedSystemCareService15; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1300096 2022-04-20] (IObit CO., LTD -> IObit)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-08-06] (Advanced Micro Devices, Inc.) [File not signed]
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8553880 2022-12-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [597400 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [597400 2022-12-12] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-26] (Avast Software s.r.o. -> AVAST Software)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4506728 2020-02-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-16] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
R2 GoProFusionDeviceDetectionService; C:\Program Files\GoPro\Fusion Studio 1.3\GoProFusionDeviceDetection.exe [41872 2018-09-11] (GoPro Media, Inc. -> )
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [File not signed]
R2 HPSIService; C:\Windows\system32\HPSIsvc.exe [126880 2012-09-27] (Hewlett-Packard Company -> HP)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2015-09-23] (CyberLink Corp. -> CyberLink)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [16187368 2022-05-11] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [47904 2022-03-23] (IObit CO., LTD -> IObit)
R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [46552 2021-07-07] (IObit CO., LTD -> IObit)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [31424 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229208 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [391272 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297832 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [95960 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [25576 2023-01-12] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39648 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [267888 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [555560 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
S3 aswNetNd6; C:\WINDOWS\system32\DRIVERS\aswNetNd6.sys [38152 2020-04-14] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [105248 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [80376 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [852000 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [695496 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [212632 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [318456 2022-12-12] (Microsoft Windows Hardware Compatibility Publisher -> AVAST Software)
R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bflwfx64.sys [143928 2015-09-16] (Rivet Networks LLC -> Rivet Networks, LLC.)
R1 CLMirrorDriver; C:\WINDOWS\System32\drivers\CLMirrorDriver.sys [21264 2016-08-26] (CyberLink Corp. -> CyberLink)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2023-01-14] (CPUID S.A.R.L.U. -> CPUID)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-02-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-02-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [386632 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-02-21] (Martin Malik - REALiX -> REALiX(tm))
R3 iobit_monitor_server2021; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win7_x64.sys [15280 2021-08-11] (IObit CO., LTD -> IObit)
S3 Ke2200; C:\WINDOWS\System32\DRIVERS\e22w7x64.sys [125488 2015-03-18] (Rivet Networks LLC -> Qualcomm Atheros, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2012-09-26] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
R3 NVHDA; C:\WINDOWS\system32\drivers\nvhda64v.sys [129960 2021-09-08] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48552 2022-08-15] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-01-14 09:49 - 2023-01-14 09:50 - 000059820 _____ C:\Users\Krtek\Downloads\Addition.txt
2023-01-14 09:46 - 2023-01-14 09:51 - 000037846 _____ C:\Users\Krtek\Downloads\FRST.txt
2023-01-14 09:46 - 2023-01-14 09:51 - 000000000 ____D C:\FRST
2023-01-14 09:45 - 2023-01-14 09:45 - 002376704 _____ (Farbar) C:\Users\Krtek\Downloads\FRST64.exe
2023-01-14 09:24 - 2023-01-14 09:24 - 000000000 ____D C:\Program Files\UNP
2023-01-12 21:23 - 2023-01-12 21:23 - 000000000 ____D C:\Users\Krtek\AppData\Local\OneDrive
2023-01-12 21:17 - 2023-01-12 21:17 - 000000000 ____D C:\Users\Krtek\AppData\Local\Comms
2023-01-12 21:16 - 2023-01-12 21:17 - 000000000 ____D C:\ProgramData\Packages
2023-01-12 21:05 - 2023-01-12 21:10 - 000000000 ____D C:\Users\Krtek\AppData\Local\D3DSCache
2023-01-12 21:04 - 2023-01-14 09:32 - 000000000 ___RD C:\Users\Krtek\OneDrive
2023-01-12 21:04 - 2023-01-13 13:52 - 000003576 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1665937226
2023-01-12 21:04 - 2023-01-12 21:04 - 000001447 _____ C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2023-01-12 21:04 - 2023-01-12 21:04 - 000000000 ____D C:\Users\Krtek\AppData\Local\PlaceholderTileLogoFolder
2023-01-12 21:03 - 2023-01-12 21:03 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2023-01-12 20:59 - 2023-01-12 21:17 - 000000000 ____D C:\Users\Krtek\AppData\Local\Packages
2023-01-12 20:59 - 2023-01-12 20:59 - 000000020 ___SH C:\Users\Krtek\ntuser.ini
2023-01-12 20:59 - 2023-01-12 20:59 - 000000000 __RHD C:\Users\Public\AccountPictures
2023-01-12 20:59 - 2023-01-12 20:59 - 000000000 ___RD C:\Users\Krtek\3D Objects
2023-01-12 20:59 - 2023-01-12 20:59 - 000000000 ____D C:\Users\Krtek\AppData\Local\Publishers
2023-01-12 20:59 - 2023-01-12 20:59 - 000000000 ____D C:\Users\Krtek\AppData\Local\ConnectedDevicesPlatform
2023-01-12 20:58 - 2023-01-14 09:25 - 000002952 _____ C:\WINDOWS\system32\Tasks\Driver Booster SkipUAC (Krtek)
2023-01-12 20:58 - 2023-01-14 09:20 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-01-12 20:58 - 2023-01-13 13:52 - 000003580 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2023-01-12 20:58 - 2023-01-13 13:52 - 000003508 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-01-12 20:58 - 2023-01-13 13:52 - 000003428 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2023-01-12 20:58 - 2023-01-13 13:52 - 000003352 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2023-01-12 20:58 - 2023-01-13 13:52 - 000003200 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2023-01-12 20:58 - 2023-01-13 13:52 - 000003080 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2023-01-12 20:58 - 2023-01-13 13:52 - 000003034 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2023-01-12 20:58 - 2023-01-13 13:52 - 000002768 _____ C:\WINDOWS\system32\Tasks\Sump Task (One-Time)
2023-01-12 20:58 - 2023-01-13 13:52 - 000002680 _____ C:\WINDOWS\system32\Tasks\ASC_PerformanceMonitor
2023-01-12 20:58 - 2023-01-13 13:52 - 000002614 _____ C:\WINDOWS\system32\Tasks\Driver Booster Scheduler
2023-01-12 20:58 - 2023-01-13 13:52 - 000002580 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Krtek
2023-01-12 20:58 - 2023-01-13 13:52 - 000002312 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - Krtek
2023-01-12 20:58 - 2023-01-13 13:52 - 000002306 _____ C:\WINDOWS\system32\Tasks\{6798C9B9-5F7D-4165-98DF-48F81591E91F}
2023-01-12 20:58 - 2023-01-13 13:46 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2023-01-12 20:58 - 2023-01-13 13:22 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2023-01-12 20:58 - 2023-01-12 20:58 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2023-01-12 20:58 - 2023-01-12 20:58 - 000007623 _____ C:\WINDOWS\diagerr.xml
2023-01-12 20:58 - 2023-01-12 20:58 - 000004260 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000004090 _____ C:\WINDOWS\system32\Tasks\EPSON Perfection V19 Update
2023-01-12 20:58 - 2023-01-12 20:58 - 000004084 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{D9281D7A-6E6F-446E-BD61-D38BC8285F89}
2023-01-12 20:58 - 2023-01-12 20:58 - 000004036 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003928 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003912 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003852 _____ C:\WINDOWS\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003852 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003844 _____ C:\WINDOWS\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003608 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003534 _____ C:\WINDOWS\system32\Tasks\Apple Diagnostics
2023-01-12 20:58 - 2023-01-12 20:58 - 000003304 _____ C:\WINDOWS\system32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F}
2023-01-12 20:58 - 2023-01-12 20:58 - 000003282 _____ C:\WINDOWS\system32\Tasks\{DF0DE1F5-7E1E-4259-ADE0-598EB9F50B7E}
2023-01-12 20:58 - 2023-01-12 20:58 - 000000000 ____D C:\WINDOWS\system32\Tasks\WPD
2023-01-12 20:58 - 2023-01-12 20:58 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2023-01-12 20:57 - 2023-01-12 20:57 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2023-01-12 20:57 - 2022-12-12 21:23 - 000273816 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2023-01-12 20:54 - 2023-01-12 21:04 - 000000000 ____D C:\Users\Krtek
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Šablony
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Soubory cookie
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Poslední
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Okolní tiskárny
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Okolní síť
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Nabídka Start
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Dokumenty
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\Data aplikací
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2023-01-12 20:54 - 2023-01-12 20:54 - 000000000 _SHDL C:\Users\Krtek\AppData\Local\Data aplikací
2023-01-12 20:53 - 2023-01-14 09:26 - 001885560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-01-12 20:51 - 2023-01-12 20:51 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2023-01-12 20:49 - 2023-01-12 20:56 - 000438880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-01-12 20:49 - 2023-01-12 20:51 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-01-12 20:47 - 2023-01-12 20:58 - 000000000 ____D C:\Windows.old
2023-01-12 20:39 - 2023-01-12 20:39 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2023-01-12 20:39 - 2023-01-12 20:39 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2023-01-12 20:37 - 2023-01-12 20:37 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2023-01-12 20:33 - 2023-01-12 20:47 - 000000000 ____D C:\Program Files (x86)\MSBuild
2023-01-12 20:33 - 2023-01-12 20:33 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2023-01-12 20:33 - 2023-01-12 20:33 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2023-01-12 20:33 - 2023-01-12 20:33 - 000000000 ____D C:\WINDOWS\system32\msmq
2023-01-12 20:33 - 2023-01-12 20:33 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2023-01-12 20:33 - 2023-01-12 20:33 - 000000000 ____D C:\Program Files\Reference Assemblies
2023-01-12 20:33 - 2023-01-12 20:33 - 000000000 ____D C:\Program Files\MSBuild
2023-01-12 20:33 - 2023-01-12 20:33 - 000000000 ____D C:\inetpub
2023-01-12 19:49 - 2023-01-12 21:20 - 000000000 ___DC C:\WINDOWS\Panther
2023-01-12 19:36 - 2023-01-12 20:54 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
2023-01-12 19:36 - 2023-01-12 19:37 - 000000000 ____D C:\Users\Krtek\AppData\Local\Apps\Windows 7 USB DVD Download Tool
2023-01-12 19:36 - 2023-01-12 19:36 - 000002566 _____ C:\Users\Krtek\Desktop\Windows 7 USB DVD Download Tool.lnk
2023-01-09 20:09 - 2023-01-09 20:09 - 997165056 _____ C:\Users\Krtek\Downloads\Win10_1909_Czech_x64.iso
2023-01-04 21:26 - 2023-01-04 21:26 - 000000000 ____D C:\Users\Krtek\AppData\RoamingLocal

