PC je velmi pomalé, zamrzlá, pořád chroupe disk, je to divné, připadá mi že se mění i foukání procesoru nějak divně.
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by kancelar3 (20-10-2023 15:12:12)
Running from C:\Users\kancelar3\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2020-09-30 15:39:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-1460606035-3293630550-1657839234-1005 - Limited - Enabled)
Administrator (S-1-5-21-1460606035-3293630550-1657839234-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1460606035-3293630550-1657839234-503 - Limited - Disabled)
Guest (S-1-5-21-1460606035-3293630550-1657839234-501 - Limited - Disabled)
Jan (S-1-5-21-1460606035-3293630550-1657839234-1006 - Limited - Enabled)
kancelar3 (S-1-5-21-1460606035-3293630550-1657839234-1003 - Administrator - Enabled) => C:\Users\kancelar3
WDAGUtilityAccount (S-1-5-21-1460606035-3293630550-1657839234-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Altap Salamander 4.0 (x64) (HKLM\...\Altap Salamander 4.0 (x64)) (Version: 4.0 - ALTAP)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0328.0241.4833 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\{7403DBD6-17C1-0C69-F1B4-8B5E5386A9BF}) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
BrLauncher (HKLM-x32\...\{474764AE-5A67-4312-ADD3-449798BD96D1}) (Version: 1.1.21.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{06A5A956-6D40-4F1B-B7E6-94411BFB846B}) (Version: 1.0.38.1 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (HKLM-x32\...\{4E461C2A-EC1C-46D1-AF5B-7FEFD0054AF8}) (Version: 1.0.0.0 - Brother) Hidden
BrSupportTools (HKLM-x32\...\{83626DDE-99CD-4FF2-804E-36BE82143315}) (Version: 1.0.14.0 - Brother Industries Ltd.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\{8A16FF47-A5FC-49A8-96B5-31180D317059}) (Version: 3.0.4 - CANON INC.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\Canon Laser Printer/Scanner/Fax Extended Survey Program) (Version: 3.0.4.40070 - CANON INC.)
Canon MF6100 Series (HKLM\...\{48AA7F3E-7DAE-45C0-92B0-56E309AED624}) (Version: 4.3.0.0 - CANON INC.)
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - )
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1E89F75C-EF46-406C-9AAC-615B3CCC1D3D}) (Version: 4.3.2.1 - Brother Insutries Ltd.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.7417 - CyberLink Corp.)
DeviceDetect (HKLM-x32\...\{9C27CE44-0F33-42CC-8A30-4A08369EB7B3}) (Version: 1.3.1.0 - Brother Industries Ltd.) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
ESET Security (HKLM\...\{F26B2665-502A-4214-B336-BB723CF74E38}) (Version: 16.2.15.0 - ESET, spol. s r.o.)
FormApps Signing Extension (HKLM-x32\...\{35C42D1D-32DC-404F-8978-A30B0D64DD26}) (Version: 2.24.0.43 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{C17C2857-FF33-4EA0-8220-14A17DF82668}) (Version: 116.0.5845.9 - Google LLC)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo App Explorer (HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\...\Host App Service) (Version: 0.272.1.560 - SweetLabs for Lenovo) <==== ATTENTION
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.1.17.2 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.72.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.57 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Office 2013 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 15.0.5589.1001 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.14.26429 (HKLM-x32\...\{6F0267F3-7467-350D-A8C8-33B72E3658D8}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.14.26429 (HKLM-x32\...\{7753EC39-3039-3629-98BE-447C5D869C09}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
Mozilla Thunderbird (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 115.3.3 (x86 cs)) (Version: 115.3.3 - Mozilla)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0405-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
PDF-XChange Editor (HKLM\...\{FECF86C3-04A4-4E65-A602-FD66626E0753}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{d9d85619-f6f9-4b64-9929-32e386b2ddac}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22452 - Microsoft Corporation)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 10.2.49.0 - 2BrightSparks)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Packages:
=========
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-12] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2308.29.0_x64__k1h2ywk1493x8 [2023-09-14] (LENOVO INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2019-03-25] (LENOVO INCORPORATED.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-07] (Microsoft Studios) [MS Ad]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-11-17] (LENOVO INCORPORATED.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{C78B614F-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (Fine spol. s r.o. -> ALTAP)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\kancelar3\Desktop\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
==================== Loaded Modules (Whitelisted) =============
2009-02-27 16:38 - 2009-02-27 16:38 - 000139264 _____ () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-11-07 19:55 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2017-11-07 20:04 - 2017-11-07 20:04 - 000090112 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll
2017-11-07 19:55 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-12-12 13:17 - 2018-12-12 13:17 - 002551808 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-04-01 13:43 - 2018-05-02 15:25 - 000091648 _____ () [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-04-01 13:43 - 2005-04-22 13:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-04-01 13:40 - 2012-09-26 14:02 - 000004608 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUR6.DLL
2019-04-01 13:39 - 2013-02-01 03:21 - 000152064 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNCENPM6.dll
2019-03-23 11:49 - 2018-07-13 02:25 - 004876800 _____ (Gracenote, Inc.) [File not signed] C:\WINDOWS\system32\GNSDK_FP.DLL
2022-06-24 11:51 - 2020-06-17 11:01 - 001380864 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\2BrightSparks\SyncBackFree\libeay32.dll
2022-06-24 11:51 - 2020-06-17 11:01 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\2BrightSparks\SyncBackFree\ssleay32.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000502784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 001413632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-03-28 02:39 - 2019-03-28 02:39 - 005786112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 006303232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 003556352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 003699712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000331264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000355328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 076171264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 005590528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000189952 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 002821632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000089600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> DefaultScope {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2023-01-24 14:35 - 2023-09-08 10:45 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E867AD97-2E62-45AD-8218-FDA4E00AB192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B7457AA0-6C46-4680-AFD7-1543C4BB0605}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3A65957-C14C-4D7A-8653-532100FC823C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{383F8BD1-73DE-406C-A9B8-DBAC71A20384}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8B5BAF59-2B88-4E16-88A2-30322EC269FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCBE37A6-E151-4A97-BABF-BEA06DBCF383}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{693C0F35-94D7-42FD-97B9-75897925B880}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A5A3039D-FC9F-4CC3-8104-18B726B1B115}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CC011E9A-8FE3-476D-BB3E-421D7BB404B2}] => (Allow) LPort=54925
FirewallRules: [{B5D225A5-3C10-46D8-BB77-6CFB2DC0157B}] => (Allow) C:\Program Files\Canon\DIAS\CnxDIAS.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0401B596-E6A0-431C-985A-9F51F484FCE0}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D15ACC0E-247D-4677-85EB-926C6174EF88}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B725CCA3-F452-4D88-92C4-B6FC26DD15B3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{AE6A9BA4-F75C-44A9-A5AA-4676A20F7445}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3A3A7A76-8752-4427-91C2-878DF4DDE102}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0F9F597B-5EE7-43F1-AA71-359600688589}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{71080D8E-6D73-4A18-8354-6A7F36D12FD7}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe (Google LLC -> Google LLC)
FirewallRules: [{4EC1AEC4-7B57-45AE-9943-27970BF18243}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1A1CDC6C-F0D3-46C9-8EB5-F54CCFCE0BE7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E317C89A-2D27-44DD-A05D-8D69432F9B0D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{26B1F954-7B72-4291-9950-8C1B266AF1B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3E958A31-0D4D-4876-A5E4-250F8151B925}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC5AB908-AB6C-46A6-B231-3B5ACF97B024}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{25B202FA-263E-482B-8D36-E8E9D15B7013}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ACEBE50F-C4E7-459D-81E6-158AD0FE940D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FF496B6-D993-4154-8125-E7CEC153012C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D8AF3349-B021-4D9F-BF7F-EE0618094C73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A1C8E4AE-BDFF-411A-B707-1F9A8D87C4EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{14099B2E-1E56-423A-9291-2029D1442977}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{651CE687-F36E-442E-8DC2-D9F68943EA60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD22973E-6821-4831-B311-A0821F714989}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6611AEE7-A32E-4868-829E-BAAE90845E12}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{45DE1DB0-F533-41C4-9C39-DD8EFF8295B4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
11-10-2023 01:36:41 Instalační služba modulů systému Windows
18-10-2023 18:02:58 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/20/2023 03:07:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroCEF.exe, verze: 23.6.20320.0, časové razítko: 0x64f8e93c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc06d007e
Posun chyby: 0x000000000002cf19
ID chybujícího procesu: 0x24d0
Čas spuštění chybující aplikace: 0x01da035652465b6b
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: b8523c0d-fba5-4e7d-ad70-78b3fe6e5a27
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:40:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x19c0
Čas spuštění chybující aplikace: 0x01da0339730e4bfd
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: c1e7aa32-6247-4002-a5a9-a89ff8e3a580
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:31:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1d38
Čas spuštění chybující aplikace: 0x01da03372d7d03ad
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 20453c1f-4ed1-455e-9170-c74dc8ab28fd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:03:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x24a8
Čas spuštění chybující aplikace: 0x01da033394b1c2f9
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 3c9c9ff6-6b4e-4559-b1d7-40affa4e897b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:58:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x232c
Čas spuštění chybující aplikace: 0x01da03324b724f71
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: b800bff1-1017-4056-a754-404c099948c9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:49:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x2340
Čas spuštění chybující aplikace: 0x01da033233102355
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 3d3716b4-d01d-4a81-923d-3175d15806b8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:48:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x16ec
Čas spuštění chybující aplikace: 0x01da033206259bb5
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 9d3b5163-a8c6-4dad-9f9f-6678dce56622
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:46:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1a78
Čas spuštění chybující aplikace: 0x01da0331e7346285
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 6ecd48a8-94ab-48b1-b33f-8cfc88cbb165
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/20/2023 02:46:54 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (11:38:30, 20.10.2023) bylo neočekávané.
Error: (10/20/2023 11:54:20 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby WSearch bylo dosaženo časového limitu (30000 ms).
Error: (10/20/2023 11:53:50 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby WSearch bylo dosaženo časového limitu (30000 ms).
Error: (10/20/2023 11:53:20 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby WSearch bylo dosaženo časového limitu (30000 ms).
Error: (10/20/2023 11:52:50 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby WSearch bylo dosaženo časového limitu (30000 ms).
Error: (10/20/2023 11:52:20 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby WSearch bylo dosaženo časového limitu (30000 ms).
Error: (10/20/2023 11:51:50 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby WSearch bylo dosaženo časového limitu (30000 ms).
Error: (10/20/2023 11:40:32 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby LenovoVantageService bylo dosaženo časového limitu (30000 ms).
Windows Defender:
================
Date: 2020-12-17 07:14:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FABDFB3B-E699-4083-B8BA-92EF90750A9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-15 07:14:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08FE3A53-BAF6-440B-B760-B52BD740351A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-14 06:29:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2C9AC689-326D-484D-A186-C7A807E87B12}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-13 06:48:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1D065832-AE8C-4E97-AAAA-0451C669ADB8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-12 05:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0526B29D-2716-4344-828B-63FA64345730}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2023-10-20 14:51:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5PCN24WW 10/29/2018
Motherboard: LENOVO LNVNB161216
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 42%
Total physical RAM: 7567.98 MB
Available physical RAM: 4337.67 MB
Total Virtual: 8783.98 MB
Available Virtual: 5455.36 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:905.27 GB) (Free:791.71 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.19 GB) (Model: ST1000LM035-1RK172) NTFS
Drive e: (Laufer_18_SMK) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
Drive g: (USB) (Removable) (Total:29.3 GB) (Free:29.3 GB) FAT32
\\?\Volume{8e1c9fcc-0959-4ce0-9009-56cd31ab9bae}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.35 GB) NTFS
\\?\Volume{ad0a24f4-ad0d-4c5a-9630-95c2fe1a78f3}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 09E43BE9)
Partition: GPT.
==========================================================
Disk: 1 (Size: 29.3 GB) (Disk ID: 500A0DFF)
No partition Table on disk 1.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by kancelar3 (administrator) on UCETNI (LENOVO 80XV) (20-10-2023 14:57:01)
Running from C:\Users\kancelar3\Desktop\FRST64.exe
Loaded Profiles: kancelar3
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(DriverStore\FileRepository\c0341168.inf_amd64_121d7cdc98257567\B340713\atiesrxx.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0341168.inf_amd64_121d7cdc98257567\B340713\atieclxx.exe
(explorer.exe ->) (CANON INC. -> CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE
(explorer.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <10>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0341168.inf_amd64_121d7cdc98257567\B340713\atiesrxx.exe
(services.exe ->) (CANON INC. -> CANON INC.) C:\Program Files\Canon\DIAS\CnxDIAS.exe
(services.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe <2>
(services.exe ->) (Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(services.exe ->) (Lenovo -> Lenovo) C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(services.exe ->) (Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe
(svchost.exe ->) (CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe
(svchost.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [193984 2023-09-25] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552 2012-09-27] (CANON INC. -> CANON INC.)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849920 2017-03-07] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM-x32\...\Run: [I16A] => C:\Windows\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [86112 2018-11-01] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2588592 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\...\Run: [MicrosoftEdgeAutoLaunch_C1E27C3FFDCC0A15C8912C070594DAB8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187088 2023-10-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\WINDOWS\system32\CNCENPM6.dll [152064 2013-02-01] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon WSD Language Monitor: C:\WINDOWS\system32\cnnx0_flm.dll [1420800 2013-04-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\WINDOWS\system32\CNAS0MOK.DLL [1006080 2012-08-09] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2152704 2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-19] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BE3AF7EC-BAB7-44DA-8B34-F0D5CF17ECAE} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {0389A856-D83F-4D16-86AC-A5DD1A7CD87A} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha dokumentů => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {B375DEE7-E6EC-4C99-A95E-9229B595DC2F} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha plochy => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {A08F04EC-BBF6-451D-B1B1-7278FEB43C6F} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha pošty => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {2DDF8932-87E3-45BF-AF7E-B78548CA18A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {75A3CD0B-1896-4A0B-A249-EF3589849DB6} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {2A162FC4-14B2-404B-AD6E-9066ABCC5A82} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {43746B7A-D381-4948-A3A4-7D0C33A54C09} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {1E5B7A72-EA4A-4DE5-A934-675DDAA913E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {D9BF621F-8AC9-4013-8A90-FC117D4A2616} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C0D43EA2-8388-4C76-A6C9-6AF731E37F5D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {75A20A26-E39E-40A3-AA2D-428936CF4514} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {7E59A231-0E98-42DC-BE69-9A1C46F223EF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4bd877bc-b5d5-4246-bef2-51b42580e164 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {94E7ED8B-8FB3-47FD-B040-994252827ED6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8e7f504f-1a44-43a2-bf1e-2ed06dfae3bb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F1D53737-1AA6-471C-881E-04E69D8D376C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d4b3f9ae-a011-47ee-821e-fbb5ccb0d823 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {18559135-1E45-4CD8-8392-07E128A72C31} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e093394b-ce43-41ab-9039-a4a386aec11c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {59EFC4D4-045F-4F87-98CF-1D4AA5A8784A} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {858DBBE7-42E8-4F6C-8347-46D46A68020A} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {86573A0A-E6CB-4F3D-B7BE-E9C1B21AB7FA} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {CE2B1E55-0901-4CDE-81B9-20F4DD0906BC} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {BAD4AE12-C648-4AA7-BE36-F965B73BB897} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2A92963E-893E-4420-91AE-A139CDA61EA4} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {690D6A5C-3366-42CE-821B-2143622FE8AB} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {53C5EA45-FAF7-4687-9E34-333E35B00ECA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {7A04DF06-7AEB-4BD8-B0D6-378A591A969C} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {200AA238-3556-4F19-AE97-16CF0A798DEA} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {D0058E25-5FB6-4935-8F6D-B0101693148B} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5C2A1815-78A0-4B8B-9651-45972AB7EA9D} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {768D665A-3A33-407D-9A88-7B7DA307776B} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {DE5CD1CC-E883-4585-8437-F72EEB3FAC8C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {924A4300-E711-4742-9628-86C998A83D32} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {9869D50F-6C20-4675-889C-59A2892AF069} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-16] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {99ED46E1-1A6D-4E3D-9D17-2B1F292E18FB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {5C09D715-E220-4D9F-838B-7E6670B632C8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DFA2D41-FB8A-4FEA-A261-A730713679BC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1460606035-3293630550-1657839234-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {26C7113E-A8A9-4C07-944D-01250E901AF3} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1460606035-3293630550-1657839234-1003 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F3A15004-56B2-4FCA-B7B5-13E9726E3E5D} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2017-02-17] (CyberLink Corp. -> CyberLink Corp.)