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2023-01-14 09:51 - 2018-09-03 07:48 - 000000000 ____D C:\Program Files\CCleaner
2023-01-14 09:47 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-01-14 09:47 - 2018-02-11 18:38 - 000000000 ____D C:\Program Files (x86)\Google
2023-01-14 09:46 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2023-01-14 09:26 - 2019-03-19 12:57 - 000779936 _____ C:\WINDOWS\system32\perfh005.dat
2023-01-14 09:26 - 2019-03-19 12:57 - 000177824 _____ C:\WINDOWS\system32\perfc005.dat
2023-01-14 09:20 - 2022-09-21 07:31 - 000000760 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2023-01-14 09:20 - 2022-06-16 17:25 - 000000000 ____D C:\Program Files\TeamViewer
2023-01-14 09:20 - 2018-04-11 13:45 - 000000000 ____D C:\ProgramData\NVIDIA
2023-01-14 09:20 - 2018-02-11 18:43 - 000000000 ____D C:\ProgramData\AVAST Software
2023-01-13 14:01 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2023-01-13 07:49 - 2018-02-11 18:38 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-01-13 07:49 - 2018-02-11 18:38 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-01-13 07:46 - 2022-09-14 12:25 - 000003446 _____ C:\WINDOWS\SysWOW64\pubfreeware.ini
2023-01-13 07:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2023-01-13 07:05 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-01-13 07:04 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\appcompat
2023-01-12 21:21 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-01-12 21:17 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2023-01-12 21:15 - 2019-03-19 12:59 - 000000000 ____D C:\WINDOWS\OCR
2023-01-12 21:00 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\USOPrivate
2023-01-12 20:59 - 2020-07-01 04:45 - 000002421 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-01-12 20:59 - 2020-07-01 04:45 - 000002259 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-01-12 20:59 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\spool
2023-01-12 20:58 - 2019-03-19 05:52 - 000000000 __RSD C:\WINDOWS\Media
2023-01-12 20:58 - 2019-03-19 05:52 - 000000000 __RHD C:\Users\Public\Libraries
2023-01-12 20:58 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows NT
2023-01-12 20:58 - 2019-03-19 05:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2023-01-12 20:57 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2023-01-12 20:57 - 2018-02-11 18:46 - 000002076 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2023-01-12 20:54 - 2022-10-16 17:20 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Taskbar system
2023-01-12 20:54 - 2022-08-26 17:12 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ascaron Entertainment
2023-01-12 20:54 - 2021-03-03 19:47 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2023-01-12 20:54 - 2021-03-03 17:54 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2023-01-12 20:54 - 2020-09-10 19:14 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2023-01-12 20:54 - 2019-03-16 19:59 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoPro VR Player 3.0
2023-01-12 20:54 - 2019-03-16 19:58 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoPro Fusion Studio 1.3
2023-01-12 20:54 - 2018-03-03 11:48 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2023-01-12 20:53 - 2018-02-11 17:02 - 001796898 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2023-01-12 20:52 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-01-12 20:52 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-01-12 20:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-01-12 20:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Help
2023-01-12 20:51 - 2019-02-21 11:36 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2023-01-12 20:51 - 2018-04-11 13:39 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2023-01-12 20:47 - 2022-12-05 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ekonom
2023-01-12 20:47 - 2022-03-24 18:14 - 000000000 ____D C:\WINDOWS\system32\gf2engine
2023-01-12 20:47 - 2021-05-27 12:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
2023-01-12 20:47 - 2021-04-19 20:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2023-01-12 20:47 - 2021-01-21 13:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winmail Opener
2023-01-12 20:47 - 2020-10-14 14:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2023-01-12 20:47 - 2020-04-21 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGet
2023-01-12 20:47 - 2020-02-19 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\DAEMON Tools Lite
2023-01-12 20:47 - 2019-11-11 13:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Madden NFL 20
2023-01-12 20:47 - 2019-03-19 05:56 - 000000000 ____D C:\WINDOWS\Setup
2023-01-12 20:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2023-01-12 20:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-01-12 20:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2023-01-12 20:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2023-01-12 20:47 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-01-12 20:47 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2023-01-12 20:47 - 2019-03-19 05:49 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2023-01-12 20:47 - 2019-02-21 12:21 - 000000000 ____D C:\WINDOWS\SysWOW64\xlive
2023-01-12 20:47 - 2019-02-21 12:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2023-01-12 20:47 - 2019-02-21 11:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2023-01-12 20:47 - 2019-02-21 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
2023-01-12 20:47 - 2019-02-14 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2023-01-12 20:47 - 2019-01-06 17:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2023-01-12 20:47 - 2018-10-11 12:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2023-01-12 20:47 - 2018-09-03 07:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-01-12 20:47 - 2018-07-11 21:11 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink WaveEditor 2
2023-01-12 20:47 - 2018-04-11 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2023-01-12 20:47 - 2018-04-11 13:45 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2023-01-12 20:47 - 2018-04-10 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2023-01-12 20:47 - 2018-02-11 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2023-01-12 20:47 - 2018-02-11 19:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2023-01-12 20:47 - 2018-02-11 18:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2023-01-12 20:47 - 2018-02-11 18:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
2023-01-12 20:47 - 2018-02-11 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2023-01-12 20:47 - 2018-02-11 18:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2023-01-12 20:47 - 2018-02-11 18:25 - 000000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e
2023-01-12 20:47 - 2010-11-21 10:38 - 000000000 ___RD C:\Users\Public\Recorded TV
2023-01-12 20:47 - 2010-11-21 10:38 - 000000000 ____D C:\WINDOWS\ShellNew
2023-01-12 20:47 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2023-01-12 20:47 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2023-01-12 20:47 - 2009-07-14 04:20 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2023-01-12 20:40 - 2019-06-12 14:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\system32\winrm
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\system32\WCN
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\system32\slmgr
2023-01-12 20:40 - 2019-03-19 12:57 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2023-01-12 20:40 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2023-01-12 20:40 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-01-12 20:40 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\IME
2023-01-12 20:39 - 2022-08-26 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ascaron Entertainment
2023-01-12 20:39 - 2021-05-27 12:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2023-01-12 20:39 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-01-12 20:39 - 2019-03-19 12:59 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-01-12 20:39 - 2019-03-19 05:52 - 000000000 __SHD C:\Program Files\Windows Sidebar
2023-01-12 20:39 - 2019-03-19 05:52 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2023-01-12 20:39 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\schemas
2023-01-12 20:39 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Common Files\System
2023-01-12 20:39 - 2019-02-21 11:36 - 000000000 ____D C:\Program Files\Realtek
2023-01-12 20:39 - 2018-07-11 21:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewBlue
2023-01-12 20:39 - 2018-04-14 10:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2023-01-12 20:39 - 2018-04-10 19:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GoPro
2023-01-12 20:39 - 2018-02-19 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Sports
2023-01-12 20:39 - 2018-02-11 20:08 - 000000000 ____D C:\Program Files (x86)\ATI Technologies
2023-01-12 20:39 - 2018-02-11 18:28 - 000000000 ____D C:\Program Files\HP
2023-01-12 20:39 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games
2023-01-12 20:39 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\DVD Maker
2023-01-12 20:33 - 2019-10-07 03:58 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2023-01-12 20:33 - 2019-10-07 03:58 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2023-01-12 20:33 - 2019-10-07 03:58 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2023-01-12 20:33 - 2019-03-19 06:00 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2023-01-12 20:33 - 2019-03-19 06:00 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2023-01-12 20:33 - 2019-03-19 06:00 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2023-01-12 20:33 - 2019-03-19 06:00 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2023-01-12 20:33 - 2019-03-19 06:00 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2023-01-12 20:33 - 2019-03-19 06:00 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2023-01-12 20:33 - 2019-03-19 05:58 - 001401344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2023-01-12 20:33 - 2019-03-19 05:58 - 000783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2023-01-12 20:33 - 2019-03-19 05:58 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2023-01-12 20:33 - 2019-03-19 05:58 - 000444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2023-01-12 20:33 - 2019-03-19 05:58 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2023-01-12 20:33 - 2019-03-19 05:58 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2023-01-12 20:33 - 2019-03-19 05:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2023-01-12 20:33 - 2019-03-19 05:58 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2023-01-12 20:33 - 2019-03-19 05:58 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2023-01-12 20:33 - 2019-03-19 05:58 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2023-01-12 20:33 - 2019-03-19 05:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2023-01-12 20:33 - 2019-03-19 05:58 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2023-01-12 20:33 - 2019-03-19 05:58 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2023-01-12 20:33 - 2019-03-19 05:58 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2023-01-12 20:33 - 2019-03-19 05:58 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2023-01-12 20:33 - 2019-03-19 05:58 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2023-01-12 20:33 - 2019-03-19 05:57 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2023-01-12 20:33 - 2019-03-19 05:57 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2023-01-12 20:33 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2023-01-12 20:33 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2023-01-12 20:33 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\MUI
2023-01-12 20:33 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2023-01-12 20:23 - 2009-07-14 05:45 - 000026272 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2023-01-12 20:23 - 2009-07-14 05:45 - 000026272 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2023-01-12 20:22 - 2018-02-11 16:44 - 000008192 __RSH C:\BOOTSECT.BAK
2023-01-12 20:20 - 2018-10-11 17:50 - 000000001 ___SH C:\BOOTNXT
2023-01-12 20:20 - 2018-02-13 15:58 - 000410822 __RSH C:\bootmgr
2023-01-12 18:36 - 2022-10-12 06:28 - 000002059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2023-01-12 18:23 - 2019-02-14 15:30 - 000000000 ____D C:\ProgramData\ProductData
2023-01-12 18:23 - 2019-02-14 15:30 - 000000000 ____D C:\ProgramData\IObit
2023-01-11 09:53 - 2018-02-16 09:09 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-01-11 09:48 - 2018-02-16 09:08 - 150199536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-01-05 09:09 - 2018-02-11 18:25 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2023-01-04 22:10 - 2018-02-11 18:53 - 000000000 ____D C:\Users\Krtek\AppData\Roaming\vlc
2023-01-04 21:26 - 2019-10-06 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2023-01-04 21:22 - 2018-04-14 11:00 - 000000000 ____D C:\Users\Krtek\AppData\Local\CrashDumps

==================== Files in the root of some directories ========

2020-08-18 20:55 - 2020-09-10 18:38 - 000000142 _____ () C:\Users\Krtek\AppData\Roaming\default.rss
2018-11-22 15:12 - 2019-02-07 18:02 - 000007680 _____ () C:\Users\Krtek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-01-07 18:19 - 2020-03-02 15:51 - 000007606 _____ () C:\Users\Krtek\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-01-2023
Ran by Krtek (14-01-2023 09:52:44)
Running from C:\Users\Krtek\Downloads
Microsoft Windows 10 Pro Version 1909 18363.418 (X64) (2023-01-12 19:58:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1463130148-1684907626-1554915639-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1463130148-1684907626-1554915639-503 - Limited - Disabled)
Guest (S-1-5-21-1463130148-1684907626-1554915639-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1463130148-1684907626-1554915639-1003 - Limited - Enabled)
Krtek (S-1-5-21-1463130148-1684907626-1554915639-1000 - Administrator - Enabled) => C:\Users\Krtek
WDAGUtilityAccount (S-1-5-21-1463130148-1684907626-1554915639-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}_ENTERPRISE_{0B7A4B67-2A38-42B1-9857-662FAB361E08}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}_ENTERPRISE_{FDF9A959-241A-4662-A8DE-7DED9C22D160}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-002A-0405-1000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}_ENTERPRISE_{A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}_ENTERPRISE_{3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}) (Version: - Microsoft) Hidden
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 22.003.20310 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.)
Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 15.4.0 - IObit)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
AMD APP SDK Runtime (HKLM\...\{503F672D-6C84-448A-8F8F-4BC35AC83441}) (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{120EC191-78F8-CA89-3511-7E90C23F5261}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 22.12.6044 - Avast Software)
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.07 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
CyberLink PowerDirector 15 (HKLM-x32\...\{FA285575-B543-4E6E-A573-A4F534AC9965}) (Version: 15.0.2026.0 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 5620 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.12.0.1152 - Disc Soft Ltd)
DolbyFiles (HKLM-x32\...\{b1adf008-e898-4fe2-8a1f-690d9a06acaf}) (Version: 0.1 - Nero AG) Hidden
Driver Booster (HKLM-x32\...\{C70A1F4B-5904-4E44-B63E-4F2110672DC0}) (Version: 1.0.0 - IObit)
Easy Photo Scan (HKLM-x32\...\{99364024-626C-4BE1-89C8-2F207023497B}) (Version: 1.00.0018 - Seiko Epson Corporation)
EKONOM - účetní a evidenční systém (HKLM-x32\...\{4FB8974E-27C1-4A1C-AAF8-D59B81E5291D}) (Version: 1.00.0000 - Elisoft, s.r.o.)
Epson Copy Utility 4 (HKLM-x32\...\{06A7E8AB-2856-4490-BAA9-F338ABE7695A}) (Version: 4.01.0001 - Seiko Epson Corporation)
Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation)
FormatFactory 5.4.5.0 (HKLM-x32\...\FormatFactory) (Version: 5.4.5.0 - Free Time)
GeoGet verze 2.11.12.825 (HKLM-x32\...\GeoGet_is1) (Version: 2.11.12.825 - )
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 68.0.2.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.74 - Google LLC)
GoPro Fusion Studio 1.3 (HKLM\...\Fusion Studio 1.3) (Version: V1.3.0 - GoPro)
GoPro Studio 2.0.0 (HKLM-x32\...\GoPro Studio) (Version: 2.0.0 - WoodmanLabs Inc. d.b.a. GoPro)
GoPro VR Player 3.0 (HKLM\...\GoPro VR Player 3.0) (Version: V3.0.5 - GoPro)
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
IrfanView 64 (remove only) (HKLM\...\IrfanView64) (Version: 4.41 - Irfan Skiljan)
Killer Bandwidth Control Filter Driver (HKLM\...\{24BA7D32-B740-47A3-BE0E-2F4863A05D13}) (Version: 1.1.56.1120 - Rivet Networks) Hidden
Killer E220x Drivers (HKLM\...\{921ABFC0-9681-487D-9379-89C1712EFEBF}) (Version: 1.1.56.1120 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.56.1120 - Rivet Networks)
Logitech Gaming Software (HKLM-x32\...\{B9242864-2841-4ADE-86E0-8F90F91B04DD}) (Version: 4.40 - )
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Madden NFL 08 (HKLM-x32\...\{A3BC1DBD-64D6-4EBC-0091-24C811662D40}) (Version: - Electronic Arts)
Madden NFL 20 (HKLM-x32\...\Madden NFL 20_is1) (Version: - )
Microsoft .NET Framework 4.8 (CSY) (HKLM\...\{39DC4515-B8C1-3AD9-AA88-D7C8A333612F}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.8 (HKLM\...\{16735AF7-1D8D-3681-94A5-C578A61EC832}) (Version: 4.8.03761 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.49 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.52 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40660 (HKLM\...\{5740BD44-B58D-321A-AFC0-6D3D4556DD6C}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40660 (HKLM\...\{CB0836EC-B072-368D-82B2-D3470BF95707}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40660 (HKLM-x32\...\{7DAD0258-515C-3DD4-8964-BD714199E0F7}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40660 (HKLM-x32\...\{E30D8B21-D82D-3211-82CC-0F0A5D1495E8}) (Version: 12.0.40660 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27027 (HKLM-x32\...\{39e28474-b67b-4209-af1b-e9ad0a83d8ca}) (Version: 14.16.27027.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.10.25017 (HKLM\...\{E512788E-C50B-3858-A4B9-73AD5F3F9E93}) (Version: 14.10.25017 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.10.25017 (HKLM\...\{8D4F7A6D-6B81-3DC8-9C21-6008E4866727}) (Version: 14.10.25017 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 X86 Additional Runtime - 14.16.27024 (HKLM-x32\...\{7258184A-EC44-4B1A-A7D3-68D85A35BFD0}) (Version: 14.16.27024 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 X86 Minimum Runtime - 14.16.27024 (HKLM-x32\...\{5EEFCEFB-E5F7-4C82-99A5-813F04AA4FBD}) (Version: 14.16.27024 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM-x32\...\{869bd776-92a6-4549-a68e-22cb936d987b}) (Version: - Nero AG)
Nero BurnRights (HKLM-x32\...\{7829db6f-a066-4e40-8912-cb07887c20bb}) (Version: 3.4.10.100 - Nero AG) Hidden
Nero BurnRights Help (HKLM-x32\...\{f6bdd7c5-89ed-4569-9318-469aa9732572}) (Version: 3.4.4.100 - Nero AG) Hidden
Nero ControlCenter (HKLM-x32\...\{ABC88553-8770-4B97-B43E-5A90647A5B63}) (Version: 11.4.2006 - Nero AG) Hidden