Task: {AC7426B7-CAE7-43E7-8090-0B08C373B561} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6DC1BA39-CD13-4C5C-968A-3B2396563C18} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D3077DFA-8D90-4353-80A1-B931F89BA057} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8116442B-E65F-49C1-9FC1-E2137D335829} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A343F629-9C12-4DF0-A61E-59261EFB4F19} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f638c30-fbab-4211-b67f-496ceb20230d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b718c13b-29cd-4ec3-8459-2c277bc8b08e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-20]
Edge Extension: (Dokumenty Google offline) - C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-08]
Edge Extension: (Edge relevant text changes) - C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-26]
FireFox:
========
FF DefaultProfile: mt5mj24s.default
FF ProfilePath: C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default [2023-10-19]
FF user.js: detected! => C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\user.js [2022-09-21]
FF Notifications: Mozilla\Firefox\Profiles\mt5mj24s.default -> hxxps://www.jeans-store.cz
FF Extension: (FormApps Extension) - C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2021-01-20]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-10-20]
Chrome:
=======
CHR Profile: C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default [2023-10-19]
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/chromoting/chromoting_logo_512.png
CHR Extension: (Prezentace) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-29]
CHR Extension: (Dokumenty) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-29]
CHR Extension: (Disk Google) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-29]
CHR Extension: (YouTube) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-29]
CHR Extension: (Chrome Remote Desktop) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2021-01-29]
CHR Extension: (Tabulky) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-09]
CHR Extension: (Chrome Remote Desktop) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-29]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 Canon Driver Information Assist Service; C:\Program Files\Canon\DIAS\CnxDIAS.exe [4956200 2012-12-21] (CANON INC. -> CANON INC.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe [74520 2023-06-26] (Google LLC -> Google LLC)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3054128 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2528888 2023-09-25] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3860080 2023-09-25] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3860080 2023-09-25] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncHelper.exe [3503544 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
S4 McAfeeWatchdogService; C:\Program Files\Common Files\McAfeeWatchdog\McAfeeWatchdogService.exe [2581440 2019-03-23] (McAfee, Inc. -> McAfee, Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\OneDriveUpdaterService.exe [3840432 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [208704 2023-08-03] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [118904 2023-08-03] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [249544 2023-08-03] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55424 2023-08-03] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81712 2023-08-03] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [123040 2023-08-03] (ESET, spol. s r.o. -> ESET)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-20 11:49 - 2023-10-20 15:02 - 000029938 _____ C:\Users\kancelar3\Desktop\FRST.txt
2023-10-20 11:28 - 2023-10-20 15:00 - 000000000 ____D C:\FRST
2023-10-20 10:55 - 2023-10-20 10:55 - 002383360 _____ (Farbar) C:\Users\kancelar3\Desktop\FRST64.exe
2023-10-19 11:29 - 2023-10-19 11:29 - 002152523 _____ C:\Users\kancelar3\Downloads\Záznam o úrazu - Karel Morava.pdf
2023-10-19 11:03 - 2023-10-19 11:03 - 000192745 _____ C:\Users\kancelar3\Downloads\priloha_1256202162_0_Vyzva_provozovateli_1UR7675.pdf
2023-10-19 08:26 - 2023-10-19 15:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2023-10-18 14:22 - 2023-10-18 14:22 - 000094874 _____ C:\Users\kancelar3\Downloads\priloha_1255567242_0_trvaniDpnInfo_37929911.pdf
2023-10-18 13:10 - 2023-10-18 13:10 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-16 08:45 - 2023-10-16 08:45 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_1_Faktury, pronájem dopravního značení.pdf
2023-10-16 08:45 - 2023-10-16 08:45 - 000200477 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_2_5460 Laufer 509.pdf
2023-10-16 08:44 - 2023-10-16 08:44 - 000009602 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_0_Textová zpráva.PDF
2023-10-16 08:42 - 2023-10-16 08:42 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_1_Faktury, pronájem dopravního značení-1.pdf
2023-10-16 08:42 - 2023-10-16 08:42 - 000010582 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_0_Textová zpráva-1.PDF
2023-10-16 08:38 - 2023-10-16 08:38 - 000939840 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_2_faktury č.230100508,230100425,230100424,230100361, 230100360.pdf
2023-10-16 08:37 - 2023-10-16 08:37 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_1_Faktury, pronájem dopravního značení.pdf
2023-10-16 08:37 - 2023-10-16 08:37 - 000010582 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_0_Textová zpráva.PDF
2023-10-16 08:11 - 2023-10-19 09:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-13 09:07 - 2023-10-13 09:07 - 006139985 _____ C:\Users\kancelar3\Desktop\Přijaté faktury neodeslané.zip
2023-10-13 07:08 - 2023-10-13 07:10 - 000738352 _____ C:\Users\kancelar3\Downloads\Zřízení a výměna SDZ v ÚK (9-2023).xlsx - Skupina.pdf
2023-10-12 17:11 - 2023-10-12 17:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-10-12 17:11 - 2023-10-12 17:11 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-12 08:48 - 2023-10-12 08:48 - 000621587 _____ C:\Users\kancelar3\Downloads\priloha_1253016935_0_23-3060.pdf
2023-10-11 10:53 - 2023-10-11 10:53 - 000118917 _____ C:\Users\kancelar3\Downloads\priloha_1251673267_0_230059917-1.pdf
2023-10-11 03:48 - 2023-10-11 03:48 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 02:03 - 2023-10-11 02:03 - 000000000 ___HD C:\$WinREAgent
2023-10-10 15:09 - 2023-10-10 15:09 - 000118917 _____ C:\Users\kancelar3\Downloads\priloha_1251673267_0_230059917.pdf
2023-10-09 15:42 - 2023-10-09 15:42 - 000696484 _____ C:\Users\kancelar3\Downloads\priloha_1251398447_0_23535-2023_Exekuční_příkaz_-_MP_-_mzda_sign.pdf
2023-10-09 13:09 - 2023-10-09 13:11 - 733562879 _____ C:\Users\kancelar3\Downloads\Jak vytrhnout velrybě stoličku (1977) [juraison+].avi
2023-10-09 13:07 - 2023-10-09 13:07 - 149506240 _____ C:\Users\kancelar3\Downloads\Jak vytrhnout velrybě stoličku - AUDIO CD (1977).rar
2023-10-06 10:08 - 2023-10-06 10:13 - 000087036 _____ C:\Users\kancelar3\Downloads\Laufer 2023_09_souhrnny.pdf
2023-10-06 10:08 - 2023-10-06 10:12 - 000079907 _____ C:\Users\kancelar3\Downloads\Laufer 2023_08_souhrnny.pdf
2023-10-06 10:08 - 2023-10-06 10:12 - 000056470 _____ C:\Users\kancelar3\Downloads\Laufer 2023_08_1_souhrnny.pdf
2023-10-06 09:54 - 2023-10-06 09:54 - 014427373 _____ C:\Users\kancelar3\Desktop\Podklady ke zprávě.zip
2023-10-06 09:53 - 2023-10-06 09:53 - 019092639 _____ C:\Users\kancelar3\Desktop\BOZP 2-2020.zip
2023-10-06 09:27 - 2023-10-06 09:28 - 000000000 ____D C:\Users\kancelar3\Desktop\BOZP 2-2020
2023-10-05 14:39 - 2023-10-06 08:18 - 002021958 _____ C:\Users\kancelar3\Downloads\Zřízení a výměna SDZ v ÚK (8-2023).pdf
2023-10-05 10:46 - 2023-10-05 10:48 - 002574750 _____ C:\Users\kancelar3\Downloads\I-13 okr. Most, zabezpečení průjezdného profilu 9-2023 .pdf
2023-10-05 10:24 - 2023-10-06 09:54 - 000000000 ____D C:\Users\kancelar3\Desktop\Podklady ke zprávě
2023-10-04 15:02 - 2023-10-04 15:02 - 000099154 _____ C:\Users\kancelar3\Downloads\priloha_1249469707_0_vznikDpnInfo_37618200-1.pdf
2023-10-04 15:00 - 2023-10-04 15:00 - 000099154 _____ C:\Users\kancelar3\Downloads\priloha_1249469707_0_vznikDpnInfo_37618200.pdf
2023-10-04 14:57 - 2023-10-04 14:57 - 000093469 _____ C:\Users\kancelar3\Downloads\priloha_1249425690_0_vznikDpnOznam_37611779.pdf
2023-10-03 10:38 - 2023-10-03 10:38 - 000275098 _____ C:\Users\kancelar3\Downloads\CCF_003582.pdf
2023-10-03 09:55 - 2023-10-03 12:28 - 007243298 _____ C:\Users\kancelar3\Downloads\Uvodni_sada_pravidla_v1.10.pdf
2023-10-03 09:37 - 2023-10-03 09:37 - 001645528 _____ C:\Users\kancelar3\Downloads\priloha_1248072527_1_040806230000596.pdf
2023-10-03 09:35 - 2023-10-03 09:35 - 000181076 _____ C:\Users\kancelar3\Downloads\priloha_1248072527_0_Potvrzení_o_účasti_na_dopravní_nehodě-DN.pdf
2023-10-03 09:34 - 2023-10-03 09:34 - 000652611 _____ C:\Users\kancelar3\Downloads\priloha_1247742182_0_22894-2023_výzva_k_poskytnutí_info-zaměstnavatel_MP_sign.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 003582183 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_1_Opatření obecné povahy.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 001043933 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_0_Loucna-navrh-DZ.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 000438795 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_2_2023-42329.pdf
2023-09-27 11:22 - 2023-09-27 11:22 - 004762988 _____ C:\Users\kancelar3\Downloads\administrativní budova(1).zip
2023-09-27 11:21 - 2023-09-27 11:21 - 004762988 _____ C:\Users\kancelar3\Downloads\administrativní budova.zip
2023-09-25 14:46 - 2023-10-05 11:09 - 001932545 _____ C:\Users\kancelar3\Downloads\Zřízení a výměn SDZ v ÚK (8-2023).pdf
2023-09-25 11:46 - 2023-09-25 11:46 - 000832432 _____ C:\Users\kancelar3\Desktop\HOTOVO.zip
2023-09-22 10:57 - 2023-09-22 10:57 - 000538834 _____ C:\Users\kancelar3\Downloads\Vyjádření k Pokynu Pověřené osoby objednatele.pdf
2023-09-22 08:31 - 2023-09-22 08:31 - 000207786 _____ C:\Users\kancelar3\Downloads\17 150110 ILNO.pdf
2023-09-22 08:30 - 2023-09-22 08:30 - 000224501 _____ C:\Users\kancelar3\Downloads\OODP-Navod_Odpad_150110.pdf
2023-09-21 09:36 - 2023-09-21 09:36 - 000324750 _____ C:\Users\kancelar3\Downloads\priloha_1243637266_0_Pokyn k předložení HMG prací+finanční HMG_vzor RD GB FIDIC-1.pdf
2023-09-21 08:19 - 2023-09-21 08:19 - 001043933 _____ C:\Users\kancelar3\Downloads\priloha_1243664029_0_Loucna-navrh-DZ.pdf
2023-09-21 08:19 - 2023-09-21 08:19 - 000391468 _____ C:\Users\kancelar3\Downloads\priloha_1243664029_1_2023-42329.pdf
2023-09-21 08:17 - 2023-09-21 08:17 - 000324750 _____ C:\Users\kancelar3\Downloads\priloha_1243637266_0_Pokyn k předložení HMG prací+finanční HMG_vzor RD GB FIDIC.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-20 15:07 - 2022-12-12 10:22 - 000000000 ____D C:\Users\kancelar3\AppData\Local\CrashDumps
2023-10-20 15:00 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-20 14:55 - 2021-12-15 21:40 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-20 14:55 - 2021-01-29 13:54 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-20 14:55 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-20 14:46 - 2020-09-30 17:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-20 14:46 - 2020-09-30 16:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-20 14:46 - 2020-09-30 16:37 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-20 14:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-20 11:44 - 2019-03-30 09:52 - 000000000 ___RD C:\Users\kancelar3\OneDrive
2023-10-20 10:45 - 2020-09-30 16:55 - 000000000 ____D C:\Users\kancelar3
2023-10-20 10:26 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-20 10:26 - 2017-11-17 02:45 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2023-10-20 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-20 09:53 - 2019-06-10 14:23 - 000000000 ____D C:\Users\kancelar3\AppData\Local\D3DSCache
2023-10-20 07:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-20 06:35 - 2020-06-10 00:33 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-20 06:35 - 2020-06-10 00:33 - 000002312 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-19 21:37 - 2021-01-29 13:55 - 000002285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-19 21:37 - 2021-01-29 13:55 - 000002244 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-10-19 15:22 - 2022-02-10 09:09 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-19 15:11 - 2022-05-11 12:10 - 000661186 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-19 15:11 - 2022-05-11 12:10 - 000136420 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-19 15:11 - 2020-09-30 17:11 - 001562480 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-19 15:00 - 2019-03-23 10:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-19 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-19 13:57 - 2019-03-23 10:01 - 000000000 ____D C:\Install
2023-10-19 13:33 - 2019-03-30 10:24 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\Microsoft\Word
2023-10-19 11:59 - 2019-03-30 10:23 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\Microsoft\Excel
2023-10-19 11:51 - 2019-03-23 11:25 - 000000980 _____ C:\Users\kancelar3\Desktop\Dokumenty OneDrive.lnk
2023-10-19 09:31 - 2023-02-01 10:54 - 000000000 ____D C:\Users\kancelar3\Desktop\Vydané faktury 2023
2023-10-19 09:22 - 2019-03-23 10:20 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-10-19 09:13 - 2021-09-08 09:42 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-19 08:43 - 2023-02-08 11:35 - 000000000 ____D C:\Users\kancelar3\Desktop\Přijaté faktury neodeslané
2023-10-16 08:48 - 2019-03-25 15:29 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-13 14:43 - 2020-03-30 11:42 - 000017927 _____ C:\Users\kancelar3\Desktop\Seznam vozidel a přívěsů.xlsx
2023-10-13 09:20 - 2023-02-01 10:53 - 000000000 ____D C:\Users\kancelar3\Desktop\Přijaté faktury 2023
2023-10-12 17:11 - 2021-12-11 21:32 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1460606035-3293630550-1657839234-1003
2023-10-11 16:31 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-11 15:56 - 2022-05-11 18:02 - 000444672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-11 15:39 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-11 15:35 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-11 15:32 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-11 15:32 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-11 15:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-11 15:17 - 2019-03-30 09:49 - 000000000 ____D C:\Users\kancelar3\AppData\LocalLow\Mozilla
2023-10-11 05:13 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 03:45 - 2020-09-30 16:47 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 00:53 - 2019-03-25 08:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 00:32 - 2019-03-25 08:54 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-10 13:14 - 2019-03-30 09:46 - 000000000 ____D C:\Users\kancelar3\AppData\Local\Packages
2023-10-10 09:14 - 2023-01-16 14:57 - 000000000 ____D C:\Users\kancelar3\Desktop\vozový park
2023-10-09 13:08 - 2019-06-26 08:22 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\vlc
2023-10-06 15:33 - 2023-05-24 10:01 - 000000000 ____D C:\Program Files\RUXIM
2023-10-05 09:45 - 2020-03-04 13:24 - 000000000 ____D C:\Users\kancelar3\Desktop\Kategorizace prací
2023-10-05 08:10 - 2023-02-20 15:45 - 000000000 ____D C:\Users\kancelar3\Desktop\MZDY
2023-09-27 18:20 - 2019-03-26 08:44 - 000000000 ____D C:\ProgramData\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
# -------------------------------
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-08-22.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-20-2023
# Duration: 00:00:11
# OS: Windows 10 (Build 19045.3570)
# Cleaned: 13
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\ProgramData\Host App Service
Deleted C:\Users\Default\AppData\Local\Host App Service
Deleted C:\Users\kancelar3\AppData\Local\Host App Service
Deleted C:\Windows\ServiceProfiles\LocalService\AppData\Local\Host App Service
Deleted C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Host App Service
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
Deleted C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\invalidprefs.js
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Host App Service
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4115 octets] - [20/10/2023 16:50:48]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 8.4.0.0
# -------------------------------
# Build: 08-30-2022
# Database: 2022-08-22.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-20-2023
# Duration: 00:00:11
# OS: Windows 10 (Build 19045.3570)
# Cleaned: 13
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\ProgramData\Host App Service
Deleted C:\Users\Default\AppData\Local\Host App Service
Deleted C:\Users\kancelar3\AppData\Local\Host App Service
Deleted C:\Windows\ServiceProfiles\LocalService\AppData\Local\Host App Service
Deleted C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Host App Service
Deleted C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\IObit\Advanced SystemCare
***** [ Files ] *****
Deleted C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\invalidprefs.js
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Host App Service
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\Software\Wow6432Node\IObit\Advanced SystemCare
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [4115 octets] - [20/10/2023 16:50:48]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
- Přílohy
-
- Snímek obrazovky 2023-10-20 165414.png (19.98 KiB) Zobrazeno 751 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Předinstalovaný sw jsou většinou firemní utility výrobce. Pokud ničemu nevadí, ponechávám ho (odstraňuji jen v případě nějakého sw konfliktu). Jinak bylo smazáno. Teď dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by kancelar3 (20-10-2023 17:30:47)
Running from C:\Users\kancelar3\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2020-09-30 15:39:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-1460606035-3293630550-1657839234-1005 - Limited - Enabled)
Administrator (S-1-5-21-1460606035-3293630550-1657839234-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1460606035-3293630550-1657839234-503 - Limited - Disabled)
Guest (S-1-5-21-1460606035-3293630550-1657839234-501 - Limited - Disabled)
Jan (S-1-5-21-1460606035-3293630550-1657839234-1006 - Limited - Enabled)
kancelar3 (S-1-5-21-1460606035-3293630550-1657839234-1003 - Administrator - Enabled) => C:\Users\kancelar3
WDAGUtilityAccount (S-1-5-21-1460606035-3293630550-1657839234-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Altap Salamander 4.0 (x64) (HKLM\...\Altap Salamander 4.0 (x64)) (Version: 4.0 - ALTAP)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0328.0241.4833 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\{7403DBD6-17C1-0C69-F1B4-8B5E5386A9BF}) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
BrLauncher (HKLM-x32\...\{474764AE-5A67-4312-ADD3-449798BD96D1}) (Version: 1.1.21.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{06A5A956-6D40-4F1B-B7E6-94411BFB846B}) (Version: 1.0.38.1 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (HKLM-x32\...\{4E461C2A-EC1C-46D1-AF5B-7FEFD0054AF8}) (Version: 1.0.0.0 - Brother) Hidden
BrSupportTools (HKLM-x32\...\{83626DDE-99CD-4FF2-804E-36BE82143315}) (Version: 1.0.14.0 - Brother Industries Ltd.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\{8A16FF47-A5FC-49A8-96B5-31180D317059}) (Version: 3.0.4 - CANON INC.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\Canon Laser Printer/Scanner/Fax Extended Survey Program) (Version: 3.0.4.40070 - CANON INC.)