Nero ControlCenter (HKLM-x32\...\{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}) (Version: 9.0.0.1 - Nero AG) Hidden
Nero ControlCenter (HKLM-x32\...\{f4041dce-3fe1-4e18-8a9e-9de65231ee36}) (Version: 9.0.0.1 - Nero AG) Hidden
Nero Core (HKLM-x32\...\{EF1C9DB5-D928-4F38-89DE-B1BB8911462E}) (Version: 1.0.01700 - Nero AG)
Nero Core Components (HKLM-x32\...\{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}) (Version: 11.7.3045 - Nero AG) Hidden
Nero CoverDesigner (HKLM-x32\...\{62ac81f6-bdd3-4110-9d36-3e9eaab40999}) (Version: 4.4.9.203 - Nero AG) Hidden
Nero CoverDesigner Help (HKLM-x32\...\{ce96f5a5-584d-4f8f-aa3e-9baed413db72}) (Version: 4.4.9.100 - Nero AG) Hidden
Nero Disc Copy Gadget (HKLM-x32\...\{f1861f30-3419-44db-b2a1-c274825698b3}) (Version: 2.4.22.0 - Nero AG) Hidden
Nero Disc Copy Gadget Help (HKLM-x32\...\{60c731fb-c951-41ce-ad41-8e54c8594609}) (Version: 2.4.22.0 - Nero AG) Hidden
Nero DiscSpeed (HKLM-x32\...\{869200db-287a-4dc0-b02b-2b6787fbcd4c}) (Version: 5.4.12.100 - Nero AG) Hidden
Nero DiscSpeed Help (HKLM-x32\...\{cc019e3f-59d2-4486-8d4b-878105b62a71}) (Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (HKLM-x32\...\{33cf58f5-48d8-4575-83d6-96f574e4d83a}) (Version: 4.4.10.100 - Nero AG) Hidden
Nero DriveSpeed Help (HKLM-x32\...\{e5c7d048-f9b4-4219-b323-8bdb01a2563d}) (Version: 4.4.4.100 - Nero AG) Hidden
Nero Express Help (HKLM-x32\...\{83202942-84b3-4c50-8622-b8c0aa2d2885}) (Version: 9.4.14.100 - Nero AG) Hidden
Nero InfoTool (HKLM-x32\...\{fbcdfd61-7dcf-4e71-9226-873ba0053139}) (Version: 6.4.10.100 - Nero AG) Hidden
Nero InfoTool Help (HKLM-x32\...\{20400dbd-e6db-45b8-9b6b-1dd7033818ec}) (Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (HKLM-x32\...\{e8a80433-302b-4ff1-815d-fcc8eac482ff}) (Version: 4.4.9.0 - Nero AG) Hidden
Nero KnowHow PLUS (HKLM-x32\...\{AACDE618-4162-4074-B01D-67C5E8D07233}) (Version: 1.3.5005 - Nero AG) Hidden
Nero Launcher (HKLM-x32\...\{7BC834B5-9093-4A6D-8303-01760E4E61B2}) (Version: 20.1.1020 - Nero AG) Hidden
Nero Online Upgrade (HKLM-x32\...\{dba84796-8503-4ff0-af57-1747dd9a166d}) (Version: 1.3.0.0 - Nero AG) Hidden
Nero PhotoSnap (HKLM-x32\...\{9e82b934-9a25-445b-b8df-8012808074ac}) (Version: 1.53.2.0 - Nero AG) Hidden
Nero PhotoSnap Help (HKLM-x32\...\{1c00c7c5-e615-4139-b817-7f4003de68c0}) (Version: 1.53.2.0 - Nero AG) Hidden
Nero Recode (HKLM-x32\...\{359cfc0a-beb1-440d-95ba-cf63a86da34f}) (Version: 4.4.22.54 - Nero AG) Hidden
Nero Recode Help (HKLM-x32\...\{ad6bc5cc-2ef0-49c4-b33d-cdc8b2c4dc80}) (Version: 4.4.22.0 - Nero AG) Hidden
Nero ShowTime (HKLM-x32\...\{02627ee5-eaca-4742-a9cc-e687631773e4}) (Version: 5.4.0.100 - Nero AG) Hidden
Nero ShowTime (HKLM-x32\...\{d9dcf92e-72eb-412d-ac71-3b01276e5f8b}) (Version: 5.4.13.202 - Nero AG) Hidden
Nero StartSmart (HKLM-x32\...\{7748ac8c-18e3-43bb-959b-088faea16fb2}) (Version: 9.4.11.210 - Nero AG) Hidden
Nero StartSmart Help (HKLM-x32\...\{2348b586-c9ae-46ce-936c-a68e9426e214}) (Version: 9.4.11.100 - Nero AG) Hidden
Nero StartSmart OEM (HKLM-x32\...\{4D43D635-6FDA-4fa5-AA9B-23CF73D058EA}) (Version: 9.4.10.100 - Nero AG) Hidden
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 20.0.1006 - Nero AG) Hidden
Nero Vision (HKLM-x32\...\{43e39830-1826-415d-8bae-86845787b54b}) (Version: 6.4.10.205 - Nero AG) Hidden
Nero Vision Help (HKLM-x32\...\{5d9be3c1-8ba4-4e7e-82fd-9f74fa6815d1}) (Version: 6.4.8.100 - Nero AG) Hidden
NeroExpress (HKLM-x32\...\{595a3116-40bb-4e0f-a2e8-d7951da56270}) (Version: 9.4.10.506 - Nero AG) Hidden
neroxml (HKLM-x32\...\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}) (Version: 1.0.0 - Nero AG) Hidden
NewBlue Titler Pro for Windows (HKLM-x32\...\NewBlue Titler Pro for Windows) (Version: 1.5 - NewBlue)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VI for Windows (HKLM-x32\...\NewBlue Video Essentials VI for Windows) (Version: 3.0 - NewBlue)
NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Opera Stable 94.0.4606.38 (HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Opera 94.0.4606.38) (Version: 94.0.4606.38 - Opera Software)
Port Royale 2 (HKLM-x32\...\Port Royale 2) (Version: - )
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
Příručky společnosti EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Sound Forge Pro 10.0 (HKLM-x32\...\{B8A817D7-AE0F-42BA-AEB9-B5F1F3EFB7AF}) (Version: 10.0.425 - Sony)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Taskbar system version 1.0.0.2 (HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\{C40E1200-5BEC-410C-B3C5-F7B475729D42}_is1) (Version: 1.0.0.2 - Taskbar system) <==== ATTENTION
TeamViewer (HKLM\...\TeamViewer) (Version: 15.30.3 - TeamViewer)
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012 - GoPro)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Winmail Opener 1.6 (HKLM-x32\...\Winmail Opener) (Version: 1.6 - Eolsoft)
Zoom (HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\ZoomUMX) (Version: 5.5.4 (13142.0301) - Zoom Video Communications, Inc.)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2023-01-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.2.11280.0_x86__8wekyb3d8bbwe [2023-01-12] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.25.20211.0_x64__8wekyb3d8bbwe [2023-01-12] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe [2023-01-12] (Microsoft Corporation) [MS Ad]
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.35.152.0_x64__kzf8qxf38zg5c [2023-01-12] (Skype)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-04-20] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 9\Nero CoverDesigner\CoverEdExtension.dll [2009-07-16] (Nero AG -> Nero AG)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [File not signed]
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-04-20] (IObit CO., LTD -> IObit)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-04-20] (IObit CO., LTD -> IObit)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-02-19] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2022-04-20] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\68.0.2.0\drivefsext.dll [2022-12-07] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2022-12-12] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1_S-1-5-21-1463130148-1684907626-1554915639-1000: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => -> No File

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\system32\CFHD.dll [1443328 2013-09-05] (CineForm Inc.) [File not signed]
HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\system32\prodad-codec.dll [607256 2016-08-26] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\SysWOW64\CFHD.DLL [1474560 2013-09-05] (CineForm Inc.) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) =============

2023-01-12 20:54 - 2023-01-12 20:54 - 008007680 _____ () [File not signed] [File is in use] C:\WINDOWS\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
2012-03-05 16:03 - 2012-03-05 16:03 - 000677376 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-08-06 12:24 - 2012-08-06 12:24 - 000212480 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-02-16 14:53 - 2012-02-16 14:53 - 003642880 _____ () [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2022-10-16 17:20 - 2021-01-13 08:57 - 014318734 _____ () [File not signed] C:\Users\Krtek\AppData\Local\Programs\Taskbar system\sdk.dll
2018-02-11 18:34 - 2012-03-14 05:00 - 000385024 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMLMAA.DLL
2018-02-11 19:09 - 2012-03-14 05:00 - 000385024 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNMXLMAA.DLL
2022-10-16 17:20 - 2020-05-13 23:17 - 000112640 _____ (Countly) [File not signed] [File is in use] C:\Users\Krtek\AppData\Local\Programs\Taskbar system\Countly.dll
2022-10-16 17:20 - 2018-01-10 12:34 - 000024064 _____ (Daniel Grunwald, Omer Mor, Alex Davies, jnm2) [File not signed] [File is in use] C:\Users\Krtek\AppData\Local\Programs\Taskbar system\AsyncBridge.Net35.dll
2009-06-24 10:57 - 2009-06-24 10:57 - 000029696 _____ (HP) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\DebugLogger.dll
2009-06-24 10:57 - 2009-06-24 10:57 - 000032768 _____ (HP) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPHTTPProxy.dll
2009-06-24 10:57 - 2009-06-24 10:57 - 000031744 _____ (HP) [File not signed] [File is in use] C:\Program Files (x86)\HP\HPLaserJetService\HPServiceCommunicator.dll
2009-06-25 09:27 - 2009-06-25 09:27 - 000541184 _____ (Marvell Semiconductor, Inc.) [File not signed] C:\WINDOWS\System32\mvtcpmon.dll
2022-10-16 17:20 - 2018-03-24 16:44 - 000475136 _____ (Newtonsoft) [File not signed] [File is in use] C:\Users\Krtek\AppData\Local\Programs\Taskbar system\Newtonsoft.Json.dll
2009-06-25 09:25 - 2009-06-25 09:25 - 000144896 _____ (OpenSLP) [File not signed] C:\WINDOWS\System32\slp64.dll
2015-12-17 10:11 - 2015-12-17 10:11 - 000132096 _____ (Seiko Epson Corporation) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2009-10-21 16:39 - 2009-10-21 16:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
2022-10-16 17:20 - 2018-05-11 07:52 - 000074240 _____ (Sentry) [File not signed] [File is in use] C:\Users\Krtek\AppData\Local\Programs\Taskbar system\SharpRaven.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:054203E4 [144]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

SearchScopes: HKU\S-1-5-21-1463130148-1684907626-1554915639-1000 -> {C0C3A6C6-03BC-4195-8FCB-AEA091301353} URL = hxxps://search.yahoo.com/yhs/search?hspart=lvs&hsimp=yhs-awc&type=lvs__webcompa__1_0__ya__ch_WCYID10454__180517__yaie&p={searchTerms}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-01-04 15:12 - 000000825 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %CommonProgramFiles%\Microsoft Shared\Windows Live;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\CineForm\Tools;C:\Program Files (x86)\GoPro\Tools;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files (x86)\Common Files\Apple\Internet Services\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

Network Binding:
=============
Připojení k místní síti 2: Killer Bandwidth Control -> BF_NdisLwf (enabled)
Připojení k místní síti 2: Avast Firewall NDIS6 Helper -> aswNetNd6 (enabled)