Canon MF6100 Series (HKLM\...\{48AA7F3E-7DAE-45C0-92B0-56E309AED624}) (Version: 4.3.0.0 - CANON INC.)
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - )
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1E89F75C-EF46-406C-9AAC-615B3CCC1D3D}) (Version: 4.3.2.1 - Brother Insutries Ltd.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.7417 - CyberLink Corp.)
DeviceDetect (HKLM-x32\...\{9C27CE44-0F33-42CC-8A30-4A08369EB7B3}) (Version: 1.3.1.0 - Brother Industries Ltd.) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
ESET Security (HKLM\...\{F26B2665-502A-4214-B336-BB723CF74E38}) (Version: 16.2.15.0 - ESET, spol. s r.o.)
FormApps Signing Extension (HKLM-x32\...\{35C42D1D-32DC-404F-8978-A30B0D64DD26}) (Version: 2.24.0.43 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{C17C2857-FF33-4EA0-8220-14A17DF82668}) (Version: 116.0.5845.9 - Google LLC)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.1.17.2 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.72.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.57 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Office 2013 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 15.0.5589.1001 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.14.26429 (HKLM-x32\...\{6F0267F3-7467-350D-A8C8-33B72E3658D8}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.14.26429 (HKLM-x32\...\{7753EC39-3039-3629-98BE-447C5D869C09}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
Mozilla Thunderbird (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 115.3.3 (x86 cs)) (Version: 115.3.3 - Mozilla)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0405-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
PDF-XChange Editor (HKLM\...\{FECF86C3-04A4-4E65-A602-FD66626E0753}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{d9d85619-f6f9-4b64-9929-32e386b2ddac}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22452 - Microsoft Corporation)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 10.2.49.0 - 2BrightSparks)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Packages:
=========
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-12] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2308.29.0_x64__k1h2ywk1493x8 [2023-09-14] (LENOVO INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2019-03-25] (LENOVO INCORPORATED.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-07] (Microsoft Studios) [MS Ad]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-11-17] (LENOVO INCORPORATED.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{C78B614F-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (Fine spol. s r.o. -> ALTAP)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\kancelar3\Desktop\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
==================== Loaded Modules (Whitelisted) =============
2019-04-01 13:43 - 2018-05-02 15:25 - 000091648 _____ () [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-04-01 13:43 - 2005-04-22 13:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-04-01 13:39 - 2013-02-01 03:21 - 000152064 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNCENPM6.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> DefaultScope {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2023-01-24 14:35 - 2023-09-08 10:45 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E867AD97-2E62-45AD-8218-FDA4E00AB192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B7457AA0-6C46-4680-AFD7-1543C4BB0605}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3A65957-C14C-4D7A-8653-532100FC823C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{383F8BD1-73DE-406C-A9B8-DBAC71A20384}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8B5BAF59-2B88-4E16-88A2-30322EC269FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCBE37A6-E151-4A97-BABF-BEA06DBCF383}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{693C0F35-94D7-42FD-97B9-75897925B880}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A5A3039D-FC9F-4CC3-8104-18B726B1B115}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CC011E9A-8FE3-476D-BB3E-421D7BB404B2}] => (Allow) LPort=54925
FirewallRules: [{B5D225A5-3C10-46D8-BB77-6CFB2DC0157B}] => (Allow) C:\Program Files\Canon\DIAS\CnxDIAS.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0401B596-E6A0-431C-985A-9F51F484FCE0}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D15ACC0E-247D-4677-85EB-926C6174EF88}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B725CCA3-F452-4D88-92C4-B6FC26DD15B3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{AE6A9BA4-F75C-44A9-A5AA-4676A20F7445}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3A3A7A76-8752-4427-91C2-878DF4DDE102}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0F9F597B-5EE7-43F1-AA71-359600688589}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{71080D8E-6D73-4A18-8354-6A7F36D12FD7}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe (Google LLC -> Google LLC)
FirewallRules: [{4EC1AEC4-7B57-45AE-9943-27970BF18243}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1A1CDC6C-F0D3-46C9-8EB5-F54CCFCE0BE7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E317C89A-2D27-44DD-A05D-8D69432F9B0D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{26B1F954-7B72-4291-9950-8C1B266AF1B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3E958A31-0D4D-4876-A5E4-250F8151B925}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC5AB908-AB6C-46A6-B231-3B5ACF97B024}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{25B202FA-263E-482B-8D36-E8E9D15B7013}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ACEBE50F-C4E7-459D-81E6-158AD0FE940D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FF496B6-D993-4154-8125-E7CEC153012C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D8AF3349-B021-4D9F-BF7F-EE0618094C73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A1C8E4AE-BDFF-411A-B707-1F9A8D87C4EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{14099B2E-1E56-423A-9291-2029D1442977}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{651CE687-F36E-442E-8DC2-D9F68943EA60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD22973E-6821-4831-B311-A0821F714989}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6611AEE7-A32E-4868-829E-BAAE90845E12}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{45DE1DB0-F533-41C4-9C39-DD8EFF8295B4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
11-10-2023 01:36:41 Instalační služba modulů systému Windows
18-10-2023 18:02:58 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/20/2023 03:07:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroCEF.exe, verze: 23.6.20320.0, časové razítko: 0x64f8e93c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc06d007e
Posun chyby: 0x000000000002cf19
ID chybujícího procesu: 0x24d0
Čas spuštění chybující aplikace: 0x01da035652465b6b
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: b8523c0d-fba5-4e7d-ad70-78b3fe6e5a27
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:40:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x19c0
Čas spuštění chybující aplikace: 0x01da0339730e4bfd
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: c1e7aa32-6247-4002-a5a9-a89ff8e3a580
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:31:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1d38
Čas spuštění chybující aplikace: 0x01da03372d7d03ad
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 20453c1f-4ed1-455e-9170-c74dc8ab28fd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:03:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x24a8
Čas spuštění chybující aplikace: 0x01da033394b1c2f9
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 3c9c9ff6-6b4e-4559-b1d7-40affa4e897b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:58:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x232c
Čas spuštění chybující aplikace: 0x01da03324b724f71
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: b800bff1-1017-4056-a754-404c099948c9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:49:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x2340
Čas spuštění chybující aplikace: 0x01da033233102355
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 3d3716b4-d01d-4a81-923d-3175d15806b8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:48:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x16ec
Čas spuštění chybující aplikace: 0x01da033206259bb5
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 9d3b5163-a8c6-4dad-9f9f-6678dce56622
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:46:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1a78
Čas spuštění chybující aplikace: 0x01da0331e7346285
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 6ecd48a8-94ab-48b1-b33f-8cfc88cbb165
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Interface Foundation Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office ClickToRun byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Dolby DAX2 API Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Vzdálené plochy Chrome byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Canon Driver Information Assist Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 500 milisekund: Restartovat službu.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Elan Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Windows Defender:
================
Date: 2020-12-17 07:14:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FABDFB3B-E699-4083-B8BA-92EF90750A9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-15 07:14:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08FE3A53-BAF6-440B-B760-B52BD740351A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-14 06:29:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2C9AC689-326D-484D-A186-C7A807E87B12}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-13 06:48:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1D065832-AE8C-4E97-AAAA-0451C669ADB8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-12 05:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0526B29D-2716-4344-828B-63FA64345730}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2023-10-20 16:51:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5PCN24WW 10/29/2018
Motherboard: LENOVO LNVNB161216
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 37%
Total physical RAM: 7567.98 MB
Available physical RAM: 4697.8 MB
Total Virtual: 8783.98 MB
Available Virtual: 6076.67 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:905.27 GB) (Free:789.69 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.19 GB) (Model: ST1000LM035-1RK172) NTFS
Drive e: (Laufer_18_SMK) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
Drive g: (USB) (Removable) (Total:29.3 GB) (Free:23.27 GB) FAT32
\\?\Volume{8e1c9fcc-0959-4ce0-9009-56cd31ab9bae}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.35 GB) NTFS
\\?\Volume{ad0a24f4-ad0d-4c5a-9630-95c2fe1a78f3}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 09E43BE9)
Partition: GPT.
==========================================================
Disk: 1 (Size: 29.3 GB) (Disk ID: 500A0DFF)
No partition Table on disk 1.
==================== End of Addition.txt =======================
Ran by kancelar3 (20-10-2023 17:30:47)
Running from C:\Users\kancelar3\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2020-09-30 15:39:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-1460606035-3293630550-1657839234-1005 - Limited - Enabled)
Administrator (S-1-5-21-1460606035-3293630550-1657839234-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1460606035-3293630550-1657839234-503 - Limited - Disabled)
Guest (S-1-5-21-1460606035-3293630550-1657839234-501 - Limited - Disabled)
Jan (S-1-5-21-1460606035-3293630550-1657839234-1006 - Limited - Enabled)
kancelar3 (S-1-5-21-1460606035-3293630550-1657839234-1003 - Administrator - Enabled) => C:\Users\kancelar3
WDAGUtilityAccount (S-1-5-21-1460606035-3293630550-1657839234-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20320 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Altap Salamander 4.0 (x64) (HKLM\...\Altap Salamander 4.0 (x64)) (Version: 4.0 - ALTAP)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0328.0241.4833 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\{7403DBD6-17C1-0C69-F1B4-8B5E5386A9BF}) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
BrLauncher (HKLM-x32\...\{474764AE-5A67-4312-ADD3-449798BD96D1}) (Version: 1.1.21.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{06A5A956-6D40-4F1B-B7E6-94411BFB846B}) (Version: 1.0.38.1 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (HKLM-x32\...\{4E461C2A-EC1C-46D1-AF5B-7FEFD0054AF8}) (Version: 1.0.0.0 - Brother) Hidden
BrSupportTools (HKLM-x32\...\{83626DDE-99CD-4FF2-804E-36BE82143315}) (Version: 1.0.14.0 - Brother Industries Ltd.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\{8A16FF47-A5FC-49A8-96B5-31180D317059}) (Version: 3.0.4 - CANON INC.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\Canon Laser Printer/Scanner/Fax Extended Survey Program) (Version: 3.0.4.40070 - CANON INC.)
Canon MF6100 Series (HKLM\...\{48AA7F3E-7DAE-45C0-92B0-56E309AED624}) (Version: 4.3.0.0 - CANON INC.)
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - )
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1E89F75C-EF46-406C-9AAC-615B3CCC1D3D}) (Version: 4.3.2.1 - Brother Insutries Ltd.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.7417 - CyberLink Corp.)
DeviceDetect (HKLM-x32\...\{9C27CE44-0F33-42CC-8A30-4A08369EB7B3}) (Version: 1.3.1.0 - Brother Industries Ltd.) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
ESET Security (HKLM\...\{F26B2665-502A-4214-B336-BB723CF74E38}) (Version: 16.2.15.0 - ESET, spol. s r.o.)