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{06DEB122-5425-42FB-BF75-20AC9BF2D06E}I:\man_of_the_house-v1.0.2c_extra\man of the house v1.0.2c (extra)\man of the house.exe] => (Allow) I:\man_of_the_house-v1.0.2c_extra\man of the house v1.0.2c (extra)\man of the house.exe () [File not signed]
FirewallRules: [TCP Query User{FEE6B028-820B-475C-8A60-A49EE70E4E91}I:\man_of_the_house-v1.0.2c_extra\man of the house v1.0.2c (extra)\man of the house.exe] => (Allow) I:\man_of_the_house-v1.0.2c_extra\man of the house v1.0.2c (extra)\man of the house.exe () [File not signed]
FirewallRules: [{E429D708-E45F-43C0-9183-9515C4A1BD6B}] => (Allow) C:\Users\Krtek\AppData\Local\Programs\Opera\79.0.4143.22\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{4BB00BCF-5A6A-41E5-8060-3E5B27316972}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5858FD77-F12E-4BDA-A02D-BC7C37D354C0}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{013EEB6B-64EA-4876-97A9-4E5BCD59CC59}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{696192C9-D5D7-48BB-A8F1-990546584D9D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [UDP Query User{E736F10A-6A38-42FC-8EEC-D735BA89DA48}C:\program files (x86)\madden nfl 20\madden20.exe] => (Allow) C:\program files (x86)\madden nfl 20\madden20.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{AADE9FB9-9162-4177-AB62-8A7D658F5E75}C:\program files (x86)\madden nfl 20\madden20.exe] => (Allow) C:\program files (x86)\madden nfl 20\madden20.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{C5634E03-0852-4B1D-BB26-B6B128D25847}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{D545BB77-652E-4A51-B8BB-7DF182260E0C}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software)
FirewallRules: [{BA415A02-8DBF-47D9-B8AD-0C5FF1D80F06}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [{6DB6F076-C816-42C3-A288-C038B4EA2996}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
FirewallRules: [UDP Query User{94B6BBDB-D38A-49BE-8109-EC3FC8EF99A0}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{3B719F42-83A1-4E19-964D-E40A8450C415}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{20B693D3-F247-4B6E-A1A0-7D9111F0BFE1}] => (Allow) C:\Users\Krtek\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3B30AC04-AB10-4C91-97D1-032F03B8A8E7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AA49B767-47B4-416F-A374-B37B5888855E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DB84A8F1-788F-44E0-9A1B-EEB89D19E4CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7F7E7D3B-A38C-4BF7-8819-87382A45F13B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{185D042D-E0F8-4F32-89E5-B3955C46AC91}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{569012BF-2B1B-45EA-9D39-EA06EB813C31}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [{BAC67A90-89D8-4C69-8EDB-B6B231527FD0}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{0EFD35D7-22C8-4B30-A79B-311886158302}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{888BA812-31CE-4FEE-A58F-DA464232674B}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [UDP Query User{836DEEC7-B34D-43B3-B823-CFD8C0AE26D8}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{882B7DA3-7EE3-4610-B13A-64C4F6A6DB1B}C:\windows\syswow64\dplaysvr.exe] => (Block) C:\windows\syswow64\dplaysvr.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{0854F25D-E397-4086-AB55-B42F9567C52E}C:\program files (x86)\madden nfl 20\madden20.exe] => (Allow) C:\program files (x86)\madden nfl 20\madden20.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [TCP Query User{905B3C1F-3939-40BD-BC92-DC292C9AA8AA}C:\program files (x86)\madden nfl 20\madden20.exe] => (Allow) C:\program files (x86)\madden nfl 20\madden20.exe (Electronic Arts Inc.) [File not signed]
FirewallRules: [{AE81521C-0040-471E-9243-CDECD846F5E6}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{168EB5CF-4DE9-42D5-867E-BBEA0FB0F8BF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{62FCC338-233A-416C-96B4-9BF68A46029C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6694827A-8697-4422-8A20-BEF002E0240C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AD30BA0D-4888-4B80-B144-963FF4382778}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\Driver Booster\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{394AC414-0BB8-40B8-AD4D-EFEF460AC4F1}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\Driver Booster\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{893984F9-8A85-4BB0-984D-147BDCD56E9E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\Driver Booster\DriverBooster.exe (IObit Information Technology -> IObit) [File not signed]
FirewallRules: [{0C01C9D3-32F0-42F4-8D74-368848C020FC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\Driver Booster\DriverBooster.exe (IObit Information Technology -> IObit) [File not signed]
FirewallRules: [{DA5D2C3F-C695-40CA-8378-6C2DB48220AA}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{D594440D-15C7-46FA-983A-7DF899558D7F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{19A52D18-A9EF-495D-9DE2-8208B5084F86}] => (Allow) LPort=161
FirewallRules: [{DF1D68E4-0C25-4210-A6D7-402CB84CB0C9}] => (Allow) LPort=427
FirewallRules: [{BA09EFA7-574C-4DDA-B9AD-702467DFA438}] => (Allow) LPort=9100
FirewallRules: [{A8B3A550-FA4F-4CA4-930F-A1445519C697}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe (Hewlett-Packard Company -> HP)
FirewallRules: [{02256AB1-5A61-44BE-95A4-8CA7223441D9}] => (Allow) C:\LJP1100_P1560_P1600_Full_Solution\ProductInst64.exe (Hewlett-Packard Company -> HP)
FirewallRules: [{5616BBD0-2A76-4761-82C9-0AAF2ED0B55B}] => (Allow) C:\Users\Krtek\AppData\Local\Programs\Opera\94.0.4606.38\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{9AAF0AE9-E79E-44B7-8B62-29DB4460AB7E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6352C410-4EB1-41B5-8CCB-D2F7DF4DEE69}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

ATTENTION: System Restore is disabled (Total:223.57 GB) (Free:65.18 GB) (29%)

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/13/2023 02:01:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové razítko: 0x501fefb5
Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové razítko: 0x4f55e10b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000033c1
ID chybujícího procesu: 0xf30
Čas spuštění chybující aplikace: 0x01d9274973bff435
Cesta k chybující aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
Cesta k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
ID zprávy: 7a13753f-f717-4345-ab6f-c2464323c4d4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/13/2023 08:17:45 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (01/13/2023 08:17:45 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (01/13/2023 08:17:45 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (01/13/2023 08:17:45 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (01/13/2023 08:17:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové razítko: 0x501fefb5
Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové razítko: 0x4f55e10b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000033c1
ID chybujícího procesu: 0xe60
Čas spuštění chybující aplikace: 0x01d9271472335655
Cesta k chybující aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
Cesta k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
ID zprávy: 1c736d2b-125b-491a-b4db-0de491daff5d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/12/2023 09:40:41 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Fuel.Service.exe, verze: 1.0.0.0, časové razítko: 0x501fefb5
Název chybujícího modulu: Device.dll, verze: 4.1.0.0, časové razítko: 0x4f55e10b
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000033c1
ID chybujícího procesu: 0xd1c
Čas spuštění chybující aplikace: 0x01d926c3a773cd22
Cesta k chybující aplikaci: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
Cesta k chybujícímu modulu: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
ID zprávy: 2d6d1bcf-99f6-4dd2-a5b3-72400b57bdcf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/12/2023 09:23:28 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Program Files (x86)\Nero\Nero 9\Nero PhotoSnap\PhotoSnapViewer.exe.Manifest se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.418_none_e6c6b287130d565d.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.418_none_2e73e95e27897f63.manifest.


System errors:
=============
Error: (01/14/2023 09:29:17 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba AltruisticsService byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 100 milisekund: Restartovat službu.