FormApps Signing Extension (HKLM-x32\...\{35C42D1D-32DC-404F-8978-A30B0D64DD26}) (Version: 2.24.0.43 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{C17C2857-FF33-4EA0-8220-14A17DF82668}) (Version: 116.0.5845.9 - Google LLC)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.1.17.2 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.72.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.57 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Office 2013 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 15.0.5589.1001 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.14.26429 (HKLM-x32\...\{6F0267F3-7467-350D-A8C8-33B72E3658D8}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.14.26429 (HKLM-x32\...\{7753EC39-3039-3629-98BE-447C5D869C09}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
Mozilla Thunderbird (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 115.3.3 (x86 cs)) (Version: 115.3.3 - Mozilla)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0405-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
PDF-XChange Editor (HKLM\...\{FECF86C3-04A4-4E65-A602-FD66626E0753}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{d9d85619-f6f9-4b64-9929-32e386b2ddac}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22452 - Microsoft Corporation)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 10.2.49.0 - 2BrightSparks)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Packages:
=========
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-12] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2308.29.0_x64__k1h2ywk1493x8 [2023-09-14] (LENOVO INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2019-03-25] (LENOVO INCORPORATED.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-07] (Microsoft Studios) [MS Ad]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-11-17] (LENOVO INCORPORATED.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{C78B614F-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (Fine spol. s r.o. -> ALTAP)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\kancelar3\Desktop\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
==================== Loaded Modules (Whitelisted) =============
2019-04-01 13:43 - 2018-05-02 15:25 - 000091648 _____ () [File not signed] C:\WINDOWS\system32\BrNetSti.dll
2019-04-01 13:43 - 2005-04-22 13:36 - 000143360 _____ () [File not signed] C:\WINDOWS\system32\BrSNMP64.dll
2019-04-01 13:39 - 2013-02-01 03:21 - 000152064 _____ (CANON INC.) [File not signed] C:\WINDOWS\System32\CNCENPM6.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> DefaultScope {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2023-01-24 14:35 - 2023-09-08 10:45 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E867AD97-2E62-45AD-8218-FDA4E00AB192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B7457AA0-6C46-4680-AFD7-1543C4BB0605}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3A65957-C14C-4D7A-8653-532100FC823C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{383F8BD1-73DE-406C-A9B8-DBAC71A20384}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8B5BAF59-2B88-4E16-88A2-30322EC269FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCBE37A6-E151-4A97-BABF-BEA06DBCF383}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{693C0F35-94D7-42FD-97B9-75897925B880}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A5A3039D-FC9F-4CC3-8104-18B726B1B115}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CC011E9A-8FE3-476D-BB3E-421D7BB404B2}] => (Allow) LPort=54925
FirewallRules: [{B5D225A5-3C10-46D8-BB77-6CFB2DC0157B}] => (Allow) C:\Program Files\Canon\DIAS\CnxDIAS.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0401B596-E6A0-431C-985A-9F51F484FCE0}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D15ACC0E-247D-4677-85EB-926C6174EF88}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B725CCA3-F452-4D88-92C4-B6FC26DD15B3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{AE6A9BA4-F75C-44A9-A5AA-4676A20F7445}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3A3A7A76-8752-4427-91C2-878DF4DDE102}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0F9F597B-5EE7-43F1-AA71-359600688589}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{71080D8E-6D73-4A18-8354-6A7F36D12FD7}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe (Google LLC -> Google LLC)
FirewallRules: [{4EC1AEC4-7B57-45AE-9943-27970BF18243}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1A1CDC6C-F0D3-46C9-8EB5-F54CCFCE0BE7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E317C89A-2D27-44DD-A05D-8D69432F9B0D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{26B1F954-7B72-4291-9950-8C1B266AF1B7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3E958A31-0D4D-4876-A5E4-250F8151B925}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3210.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC5AB908-AB6C-46A6-B231-3B5ACF97B024}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{25B202FA-263E-482B-8D36-E8E9D15B7013}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ACEBE50F-C4E7-459D-81E6-158AD0FE940D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FF496B6-D993-4154-8125-E7CEC153012C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D8AF3349-B021-4D9F-BF7F-EE0618094C73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A1C8E4AE-BDFF-411A-B707-1F9A8D87C4EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{14099B2E-1E56-423A-9291-2029D1442977}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{651CE687-F36E-442E-8DC2-D9F68943EA60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD22973E-6821-4831-B311-A0821F714989}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6611AEE7-A32E-4868-829E-BAAE90845E12}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{45DE1DB0-F533-41C4-9C39-DD8EFF8295B4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
11-10-2023 01:36:41 Instalační služba modulů systému Windows
18-10-2023 18:02:58 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/20/2023 03:07:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroCEF.exe, verze: 23.6.20320.0, časové razítko: 0x64f8e93c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc06d007e
Posun chyby: 0x000000000002cf19
ID chybujícího procesu: 0x24d0
Čas spuštění chybující aplikace: 0x01da035652465b6b
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: b8523c0d-fba5-4e7d-ad70-78b3fe6e5a27
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:40:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x19c0
Čas spuštění chybující aplikace: 0x01da0339730e4bfd
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: c1e7aa32-6247-4002-a5a9-a89ff8e3a580
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:31:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1d38
Čas spuštění chybující aplikace: 0x01da03372d7d03ad
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 20453c1f-4ed1-455e-9170-c74dc8ab28fd
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 11:03:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x24a8
Čas spuštění chybující aplikace: 0x01da033394b1c2f9
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 3c9c9ff6-6b4e-4559-b1d7-40affa4e897b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:58:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x232c
Čas spuštění chybující aplikace: 0x01da03324b724f71
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: b800bff1-1017-4056-a754-404c099948c9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:49:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x2340
Čas spuštění chybující aplikace: 0x01da033233102355
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 3d3716b4-d01d-4a81-923d-3175d15806b8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:48:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x16ec
Čas spuštění chybující aplikace: 0x01da033206259bb5
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 9d3b5163-a8c6-4dad-9f9f-6678dce56622
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/20/2023 10:46:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1a78
Čas spuštění chybující aplikace: 0x01da0331e7346285
Cesta k chybující aplikaci: C:\WINDOWS\Explorer.EXE
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 6ecd48a8-94ab-48b1-b33f-8cfc88cbb165
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba System Interface Foundation Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba LenovoVantageService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Microsoft Office ClickToRun byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Dolby DAX2 API Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Vzdálené plochy Chrome byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Canon Driver Information Assist Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 500 milisekund: Restartovat službu.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/20/2023 04:54:42 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Elan Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Windows Defender:
================
Date: 2020-12-17 07:14:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FABDFB3B-E699-4083-B8BA-92EF90750A9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-15 07:14:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08FE3A53-BAF6-440B-B760-B52BD740351A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-14 06:29:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2C9AC689-326D-484D-A186-C7A807E87B12}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-13 06:48:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1D065832-AE8C-4E97-AAAA-0451C669ADB8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-12 05:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0526B29D-2716-4344-828B-63FA64345730}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2023-10-20 16:51:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5PCN24WW 10/29/2018
Motherboard: LENOVO LNVNB161216
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 37%
Total physical RAM: 7567.98 MB
Available physical RAM: 4697.8 MB
Total Virtual: 8783.98 MB
Available Virtual: 6076.67 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:905.27 GB) (Free:789.69 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.19 GB) (Model: ST1000LM035-1RK172) NTFS
Drive e: (Laufer_18_SMK) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
Drive g: (USB) (Removable) (Total:29.3 GB) (Free:23.27 GB) FAT32
\\?\Volume{8e1c9fcc-0959-4ce0-9009-56cd31ab9bae}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.35 GB) NTFS
\\?\Volume{ad0a24f4-ad0d-4c5a-9630-95c2fe1a78f3}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 09E43BE9)
Partition: GPT.
==========================================================
Disk: 1 (Size: 29.3 GB) (Disk ID: 500A0DFF)
No partition Table on disk 1.
==================== End of Addition.txt =======================
Re: Prosím o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-10-2023
Ran by kancelar3 (administrator) on UCETNI (LENOVO 80XV) (20-10-2023 17:22:51)
Running from C:\Users\kancelar3\Desktop\FRST64.exe
Loaded Profiles: kancelar3
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\Altap Salamander\salamand.exe ->) (Fine spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(explorer.exe ->) (Fine spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Users\kancelar3\Desktop\adwcleaner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(services.exe ->) (CANON INC. -> CANON INC.) C:\Program Files\Canon\DIAS\CnxDIAS.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [193984 2023-09-25] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552 2012-09-27] (CANON INC. -> CANON INC.)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849920 2017-03-07] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM-x32\...\Run: [I16A] => C:\Windows\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [86112 2018-11-01] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2588592 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\...\Run: [MicrosoftEdgeAutoLaunch_C1E27C3FFDCC0A15C8912C070594DAB8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187088 2023-10-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\WINDOWS\system32\CNCENPM6.dll [152064 2013-02-01] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon WSD Language Monitor: C:\WINDOWS\system32\cnnx0_flm.dll [1420800 2013-04-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\WINDOWS\system32\CNAS0MOK.DLL [1006080 2012-08-09] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2152704 2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-19] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BE3AF7EC-BAB7-44DA-8B34-F0D5CF17ECAE} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {0389A856-D83F-4D16-86AC-A5DD1A7CD87A} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha dokumentů => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {B375DEE7-E6EC-4C99-A95E-9229B595DC2F} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha plochy => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {A08F04EC-BBF6-451D-B1B1-7278FEB43C6F} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha pošty => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {2DDF8932-87E3-45BF-AF7E-B78548CA18A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {75A3CD0B-1896-4A0B-A249-EF3589849DB6} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {2A162FC4-14B2-404B-AD6E-9066ABCC5A82} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {43746B7A-D381-4948-A3A4-7D0C33A54C09} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {1E5B7A72-EA4A-4DE5-A934-675DDAA913E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {D9BF621F-8AC9-4013-8A90-FC117D4A2616} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C0D43EA2-8388-4C76-A6C9-6AF731E37F5D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {75A20A26-E39E-40A3-AA2D-428936CF4514} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {7E59A231-0E98-42DC-BE69-9A1C46F223EF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4bd877bc-b5d5-4246-bef2-51b42580e164 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {94E7ED8B-8FB3-47FD-B040-994252827ED6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8e7f504f-1a44-43a2-bf1e-2ed06dfae3bb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F1D53737-1AA6-471C-881E-04E69D8D376C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d4b3f9ae-a011-47ee-821e-fbb5ccb0d823 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {18559135-1E45-4CD8-8392-07E128A72C31} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e093394b-ce43-41ab-9039-a4a386aec11c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {59EFC4D4-045F-4F87-98CF-1D4AA5A8784A} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {858DBBE7-42E8-4F6C-8347-46D46A68020A} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {86573A0A-E6CB-4F3D-B7BE-E9C1B21AB7FA} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {CE2B1E55-0901-4CDE-81B9-20F4DD0906BC} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {BAD4AE12-C648-4AA7-BE36-F965B73BB897} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2A92963E-893E-4420-91AE-A139CDA61EA4} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {690D6A5C-3366-42CE-821B-2143622FE8AB} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {53C5EA45-FAF7-4687-9E34-333E35B00ECA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {7A04DF06-7AEB-4BD8-B0D6-378A591A969C} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {200AA238-3556-4F19-AE97-16CF0A798DEA} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {D0058E25-5FB6-4935-8F6D-B0101693148B} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5C2A1815-78A0-4B8B-9651-45972AB7EA9D} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {768D665A-3A33-407D-9A88-7B7DA307776B} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {DE5CD1CC-E883-4585-8437-F72EEB3FAC8C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {924A4300-E711-4742-9628-86C998A83D32} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {9869D50F-6C20-4675-889C-59A2892AF069} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-16] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {99ED46E1-1A6D-4E3D-9D17-2B1F292E18FB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {5C09D715-E220-4D9F-838B-7E6670B632C8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DFA2D41-FB8A-4FEA-A261-A730713679BC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1460606035-3293630550-1657839234-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {26C7113E-A8A9-4C07-944D-01250E901AF3} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1460606035-3293630550-1657839234-1003 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F3A15004-56B2-4FCA-B7B5-13E9726E3E5D} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2017-02-17] (CyberLink Corp. -> CyberLink Corp.)
Task: {AC7426B7-CAE7-43E7-8090-0B08C373B561} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6DC1BA39-CD13-4C5C-968A-3B2396563C18} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D3077DFA-8D90-4353-80A1-B931F89BA057} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8116442B-E65F-49C1-9FC1-E2137D335829} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A343F629-9C12-4DF0-A61E-59261EFB4F19} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f638c30-fbab-4211-b67f-496ceb20230d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b718c13b-29cd-4ec3-8459-2c277bc8b08e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-20]
Edge Extension: (Dokumenty Google offline) - C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-08]
Edge Extension: (Edge relevant text changes) - C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-26]
FireFox:
========
FF DefaultProfile: mt5mj24s.default
FF ProfilePath: C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default [2023-10-20]
FF user.js: detected! => C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\user.js [2022-09-21]
FF Notifications: Mozilla\Firefox\Profiles\mt5mj24s.default -> hxxps://www.jeans-store.cz
FF Extension: (FormApps Extension) - C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2021-01-20]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-10-20]
Chrome:
=======
CHR Profile: C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default [2023-10-19]
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/chromoting/chromoting_logo_512.png
CHR Extension: (Prezentace) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-29]
CHR Extension: (Dokumenty) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-29]
CHR Extension: (Disk Google) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-29]
CHR Extension: (YouTube) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-29]
CHR Extension: (Chrome Remote Desktop) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2021-01-29]
CHR Extension: (Tabulky) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-09]
CHR Extension: (Chrome Remote Desktop) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-29]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 Canon Driver Information Assist Service; C:\Program Files\Canon\DIAS\CnxDIAS.exe [4956200 2012-12-21] (CANON INC. -> CANON INC.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe [74520 2023-06-26] (Google LLC -> Google LLC)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3054128 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
S2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2528888 2023-09-25] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3860080 2023-09-25] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3860080 2023-09-25] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncHelper.exe [3503544 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
S2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
S4 McAfeeWatchdogService; C:\Program Files\Common Files\McAfeeWatchdog\McAfeeWatchdogService.exe [2581440 2019-03-23] (McAfee, Inc. -> McAfee, Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\OneDriveUpdaterService.exe [3840432 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [208704 2023-08-03] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [118904 2023-08-03] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [249544 2023-08-03] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55424 2023-08-03] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81712 2023-08-03] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [123040 2023-08-03] (ESET, spol. s r.o. -> ESET)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-20 17:22 - 2023-10-20 17:25 - 000027482 _____ C:\Users\kancelar3\Desktop\FRST.txt
2023-10-20 16:50 - 2023-10-20 16:54 - 000000000 ____D C:\AdwCleaner
2023-10-20 16:49 - 2023-10-20 16:48 - 008791352 _____ (Malwarebytes) C:\Users\kancelar3\Desktop\adwcleaner.exe
2023-10-20 11:28 - 2023-10-20 17:24 - 000000000 ____D C:\FRST
2023-10-20 10:55 - 2023-10-20 10:55 - 002383360 _____ (Farbar) C:\Users\kancelar3\Desktop\FRST64.exe
2023-10-19 11:29 - 2023-10-19 11:29 - 002152523 _____ C:\Users\kancelar3\Downloads\Záznam o úrazu - Karel Morava.pdf
2023-10-19 11:03 - 2023-10-19 11:03 - 000192745 _____ C:\Users\kancelar3\Downloads\priloha_1256202162_0_Vyzva_provozovateli_1UR7675.pdf
2023-10-19 08:26 - 2023-10-19 15:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2023-10-18 14:22 - 2023-10-18 14:22 - 000094874 _____ C:\Users\kancelar3\Downloads\priloha_1255567242_0_trvaniDpnInfo_37929911.pdf
2023-10-18 13:10 - 2023-10-18 13:10 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-16 08:45 - 2023-10-16 08:45 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_1_Faktury, pronájem dopravního značení.pdf
2023-10-16 08:45 - 2023-10-16 08:45 - 000200477 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_2_5460 Laufer 509.pdf
2023-10-16 08:44 - 2023-10-16 08:44 - 000009602 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_0_Textová zpráva.PDF
2023-10-16 08:42 - 2023-10-16 08:42 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_1_Faktury, pronájem dopravního značení-1.pdf
2023-10-16 08:42 - 2023-10-16 08:42 - 000010582 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_0_Textová zpráva-1.PDF
2023-10-16 08:38 - 2023-10-16 08:38 - 000939840 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_2_faktury č.230100508,230100425,230100424,230100361, 230100360.pdf
2023-10-16 08:37 - 2023-10-16 08:37 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_1_Faktury, pronájem dopravního značení.pdf
2023-10-16 08:37 - 2023-10-16 08:37 - 000010582 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_0_Textová zpráva.PDF
2023-10-16 08:11 - 2023-10-19 09:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-13 09:07 - 2023-10-13 09:07 - 006139985 _____ C:\Users\kancelar3\Desktop\Přijaté faktury neodeslané.zip
2023-10-13 07:08 - 2023-10-13 07:10 - 000738352 _____ C:\Users\kancelar3\Downloads\Zřízení a výměna SDZ v ÚK (9-2023).xlsx - Skupina.pdf
2023-10-12 17:11 - 2023-10-12 17:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-10-12 17:11 - 2023-10-12 17:11 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-12 08:48 - 2023-10-12 08:48 - 000621587 _____ C:\Users\kancelar3\Downloads\priloha_1253016935_0_23-3060.pdf
2023-10-11 10:53 - 2023-10-11 10:53 - 000118917 _____ C:\Users\kancelar3\Downloads\priloha_1251673267_0_230059917-1.pdf
2023-10-11 03:48 - 2023-10-11 03:48 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 02:03 - 2023-10-11 02:03 - 000000000 ___HD C:\$WinREAgent
2023-10-10 15:09 - 2023-10-10 15:09 - 000118917 _____ C:\Users\kancelar3\Downloads\priloha_1251673267_0_230059917.pdf
2023-10-09 15:42 - 2023-10-09 15:42 - 000696484 _____ C:\Users\kancelar3\Downloads\priloha_1251398447_0_23535-2023_Exekuční_příkaz_-_MP_-_mzda_sign.pdf
2023-10-09 13:09 - 2023-10-09 13:11 - 733562879 _____ C:\Users\kancelar3\Downloads\Jak vytrhnout velrybě stoličku (1977) [juraison+].avi
2023-10-09 13:07 - 2023-10-09 13:07 - 149506240 _____ C:\Users\kancelar3\Downloads\Jak vytrhnout velrybě stoličku - AUDIO CD (1977).rar
2023-10-06 10:08 - 2023-10-06 10:13 - 000087036 _____ C:\Users\kancelar3\Downloads\Laufer 2023_09_souhrnny.pdf
2023-10-06 10:08 - 2023-10-06 10:12 - 000079907 _____ C:\Users\kancelar3\Downloads\Laufer 2023_08_souhrnny.pdf
2023-10-06 10:08 - 2023-10-06 10:12 - 000056470 _____ C:\Users\kancelar3\Downloads\Laufer 2023_08_1_souhrnny.pdf
2023-10-06 09:54 - 2023-10-06 09:54 - 014427373 _____ C:\Users\kancelar3\Desktop\Podklady ke zprávě.zip
2023-10-06 09:53 - 2023-10-06 09:53 - 019092639 _____ C:\Users\kancelar3\Desktop\BOZP 2-2020.zip
2023-10-06 09:27 - 2023-10-06 09:28 - 000000000 ____D C:\Users\kancelar3\Desktop\BOZP 2-2020
2023-10-05 14:39 - 2023-10-06 08:18 - 002021958 _____ C:\Users\kancelar3\Downloads\Zřízení a výměna SDZ v ÚK (8-2023).pdf
2023-10-05 10:46 - 2023-10-05 10:48 - 002574750 _____ C:\Users\kancelar3\Downloads\I-13 okr. Most, zabezpečení průjezdného profilu 9-2023 .pdf
2023-10-05 10:24 - 2023-10-06 09:54 - 000000000 ____D C:\Users\kancelar3\Desktop\Podklady ke zprávě
2023-10-04 15:02 - 2023-10-04 15:02 - 000099154 _____ C:\Users\kancelar3\Downloads\priloha_1249469707_0_vznikDpnInfo_37618200-1.pdf
2023-10-04 15:00 - 2023-10-04 15:00 - 000099154 _____ C:\Users\kancelar3\Downloads\priloha_1249469707_0_vznikDpnInfo_37618200.pdf
2023-10-04 14:57 - 2023-10-04 14:57 - 000093469 _____ C:\Users\kancelar3\Downloads\priloha_1249425690_0_vznikDpnOznam_37611779.pdf
2023-10-03 10:38 - 2023-10-03 10:38 - 000275098 _____ C:\Users\kancelar3\Downloads\CCF_003582.pdf
2023-10-03 09:55 - 2023-10-03 12:28 - 007243298 _____ C:\Users\kancelar3\Downloads\Uvodni_sada_pravidla_v1.10.pdf
2023-10-03 09:37 - 2023-10-03 09:37 - 001645528 _____ C:\Users\kancelar3\Downloads\priloha_1248072527_1_040806230000596.pdf
2023-10-03 09:35 - 2023-10-03 09:35 - 000181076 _____ C:\Users\kancelar3\Downloads\priloha_1248072527_0_Potvrzení_o_účasti_na_dopravní_nehodě-DN.pdf
2023-10-03 09:34 - 2023-10-03 09:34 - 000652611 _____ C:\Users\kancelar3\Downloads\priloha_1247742182_0_22894-2023_výzva_k_poskytnutí_info-zaměstnavatel_MP_sign.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 003582183 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_1_Opatření obecné povahy.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 001043933 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_0_Loucna-navrh-DZ.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 000438795 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_2_2023-42329.pdf
2023-09-27 11:22 - 2023-09-27 11:22 - 004762988 _____ C:\Users\kancelar3\Downloads\administrativní budova(1).zip
2023-09-27 11:21 - 2023-09-27 11:21 - 004762988 _____ C:\Users\kancelar3\Downloads\administrativní budova.zip
2023-09-25 14:46 - 2023-10-05 11:09 - 001932545 _____ C:\Users\kancelar3\Downloads\Zřízení a výměn SDZ v ÚK (8-2023).pdf
2023-09-25 11:46 - 2023-09-25 11:46 - 000832432 _____ C:\Users\kancelar3\Desktop\HOTOVO.zip
2023-09-22 10:57 - 2023-09-22 10:57 - 000538834 _____ C:\Users\kancelar3\Downloads\Vyjádření k Pokynu Pověřené osoby objednatele.pdf
2023-09-22 08:31 - 2023-09-22 08:31 - 000207786 _____ C:\Users\kancelar3\Downloads\17 150110 ILNO.pdf
2023-09-22 08:30 - 2023-09-22 08:30 - 000224501 _____ C:\Users\kancelar3\Downloads\OODP-Navod_Odpad_150110.pdf
2023-09-21 09:36 - 2023-09-21 09:36 - 000324750 _____ C:\Users\kancelar3\Downloads\priloha_1243637266_0_Pokyn k předložení HMG prací+finanční HMG_vzor RD GB FIDIC-1.pdf
2023-09-21 08:19 - 2023-09-21 08:19 - 001043933 _____ C:\Users\kancelar3\Downloads\priloha_1243664029_0_Loucna-navrh-DZ.pdf
2023-09-21 08:19 - 2023-09-21 08:19 - 000391468 _____ C:\Users\kancelar3\Downloads\priloha_1243664029_1_2023-42329.pdf
2023-09-21 08:17 - 2023-09-21 08:17 - 000324750 _____ C:\Users\kancelar3\Downloads\priloha_1243637266_0_Pokyn k předložení HMG prací+finanční HMG_vzor RD GB FIDIC.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-20 17:22 - 2020-09-30 16:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-20 17:22 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-20 16:55 - 2021-12-15 21:40 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-20 16:55 - 2021-01-29 13:54 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-20 16:54 - 2022-09-21 06:10 - 000000000 ____D C:\Program Files (x86)\IObit
2023-10-20 15:07 - 2022-12-12 10:22 - 000000000 ____D C:\Users\kancelar3\AppData\Local\CrashDumps
2023-10-20 15:00 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-20 14:46 - 2020-09-30 17:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-20 14:46 - 2020-09-30 16:37 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-20 14:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-20 11:44 - 2019-03-30 09:52 - 000000000 ___RD C:\Users\kancelar3\OneDrive
2023-10-20 10:45 - 2020-09-30 16:55 - 000000000 ____D C:\Users\kancelar3
2023-10-20 10:26 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-20 10:26 - 2017-11-17 02:45 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2023-10-20 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-20 09:53 - 2019-06-10 14:23 - 000000000 ____D C:\Users\kancelar3\AppData\Local\D3DSCache
2023-10-20 07:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-20 06:35 - 2020-06-10 00:33 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-20 06:35 - 2020-06-10 00:33 - 000002312 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-19 21:37 - 2021-01-29 13:55 - 000002285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-19 21:37 - 2021-01-29 13:55 - 000002244 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-10-19 15:22 - 2022-02-10 09:09 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-19 15:11 - 2022-05-11 12:10 - 000661186 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-19 15:11 - 2022-05-11 12:10 - 000136420 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-19 15:11 - 2020-09-30 17:11 - 001562480 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-19 15:00 - 2019-03-23 10:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-19 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-19 13:57 - 2019-03-23 10:01 - 000000000 ____D C:\Install
2023-10-19 13:33 - 2019-03-30 10:24 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\Microsoft\Word
2023-10-19 11:59 - 2019-03-30 10:23 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\Microsoft\Excel
2023-10-19 11:51 - 2019-03-23 11:25 - 000000980 _____ C:\Users\kancelar3\Desktop\Dokumenty OneDrive.lnk
2023-10-19 09:31 - 2023-02-01 10:54 - 000000000 ____D C:\Users\kancelar3\Desktop\Vydané faktury 2023
2023-10-19 09:22 - 2019-03-23 10:20 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-10-19 09:13 - 2021-09-08 09:42 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-19 08:43 - 2023-02-08 11:35 - 000000000 ____D C:\Users\kancelar3\Desktop\Přijaté faktury neodeslané
2023-10-16 08:48 - 2019-03-25 15:29 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-13 14:43 - 2020-03-30 11:42 - 000017927 _____ C:\Users\kancelar3\Desktop\Seznam vozidel a přívěsů.xlsx
2023-10-13 09:20 - 2023-02-01 10:53 - 000000000 ____D C:\Users\kancelar3\Desktop\Přijaté faktury 2023
2023-10-12 17:11 - 2021-12-11 21:32 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1460606035-3293630550-1657839234-1003
2023-10-11 16:31 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-11 15:56 - 2022-05-11 18:02 - 000444672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-11 15:39 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-11 15:35 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-11 15:32 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-11 15:32 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-11 15:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-11 15:17 - 2019-03-30 09:49 - 000000000 ____D C:\Users\kancelar3\AppData\LocalLow\Mozilla
2023-10-11 05:13 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 03:45 - 2020-09-30 16:47 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 00:53 - 2019-03-25 08:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 00:32 - 2019-03-25 08:54 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-10 13:14 - 2019-03-30 09:46 - 000000000 ____D C:\Users\kancelar3\AppData\Local\Packages
2023-10-10 09:14 - 2023-01-16 14:57 - 000000000 ____D C:\Users\kancelar3\Desktop\vozový park
2023-10-09 13:08 - 2019-06-26 08:22 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\vlc
2023-10-06 15:33 - 2023-05-24 10:01 - 000000000 ____D C:\Program Files\RUXIM
2023-10-05 09:45 - 2020-03-04 13:24 - 000000000 ____D C:\Users\kancelar3\Desktop\Kategorizace prací
2023-10-05 08:10 - 2023-02-20 15:45 - 000000000 ____D C:\Users\kancelar3\Desktop\MZDY
2023-09-27 18:20 - 2019-03-26 08:44 - 000000000 ____D C:\ProgramData\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by kancelar3 (administrator) on UCETNI (LENOVO 80XV) (20-10-2023 17:22:51)
Running from C:\Users\kancelar3\Desktop\FRST64.exe
Loaded Profiles: kancelar3
Platform: Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(C:\Program Files\Altap Salamander\salamand.exe ->) (Fine spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\utils\salmon.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\egui.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(C:\Program Files\ESET\ESET Security\ekrn.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(explorer.exe ->) (Fine spol. s r.o. -> ALTAP) C:\Program Files\Altap Salamander\salamand.exe
(explorer.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Users\kancelar3\Desktop\adwcleaner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(services.exe ->) (CANON INC. -> CANON INC.) C:\Program Files\Canon\DIAS\CnxDIAS.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\efwd.exe
(services.exe ->) (ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(services.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe <2>
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [193984 2023-09-25] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT6.EXE [486552 2012-09-27] (CANON INC. -> CANON INC.)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849920 2017-03-07] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM-x32\...\Run: [I16A] => C:\Windows\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [86112 2018-11-01] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [File not signed]
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2588592 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\...\Run: [MicrosoftEdgeAutoLaunch_C1E27C3FFDCC0A15C8912C070594DAB8] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start /prefetch:5 [4187088 2023-10-18] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon MFNP Port: C:\WINDOWS\system32\CNCENPM6.dll [152064 2013-02-01] (CANON INC.) [File not signed]
HKLM\...\Print\Monitors\Canon WSD Language Monitor: C:\WINDOWS\system32\cnnx0_flm.dll [1420800 2013-04-02] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\CPCA Language Monitor3b: C:\WINDOWS\system32\CNAS0MOK.DLL [1006080 2012-08-09] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2152704 2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\118.0.5993.89\Installer\chrmstp.exe [2023-10-19] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {BE3AF7EC-BAB7-44DA-8B34-F0D5CF17ECAE} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {0389A856-D83F-4D16-86AC-A5DD1A7CD87A} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha dokumentů => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {B375DEE7-E6EC-4C99-A95E-9229B595DC2F} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha plochy => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {A08F04EC-BBF6-451D-B1B1-7278FEB43C6F} - System32\Tasks\2BrightSparks\SyncBackFree\KANCELAR03-kancelar3\SyncBackFree Záloha pošty => C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe [62487512 2022-08-15] (2BrightSparks Pte. Ltd. -> 2BrightSparks Pte. Ltd.)
Task: {2DDF8932-87E3-45BF-AF7E-B78548CA18A1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1566200 2023-09-20] (Adobe Inc. -> Adobe Inc.)
Task: {75A3CD0B-1896-4A0B-A249-EF3589849DB6} - System32\Tasks\Canon\OIPPESP\Canon OIP Product Extended Survey Program => C:\Program Files\Canon\OIPPESP\Cnpspcnt.exe [1826264 2020-07-29] (CANON INC. -> CANON INC.) -> /Config:"C:\Program Files\Canon\OIPPESP\CnpspCfg.xml"
Task: {2A162FC4-14B2-404B-AD6E-9066ABCC5A82} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {43746B7A-D381-4948-A3A4-7D0C33A54C09} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {1E5B7A72-EA4A-4DE5-A934-675DDAA913E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {D9BF621F-8AC9-4013-8A90-FC117D4A2616} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [74952 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {C0D43EA2-8388-4C76-A6C9-6AF731E37F5D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> START ImControllerService
Task: {75A20A26-E39E-40A3-AA2D-428936CF4514} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => C:\WINDOWS\System32\reg.exe [77312 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {7E59A231-0E98-42DC-BE69-9A1C46F223EF} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\4bd877bc-b5d5-4246-bef2-51b42580e164 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {94E7ED8B-8FB3-47FD-B040-994252827ED6} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\8e7f504f-1a44-43a2-bf1e-2ed06dfae3bb => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {F1D53737-1AA6-471C-881E-04E69D8D376C} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d4b3f9ae-a011-47ee-821e-fbb5ccb0d823 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {18559135-1E45-4CD8-8392-07E128A72C31} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\e093394b-ce43-41ab-9039-a4a386aec11c => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
Task: {59EFC4D4-045F-4F87-98CF-1D4AA5A8784A} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => C:\WINDOWS\system32\sc.exe [72192 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> start LenovoVantageService
Task: {858DBBE7-42E8-4F6C-8347-46D46A68020A} - System32\Tasks\Lenovo\Vantage\Schedule\BatteryGaugeAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {86573A0A-E6CB-4F3D-B7BE-E9C1B21AB7FA} - System32\Tasks\Lenovo\Vantage\Schedule\DailyTelemetryTransmission => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {CE2B1E55-0901-4CDE-81B9-20F4DD0906BC} - System32\Tasks\Lenovo\Vantage\Schedule\GenericMessagingAddin => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {BAD4AE12-C648-4AA7-BE36-F965B73BB897} - System32\Tasks\Lenovo\Vantage\Schedule\HeartbeatAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {2A92963E-893E-4420-91AE-A139CDA61EA4} - System32\Tasks\Lenovo\Vantage\Schedule\IdeaNotebookAddinDailyEvent => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {690D6A5C-3366-42CE-821B-2143622FE8AB} - System32\Tasks\Lenovo\Vantage\Schedule\Lenovo.Vantage.SmartPerformance.MonthlyReport => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {53C5EA45-FAF7-4687-9E34-333E35B00ECA} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoCompanionAppAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {7A04DF06-7AEB-4BD8-B0D6-378A591A969C} - System32\Tasks\Lenovo\Vantage\Schedule\LenovoSystemUpdateAddin_WeeklyTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {200AA238-3556-4F19-AE97-16CF0A798DEA} - System32\Tasks\Lenovo\Vantage\Schedule\SettingsWidgetAddinDailyScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {D0058E25-5FB6-4935-8F6D-B0101693148B} - System32\Tasks\Lenovo\Vantage\Schedule\SmartPerformance.ExpireReminder => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {5C2A1815-78A0-4B8B-9651-45972AB7EA9D} - System32\Tasks\Lenovo\Vantage\Schedule\VantageCoreAddinWeekScheduleTask => C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\ScheduleEventAction.exe [30040 2023-07-14] (Lenovo -> Lenovo)
Task: {768D665A-3A33-407D-9A88-7B7DA307776B} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.6.15.0\ScheduleEventAction.exe VantageTelemetryAddinTask (No File)
Task: {DE5CD1CC-E883-4585-8437-F72EEB3FAC8C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {924A4300-E711-4742-9628-86C998A83D32} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [973768 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {9869D50F-6C20-4675-889C-59A2892AF069} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [676768 2023-10-16] (Mozilla Corporation -> Mozilla Corporation) -> --MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask backgroundupdate
Task: {99ED46E1-1A6D-4E3D-9D17-2B1F292E18FB} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [718240 2023-10-16] (Mozilla Corporation -> Mozilla Foundation)
Task: {5C09D715-E220-4D9F-838B-7E6670B632C8} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {7DFA2D41-FB8A-4FEA-A261-A730713679BC} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1460606035-3293630550-1657839234-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130720 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Task: {26C7113E-A8A9-4C07-944D-01250E901AF3} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-1460606035-3293630550-1657839234-1003 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {F3A15004-56B2-4FCA-B7B5-13E9726E3E5D} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2017-02-17] (CyberLink Corp. -> CyberLink Corp.)
Task: {AC7426B7-CAE7-43E7-8090-0B08C373B561} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6DC1BA39-CD13-4C5C-968A-3B2396563C18} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D3077DFA-8D90-4353-80A1-B931F89BA057} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1493992 2017-08-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8116442B-E65F-49C1-9FC1-E2137D335829} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49032 2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {A343F629-9C12-4DF0-A61E-59261EFB4F19} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [63880 2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8f638c30-fbab-4211-b67f-496ceb20230d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{b718c13b-29cd-4ec3-8459-2c277bc8b08e}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
Edge DefaultProfile: Default
Edge Profile: C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default [2023-10-20]
Edge Extension: (Dokumenty Google offline) - C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-08]
Edge Extension: (Edge relevant text changes) - C:\Users\kancelar3\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-26]
FireFox:
========
FF DefaultProfile: mt5mj24s.default
FF ProfilePath: C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default [2023-10-20]
FF user.js: detected! => C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\user.js [2022-09-21]
FF Notifications: Mozilla\Firefox\Profiles\mt5mj24s.default -> hxxps://www.jeans-store.cz
FF Extension: (FormApps Extension) - C:\Users\kancelar3\AppData\Roaming\Mozilla\Firefox\Profiles\mt5mj24s.default\Extensions\{69F080C9-A1D8-42F8-BD83-3D54D4BC81B3}.xpi [2021-01-20]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2023-09-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2023-10-20]
Chrome:
=======
CHR Profile: C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default [2023-10-19]
CHR DefaultSearchURL: Default -> hxxps://ssl.gstatic.com/chromoting/chromoting_logo_512.png
CHR Extension: (Prezentace) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2021-01-29]
CHR Extension: (Dokumenty) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2021-01-29]
CHR Extension: (Disk Google) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-01-29]
CHR Extension: (YouTube) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2021-01-29]
CHR Extension: (Chrome Remote Desktop) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\efmjfjelnicpmdcmfikempdhlmainjcb [2021-01-29]
CHR Extension: (Tabulky) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2021-01-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2021-12-09]
CHR Extension: (Chrome Remote Desktop) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-01-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Gmail) - C:\Users\kancelar3\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-01-29]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [173040 2023-09-20] (Adobe Inc. -> Adobe Inc.)
R2 Canon Driver Information Assist Service; C:\Program Files\Canon\DIAS\CnxDIAS.exe [4956200 2012-12-21] (CANON INC. -> CANON INC.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe [74520 2023-06-26] (Google LLC -> Google LLC)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3054128 2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
S2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 efwd; C:\Program Files\ESET\ESET Security\efwd.exe [2528888 2023-09-25] (ESET, spol. s r.o. -> ESET)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [3860080 2023-09-25] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [3860080 2023-09-25] (ESET, spol. s r.o. -> ESET)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncHelper.exe [3503544 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
S2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [93896 2022-11-20] (Lenovo -> Lenovo Group Ltd.)
S2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.13.72.0\LenovoVantageService.exe [34176 2023-07-14] (Lenovo -> Lenovo)
S4 McAfeeWatchdogService; C:\Program Files\Common Files\McAfeeWatchdog\McAfeeWatchdogService.exe [2581440 2019-03-23] (McAfee, Inc. -> McAfee, Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.199.0924.0001\OneDriveUpdaterService.exe [3840432 2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-09] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [208704 2023-08-03] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [118904 2023-08-03] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [16336 2022-08-23] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [249544 2023-08-03] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [55424 2023-08-03] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81712 2023-08-03] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [123040 2023-08-03] (ESET, spol. s r.o. -> ESET)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-09] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz150; \??\C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-20 17:22 - 2023-10-20 17:25 - 000027482 _____ C:\Users\kancelar3\Desktop\FRST.txt
2023-10-20 16:50 - 2023-10-20 16:54 - 000000000 ____D C:\AdwCleaner
2023-10-20 16:49 - 2023-10-20 16:48 - 008791352 _____ (Malwarebytes) C:\Users\kancelar3\Desktop\adwcleaner.exe
2023-10-20 11:28 - 2023-10-20 17:24 - 000000000 ____D C:\FRST
2023-10-20 10:55 - 2023-10-20 10:55 - 002383360 _____ (Farbar) C:\Users\kancelar3\Desktop\FRST64.exe
2023-10-19 11:29 - 2023-10-19 11:29 - 002152523 _____ C:\Users\kancelar3\Downloads\Záznam o úrazu - Karel Morava.pdf
2023-10-19 11:03 - 2023-10-19 11:03 - 000192745 _____ C:\Users\kancelar3\Downloads\priloha_1256202162_0_Vyzva_provozovateli_1UR7675.pdf
2023-10-19 08:26 - 2023-10-19 15:00 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2023-10-18 14:22 - 2023-10-18 14:22 - 000094874 _____ C:\Users\kancelar3\Downloads\priloha_1255567242_0_trvaniDpnInfo_37929911.pdf
2023-10-18 13:10 - 2023-10-18 13:10 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2023-10-16 08:45 - 2023-10-16 08:45 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_1_Faktury, pronájem dopravního značení.pdf
2023-10-16 08:45 - 2023-10-16 08:45 - 000200477 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_2_5460 Laufer 509.pdf
2023-10-16 08:44 - 2023-10-16 08:44 - 000009602 _____ C:\Users\kancelar3\Downloads\priloha_1253775519_0_Textová zpráva.PDF
2023-10-16 08:42 - 2023-10-16 08:42 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_1_Faktury, pronájem dopravního značení-1.pdf
2023-10-16 08:42 - 2023-10-16 08:42 - 000010582 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_0_Textová zpráva-1.PDF
2023-10-16 08:38 - 2023-10-16 08:38 - 000939840 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_2_faktury č.230100508,230100425,230100424,230100361, 230100360.pdf
2023-10-16 08:37 - 2023-10-16 08:37 - 000253721 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_1_Faktury, pronájem dopravního značení.pdf
2023-10-16 08:37 - 2023-10-16 08:37 - 000010582 _____ C:\Users\kancelar3\Downloads\priloha_1253707699_0_Textová zpráva.PDF
2023-10-16 08:11 - 2023-10-19 09:13 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-10-13 09:07 - 2023-10-13 09:07 - 006139985 _____ C:\Users\kancelar3\Desktop\Přijaté faktury neodeslané.zip
2023-10-13 07:08 - 2023-10-13 07:10 - 000738352 _____ C:\Users\kancelar3\Downloads\Zřízení a výměna SDZ v ÚK (9-2023).xlsx - Skupina.pdf
2023-10-12 17:11 - 2023-10-12 17:11 - 000003194 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-10-12 17:11 - 2023-10-12 17:11 - 000002168 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-10-12 08:48 - 2023-10-12 08:48 - 000621587 _____ C:\Users\kancelar3\Downloads\priloha_1253016935_0_23-3060.pdf
2023-10-11 10:53 - 2023-10-11 10:53 - 000118917 _____ C:\Users\kancelar3\Downloads\priloha_1251673267_0_230059917-1.pdf
2023-10-11 03:48 - 2023-10-11 03:48 - 000016059 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2023-10-11 02:03 - 2023-10-11 02:03 - 000000000 ___HD C:\$WinREAgent
2023-10-10 15:09 - 2023-10-10 15:09 - 000118917 _____ C:\Users\kancelar3\Downloads\priloha_1251673267_0_230059917.pdf
2023-10-09 15:42 - 2023-10-09 15:42 - 000696484 _____ C:\Users\kancelar3\Downloads\priloha_1251398447_0_23535-2023_Exekuční_příkaz_-_MP_-_mzda_sign.pdf
2023-10-09 13:09 - 2023-10-09 13:11 - 733562879 _____ C:\Users\kancelar3\Downloads\Jak vytrhnout velrybě stoličku (1977) [juraison+].avi
2023-10-09 13:07 - 2023-10-09 13:07 - 149506240 _____ C:\Users\kancelar3\Downloads\Jak vytrhnout velrybě stoličku - AUDIO CD (1977).rar
2023-10-06 10:08 - 2023-10-06 10:13 - 000087036 _____ C:\Users\kancelar3\Downloads\Laufer 2023_09_souhrnny.pdf
2023-10-06 10:08 - 2023-10-06 10:12 - 000079907 _____ C:\Users\kancelar3\Downloads\Laufer 2023_08_souhrnny.pdf
2023-10-06 10:08 - 2023-10-06 10:12 - 000056470 _____ C:\Users\kancelar3\Downloads\Laufer 2023_08_1_souhrnny.pdf
2023-10-06 09:54 - 2023-10-06 09:54 - 014427373 _____ C:\Users\kancelar3\Desktop\Podklady ke zprávě.zip
2023-10-06 09:53 - 2023-10-06 09:53 - 019092639 _____ C:\Users\kancelar3\Desktop\BOZP 2-2020.zip
2023-10-06 09:27 - 2023-10-06 09:28 - 000000000 ____D C:\Users\kancelar3\Desktop\BOZP 2-2020
2023-10-05 14:39 - 2023-10-06 08:18 - 002021958 _____ C:\Users\kancelar3\Downloads\Zřízení a výměna SDZ v ÚK (8-2023).pdf
2023-10-05 10:46 - 2023-10-05 10:48 - 002574750 _____ C:\Users\kancelar3\Downloads\I-13 okr. Most, zabezpečení průjezdného profilu 9-2023 .pdf
2023-10-05 10:24 - 2023-10-06 09:54 - 000000000 ____D C:\Users\kancelar3\Desktop\Podklady ke zprávě
2023-10-04 15:02 - 2023-10-04 15:02 - 000099154 _____ C:\Users\kancelar3\Downloads\priloha_1249469707_0_vznikDpnInfo_37618200-1.pdf
2023-10-04 15:00 - 2023-10-04 15:00 - 000099154 _____ C:\Users\kancelar3\Downloads\priloha_1249469707_0_vznikDpnInfo_37618200.pdf
2023-10-04 14:57 - 2023-10-04 14:57 - 000093469 _____ C:\Users\kancelar3\Downloads\priloha_1249425690_0_vznikDpnOznam_37611779.pdf
2023-10-03 10:38 - 2023-10-03 10:38 - 000275098 _____ C:\Users\kancelar3\Downloads\CCF_003582.pdf
2023-10-03 09:55 - 2023-10-03 12:28 - 007243298 _____ C:\Users\kancelar3\Downloads\Uvodni_sada_pravidla_v1.10.pdf
2023-10-03 09:37 - 2023-10-03 09:37 - 001645528 _____ C:\Users\kancelar3\Downloads\priloha_1248072527_1_040806230000596.pdf
2023-10-03 09:35 - 2023-10-03 09:35 - 000181076 _____ C:\Users\kancelar3\Downloads\priloha_1248072527_0_Potvrzení_o_účasti_na_dopravní_nehodě-DN.pdf
2023-10-03 09:34 - 2023-10-03 09:34 - 000652611 _____ C:\Users\kancelar3\Downloads\priloha_1247742182_0_22894-2023_výzva_k_poskytnutí_info-zaměstnavatel_MP_sign.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 003582183 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_1_Opatření obecné povahy.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 001043933 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_0_Loucna-navrh-DZ.pdf
2023-10-03 09:32 - 2023-10-03 09:32 - 000438795 _____ C:\Users\kancelar3\Downloads\priloha_1247658575_2_2023-42329.pdf
2023-09-27 11:22 - 2023-09-27 11:22 - 004762988 _____ C:\Users\kancelar3\Downloads\administrativní budova(1).zip
2023-09-27 11:21 - 2023-09-27 11:21 - 004762988 _____ C:\Users\kancelar3\Downloads\administrativní budova.zip
2023-09-25 14:46 - 2023-10-05 11:09 - 001932545 _____ C:\Users\kancelar3\Downloads\Zřízení a výměn SDZ v ÚK (8-2023).pdf
2023-09-25 11:46 - 2023-09-25 11:46 - 000832432 _____ C:\Users\kancelar3\Desktop\HOTOVO.zip
2023-09-22 10:57 - 2023-09-22 10:57 - 000538834 _____ C:\Users\kancelar3\Downloads\Vyjádření k Pokynu Pověřené osoby objednatele.pdf
2023-09-22 08:31 - 2023-09-22 08:31 - 000207786 _____ C:\Users\kancelar3\Downloads\17 150110 ILNO.pdf
2023-09-22 08:30 - 2023-09-22 08:30 - 000224501 _____ C:\Users\kancelar3\Downloads\OODP-Navod_Odpad_150110.pdf
2023-09-21 09:36 - 2023-09-21 09:36 - 000324750 _____ C:\Users\kancelar3\Downloads\priloha_1243637266_0_Pokyn k předložení HMG prací+finanční HMG_vzor RD GB FIDIC-1.pdf
2023-09-21 08:19 - 2023-09-21 08:19 - 001043933 _____ C:\Users\kancelar3\Downloads\priloha_1243664029_0_Loucna-navrh-DZ.pdf
2023-09-21 08:19 - 2023-09-21 08:19 - 000391468 _____ C:\Users\kancelar3\Downloads\priloha_1243664029_1_2023-42329.pdf
2023-09-21 08:17 - 2023-09-21 08:17 - 000324750 _____ C:\Users\kancelar3\Downloads\priloha_1243637266_0_Pokyn k předložení HMG prací+finanční HMG_vzor RD GB FIDIC.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2023-10-20 17:22 - 2020-09-30 16:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2023-10-20 17:22 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-10-20 16:55 - 2021-12-15 21:40 - 000000000 ____D C:\WINDOWS\SystemTemp
2023-10-20 16:55 - 2021-01-29 13:54 - 000000000 ____D C:\Program Files (x86)\Google
2023-10-20 16:54 - 2022-09-21 06:10 - 000000000 ____D C:\Program Files (x86)\IObit
2023-10-20 15:07 - 2022-12-12 10:22 - 000000000 ____D C:\Users\kancelar3\AppData\Local\CrashDumps
2023-10-20 15:00 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2023-10-20 14:46 - 2020-09-30 17:34 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2023-10-20 14:46 - 2020-09-30 16:37 - 000008192 ___SH C:\DumpStack.log.tmp
2023-10-20 14:46 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2023-10-20 11:44 - 2019-03-30 09:52 - 000000000 ___RD C:\Users\kancelar3\OneDrive
2023-10-20 10:45 - 2020-09-30 16:55 - 000000000 ____D C:\Users\kancelar3
2023-10-20 10:26 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2023-10-20 10:26 - 2017-11-17 02:45 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2023-10-20 10:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2023-10-20 09:53 - 2019-06-10 14:23 - 000000000 ____D C:\Users\kancelar3\AppData\Local\D3DSCache
2023-10-20 07:12 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2023-10-20 06:35 - 2020-06-10 00:33 - 000002474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-10-20 06:35 - 2020-06-10 00:33 - 000002312 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2023-10-19 21:37 - 2021-01-29 13:55 - 000002285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-10-19 21:37 - 2021-01-29 13:55 - 000002244 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2023-10-19 15:22 - 2022-02-10 09:09 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-10-19 15:11 - 2022-05-11 12:10 - 000661186 _____ C:\WINDOWS\system32\perfh005.dat
2023-10-19 15:11 - 2022-05-11 12:10 - 000136420 _____ C:\WINDOWS\system32\perfc005.dat
2023-10-19 15:11 - 2020-09-30 17:11 - 001562480 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2023-10-19 15:00 - 2019-03-23 10:05 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-10-19 14:40 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2023-10-19 13:57 - 2019-03-23 10:01 - 000000000 ____D C:\Install
2023-10-19 13:33 - 2019-03-30 10:24 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\Microsoft\Word
2023-10-19 11:59 - 2019-03-30 10:23 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\Microsoft\Excel
2023-10-19 11:51 - 2019-03-23 11:25 - 000000980 _____ C:\Users\kancelar3\Desktop\Dokumenty OneDrive.lnk
2023-10-19 09:31 - 2023-02-01 10:54 - 000000000 ____D C:\Users\kancelar3\Desktop\Vydané faktury 2023
2023-10-19 09:22 - 2019-03-23 10:20 - 000001289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2023-10-19 09:13 - 2021-09-08 09:42 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-10-19 08:43 - 2023-02-08 11:35 - 000000000 ____D C:\Users\kancelar3\Desktop\Přijaté faktury neodeslané
2023-10-16 08:48 - 2019-03-25 15:29 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-10-13 14:43 - 2020-03-30 11:42 - 000017927 _____ C:\Users\kancelar3\Desktop\Seznam vozidel a přívěsů.xlsx
2023-10-13 09:20 - 2023-02-01 10:53 - 000000000 ____D C:\Users\kancelar3\Desktop\Přijaté faktury 2023
2023-10-12 17:11 - 2021-12-11 21:32 - 000003596 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1460606035-3293630550-1657839234-1003
2023-10-11 16:31 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2023-10-11 15:56 - 2022-05-11 18:02 - 000444672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2023-10-11 15:39 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\SysWOW64\cs
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\migwiz
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2023-10-11 15:39 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2023-10-11 15:36 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2023-10-11 15:35 - 2019-12-07 16:41 - 000000000 ____D C:\WINDOWS\system32\cs
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Com
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2023-10-11 15:35 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2023-10-11 15:32 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2023-10-11 15:32 - 2019-12-07 16:44 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\IME
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Windows Defender
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2023-10-11 15:32 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2023-10-11 15:32 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2023-10-11 15:17 - 2019-03-30 09:49 - 000000000 ____D C:\Users\kancelar3\AppData\LocalLow\Mozilla
2023-10-11 05:13 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2023-10-11 03:45 - 2020-09-30 16:47 - 003014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2023-10-11 00:53 - 2019-03-25 08:54 - 000000000 ____D C:\WINDOWS\system32\MRT
2023-10-11 00:32 - 2019-03-25 08:54 - 181553176 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2023-10-10 13:14 - 2019-03-30 09:46 - 000000000 ____D C:\Users\kancelar3\AppData\Local\Packages
2023-10-10 09:14 - 2023-01-16 14:57 - 000000000 ____D C:\Users\kancelar3\Desktop\vozový park
2023-10-09 13:08 - 2019-06-26 08:22 - 000000000 ____D C:\Users\kancelar3\AppData\Roaming\vlc
2023-10-06 15:33 - 2023-05-24 10:01 - 000000000 ____D C:\Program Files\RUXIM
2023-10-05 09:45 - 2020-03-04 13:24 - 000000000 ____D C:\Users\kancelar3\Desktop\Kategorizace prací
2023-10-05 08:10 - 2023-02-20 15:45 - 000000000 ____D C:\Users\kancelar3\Desktop\MZDY
2023-09-27 18:20 - 2019-03-26 08:44 - 000000000 ____D C:\ProgramData\Packages
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {1E5B7A72-EA4A-4DE5-A934-675DDAA913E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> DefaultScope {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
PC se restaroval a pak se na ploše objevil soubor fixlog
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by kancelar3 (20-10-2023 18:10:52) Run:1
Running from C:\Users\kancelar3\Desktop
Loaded Profiles: kancelar3
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {1E5B7A72-EA4A-4DE5-A934-675DDAA913E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> DefaultScope {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E5B7A72-EA4A-4DE5-A934-675DDAA913E9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E5B7A72-EA4A-4DE5-A934-675DDAA913E9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
"HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6F4AEA5B-726F-4644-95A7-365BE7C73D80} => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12701532 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1310134 B
Edge => 104 B
Chrome => 200704 B
Firefox => 43380664 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 605131185 B
systemprofile32 => 605131185 B
LocalService => 605167865 B
NetworkService => 605167865 B
Jan => 605167865 B
kancelar3 => 623125268 B
RecycleBin => 0 B
EmptyTemp: => 3.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:12:02 ====
Ran by kancelar3 (20-10-2023 18:10:52) Run:1
Running from C:\Users\kancelar3\Desktop
Loaded Profiles: kancelar3
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
Task: {A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Task: {1E5B7A72-EA4A-4DE5-A934-675DDAA913E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155592 2021-01-29] (Google LLC -> Google LLC)
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> DefaultScope {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
SearchScopes: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003 -> {6F4AEA5B-726F-4644-95A7-365BE7C73D80} URL =
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A26C6AF5-3A77-4738-A0FB-0F782A1A5EA4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E5B7A72-EA4A-4DE5-A934-675DDAA913E9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E5B7A72-EA4A-4DE5-A934-675DDAA913E9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\BookReader_B171F20233094AC88D05A8EF7B9763E8 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => removed successfully
HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ExtensionsStore\datastore\Config\PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main\\Secondary Start Pages" => removed successfully
"HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6F4AEA5B-726F-4644-95A7-365BE7C73D80} => removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 12701532 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 1310134 B
Edge => 104 B
Chrome => 200704 B
Firefox => 43380664 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
ProgramData => 6656 B
Public => 6656 B
systemprofile => 605131185 B
systemprofile32 => 605131185 B
LocalService => 605167865 B
NetworkService => 605167865 B
Jan => 605167865 B
kancelar3 => 623125268 B
RecycleBin => 0 B
EmptyTemp: => 3.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 18:12:02 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
OK, tak by to mělo být. Bylo smazáno. Nastala změna k lepšímu?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Je to výrazně lepší, moc díky budu testovat
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
OK, případně se ozvěte. 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu
Tak jsem to odzkoušel a pořád je PC nějak zpomalený. Nějak se zdvojují ikony viz video
https://uloz.to/file/hOswJ4DbtKov/video ... uEDJD3BD==
https://uloz.to/file/hOswJ4DbtKov/video ... uEDJD3BD==
Re: Prosím o kontrolu logu
i klavesnice si píše jiná pismenka a nejde scenovat
Re: Prosím o kontrolu logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Ran by kancelar3 (23-10-2023 10:40:03)
Running from C:\Users\kancelar3\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2020-09-30 15:39:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-1460606035-3293630550-1657839234-1005 - Limited - Enabled)
Administrator (S-1-5-21-1460606035-3293630550-1657839234-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1460606035-3293630550-1657839234-503 - Limited - Disabled)
Guest (S-1-5-21-1460606035-3293630550-1657839234-501 - Limited - Disabled)
Jan (S-1-5-21-1460606035-3293630550-1657839234-1006 - Limited - Enabled)
kancelar3 (S-1-5-21-1460606035-3293630550-1657839234-1003 - Administrator - Enabled) => C:\Users\kancelar3
WDAGUtilityAccount (S-1-5-21-1460606035-3293630550-1657839234-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20360 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Altap Salamander 4.0 (x64) (HKLM\...\Altap Salamander 4.0 (x64)) (Version: 4.0 - ALTAP)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0328.0241.4833 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\{7403DBD6-17C1-0C69-F1B4-8B5E5386A9BF}) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
BrLauncher (HKLM-x32\...\{474764AE-5A67-4312-ADD3-449798BD96D1}) (Version: 1.1.21.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{06A5A956-6D40-4F1B-B7E6-94411BFB846B}) (Version: 1.0.38.1 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (HKLM-x32\...\{4E461C2A-EC1C-46D1-AF5B-7FEFD0054AF8}) (Version: 1.0.0.0 - Brother) Hidden
BrSupportTools (HKLM-x32\...\{83626DDE-99CD-4FF2-804E-36BE82143315}) (Version: 1.0.14.0 - Brother Industries Ltd.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\{8A16FF47-A5FC-49A8-96B5-31180D317059}) (Version: 3.0.4 - CANON INC.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\Canon Laser Printer/Scanner/Fax Extended Survey Program) (Version: 3.0.4.40070 - CANON INC.)
Canon MF6100 Series (HKLM\...\{48AA7F3E-7DAE-45C0-92B0-56E309AED624}) (Version: 4.3.0.0 - CANON INC.)
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - )
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1E89F75C-EF46-406C-9AAC-615B3CCC1D3D}) (Version: 4.3.2.1 - Brother Insutries Ltd.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.7417 - CyberLink Corp.)
DeviceDetect (HKLM-x32\...\{9C27CE44-0F33-42CC-8A30-4A08369EB7B3}) (Version: 1.3.1.0 - Brother Industries Ltd.) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
ESET Security (HKLM\...\{F26B2665-502A-4214-B336-BB723CF74E38}) (Version: 16.2.15.0 - ESET, spol. s r.o.)
FormApps Signing Extension (HKLM-x32\...\{35C42D1D-32DC-404F-8978-A30B0D64DD26}) (Version: 2.24.0.43 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{C17C2857-FF33-4EA0-8220-14A17DF82668}) (Version: 116.0.5845.9 - Google LLC)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.1.17.2 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.72.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.61 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Office 2013 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 15.0.5589.1001 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.204.1001.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.14.26429 (HKLM-x32\...\{6F0267F3-7467-350D-A8C8-33B72E3658D8}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.14.26429 (HKLM-x32\...\{7753EC39-3039-3629-98BE-447C5D869C09}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
Mozilla Thunderbird (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 115.3.3 (x86 cs)) (Version: 115.3.3 - Mozilla)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0405-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
PDF-XChange Editor (HKLM\...\{FECF86C3-04A4-4E65-A602-FD66626E0753}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{d9d85619-f6f9-4b64-9929-32e386b2ddac}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22452 - Microsoft Corporation)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 10.2.49.0 - 2BrightSparks)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Veeam Agent for Microsoft Windows (HKLM\...\{AA732883-16A3-45A4-A2A0-E9157E133111}) (Version: 6.0.2.1090 - Veeam Software Group GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-10-23] ()
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-12] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2308.29.0_x64__k1h2ywk1493x8 [2023-09-14] (LENOVO INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2019-03-25] (LENOVO INCORPORATED.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-07] (Microsoft Studios) [MS Ad]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-11-17] (LENOVO INCORPORATED.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{C78B614F-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (Fine spol. s r.o. -> ALTAP)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\kancelar3\Desktop\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
==================== Loaded Modules (Whitelisted) =============
2009-02-27 16:38 - 2009-02-27 16:38 - 000139264 _____ () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-11-07 19:55 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2017-11-07 20:04 - 2017-11-07 20:04 - 000090112 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll
2017-11-07 19:55 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-12-12 13:17 - 2018-12-12 13:17 - 002551808 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-04-01 13:40 - 2012-09-26 14:02 - 000004608 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUR6.DLL
2019-04-01 13:39 - 2013-02-01 03:21 - 000152064 _____ (CANON INC.) [File not signed] C:\WINDOWS\SYSTEM32\CNCENPM6.DLL
2022-09-16 13:31 - 2013-04-16 01:46 - 001295360 _____ (CANON INC.) [File not signed] C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNFR0MUI_D5CE1.dll
2019-03-23 11:49 - 2018-07-13 02:25 - 004876800 _____ (Gracenote, Inc.) [File not signed] C:\WINDOWS\system32\GNSDK_FP.DLL
2022-06-24 11:51 - 2020-06-17 11:01 - 001380864 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\2BrightSparks\SyncBackFree\libeay32.dll
2022-06-24 11:51 - 2020-06-17 11:01 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\2BrightSparks\SyncBackFree\ssleay32.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000502784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 001413632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-03-28 02:39 - 2019-03-28 02:39 - 005786112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 006303232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 003556352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 003699712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000331264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000355328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 076171264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 005590528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000189952 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 002821632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000089600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2023-01-24 14:35 - 2023-09-08 10:45 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E867AD97-2E62-45AD-8218-FDA4E00AB192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B7457AA0-6C46-4680-AFD7-1543C4BB0605}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3A65957-C14C-4D7A-8653-532100FC823C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{383F8BD1-73DE-406C-A9B8-DBAC71A20384}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8B5BAF59-2B88-4E16-88A2-30322EC269FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCBE37A6-E151-4A97-BABF-BEA06DBCF383}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{693C0F35-94D7-42FD-97B9-75897925B880}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A5A3039D-FC9F-4CC3-8104-18B726B1B115}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CC011E9A-8FE3-476D-BB3E-421D7BB404B2}] => (Allow) LPort=54925
FirewallRules: [{B5D225A5-3C10-46D8-BB77-6CFB2DC0157B}] => (Allow) C:\Program Files\Canon\DIAS\CnxDIAS.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0401B596-E6A0-431C-985A-9F51F484FCE0}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D15ACC0E-247D-4677-85EB-926C6174EF88}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B725CCA3-F452-4D88-92C4-B6FC26DD15B3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{AE6A9BA4-F75C-44A9-A5AA-4676A20F7445}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3A3A7A76-8752-4427-91C2-878DF4DDE102}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0F9F597B-5EE7-43F1-AA71-359600688589}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{71080D8E-6D73-4A18-8354-6A7F36D12FD7}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe (Google LLC -> Google LLC)
FirewallRules: [{4EC1AEC4-7B57-45AE-9943-27970BF18243}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FC5AB908-AB6C-46A6-B231-3B5ACF97B024}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{25B202FA-263E-482B-8D36-E8E9D15B7013}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ACEBE50F-C4E7-459D-81E6-158AD0FE940D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FF496B6-D993-4154-8125-E7CEC153012C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D8AF3349-B021-4D9F-BF7F-EE0618094C73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A1C8E4AE-BDFF-411A-B707-1F9A8D87C4EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{14099B2E-1E56-423A-9291-2029D1442977}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{651CE687-F36E-442E-8DC2-D9F68943EA60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD22973E-6821-4831-B311-A0821F714989}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6611AEE7-A32E-4868-829E-BAAE90845E12}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{45DE1DB0-F533-41C4-9C39-DD8EFF8295B4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{773BFA10-AA5A-482B-BEEF-4BEE034CA574}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Recovery.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{29922BA0-18F6-486B-825D-9BB03BD35B3C}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{FB2A1329-0AC6-47E2-98CD-4A4FCBCF08D3}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{CEE90839-5722-4179-A710-B40B7EEB4F4C}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\x64\VeeamAgent.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{893BDEC2-F248-476D-89BE-38A4F9F564C4}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\x64\VeeamAgent.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{7D3D9B37-E2E1-4AA1-92F4-18E89CD4C21A}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\VeeamDeploymentSvc.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{535B31D3-3941-4687-9974-BF141861660E}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\VeeamDeploymentSvc.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{4CBBCDAF-D2F7-412F-9580-F7B0249B5003}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{884C4074-2BD4-4C14-A66C-4CE850C621A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2807527F-6DAA-4219-8745-DB1AFAD2BF89}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{92342D10-24DB-49C1-BFEC-874BF48ADAF8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
11-10-2023 01:36:41 Instalační služba modulů systému Windows
18-10-2023 18:02:58 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/23/2023 10:22:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0xe68
Čas spuštění chybující aplikace: 0x01da05894bb3a0e5
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: d2982486-8b73-46d4-a3ce-3a337619646a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 10:16:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x152c
Čas spuštění chybující aplikace: 0x01da0586ae141df3
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 0272695d-1eac-45f0-a95a-2ffa7a144420
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 09:58:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x1678
Čas spuštění chybující aplikace: 0x01da057ee4f44de4
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 9991ee2f-a268-4521-b35f-67ff942f97e9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 09:23:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_FrameServer, verze: 10.0.19041.3570, časové razítko: 0x122dc5a3
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc00d4e24
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x247c
Čas spuštění chybující aplikace: 0x01da0581b5f93b04
Cesta k chybující aplikaci: C:\WINDOWS\System32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: cc72e637-6720-4c49-9f04-2b02a0334dc4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 09:02:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1110
Čas spuštění chybující aplikace: 0x01da057e471379d4
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 4be97541-8947-4c0e-9646-b3b92979d790
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 08:57:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1494
Čas spuštění chybující aplikace: 0x01da057aa1982c52
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: ee93ea1f-9e76-4cb6-8e09-e20a8fdb2abf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 08:54:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroCEF.exe, verze: 23.6.20320.0, časové razítko: 0x64f8e93c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc06d007e
Posun chyby: 0x000000000002cf19
ID chybujícího procesu: 0x1e78
Čas spuštění chybující aplikace: 0x01da057db1238aac
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 4d790f75-8911-4f7f-b1c5-c9d331932ac4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 08:31:25 AM) (Source: Firefox Default Browser Agent) (EventID: 12029) (User: )
Description: Event-ID 12029
System errors:
=============
Error: (10/23/2023 09:23:12 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Camera Frame Server byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/21/2023 12:14:08 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2020-12-17 07:14:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FABDFB3B-E699-4083-B8BA-92EF90750A9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-15 07:14:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08FE3A53-BAF6-440B-B760-B52BD740351A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-14 06:29:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2C9AC689-326D-484D-A186-C7A807E87B12}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-13 06:48:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1D065832-AE8C-4E97-AAAA-0451C669ADB8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-12 05:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0526B29D-2716-4344-828B-63FA64345730}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2023-10-23 10:33:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5PCN24WW 10/29/2018
Motherboard: LENOVO LNVNB161216
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 57%
Total physical RAM: 7567.98 MB
Available physical RAM: 3243.24 MB
Total Virtual: 8783.98 MB
Available Virtual: 2605.03 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:905.27 GB) (Free:785.4 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.19 GB) (Model: ST1000LM035-1RK172) NTFS
Drive e: (Laufer_18_SMK) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
Drive f: () (Removable) (Total:0.94 GB) (Free:0.13 GB) FAT
Drive h: () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{8e1c9fcc-0959-4ce0-9009-56cd31ab9bae}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.35 GB) NTFS
\\?\Volume{ad0a24f4-ad0d-4c5a-9630-95c2fe1a78f3}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 09E43BE9)
Partition: GPT.
==========================================================
Disk: 1 (Size: 960 MB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================
Ran by kancelar3 (23-10-2023 10:40:03)
Running from C:\Users\kancelar3\Desktop
Microsoft Windows 10 Home Version 22H2 19045.3570 (X64) (2020-09-30 15:39:25)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Admin (S-1-5-21-1460606035-3293630550-1657839234-1005 - Limited - Enabled)
Administrator (S-1-5-21-1460606035-3293630550-1657839234-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1460606035-3293630550-1657839234-503 - Limited - Disabled)
Guest (S-1-5-21-1460606035-3293630550-1657839234-501 - Limited - Disabled)
Jan (S-1-5-21-1460606035-3293630550-1657839234-1006 - Limited - Enabled)
kancelar3 (S-1-5-21-1460606035-3293630550-1657839234-1003 - Administrator - Enabled) => C:\Users\kancelar3
WDAGUtilityAccount (S-1-5-21-1460606035-3293630550-1657839234-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516}
AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {E7B06BEE-DEA6-20D2-58F2-0EB69C7B826D}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
FW: ESET Firewall (Enabled) {B18EDDE1-72EE-79EA-3ABD-EEAF1EE45FED}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 23.006.20360 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Altap Salamander 4.0 (x64) (HKLM\...\Altap Salamander 4.0 (x64)) (Version: 4.0 - ALTAP)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2019.0328.0241.4833 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\{7403DBD6-17C1-0C69-F1B4-8B5E5386A9BF}) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
BrLauncher (HKLM-x32\...\{474764AE-5A67-4312-ADD3-449798BD96D1}) (Version: 1.1.21.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{06A5A956-6D40-4F1B-B7E6-94411BFB846B}) (Version: 1.0.38.1 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (HKLM-x32\...\{4E461C2A-EC1C-46D1-AF5B-7FEFD0054AF8}) (Version: 1.0.0.0 - Brother) Hidden
BrSupportTools (HKLM-x32\...\{83626DDE-99CD-4FF2-804E-36BE82143315}) (Version: 1.0.14.0 - Brother Industries Ltd.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\{8A16FF47-A5FC-49A8-96B5-31180D317059}) (Version: 3.0.4 - CANON INC.) Hidden
Canon Laser Printer/Scanner/Fax Extended Survey Program (HKLM\...\Canon Laser Printer/Scanner/Fax Extended Survey Program) (Version: 3.0.4.40070 - CANON INC.)
Canon MF6100 Series (HKLM\...\{48AA7F3E-7DAE-45C0-92B0-56E309AED624}) (Version: 4.3.0.0 - CANON INC.)
CEWE FOTOLAB fotosvet (HKLM-x32\...\CEWE FOTOLAB fotosvet) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cobian Backup 11 Gravity (HKLM-x32\...\CobBackup11) (Version: - )
ControlCenter4 (HKLM-x32\...\{CAFE5834-5440-41B8-8C56-4DD946A1A5E1}) (Version: 4.6.21.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1E89F75C-EF46-406C-9AAC-615B3CCC1D3D}) (Version: 4.3.2.1 - Brother Insutries Ltd.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.7007 - CyberLink Corp.)
CyberLink PowerDVD 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.1.7417 - CyberLink Corp.)
DeviceDetect (HKLM-x32\...\{9C27CE44-0F33-42CC-8A30-4A08369EB7B3}) (Version: 1.3.1.0 - Brother Industries Ltd.) Hidden
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{9207D68E-666A-49C7-A900-9F5B2FF289E4}) (Version: 0.8.0.71 - Dolby Laboratories, Inc.)
ESET Security (HKLM\...\{F26B2665-502A-4214-B336-BB723CF74E38}) (Version: 16.2.15.0 - ESET, spol. s r.o.)
FormApps Signing Extension (HKLM-x32\...\{35C42D1D-32DC-404F-8978-A30B0D64DD26}) (Version: 2.24.0.43 - Software602 a.s.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 118.0.5993.89 - Google LLC)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Chrome Remote Desktop Host (HKLM-x32\...\{C17C2857-FF33-4EA0-8220-14A17DF82668}) (Version: 116.0.5845.9 - Google LLC)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Lenovo System Interface Foundation Driver (HKLM\...\{C2E5CA37-C862-4A69-AC6D-24F450A20C16}) (Version: 1.1.17.2 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.72.0 - Lenovo Group Ltd.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.61 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation)
Microsoft Office 2013 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 15.0.5589.1001 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.204.1001.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{2953E19B-9F91-4A49-A23B-7E25970A1951}) (Version: 3.73.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (HKLM\...\{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (HKLM\...\{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}) (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.14.26429 (HKLM-x32\...\{2019b6a0-8533-4a04-ac0e-b2c10bdb9841}) (Version: 14.14.26429.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.14.26429 (HKLM\...\{B12F584A-DE7A-3EE3-8EC4-8A64DBC0F2A7}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.14.26429 (HKLM\...\{03EBF679-E886-38AD-8E70-28658449F7F9}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Additional Runtime - 14.14.26429 (HKLM-x32\...\{6F0267F3-7467-350D-A8C8-33B72E3658D8}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.14.26429 (HKLM-x32\...\{7753EC39-3039-3629-98BE-447C5D869C09}) (Version: 14.14.26429 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 118.0.2 (x64 cs)) (Version: 118.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.1 - Mozilla)
Mozilla Thunderbird (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 115.3.3 (x86 cs)) (Version: 115.3.3 - Mozilla)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-0405-0000-0000000FF1CE}) (Version: 15.0.5589.1001 - Microsoft Corporation) Hidden
PDF-XChange Editor (HKLM\...\{FECF86C3-04A4-4E65-A602-FD66626E0753}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Editor (HKLM-x32\...\{d9d85619-f6f9-4b64-9929-32e386b2ddac}) (Version: 8.0.340.0 - Tracker Software Products (Canada) Ltd.)
Pomocník s aktualizací Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22452 - Microsoft Corporation)
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 10.2.49.0 - 2BrightSparks)
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{2E8B8BDD-03DF-4C1C-8C99-E6A4BCBF43CE}) (Version: 2.51.0.0 - Microsoft Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Veeam Agent for Microsoft Windows (HKLM\...\{AA732883-16A3-45A4-A2A0-E9157E133111}) (Version: 6.0.2.1090 - Veeam Software Group GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2023-10-23] ()
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-12] (Microsoft Corporation)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-08] (Microsoft Corporation)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2308.29.0_x64__k1h2ywk1493x8 [2023-09-14] (LENOVO INC.)
Lenovo Settings -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoSettings_3.177.0.0_x86__4642shxvsv8s2 [2019-03-25] (LENOVO INCORPORATED.)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-07] (Microsoft Studios) [MS Ad]
Uživatelský portál Lenovo -> C:\Program Files\WindowsApps\LenovoCorporation.LenovoID_2.0.37.0_x86__4642shxvsv8s2 [2017-11-17] (LENOVO INCORPORATED.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-1460606035-3293630550-1657839234-1003_Classes\CLSID\{C78B614F-F3EA-11D2-94A1-00E0292A01E3}\InprocServer32 -> C:\Program Files\Altap Salamander\utils\salextx64.dll (Fine spol. s r.o. -> ALTAP)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2020-07-28] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2016-10-07] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.204.1001.0003\FileSyncShell64.dll [2023-10-20] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-03-28] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2023-09-25] (ESET, spol. s r.o. -> ESET)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\kancelar3\Desktop\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
ShortcutWithArgument: C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Chrome Remote Desktop.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=efmjfjelnicpmdcmfikempdhlmainjcb
==================== Loaded Modules (Whitelisted) =============
2009-02-27 16:38 - 2009-02-27 16:38 - 000139264 _____ () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-11-07 19:55 - 2017-11-07 19:55 - 000137728 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcAssoc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 000087552 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcDlgRc.dll
2017-08-18 11:23 - 2017-08-18 11:23 - 017974784 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcGrImg.dll
2017-11-07 20:04 - 2017-11-07 20:04 - 000090112 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\BrCcLCze.dll
2017-11-07 19:55 - 2017-11-07 19:55 - 000440832 _____ () [File not signed] C:\Program Files (x86)\ControlCenter4\Track.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-12-12 13:17 - 2018-12-12 13:17 - 002551808 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2019-04-01 13:40 - 2012-09-26 14:02 - 000004608 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUR6.DLL
2019-04-01 13:39 - 2013-02-01 03:21 - 000152064 _____ (CANON INC.) [File not signed] C:\WINDOWS\SYSTEM32\CNCENPM6.DLL
2022-09-16 13:31 - 2013-04-16 01:46 - 001295360 _____ (CANON INC.) [File not signed] C:\WINDOWS\system32\spool\DRIVERS\x64\3\CNFR0MUI_D5CE1.dll
2019-03-23 11:49 - 2018-07-13 02:25 - 004876800 _____ (Gracenote, Inc.) [File not signed] C:\WINDOWS\system32\GNSDK_FP.DLL
2022-06-24 11:51 - 2020-06-17 11:01 - 001380864 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\2BrightSparks\SyncBackFree\libeay32.dll
2022-06-24 11:51 - 2020-06-17 11:01 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\2BrightSparks\SyncBackFree\ssleay32.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000040960 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000031744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000345600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000025088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000024576 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000023552 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000502784 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 001413632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2019-03-28 02:39 - 2019-03-28 02:39 - 005786112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 006303232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 001077248 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000323584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 003556352 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 003699712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000331264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000355328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 076171264 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000113152 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 005590528 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000461312 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 000189952 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-12-12 13:17 - 2018-12-12 13:17 - 002821632 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000053760 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000059392 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000017408 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000089600 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000017920 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2018-12-12 13:18 - 2018-12-12 13:18 - 000135680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\AMD\CNext\CNext\styles\qwindowsvistastyle.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2023-08-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2019-03-23] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2023-01-24 14:35 - 2023-09-08 10:45 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1460606035-3293630550-1657839234-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\kancelar3\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{E867AD97-2E62-45AD-8218-FDA4E00AB192}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B7457AA0-6C46-4680-AFD7-1543C4BB0605}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E3A65957-C14C-4D7A-8653-532100FC823C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{383F8BD1-73DE-406C-A9B8-DBAC71A20384}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8B5BAF59-2B88-4E16-88A2-30322EC269FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FCBE37A6-E151-4A97-BABF-BEA06DBCF383}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{693C0F35-94D7-42FD-97B9-75897925B880}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A5A3039D-FC9F-4CC3-8104-18B726B1B115}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.141.634.0_x86__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CC011E9A-8FE3-476D-BB3E-421D7BB404B2}] => (Allow) LPort=54925
FirewallRules: [{B5D225A5-3C10-46D8-BB77-6CFB2DC0157B}] => (Allow) C:\Program Files\Canon\DIAS\CnxDIAS.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0401B596-E6A0-431C-985A-9F51F484FCE0}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D15ACC0E-247D-4677-85EB-926C6174EF88}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B725CCA3-F452-4D88-92C4-B6FC26DD15B3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{AE6A9BA4-F75C-44A9-A5AA-4676A20F7445}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{3A3A7A76-8752-4427-91C2-878DF4DDE102}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{0F9F597B-5EE7-43F1-AA71-359600688589}] => (Allow) C:\Install\Canon i-sesnys MF6140dn\MF6100MFDriverV430WPEN\DRIVERS\uk_eng\x64\Setup.exe (CANON INC. -> CANON INC.)
FirewallRules: [{71080D8E-6D73-4A18-8354-6A7F36D12FD7}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\116.0.5845.9\remoting_host.exe (Google LLC -> Google LLC)
FirewallRules: [{4EC1AEC4-7B57-45AE-9943-27970BF18243}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FC5AB908-AB6C-46A6-B231-3B5ACF97B024}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{25B202FA-263E-482B-8D36-E8E9D15B7013}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{ACEBE50F-C4E7-459D-81E6-158AD0FE940D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3FF496B6-D993-4154-8125-E7CEC153012C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D8AF3349-B021-4D9F-BF7F-EE0618094C73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A1C8E4AE-BDFF-411A-B707-1F9A8D87C4EA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{14099B2E-1E56-423A-9291-2029D1442977}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{651CE687-F36E-442E-8DC2-D9F68943EA60}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CD22973E-6821-4831-B311-A0821F714989}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{6611AEE7-A32E-4868-829E-BAAE90845E12}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.222.982.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{45DE1DB0-F533-41C4-9C39-DD8EFF8295B4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{773BFA10-AA5A-482B-BEEF-4BEE034CA574}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Recovery.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{29922BA0-18F6-486B-825D-9BB03BD35B3C}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{FB2A1329-0AC6-47E2-98CD-4A4FCBCF08D3}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\Veeam.EndPoint.Service.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{CEE90839-5722-4179-A710-B40B7EEB4F4C}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\x64\VeeamAgent.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{893BDEC2-F248-476D-89BE-38A4F9F564C4}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\x64\VeeamAgent.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{7D3D9B37-E2E1-4AA1-92F4-18E89CD4C21A}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\VeeamDeploymentSvc.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{535B31D3-3941-4687-9974-BF141861660E}] => (Allow) C:\Program Files\Veeam\Endpoint Backup\VeeamDeploymentSvc.exe (Veeam Software Group GmbH -> Veeam Software Group GmbH)
FirewallRules: [{4CBBCDAF-D2F7-412F-9580-F7B0249B5003}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{884C4074-2BD4-4C14-A66C-4CE850C621A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2807527F-6DAA-4219-8745-DB1AFAD2BF89}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{92342D10-24DB-49C1-BFEC-874BF48ADAF8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.106.3212.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Restore Points =========================
11-10-2023 01:36:41 Instalační služba modulů systému Windows
18-10-2023 18:02:58 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (10/23/2023 10:22:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0xe68
Čas spuštění chybující aplikace: 0x01da05894bb3a0e5
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: d2982486-8b73-46d4-a3ce-3a337619646a
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 10:16:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x152c
Čas spuštění chybující aplikace: 0x01da0586ae141df3
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 0272695d-1eac-45f0-a95a-2ffa7a144420
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 09:58:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x1678
Čas spuštění chybující aplikace: 0x01da057ee4f44de4
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 9991ee2f-a268-4521-b35f-67ff942f97e9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 09:23:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_FrameServer, verze: 10.0.19041.3570, časové razítko: 0x122dc5a3
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc00d4e24
Posun chyby: 0x000000000012dd42
ID chybujícího procesu: 0x247c
Čas spuštění chybující aplikace: 0x01da0581b5f93b04
Cesta k chybující aplikaci: C:\WINDOWS\System32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: cc72e637-6720-4c49-9f04-2b02a0334dc4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 09:02:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1110
Čas spuštění chybující aplikace: 0x01da057e471379d4
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: 4be97541-8947-4c0e-9646-b3b92979d790
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 08:57:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.3570, časové razítko: 0xf55408c7
Název chybujícího modulu: twinui.dll, verze: 10.0.19041.3570, časové razítko: 0xc57415b8
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000014e0c2
ID chybujícího procesu: 0x1494
Čas spuštění chybující aplikace: 0x01da057aa1982c52
Cesta k chybující aplikaci: C:\WINDOWS\explorer.exe
Cesta k chybujícímu modulu: C:\WINDOWS\system32\twinui.dll
ID zprávy: ee93ea1f-9e76-4cb6-8e09-e20a8fdb2abf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 08:54:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AcroCEF.exe, verze: 23.6.20320.0, časové razítko: 0x64f8e93c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.3570, časové razítko: 0xda674bb7
Kód výjimky: 0xc06d007e
Posun chyby: 0x000000000002cf19
ID chybujícího procesu: 0x1e78
Čas spuštění chybující aplikace: 0x01da057db1238aac
Cesta k chybující aplikaci: C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 4d790f75-8911-4f7f-b1c5-c9d331932ac4
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/23/2023 08:31:25 AM) (Source: Firefox Default Browser Agent) (EventID: 12029) (User: )
Description: Event-ID 12029
System errors:
=============
Error: (10/23/2023 09:23:12 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Windows Camera Frame Server byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/21/2023 12:14:08 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server Microsoft.Windows.Search_1.14.10.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/21/2023 12:14:07 PM) (Source: DCOM) (EventID: 10010) (User: UCETNI)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
================
Date: 2020-12-17 07:14:35
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {FABDFB3B-E699-4083-B8BA-92EF90750A9B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-15 07:14:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08FE3A53-BAF6-440B-B760-B52BD740351A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-14 06:29:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {2C9AC689-326D-484D-A186-C7A807E87B12}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-13 06:48:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {1D065832-AE8C-4E97-AAAA-0451C669ADB8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-12-12 05:42:44
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {0526B29D-2716-4344-828B-63FA64345730}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2023-10-23 10:33:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\ESET\ESET Security\eamsi.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: LENOVO 5PCN24WW 10/29/2018
Motherboard: LENOVO LNVNB161216
Processor: AMD A6-9220 RADEON R4, 5 COMPUTE CORES 2C+3G
Percentage of memory in use: 57%
Total physical RAM: 7567.98 MB
Available physical RAM: 3243.24 MB
Total Virtual: 8783.98 MB
Available Virtual: 2605.03 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:905.27 GB) (Free:785.4 GB) (Model: ST1000LM035-1RK172) NTFS
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:9.19 GB) (Model: ST1000LM035-1RK172) NTFS
Drive e: (Laufer_18_SMK) (CDROM) (Total:0 GB) (Free:0 GB) CDFS
Drive f: () (Removable) (Total:0.94 GB) (Free:0.13 GB) FAT
Drive h: () (Removable) (Total:0 GB) (Free:0 GB)
\\?\Volume{8e1c9fcc-0959-4ce0-9009-56cd31ab9bae}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.35 GB) NTFS
\\?\Volume{ad0a24f4-ad0d-4c5a-9630-95c2fe1a78f3}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 09E43BE9)
Partition: GPT.
==========================================================
Disk: 1 (Size: 960 MB) (Disk ID: 6F20736B)
No partition Table on disk 1.
Disk 1 is a removable device.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
==================== End of Addition.txt =======================
Přispějete na provoz fóra?