Error: (01/13/2023 02:01:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD FUEL Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/13/2023 08:17:36 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD FUEL Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/12/2023 09:40:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD FUEL Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/12/2023 09:21:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMD FUEL Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/12/2023 09:21:02 PM) (Source: DCOM) (EventID: 10010) (User: Krtek-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/12/2023 09:21:01 PM) (Source: DCOM) (EventID: 10010) (User: Krtek-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/12/2023 09:11:12 PM) (Source: DCOM) (EventID: 10000) (User: Krtek-PC)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}


==================== Memory info ===========================

BIOS: American Megatrends Inc. V22.4 12/21/2015
Motherboard: MSI 970 GAMING (MS-7693)
Processor: AMD FX(tm)-6100 Six-Core Processor
Percentage of memory in use: 16%
Total physical RAM: 32716.25 MB
Available physical RAM: 27473.55 MB
Total Virtual: 70604.25 MB
Available Virtual: 64484.57 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.57 GB) (Free:65.18 GB) (Model: CT240BX500SSD1 ATA Device) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Odpadiště) (Fixed) (Total:1397.14 GB) (Free:255.48 GB) (Model: SAMSUNG HD154UI ATA Device) NTFS
Drive f: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) (Model: SAMSUNG HD753LJ ATA Device) NTFS ==>[system with boot components (obtained from drive)]
Drive g: () (Fixed) (Total:372.03 GB) (Free:318.02 GB) (Model: SAMSUNG HD753LJ ATA Device) NTFS
Drive h: (DATA1) (Fixed) (Total:326.51 GB) (Free:61.96 GB) (Model: SAMSUNG HD753LJ ATA Device) NTFS
Drive i: () (Fixed) (Total:232.88 GB) (Free:159.07 GB) (Model: ST3250620AS ATA Device) NTFS
Drive j: () (Removable) (Total:59.47 GB) (Free:47.12 GB) FAT32
Drive l: (REVIZE) (Removable) (Total:7.26 GB) (Free:4.44 GB) FAT32


==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: CF6BE719)
Partition 1: (Active) - (Size=223.6 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: F41E19B5)
Partition 1: (Not Active) - (Size=326.5 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=372 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Size: 1397.3 GB) (Disk ID: ED1A7098)

Partition: GPT.

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 7.3 GB) (Disk ID: BF1152D4)
Partition 1: (Not Active) - (Size=7.3 GB) - (Type=FAT32)

==========================================================
Disk: 5 (Protective MBR) (Size: 59.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118196
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu. Díky

#2 Příspěvek od Rudy »

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [Taskbar system] => C:\Users\Krtek\AppData\Local\Programs\Taskbar system\TaskbarSystem.exe [918040 2021-01-13] (Globalhop Ltd TOO -> ) <==== ATTENTION
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 21.220.1024.0005\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\amd64" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 21.220.1024.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\21.220.1024.0005" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 22.248.1127.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\22.248.1127.0001" (No File)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {08363B75-3C63-4183-9D22-5C6ADD8CEA31} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {13CD406E-FB1E-49C9-BA3D-9D6F4C65E4A9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-11] (Google Inc -> Google Inc.)
Task: {241E7E2C-56E5-40F1-8E43-8AB5B85249BE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {289A25D6-A58B-462D-BB87-0EDCCD3059A7} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {390EA5F9-3A0B-4EE3-BEDD-231FCC0DAF2D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {46852531-6C81-4165-BA79-2A9753C53847} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {48109E3F-91DB-4478-AD55-50AE8CAB5E71} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
Task: {52B903BC-5555-4270-8D41-A436D2CD6777} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {573FCE9D-8574-4737-8C4E-4867EF0F2837} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (No File)
Task: {58014695-BFB2-4C57-BE69-B4B67003107F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {658239F1-DEF9-4A51-BE77-04AF2FB6DA18} - \Microsoft\Windows\Setup\EOSNotify -> No File <==== ATTENTION
Task: {6C623AA2-1A0D-43FC-A4CB-2AFF0565B34C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {89BA2692-3248-476B-B2BC-15F42D6ECA9A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (No File)
Task: {986E3AF0-FB45-4424-9286-C8E5CBFF074F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {A36A1A3C-CC31-432F-8938-69DEC8267E60} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (No File)
Task: {A66D7C01-B57A-41C3-BB89-54B6094D5926} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {B6E53EE5-506F-4D8C-82F3-945EAAB53563} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {B8CC594E-FC71-4A77-906E-CBFE30B5C9CF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {BEBD96B4-7FEE-4B63-B37B-8148A37C60F4} - \Microsoft\Windows\Setup\EOSNotify2 -> No File <==== ATTENTION
Task: {E6E585F3-2302-4769-B5C5-AF9C84A7B62E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {E79520FC-FC2A-4D1D-979D-75C3273847EB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {EC21A160-0193-47ED-B06D-53AB887F0608} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (No File)
Task: {EE88F3BB-784D-4013-9F62-61D9CA621D05} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {F0A35B32-670C-4B2C-AFC1-A6133AB902B1} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\Advanced SystemCare\sump.exe /sup2 (No File)
Task: {F9477B4B-82C9-4B11-AF7D-3B93C55DD43A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (No File)
Task: {FFEC99B9-207D-4502-859D-F7890DA54EAC} - System32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F} => C:\Windows\system32\pcalua.exe -a C:\Users\Krtek\Downloads\irfanview_lang_czech.exe -d C:\Users\Krtek\Downloads
U3 idsvc; no ImagePath
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\Tasks\{6798C9B9-5F7D-4165-98DF-48F81591E91F}
C:\WINDOWS\system32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F}
C:\WINDOWS\system32\Tasks\{DF0DE1F5-7E1E-4259-ADE0-598EB9F50B7E}
C:\Users\Krtek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
AlternateDataStreams: C:\ProgramData\TEMP:054203E4 [144]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)

EmptyTemp:
End
Uložte do C:\Users\Krtek\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Krtimir
Návštěvník
Návštěvník
Příspěvky: 41
Registrován: 11 úno 2009 22:47

Re: Prosím o kontrolu. Díky

#3 Příspěvek od Krtimir »

Fix result of Farbar Recovery Scan Tool (x64) Version: 26-01-2023
Ran by Krtek (01-02-2023 19:20:56) Run:1
Running from C:\Users\Krtek\Downloads
Loaded Profiles: Krtek
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\Run: [Taskbar system] => C:\Users\Krtek\AppData\Local\Programs\Taskbar system\TaskbarSystem.exe [918040 2021-01-13] (Globalhop Ltd TOO -> ) <==== ATTENTION
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 21.220.1024.0005\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\21.220.1024.0005\amd64" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 21.220.1024.0005] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\21.220.1024.0005" (No File)
HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\...\RunOnce: [Uninstall 22.248.1127.0001] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Krtek\AppData\Local\Microsoft\OneDrive\22.248.1127.0001" (No File)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {08363B75-3C63-4183-9D22-5C6ADD8CEA31} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -ObjectStoreRecoveryTask (No File)
Task: {13CD406E-FB1E-49C9-BA3D-9D6F4C65E4A9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-02-11] (Google Inc -> Google Inc.)
Task: {241E7E2C-56E5-40F1-8E43-8AB5B85249BE} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe /DoConfigureInternetTimeService (No File)
Task: {289A25D6-A58B-462D-BB87-0EDCCD3059A7} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe -pscn 0 (No File)
Task: {390EA5F9-3A0B-4EE3-BEDD-231FCC0DAF2D} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0) (No File)
Task: {46852531-6C81-4165-BA79-2A9753C53847} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe /DRMInit (No File)
Task: {48109E3F-91DB-4478-AD55-50AE8CAB5E71} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -SqlLiteRecoveryTask (No File)
Task: {52B903BC-5555-4270-8D41-A436D2CD6777} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery (No File)
Task: {573FCE9D-8574-4737-8C4E-4867EF0F2837} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -PvrRecoveryTask (No File)
Task: {58014695-BFB2-4C57-BE69-B4B67003107F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe /OCURActivate (No File)
Task: {658239F1-DEF9-4A51-BE77-04AF2FB6DA18} - \Microsoft\Windows\Setup\EOSNotify -> No File <==== ATTENTION
Task: {6C623AA2-1A0D-43FC-A4CB-2AFF0565B34C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0) (No File)
Task: {89BA2692-3248-476B-B2BC-15F42D6ECA9A} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe $(Arg0) (No File)
Task: {986E3AF0-FB45-4424-9286-C8E5CBFF074F} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0) (No File)
Task: {A36A1A3C-CC31-432F-8938-69DEC8267E60} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe -crl -hms -pscn 15 (No File)
Task: {A66D7C01-B57A-41C3-BB89-54B6094D5926} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery (No File)
Task: {B6E53EE5-506F-4D8C-82F3-945EAAB53563} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe -PvrSchedule (No File)
Task: {B8CC594E-FC71-4A77-906E-CBFE30B5C9CF} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe /DoReindexSearchRoot (No File)
Task: {BEBD96B4-7FEE-4B63-B37B-8148A37C60F4} - \Microsoft\Windows\Setup\EOSNotify2 -> No File <==== ATTENTION
Task: {E6E585F3-2302-4769-B5C5-AF9C84A7B62E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0) (No File)
Task: {E79520FC-FC2A-4D1D-979D-75C3273847EB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe /DoActivateWindowsSearch (No File)
Task: {EC21A160-0193-47ED-B06D-53AB887F0608} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe /RestartRecording (No File)
Task: {EE88F3BB-784D-4013-9F62-61D9CA621D05} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe -MediaCenterRecoveryTask (No File)
Task: {F0A35B32-670C-4B2C-AFC1-A6133AB902B1} - System32\Tasks\Sump Task (One-Time) => C:\Program Files (x86)\IObit\Advanced SystemCare\sump.exe /sup2 (No File)
Task: {F9477B4B-82C9-4B11-AF7D-3B93C55DD43A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe /StartRecording (No File)
Task: {FFEC99B9-207D-4502-859D-F7890DA54EAC} - System32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F} => C:\Windows\system32\pcalua.exe -a C:\Users\Krtek\Downloads\irfanview_lang_czech.exe -d C:\Users\Krtek\Downloads
U3 idsvc; no ImagePath
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\Tasks\{6798C9B9-5F7D-4165-98DF-48F81591E91F}
C:\WINDOWS\system32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F}
C:\WINDOWS\system32\Tasks\{DF0DE1F5-7E1E-4259-ADE0-598EB9F50B7E}
C:\Users\Krtek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
AlternateDataStreams: C:\ProgramData\TEMP:054203E4 [144]
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HPUsageTrackingLEDM" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Taskbar system" => removed successfully
"HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Delete Cached Update Binary" => not found
"HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Delete Cached Standalone Update Binary" => not found
"HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall 21.220.1024.0005\amd64" => not found
"HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall 21.220.1024.0005" => not found
"HKU\S-1-5-21-1463130148-1684907626-1554915639-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Uninstall 22.248.1127.0001" => not found
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{08363B75-3C63-4183-9D22-5C6ADD8CEA31}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08363B75-3C63-4183-9D22-5C6ADD8CEA31}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13CD406E-FB1E-49C9-BA3D-9D6F4C65E4A9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13CD406E-FB1E-49C9-BA3D-9D6F4C65E4A9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{241E7E2C-56E5-40F1-8E43-8AB5B85249BE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{241E7E2C-56E5-40F1-8E43-8AB5B85249BE}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ConfigureInternetTimeService" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{289A25D6-A58B-462D-BB87-0EDCCD3059A7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{289A25D6-A58B-462D-BB87-0EDCCD3059A7}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PeriodicScanRetry" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{390EA5F9-3A0B-4EE3-BEDD-231FCC0DAF2D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{390EA5F9-3A0B-4EE3-BEDD-231FCC0DAF2D}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\OCURDiscovery" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{46852531-6C81-4165-BA79-2A9753C53847}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{46852531-6C81-4165-BA79-2A9753C53847}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ehDRMInit" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48109E3F-91DB-4478-AD55-50AE8CAB5E71}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48109E3F-91DB-4478-AD55-50AE8CAB5E71}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\SqlLiteRecoveryTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{52B903BC-5555-4270-8D41-A436D2CD6777}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{52B903BC-5555-4270-8D41-A436D2CD6777}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PBDADiscoveryW1" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{573FCE9D-8574-4737-8C4E-4867EF0F2837}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{573FCE9D-8574-4737-8C4E-4867EF0F2837}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PvrRecoveryTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{58014695-BFB2-4C57-BE69-B4B67003107F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58014695-BFB2-4C57-BE69-B4B67003107F}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\OCURActivate" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{658239F1-DEF9-4A51-BE77-04AF2FB6DA18}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{658239F1-DEF9-4A51-BE77-04AF2FB6DA18}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOSNotify" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6C623AA2-1A0D-43FC-A4CB-2AFF0565B34C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6C623AA2-1A0D-43FC-A4CB-2AFF0565B34C}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\DispatchRecoveryTasks" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{89BA2692-3248-476B-B2BC-15F42D6ECA9A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{89BA2692-3248-476B-B2BC-15F42D6ECA9A}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\mcupdate => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\mcupdate" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{986E3AF0-FB45-4424-9286-C8E5CBFF074F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{986E3AF0-FB45-4424-9286-C8E5CBFF074F}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\RegisterSearch" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A36A1A3C-CC31-432F-8938-69DEC8267E60}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A36A1A3C-CC31-432F-8938-69DEC8267E60}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\mcupdate_scheduled" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A66D7C01-B57A-41C3-BB89-54B6094D5926}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A66D7C01-B57A-41C3-BB89-54B6094D5926}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PBDADiscoveryW2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B6E53EE5-506F-4D8C-82F3-945EAAB53563}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6E53EE5-506F-4D8C-82F3-945EAAB53563}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PvrScheduleTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B8CC594E-FC71-4A77-906E-CBFE30B5C9CF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B8CC594E-FC71-4A77-906E-CBFE30B5C9CF}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ReindexSearchRoot" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BEBD96B4-7FEE-4B63-B37B-8148A37C60F4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BEBD96B4-7FEE-4B63-B37B-8148A37C60F4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOSNotify2" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E6E585F3-2302-4769-B5C5-AF9C84A7B62E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6E585F3-2302-4769-B5C5-AF9C84A7B62E}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\UpdateRecordPath" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E79520FC-FC2A-4D1D-979D-75C3273847EB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E79520FC-FC2A-4D1D-979D-75C3273847EB}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\ActivateWindowsSearch" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{EC21A160-0193-47ED-B06D-53AB887F0608}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC21A160-0193-47ED-B06D-53AB887F0608}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\RecordingRestart" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE88F3BB-784D-4013-9F62-61D9CA621D05}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE88F3BB-784D-4013-9F62-61D9CA621D05}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\MediaCenterRecoveryTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F0A35B32-670C-4B2C-AFC1-A6133AB902B1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0A35B32-670C-4B2C-AFC1-A6133AB902B1}" => removed successfully
C:\WINDOWS\System32\Tasks\Sump Task (One-Time) => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Sump Task (One-Time)" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9477B4B-82C9-4B11-AF7D-3B93C55DD43A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9477B4B-82C9-4B11-AF7D-3B93C55DD43A}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\StartRecording => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\StartRecording" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FFEC99B9-207D-4502-859D-F7890DA54EAC}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FFEC99B9-207D-4502-859D-F7890DA54EAC}" => removed successfully
C:\WINDOWS\System32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F}" => removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\system32\Tasks\{6798C9B9-5F7D-4165-98DF-48F81591E91F} => moved successfully
"C:\WINDOWS\system32\Tasks\{084FACD8-2167-4F31-8CFA-4B21CC1AF95F}" => not found
C:\WINDOWS\system32\Tasks\{DF0DE1F5-7E1E-4259-ADE0-598EB9F50B7E} => moved successfully
C:\Users\Krtek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
C:\ProgramData\TEMP => ":054203E4" ADS removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 84353815 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 68766988 B
Edge => 0 B
Chrome => 491610371 B
Firefox => 0 B
Opera => 5170199 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 355 B
LocalService => 39217 B
NetworkService => 39217 B

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118196
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu. Díky

#4 Příspěvek od Rudy »

Smazáno, log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Krtimir
Návštěvník
Návštěvník
Příspěvky: 41
Registrován: 11 úno 2009 22:47

Re: Prosím o kontrolu. Díky

#5 Příspěvek od Krtimir »

Děkuji

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118196
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu. Díky

#6 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno