Prosím o kontrolu

[veroniccam]

Prosím o kontrolu logu - jsem v tom nováček, ale věřím, že mi to pomůže zachránit zasviněný notebook

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-09-2024
Ran by Veronika (administrator) on HP255G8 (HP HP 255 G8 Notebook PC) (07-10-2024 20:58:50)
Running from C:\Users\HP\Desktop\FRST64.exe
Loaded Profiles: Veronika & DefaultAppPool
Platform: Microsoft Windows 11 Pro Version 24H2 26120.1930 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe
(C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe
(cmd.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\BridgeCommunication.exe
(DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atieclxx.exe
(ETDService.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <12>
(Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\UIFramework\Bin\WUI\cptrayWUI.exe
(Check Point Software Technologies Ltd. -> Check Point Software Technologies) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Connect\TrGUI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Advanced Micro Devices -> AMD) C:\Windows\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\atiesrxx.exe
(services.exe ->) (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\SysInfoCap.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\cpda.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\IDAFServerHostService.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\UIFramework\Bin\cptrayLogic.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.) C:\Program Files (x86)\CheckPoint\Endpoint Security\Watchdog\EPWD.exe
(services.exe ->) (Check Point Software Technologies Ltd. -> Check Point Software Technologies) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Connect\TracSrvWrapper.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.) C:\Windows\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrsr.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d315e0ae42c5f5e6\RtkAudUService64.exe <2>
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\ShellHost.exe
(svchost.exe ->) (Advanced Micro Devices -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\CPUMetricsServer.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_6.1.3.0_x64__8wekyb3d8bbwe\Microsoft.Notes.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe <2>

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d315e0ae42c5f5e6\RtkAudUService64.exe [1922856 2023-09-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Check Point Endpoint Security Tray] => C:\Program Files (x86)\CheckPoint\Endpoint Security\UIFramework\Bin\cptrayUI.exe [680384 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [Check Point Endpoint Security WUI] => C:\Program Files (x86)\CheckPoint\Endpoint Security\UIFramework\Bin\WUI\cptrayWUI.exe [1007040 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
HKLM-x32\...\Run: [Check Point Endpoint Connect] => C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Connect\TrGUI.exe [14292416 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate: Restriction <==== ATTENTION
HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\Run: [MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3870272 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [565248 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Virtual Port Monitor: C:\WINDOWS\system32\VirtualMon.dll [225280 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\129.0.6668.90\Installer\chrmstp.exe [2024-10-04] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{9F02E2F5-5A41-4D1A-B473-4617E84BC957}] -> C:\WINDOWS\system32\WindowsProtectedPrintConfiguration.dll [2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Startup: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gmail (2).lnk [2024-09-22]
ShortcutTarget: Gmail (2).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {E72FD3AD-A0B3-4464-8732-2923FAE0EE6B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1563080 2024-07-31] (Adobe Inc. -> Adobe Inc.)
Task: {64514470-1E29-44E1-AF54-E336E2BC27A8} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-20] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {C503D06C-EB18-46A6-B29E-92DF620BFCB1} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-20] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {71DBA129-5985-4543-82B7-59374CE67A73} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [184024 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {3BEE7CB1-D71D-4C93-94D9-5D98F780C011} - System32\Tasks\AMDScoSupportTypeUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-20] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {3E647F38-AE65-4BEA-AEB4-C1218D8AB335} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem130.0.6679.0{829F4B96-46F9-433D-84B3-86E211587F6E} => C:\Program Files (x86)\Google\GoogleUpdater\130.0.6679.0\updater.exe [4884584 2024-08-26] (Google LLC -> Google LLC)
Task: {91C21894-8FD0-4FEE-962F-368935C74A33} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://ABO
Task: {6D4A104D-D056-4EC4-9474-06517E87E82D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusError
Task: {F4F8ACA4-F42A-463E-85E4-D7E8A048F1FE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusTest => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusTest
Task: {A71ECFAA-6911-49E7-BF9A-62F1B3E136BD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BCF
Task: {A2FBBBF0-5034-45AB-9DE6-46235F445CA9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM1
Task: {C8F456AA-2673-46EB-9D81-772B1163286F} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM2
Task: {9F5B0ACD-87FD-40D2-A018-25008D1D617A} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://LaunchUI
Task: {17E4EC14-3C09-4E2E-9670-308F75A3A1B0} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags:
Task: {0DD7C577-EFF7-4F84-8B2C-3DA86A45886C} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => C:\WINDOWS\system32\cmd.exe [339968 2024-10-04] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckError
Task: {55D5EAA9-549F-4957-8CFC-41E6AFF2D083} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-BatteryStatusTest => c:\Windows\System32\schtasks.exe [253952 2024-04-01] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\BatteryStatusTest"
Task: {6FDB6D56-025F-47C5-A52D-BE3107BE84F9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-FastSystemTests => c:\Windows\System32\schtasks.exe [253952 2024-04-01] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\FastSystemTests"
Task: {D9B3BBAF-F3A2-49F8-A597-DE67E0CA2420} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [744976 2024-09-25] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {CFC56A7E-B149-47BD-B432-7DB7ACBFA12E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-09-25] (HP Inc. -> HP Inc.)
Task: {1E9A21E7-64B7-4B15-A2B2-528746B95D42} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {B51A1604-566A-4CC5-9C2B-CBBD5DDCE11F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [28617448 2024-09-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {187F01E5-1EE7-4D9D-80C9-7522180FCE2F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312472 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {E34B22F6-854C-4675-B4C5-7DB3CA45D6A2} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [312472 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {7FCFA2A5-5056-434B-9E01-A5199FF03671} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [187328 2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {DF8BB592-8754-4917-9BED-48AD2798F48E} - System32\Tasks\Microsoft\Windows\Containers\CmCleanup => {F50E9363-6BC8-4DC5-8CAB-7D9F8C1B81B4} C:\WINDOWS\System32\cmcleanup.dll [87352 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {D1211565-C8D3-4652-94F0-E7177DB88C70} - System32\Tasks\Microsoft\Windows\Diagnosis\UnexpectedCodepath => C:\WINDOWS\system32\UCConfigTask.exe [77824 2024-10-04] (Microsoft Windows -> )
Task: {EC4E1419-ADE4-4C7B-B3E1-C4DE54F3DBA8} - System32\Tasks\Microsoft\Windows\PerformanceTrace\RequestTrace => {9EFEB182-2EE3-4AF9-AFFA-521410D110D1} C:\WINDOWS\system32\PerformanceTraceHandler.dll [114688 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {FD953D65-B217-4C79-946C-40F34EA51665} - System32\Tasks\Microsoft\Windows\ReFsDedupSvc\Initialization => {DCFF735B-64F7-45F3-B39C-6C66BBE2120F} C:\WINDOWS\System32\ReFsDedupSvc.exe [2195456 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {34B6A16E-13CF-41E3-A1F6-F963739F69FD} - System32\Tasks\Microsoft\Windows\Servicing\OOBEFodSetup => C:\WINDOWS\system32\OOBEFodSetup.exe [40960 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {6E9522D4-5ECB-478B-90ED-91561B8D4524} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => {7750564D-D61C-4557-8A9D-7DF56BDCFF96} C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [270336 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {6B549F30-9F73-486A-9FFB-D9A4B9B0B516} - System32\Tasks\Microsoft\Windows\Sustainability\PowerGridForecastTask => {251E5B1F-E370-4E12-B5BD-B7AD2A8EE810} C:\WINDOWS\system32\PowerGridForecastTask.dll [331776 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {0BBFCFF2-F550-4FDE-BF9C-7091AC099B3F} - System32\Tasks\Microsoft\Windows\Sustainability\SustainabilityTelemetry => {6EE41D75-D091-4FB7-9AD5-018760DD25D4} C:\WINDOWS\system32\EcoScoreTask.dll [90112 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {45736A72-2DE8-4362-A315-059CE2BE8473} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {319A0241-ADEB-4366-9B6F-6A145BA590F7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {AE889AF2-B6E2-4941-8C89-FCD4EB658F9B} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UUS Failover Task => C:\WINDOWS\System32\MLEngineStub.exe [86016 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
Task: {117123D5-D11E-484B-93D4-067B3ACDE714} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87BA2FDB-1DB5-4B02-AB1C-A8FF22FE6960} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7AA53DC5-B4B4-4D56-87A2-7014542CB1C2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7140BDEE-7738-4076-84A2-B72594D073C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe [1687208 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DC85B176-1128-4E29-97B2-10E1EF27673F} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1030872 2024-08-20] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {B686BC4C-775A-4E98-B740-BFD2D9051C3D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [60632 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
Task: {B38F6AE5-35DD-44BA-9D06-F7D6560C59F8} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [324312 2024-08-19] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-3663164027-3565326852-1001575466-1001] => hxxp://de-a-v-l-0004.do-dat.int:8080
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{247512de-c46c-4c38-bda7-e155bcc1e278}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{247512de-c46c-4c38-bda7-e155bcc1e278}: [DhcpDomain] home
Tcpip\..\Interfaces\{46132582-e49c-4510-9cff-3b6c898e6065}: [DhcpNameServer] 10.49.40.250 10.49.40.150
Tcpip\..\Interfaces\{9671ff7c-a0a1-4401-8642-a87a2f3b2d8f}: [DhcpNameServer] 31.30.90.11 31.30.90.12

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default [2024-10-06]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge Extension: (Emojis - Emoji Keyboard) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gaoflciahikhligngeccdecgfjngejlh [2024-06-27]
Edge Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-09-13]
Edge Extension: (Edge relevant text changes) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
Edge Extension: (Vašekupóny.cz vyhledávač slev) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kkbanodihokodakgnaglghalmaainfgk [2024-09-22]
Edge Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\HP\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2024-10-01]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-08-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2024-10-07]
CHR DownloadDir: C:\Users\HP\Desktop
CHR Notifications: Default -> hxxps://eb3.autocab.net
CHR Extension: (Emojis - Emoji Keyboard) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaoflciahikhligngeccdecgfjngejlh [2024-06-27]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-10-07]
CHR Extension: (Vašekupóny.cz vyhledávač slev) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfgkchpliekbcfnnmdcplkfjedmbgaec [2024-09-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-12-13]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-04-13]
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\System Profile [2024-09-20]
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-07-31] (Adobe Inc. -> Adobe Inc.)
S3 ApxSvc; C:\WINDOWS\System32\ApxSvc.dll [73728 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 Check Point Device Auxiliary Framework; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\IDAFServerHostService.exe [812856 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13861048 2024-09-22] (Microsoft Corporation -> Microsoft Corporation)
R2 CPDA; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\cpda.exe [7430080 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 EPClientUIService; C:\Program Files (x86)\CheckPoint\Endpoint Security\UIFramework\Bin\cptrayLogic.exe [24512 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 EPWD; C:\Program Files (x86)\CheckPoint\Endpoint Security\Watchdog\EPWD.exe [574912 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\AppHelperCap.exe [927328 2024-09-12] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\DiagsCap.exe [926200 2024-09-12] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\NetworkCap.exe [922216 2024-09-12] (HP Inc. -> HP Inc.)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_28b2453522f231ea\x64\SysInfoCap.exe [926312 2024-09-12] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe [569008 2024-05-07] (HP Inc. -> HP Inc.)
S3 LocalKdc; C:\WINDOWS\system32\localkdcsvc.dll [794624 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 PrintDeviceConfigurationService; C:\WINDOWS\System32\PrintDeviceConfigurationService.dll [200704 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 PrintScanBrokerService; C:\WINDOWS\System32\PrintScanBrokerService.dll [200704 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 refsdedupsvc; C:\WINDOWS\System32\ReFsDedupSvc.exe [2195456 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 TracSrvWrapper; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Connect\TracSrvWrapper.exe [9879488 2024-07-26] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-09-17] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 acpipagr; C:\WINDOWS\System32\DriverStore\FileRepository\acpipagr.inf_amd64_d1093347a27ff89c\acpipagr.sys [49152 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 AcpiPmi; C:\WINDOWS\System32\DriverStore\FileRepository\acpipmi.inf_amd64_3ced06eb61dcc792\acpipmi.sys [53248 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R3 AMDAfdAudioService; C:\WINDOWS\System32\DriverStore\FileRepository\amdacpafd.inf_amd64_83e4d032c48bb725\amdacpafd.sys [432448 2024-07-07] (AMD Test Build -> Advanced Micro Devices)
R3 amdfendrmgr; C:\WINDOWS\System32\DriverStore\FileRepository\amdfendr.inf_amd64_5f2cd636dbc40dd2\amdfendrmgr.sys [36016 2024-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 AMDRyzenMasterDriverV20; C:\WINDOWS\system32\AMDRyzenMasterDriver.sys [48328 2024-08-19] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R3 AMDSAFD; C:\WINDOWS\System32\DriverStore\FileRepository\amdsafd.inf_amd64_960126269e89c62e\amdsafd.sys [113880 2024-05-10] (Advanced Micro Devices -> Advanced Micro Devices)
R3 amdwddmg; C:\WINDOWS\System32\DriverStore\FileRepository\u0407052.inf_amd64_84d15514ad17ffa0\B406619\amdkmdag.sys [106596128 2024-09-04] (Advanced Micro Devices -> Advanced Micro Devices, Inc.)
R0 amdwps; C:\WINDOWS\System32\drivers\amdwps.sys [67144 2024-10-04] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
R3 AMDXE; C:\WINDOWS\System32\drivers\amdxe.sys [61888 2023-05-24] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [39272 2023-06-27] (Apple Inc. -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [55608 2023-06-27] (Apple Inc. -> Apple Inc.)
R3 CDD; C:\WINDOWS\System32\cdd.dll [335872 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 devmap; C:\WINDOWS\System32\DriverStore\FileRepository\devmap.inf_amd64_1993197f4612e967\devmap.sys [53248 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 DisplayMux; C:\WINDOWS\System32\DriverStore\FileRepository\displaymux.inf_amd64_da65a70f0c3ce0f3\DisplayMux.sys [57344 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R3 epklibproxy; C:\WINDOWS\System32\drivers\epklibproxy.sys [30704 2024-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies Ltd.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
S3 I3CHost; C:\WINDOWS\System32\DriverStore\FileRepository\i3chost.inf_amd64_b75e173327de00fb\I3CHost.sys [296352 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 ISWKL; C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [50272 2024-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies Ltd.)
S3 kdnic_legacy; C:\WINDOWS\System32\drivers\kdnic_legacy.sys [70976 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 MsQuicPrev; C:\WINDOWS\System32\drivers\msquicprev.sys [458056 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S2 NetworkPrivacyPolicy; C:\WINDOWS\System32\DriverStore\FileRepository\networkprivacypolicy.inf_amd64_e509757dfd475f28\NetworkPrivacyPolicy.sys [102400 2024-10-04] (Microsoft Windows -> )
S3 PktMonApi; C:\WINDOWS\System32\drivers\PktMonApi.sys [61440 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 PlutonHeci; C:\WINDOWS\System32\DriverStore\FileRepository\pluton-heci.inf_amd64_9aaa7a8c15ac7e9a\pluton-heci.sys [58784 2024-10-04] (Microsoft Windows -> )
S3 PlutonHsp2; C:\WINDOWS\System32\DriverStore\FileRepository\plutonhsp2.inf_amd64_0b3fdc25d1dc1c6e\PlutonHsp2.sys [58672 2024-10-04] (Microsoft Windows -> )
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_16d0e5f2b3759518\rt68cx21x64.sys [845256 2024-08-21] (Realtek Semiconductor Corp. -> Realtek)
R1 uiomap; C:\WINDOWS\System32\DriverStore\FileRepository\uiomap.inf_amd64_11efbd9b4c5f482e\uiomap.sys [69632 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R3 UmPass; C:\WINDOWS\System32\DriverStore\FileRepository\umpass.inf_amd64_06e016c9ffecbf73\umpass.sys [53248 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 UnionFS; C:\WINDOWS\system32\drivers\UnionFS.sys [496944 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R3 vna_ap; C:\WINDOWS\System32\drivers\vnaap.sys [76208 2022-08-08] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R1 vsdatant; C:\WINDOWS\system32\DRIVERS\vsdatant.sys [694696 2024-07-26] (Microsoft Windows Hardware Compatibility Publisher -> Check Point Software Technologies Ltd.)
R3 vwifibus; C:\WINDOWS\System32\DriverStore\FileRepository\netvwifibus.inf_amd64_ab4e111fe8221178\vwifibus.sys [65536 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R3 vwifimp; C:\WINDOWS\System32\DriverStore\FileRepository\netvwifimp.inf_amd64_16c785b9ba77e7b0\vwifimp.sys [86016 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22080 2024-09-17] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [602392 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-09-17] (Microsoft Windows -> Microsoft Corporation)
S3 WinAccelCx0101; C:\WINDOWS\System32\drivers\WinAccelCx.sys [144704 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
S3 WinI3C; C:\WINDOWS\System32\DriverStore\FileRepository\wini3c.inf_amd64_831b18f5b69a2233\WinI3C.sys [75056 2024-10-04] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)
S3 ZTDNS; C:\WINDOWS\System32\drivers\ztdns.sys [107936 2024-10-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-07 20:58 - 2024-10-07 20:58 - 000003108 _____ C:\WINDOWS\system32\Tasks\AMDInstallLauncher
2024-10-07 20:58 - 2024-10-07 20:58 - 000003100 _____ C:\WINDOWS\system32\Tasks\AMDLinkUpdate
2024-10-07 20:55 - 2024-10-07 20:59 - 000034421 _____ C:\Users\HP\Desktop\FRST.txt
2024-10-07 20:55 - 2024-10-07 20:59 - 000000000 ____D C:\FRST
2024-10-07 20:54 - 2024-10-07 20:54 - 002397696 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2024-10-07 20:33 - 2024-10-07 20:33 - 000806758 _____ C:\WINDOWS\system32\perfh005.dat
2024-10-07 20:33 - 2024-10-07 20:33 - 000195904 _____ C:\WINDOWS\system32\perfc005.dat
2024-10-07 20:27 - 2024-10-07 20:27 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2024-10-07 20:26 - 2024-10-07 20:26 - 000000000 ____D C:\WINDOWS\Panther
2024-10-06 20:48 - 2024-10-06 20:48 - 000000000 ____D C:\Program Files\Microsoft Office 15
2024-10-06 18:16 - 2024-10-06 18:16 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-10-06 18:16 - 2024-10-06 18:16 - 000002075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-10-06 17:16 - 2024-10-06 17:16 - 000000000 ____D C:\Users\HP\AppData\Local\Ashampoo
2024-10-06 17:00 - 2024-10-06 17:00 - 000000000 ____D C:\WINDOWS\system32\o2
2024-10-06 17:00 - 2024-10-06 17:00 - 000000000 ____D C:\Users\HP\AppData\Roaming\AVG
2024-10-06 17:00 - 2024-10-06 17:00 - 000000000 ____D C:\Users\HP\AppData\Local\CEF
2024-10-06 17:00 - 2024-10-06 17:00 - 000000000 ____D C:\Users\HP\AppData\Local\AVG
2024-10-06 16:59 - 2024-10-06 17:25 - 000000000 ____D C:\ProgramData\AVG
2024-10-06 16:59 - 2024-10-06 16:59 - 000888600 _____ (Google LLC) C:\Users\Public\Documents\gcapi.dll
2024-10-06 16:59 - 2024-10-06 16:59 - 000000000 ____D C:\Program Files\Common Files\AVG
2024-10-05 21:51 - 2024-10-05 21:51 - 000000000 ____D C:\Users\HP\Intel
2024-10-05 16:10 - 2024-10-05 16:10 - 000000000 ____D C:\Program Files (x86)\Realtek
2024-10-04 23:06 - 2024-10-04 23:08 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2024-10-04 23:05 - 2024-10-04 23:06 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2024-10-04 23:04 - 2024-10-04 23:04 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2024-10-04 23:02 - 2024-10-04 23:02 - 000026650 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-10-04 23:02 - 2024-10-04 23:02 - 000026650 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2024-10-04 23:02 - 2024-10-04 23:02 - 000005264 _____ C:\WINDOWS\system32\ecoscore_config.json
2024-10-04 23:02 - 2024-10-04 23:02 - 000000773 _____ C:\WINDOWS\system32\DeviceFeatureDDF.json
2024-10-04 23:00 - 2024-10-04 23:00 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2024-10-04 23:00 - 2024-10-04 23:00 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2024-10-04 23:00 - 2024-10-04 23:00 - 000000000 ____D C:\inetpub
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\WINDOWS\SysWOW64\FxsTmp
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\WINDOWS\system32\FxsTmp
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\WINDOWS\addins
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\Program Files\Reference Assemblies
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\Program Files\MSBuild
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2024-10-04 22:58 - 2024-10-04 22:58 - 000000000 ____D C:\Program Files (x86)\MSBuild
2024-10-04 22:19 - 2024-10-07 20:33 - 001962272 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-10-04 22:18 - 2024-10-04 22:18 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2024-10-04 22:17 - 2024-10-04 22:17 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2024-10-04 22:15 - 2024-10-07 20:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-10-04 22:15 - 2024-10-04 22:15 - 000003568 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-10-04 22:15 - 2024-10-04 22:15 - 000003344 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-10-04 22:15 - 2024-10-04 22:15 - 000002706 _____ C:\WINDOWS\system32\Tasks\AMDScoSupportTypeUpdate
2024-10-04 22:15 - 2024-10-04 22:15 - 000002672 _____ C:\WINDOWS\system32\Tasks\ModifyLinkUpdate
2024-10-04 22:15 - 2024-10-04 22:15 - 000002404 _____ C:\WINDOWS\system32\Tasks\AMDRyzenMasterSDKTask
2024-10-04 22:15 - 2024-10-04 22:15 - 000002194 _____ C:\WINDOWS\system32\Tasks\StartCN
2024-10-04 22:15 - 2024-10-04 22:15 - 000002114 _____ C:\WINDOWS\system32\Tasks\StartDVR
2024-10-04 22:15 - 2024-10-04 22:15 - 000001662 __RSH C:\ProgramData\ntuser.pol
2024-10-04 22:15 - 2024-10-04 22:15 - 000000020 ___SH C:\Users\HP\ntuser.ini
2024-10-04 22:15 - 2024-10-04 22:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2024-10-04 22:15 - 2024-10-04 22:15 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2024-10-04 22:14 - 2024-10-04 22:14 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Network
2024-10-04 22:13 - 2024-10-04 22:13 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\SystemCertificates
2024-10-04 22:13 - 2024-10-04 22:13 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Network
2024-10-04 22:13 - 2024-10-04 22:13 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Crypto
2024-10-04 22:13 - 2024-10-04 22:13 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Network
2024-10-04 22:10 - 2024-10-07 20:27 - 000000000 ____D C:\Users\DefaultAppPool
2024-10-04 22:10 - 2024-10-07 20:26 - 000000000 ____D C:\Users\HP
2024-10-04 22:10 - 2024-10-04 22:16 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows
2024-10-04 22:10 - 2024-10-04 22:11 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Spelling
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Šablony
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Soubory cookie
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Poslední
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Okolní tiskárny
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Okolní síť
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Nabídka Start
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Dokumenty
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Documents\Obrázky
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Documents\Hudba
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Documents\Filmy
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\Data aplikací
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\HP\AppData\Local\Data aplikací
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Šablony
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Poslední
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2024-10-04 22:10 - 2024-10-04 22:10 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows
2024-10-04 22:10 - 2024-04-01 09:26 - 000000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Spelling
2024-10-04 22:08 - 2024-10-07 20:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-10-04 22:08 - 2024-10-04 22:08 - 000494128 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-10-01 21:24 - 2024-10-06 17:08 - 000000000 ____D C:\Users\HP\AppData\Roaming\com.adobe.dunamis
2024-10-01 21:24 - 2024-10-06 17:08 - 000000000 ____D C:\Users\HP\AppData\Local\Adobe
2024-10-01 21:24 - 2024-10-01 21:24 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Adobe
2024-10-01 21:24 - 2024-10-01 21:24 - 000000000 ____D C:\Users\HP\AppData\Local\SolidDocuments
2024-10-01 21:24 - 2024-10-01 21:24 - 000000000 ____D C:\Users\HP\.ms-ad
2024-10-01 21:24 - 2024-10-01 21:24 - 000000000 ____D C:\ProgramData\Adobe
2024-10-01 21:22 - 2024-10-01 21:22 - 000000000 ____D C:\Program Files\Adobe
2024-10-01 21:20 - 2024-10-05 22:38 - 000000000 ____D C:\Program Files\Common Files\Adobe
2024-10-01 20:39 - 2024-10-01 20:39 - 000000165 ____H C:\Users\HP\Desktop\~$Kody 5-2023-8-2024.xlsx
2024-10-01 19:43 - 2024-10-01 19:43 - 000000000 ____D C:\Users\HP\AppData\LocalLow\AMD
2024-10-01 19:39 - 2024-10-04 23:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Software꞉ Adrenalin Edition
2024-10-01 19:38 - 2024-08-20 00:13 - 002976160 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\AMDBugReportTool.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 002100128 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 001617824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 001617824 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxx.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000978336 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000856864 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000856864 _____ C:\WINDOWS\system32\vulkaninfo.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000737696 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000737696 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000682400 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000668008 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000610720 _____ C:\WINDOWS\system32\GameManager64.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000537504 _____ C:\WINDOWS\system32\atieah64.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000504088 _____ C:\WINDOWS\system32\EEURestart.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000473480 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000464288 _____ C:\WINDOWS\SysWOW64\GameManager32.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000406408 _____ C:\WINDOWS\SysWOW64\atieah32.exe
2024-10-01 19:32 - 2024-09-04 09:44 - 000267168 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000229280 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000211128 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000207776 _____ C:\WINDOWS\system32\mantle64.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000196512 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000186656 _____ C:\WINDOWS\system32\mantleaxl64.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000184608 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000174944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000165792 _____ C:\WINDOWS\SysWOW64\mantle32.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000149280 _____ C:\WINDOWS\SysWOW64\mantleaxl32.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000148896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000142624 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amfrt64.dll
2024-10-01 19:32 - 2024-09-04 09:44 - 000075176 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\ati2erec.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 105410432 _____ C:\WINDOWS\system32\amd_comgr.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 088606496 _____ C:\WINDOWS\SysWOW64\amd_comgr32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 004374408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdadlx64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 004179848 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdadlx32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 002245408 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsasrv64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 001355520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdsacli64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 001074664 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdsacli32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000944008 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdlvr64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000801672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Rapidfire64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000771488 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdlvr32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000678816 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\Rapidfire.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000570248 _____ C:\WINDOWS\system32\amdgfxinfo64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000545568 _____ C:\WINDOWS\system32\dgtrayicon.exe
2024-10-01 19:32 - 2024-09-04 09:43 - 000471456 _____ C:\WINDOWS\system32\amdlogum.exe
2024-10-01 19:32 - 2024-09-04 09:43 - 000434056 _____ C:\WINDOWS\SysWOW64\amdgfxinfo32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000232672 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdihk64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000187968 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdihk32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000139168 _____ C:\WINDOWS\system32\amdxc64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000118560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amfrt32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000115104 _____ C:\WINDOWS\SysWOW64\amdxc32.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000103304 _____ C:\WINDOWS\system32\clinfo.exe
2024-10-01 19:32 - 2024-09-04 09:43 - 000051616 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\RapidFireServer64.dll
2024-10-01 19:32 - 2024-09-04 09:43 - 000048520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\RapidFireServer.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 019434400 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdhip64.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 001736464 _____ (AMD) C:\WINDOWS\system32\amf-mft-mjpeg-decoder64.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 001412064 _____ (AMD) C:\WINDOWS\SysWOW64\amf-mft-mjpeg-decoder32.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000572312 _____ C:\WINDOWS\system32\amdmiracast.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000177984 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000177056 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000167552 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000167528 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000157536 _____ C:\WINDOWS\system32\atidxx64.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000152504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000145800 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000138624 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000138616 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2024-10-01 19:32 - 2024-09-04 09:42 - 000131136 _____ C:\WINDOWS\SysWOW64\atidxx32.dll
2024-10-01 19:31 - 2024-09-04 08:57 - 000154384 _____ C:\WINDOWS\system32\samu_krnl_ci.sbin
2024-10-01 19:31 - 2024-09-04 08:57 - 000138832 _____ C:\WINDOWS\system32\samu_krnl_isv_ci.sbin
2024-10-01 19:31 - 2024-09-04 08:57 - 000128048 _____ C:\WINDOWS\system32\kapp_ci.sbin
2024-10-01 19:31 - 2024-09-04 08:57 - 000121168 _____ C:\WINDOWS\system32\kapp_si.sbin
2024-10-01 19:31 - 2024-09-04 08:56 - 109624080 _____ C:\WINDOWS\system32\amdxc64.so
2024-10-01 19:10 - 2024-10-07 20:58 - 000012288 ___SH C:\DumpStack.log.tmp
2024-09-30 22:22 - 2024-10-07 18:55 - 000000000 ___RD C:\Users\DefaultAppPool\OneDrive
2024-09-30 22:15 - 2024-09-30 22:15 - 001902514 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2024-09-30 20:00 - 2024-09-30 20:00 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2024-09-23 21:39 - 2024-06-12 16:38 - 011757016 _____ C:\WINDOWS\system32\amdsmi.exe
2024-09-23 21:39 - 2024-06-12 16:38 - 000548864 _____ C:\WINDOWS\system32\libsmi_guest.dll
2024-09-23 21:39 - 2024-06-12 16:38 - 000524184 _____ C:\WINDOWS\system32\libsmi_host.dll
2024-09-23 21:32 - 2024-09-23 21:32 - 000000000 ____D C:\Users\HP\AppData\Roaming\AMD
2024-09-23 21:32 - 2024-09-23 21:32 - 000000000 ____D C:\Program Files (x86)\AMD
2024-09-23 21:31 - 2024-10-01 19:42 - 000000000 ____D C:\AMD
2024-09-23 19:49 - 2024-10-04 20:26 - 000000000 ____D C:\Users\HP\AppData\Roaming\Signal
2024-09-23 19:49 - 2024-09-23 19:49 - 000002388 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Signal.lnk
2024-09-23 19:49 - 2024-09-23 19:49 - 000002380 _____ C:\Users\HP\Desktop\Signal.lnk
2024-09-23 18:53 - 2024-09-23 18:55 - 000000000 ____D C:\Users\HP\AppData\Roaming\instinfo
2024-09-23 18:52 - 2024-09-23 18:52 - 000000000 ____D C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952}
2024-09-23 18:41 - 2024-10-07 19:56 - 000000000 ____D C:\Users\HP\AppData\LocalLow\IObit
2024-09-22 18:19 - 2024-10-04 06:03 - 000002249 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-09-22 18:19 - 2024-10-04 06:03 - 000002208 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-09-22 18:19 - 2023-12-13 21:49 - 000002691 _____ C:\Users\HP\Desktop\Gmail.lnk
2024-09-22 18:18 - 2024-09-22 18:18 - 000000000 ____D C:\Program Files\Google
2024-09-21 17:56 - 2024-09-21 17:56 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Sun
2024-09-20 21:14 - 2024-09-20 21:14 - 000000000 ___HD C:\$SysReset
2024-09-14 18:31 - 2024-10-06 17:25 - 000000000 ____D C:\Program Files\AMD
2024-09-14 17:39 - 2024-10-04 22:32 - 000000000 ____D C:\Users\HP\AppData\Local\AMD_Common
2024-09-14 17:33 - 2024-09-14 17:33 - 000000000 ____D C:\Users\HP\AppData\Local\AMDSoftwareInstaller

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-10-07 20:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-10-07 20:58 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-10-07 20:58 - 2023-12-14 21:39 - 000036864 _____ C:\WINDOWS\system32\Drivers\vsparam.reg
2024-10-07 20:58 - 2023-12-14 21:39 - 000008192 _____ C:\WINDOWS\system32\Drivers\vsflt.reg
2024-10-07 20:58 - 2023-12-14 18:36 - 000012288 _____ C:\WINDOWS\system32\Drivers\vsndis.reg
2024-10-07 20:37 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-10-07 20:33 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2024-10-07 20:29 - 2023-12-13 14:07 - 000000000 ____D C:\Users\HP\AppData\Local\D3DSCache
2024-10-07 20:26 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2024-10-07 20:26 - 2023-12-13 22:58 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-10-07 19:56 - 2024-04-13 22:31 - 000000000 ____D C:\Users\HP\AppData\Roaming\IObit
2024-10-07 19:56 - 2024-04-13 22:31 - 000000000 ____D C:\ProgramData\IObit
2024-10-07 19:32 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2024-10-07 18:55 - 2023-12-13 13:58 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2024-10-07 18:55 - 2023-12-13 13:58 - 000000000 ____D C:\ProgramData\Packages
2024-10-07 18:54 - 2023-12-13 14:00 - 000000000 ___RD C:\Users\HP\OneDrive
2024-10-07 18:42 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-10-07 17:30 - 2024-05-22 19:46 - 000000000 ____D C:\Users\HP\AppData\Local\Check_Point_Software_Tech
2024-10-07 17:30 - 2024-04-30 19:44 - 000038544 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2024-10-07 06:21 - 2024-04-01 09:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-10-06 18:09 - 2023-12-13 23:21 - 000000000 ____D C:\Users\HP\AppData\Roaming\Telegram Desktop
2024-10-06 17:08 - 2023-12-13 13:58 - 000000000 ____D C:\Users\HP\AppData\Roaming\Adobe
2024-10-06 16:59 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2024-10-05 18:07 - 2023-12-16 22:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Excel
2024-10-05 17:10 - 2023-12-13 23:00 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Word
2024-10-05 17:10 - 2023-12-13 14:43 - 000000000 ___RD C:\Users\HP\Desktop\Nika ♥
2024-10-05 16:10 - 2024-06-07 20:12 - 000000000 ____D C:\SWSetup
2024-10-05 16:10 - 2023-12-13 14:08 - 000000000 ____D C:\ProgramData\HP
2024-10-05 15:54 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-10-05 15:53 - 2024-08-30 20:12 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2024-10-05 13:44 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\appcompat
2024-10-04 23:08 - 2024-05-22 17:50 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2024-10-04 23:08 - 2024-05-21 16:46 - 000000000 ____D C:\WINDOWS\system32\%userprofile%
2024-10-04 23:08 - 2024-04-30 19:16 - 000000000 ____D C:\WINDOWS\system32\AMD
2024-10-04 23:08 - 2024-04-01 09:29 - 000000000 ____D C:\WINDOWS\Setup
2024-10-04 23:08 - 2024-04-01 09:26 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\spool
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\NDF
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\DriverData
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Registration
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\IME
2024-10-04 23:08 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2024-10-04 23:08 - 2023-12-14 18:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Zonelabs
2024-10-04 23:08 - 2023-12-13 23:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-04 23:08 - 2023-12-13 22:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2024-10-04 23:08 - 2022-05-07 12:14 - 000000000 ____D C:\WINDOWS\system32\Hydrogen
2024-10-04 23:08 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2024-10-04 23:08 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2024-10-04 23:08 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2024-10-04 23:07 - 2024-04-01 09:26 - 000000000 __RHD C:\Users\Public\Libraries
2024-10-04 23:06 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\schemas
2024-10-04 23:06 - 2022-05-07 07:24 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2024-10-04 23:06 - 2022-05-07 07:24 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2024-10-04 23:04 - 2024-04-01 18:31 - 000000000 ___SD C:\WINDOWS\system32\AppV
2024-10-04 23:04 - 2024-04-01 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2024-10-04 23:04 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2024-10-04 23:04 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ___SD C:\WINDOWS\system32\F12
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\WUModels
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\vi-VN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ur-PK
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ug-CN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\tt-RU
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\te-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ta-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\sq-AL
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\quz-PE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-plocm
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\qps-ploc
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\or-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\nn-NO
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ne-NP
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mt-MT
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mr-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ml-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mk-MK
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\mi-NZ
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lo-LA
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\lb-LU
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kok-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kn-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\km-KH
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\kk-KZ
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ka-GE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\is-IS
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\id-ID
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hy-AM
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\hi-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gu-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gl-ES
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ga-IE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fil-PH
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\fa-IR
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\eu-ES
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\cy-GB
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\bn-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\be-BY
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\as-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\am-ET
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\af-ZA
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\vi-VN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ur-PK
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ug-CN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\tt-RU
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\te-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ta-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\sq-AL
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\setup
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\quz-PE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\qps-plocm
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\qps-ploc
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\pa-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\or-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\nn-NO
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ne-NP
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mt-MT
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mr-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ml-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mk-MK
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\mi-NZ
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lo-LA
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\lb-LU
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\kok-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\kn-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\km-KH
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\kk-KZ
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ka-GE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\is-IS
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\id-ID
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\hy-AM
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\hi-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\gu-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\gl-ES
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\gd-GB
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ga-IE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\fil-PH
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\fa-IR
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\eu-ES
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\et-EE
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\es-MX
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\cy-GB
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Com
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ca-ES
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\bn-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\be-BY
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\as-IN
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\am-ET
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\af-ZA
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\BrowserCore
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-10-04 23:04 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Common Files\System
2024-10-04 23:04 - 2024-04-01 09:21 - 000000000 ____D C:\WINDOWS\servicing
2024-10-04 23:03 - 2024-04-01 18:31 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2024-10-04 23:03 - 2024-04-01 18:31 - 000028898 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2024-10-04 23:03 - 2024-04-01 09:26 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2024-10-04 23:03 - 2024-04-01 09:26 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msclmd.dll
2024-10-04 23:02 - 2024-04-01 09:22 - 000063064 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcLpioDMA.dll
2024-10-04 23:02 - 2024-04-01 09:22 - 000062952 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcPseDMA.dll
2024-10-04 23:02 - 2024-04-01 09:22 - 000062944 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtPL080.dll
2024-10-04 23:00 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\OCR
2024-10-04 22:58 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2024-10-04 22:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2024-10-04 22:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\MUI
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\system32\winrm
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\system32\WCN
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\system32\slmgr
2024-10-04 22:57 - 2024-04-01 18:28 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2024-10-04 22:57 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files (x86)\Windows Defender
2024-10-04 22:31 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\USOPrivate
2024-10-04 22:16 - 2023-12-13 13:58 - 000000000 __RHD C:\Users\Public\AccountPictures
2024-10-04 22:15 - 2024-04-01 09:26 - 000000000 ___RD C:\Program Files\Windows Defender
2024-10-04 22:15 - 2024-04-01 09:26 - 000000000 ____D C:\Program Files\Windows NT
2024-10-04 22:14 - 2024-04-01 09:26 - 000000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows
2024-10-04 22:12 - 2024-04-01 09:26 - 000000000 __RSD C:\WINDOWS\Media
2024-10-04 22:11 - 2023-12-13 23:50 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2024-10-04 22:11 - 2023-12-13 23:48 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2024-10-04 22:11 - 2023-12-13 23:21 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2024-10-04 22:09 - 2024-04-30 19:16 - 000000000 ____D C:\WINDOWS\Firmware
2024-10-02 19:31 - 2023-12-14 10:53 - 000000000 ____D C:\Users\HP\AppData\Roaming\Microsoft\UProof
2024-10-01 19:43 - 2023-12-13 14:07 - 000000000 ____D C:\Users\HP\AppData\Local\AMD
2024-10-01 18:38 - 2023-12-13 13:50 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-09-30 20:01 - 2023-12-13 22:51 - 000000000 ____D C:\Program Files\Microsoft Office
2024-09-23 19:06 - 2024-04-13 22:32 - 000000000 ____D C:\ProgramData\ProductData3
2024-09-23 19:04 - 2024-04-13 22:32 - 000000000 ____D C:\ProgramData\ProductData
2024-09-22 18:18 - 2024-04-28 15:57 - 000000000 ____D C:\Program Files (x86)\Google
2024-09-21 18:09 - 2023-12-13 14:42 - 000000000 ___RD C:\Users\HP\Desktop\BMW
2024-09-17 16:34 - 2023-12-13 13:50 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2024-09-10 19:09 - 2023-12-13 14:05 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-09-10 19:06 - 2023-12-13 14:05 - 199688632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== FLock ==============================

2023-12-14 22:27 C:\WINDOWS\system32\config\BFS

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2024
Ran by Veronika (07-10-2024 21:01:39)
Running from C:\Users\HP\Desktop
Microsoft Windows 11 Pro Version 24H2 26120.1930 (X64) (2024-10-04 20:15:38)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3663164027-3565326852-1001575466-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3663164027-3565326852-1001575466-503 - Limited - Disabled)
Guest (S-1-5-21-3663164027-3565326852-1001575466-501 - Limited - Disabled)
Veronika (S-1-5-21-3663164027-3565326852-1001575466-1001 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-3663164027-3565326852-1001575466-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FF00-7760-BC15014EA700}) (Version: 24.003.20180 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601091}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.133 - Advanced Micro Devices, Inc.) Hidden
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 6.07.22.037 - Advanced Micro Devices, Inc.)
AMD I2C Driver (HKLM-x32\...\{B31D92D9-2914-46B0-9738-F668A563DE73}) (Version: 1.2.0.124 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 5.30.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 8.0.0.13 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.44 - Advanced Micro Devices, Inc.) Hidden
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 24.9.1 - Advanced Micro Devices, Inc.)
AMD_Chipset_Drivers (HKLM-x32\...\{a3a3f608-32f7-42e6-abeb-9312016404b4}) (Version: 6.07.22.037 - Advanced Micro Devices, Inc.) Hidden
Branding64 (HKLM\...\{492AEFBE-1B81-4C20-A111-E6974BB98EC5}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
CopyTrans Control Center Uninstall Only (HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\CopyTrans Suite) (Version: 5.003 - WindSolutions)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 129.0.6668.90 - Google LLC)
HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)
Check Point Endpoint Security (HKLM\...\{EA915842-74A4-49E5-96A0-15EB9A1861BB}) (Version: 88.00.0188 - Check Point Software Technologies Ltd.)
iCloud Outlook (HKLM\...\{F4523358-0218-44DA-8A86-7C40FAF2262B}) (Version: 15.0.0.215 - Apple Inc.)
Microsoft 365 Apps for enterprise - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.18025.20104 - Microsoft Corporation)
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.18025.20104 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 130.0.2849.13 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 129.0.2792.79 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.19202 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20104 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20104 - Microsoft Corporation) Hidden
RyzenMasterSDK (HKLM\...\{4B4B44C4-19FF-4791-AAD4-1AE011803AE8}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden
Signal 7.27.0 (HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 7.27.0 - Signal Messenger, LLC)
Telegram Desktop (HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.6 - Telegram FZ-LLC)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)

Chrome apps:
============
Gmail (HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\af4c9799d4397ada8b99337c1b0a4776) (Version: 1.0 - Google\Chrome)

Packages:
=========

@{MicrosoftWindows.Client.AIX_1000.26100.12.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.AIX/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.AIX_1000.26100.16.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.AIX/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.AIX_1000.26100.17.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.AIX/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.AIX_1000.26100.18.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.AIX/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.AIX_1000.26100.3.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.AIX/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.OOBE_1000.26100.1.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.OOBE/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.Photon_1000.26100.1.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.Photon/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\MicrosoftWindows.Client.Photon_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.Photon_1000.26100.2.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.Photon/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.Photon_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
@{MicrosoftWindows.Client.Photon_1000.26100.3.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.Client.Photon/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.Photon_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
AMD Radeon Software -> C:\Program Files\AMD\CNext\CNext [2024-10-01] (Advanced Micro Devices Inc.)
Clipchamp.Clipchamp -> C:\Program Files\WindowsApps\Clipchamp.Clipchamp_3.0.10220.0_neutral_split.language-cs_yxz26nhyzhsrt [2024-04-30] (Microsoft Corp.)
Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11090.27004.0_x64__8wekyb3d8bbwe [2024-10-03] (Microsoft Corporation) [Startup Task]
HP Audio Center -> C:\Program Files\WindowsApps\AD2F1837.HPAudioCenter_1.50.322.0_x64__v10z8vjag6ke6 [2024-05-15] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_2.6.3.0_x64__v10z8vjag6ke6 [2024-09-23] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.39.17.0_x64__v10z8vjag6ke6 [2024-09-29] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa [2024-09-11] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2024-05-04] (Microsoft Corporation) [MS Ad]
Microsoft Teams -> C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe [2024-09-05] (Microsoft) [Startup Task]
Microsoft.ApplicationCompatibilityEnhancements -> C:\Program Files\WindowsApps\Microsoft.ApplicationCompatibilityEnhancements_1.2405.3.0_x64__8wekyb3d8bbwe [2024-05-14] (Microsoft Corporation)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.2331.0_x64__8wekyb3d8bbwe [2024-08-22] (Microsoft Corporation)
Microsoft.AVCEncoderVideoExtension -> C:\Program Files\WindowsApps\Microsoft.AVCEncoderVideoExtension_1.0.661.0_x64__8wekyb3d8bbwe [2024-05-01] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2024-10-04] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.175.0_x64__8wekyb3d8bbwe [2024-10-03] (Microsoft Corporation) [Startup Task]
Microsoft.Windows.AugLoop.CBS -> C:\Windows\SystemApps\Microsoft.Windows.AugLoop.CBS_8wekyb3d8bbwe [2024-04-01] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24092.19.0_x64__cw5n1h2txyewy [2024-10-05] (Microsoft Windows) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2439.7.0_x64__cv1g1gvanyjgm [2024-10-04] (WhatsApp Inc.) [Startup Task]
Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.1.0_x64__8wekyb3d8bbwe [2024-10-05] (Microsoft Corporation)
WiFi Analyzer -> C:\Program Files\WindowsApps\19965MATTHAFNER.WIFIANALYZER_2.8.0.0_x64__gs5k5vmxr2ste [2024-09-16] (Matt Hafner)
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.214.1843.0_x64__8wekyb3d8bbwe [2024-08-15] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.266.2241.0_x64__8wekyb3d8bbwe [2024-10-01] (Microsoft Corp.)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.RulesEngine_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.AIX_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.Photon_cw5n1h2txyewy [2024-10-04] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2024-07-16] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3663164027-3565326852-1001575466-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\HP\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.19202\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3663164027-3565326852-1001575466-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => -> No File

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\HP\Desktop\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_fmgjjmmmlfnkbppncabfkddbjimcfncm\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Gmail (2).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm

==================== Loaded Modules (Whitelisted) =============


==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\cdd.dll => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{13cfe1b1-6b17-424c-ac3f-16ace8733898} => ""="I3C devices"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\cdd.dll => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ExecutionContext.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\netadaptercx.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinHttpAutoProxySvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{13cfe1b1-6b17-424c-ac3f-16ace8733898} => ""="I3C devices"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-09-30] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2024-04-14 16:29 - 2024-08-28 18:59 - 000000435 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 HP255G8.mshome.net # 2029 8 1 27 16 59 22 488

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\Desktop\iPhone\Veronika\IMG_7654.JPG
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Ethernet: Realtek PCIe GbE Family Controller -> rt68cx21x64.sys
Ethernet 2: Check Point Virtual Network Adapter For Endpoint VPN Client -> vnaap.sys
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Wi-Fi: Realtek RTL8822CE 802.11ac PCIe Adapter -> rtwlane.sys

MS_NdisLwf: Zone Alarm Firewall Driver

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\Services: AMD Crash Defender Service => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: AUEPLauncher => 2
MSCONFIG\Services: ETDService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HPAppHelperCap => 2
MSCONFIG\Services: HPDiagsCap => 2
MSCONFIG\Services: HPNetworkCap => 2
MSCONFIG\Services: hpqcaslwmiex => 3
MSCONFIG\Services: HPSysInfoCap => 2
MSCONFIG\Services: HpTouchpointAnalyticsService => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: RtkBtManServ => 2
MSCONFIG\Services: SECOMNService => 2
MSCONFIG\Services: WinThruster Real Time Protection Service => 2
HKLM\...\StartupApproved\StartupFolder: => "Gmail (2).lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run32: => "Check Point Endpoint Security Tray"
HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\StartupApproved\StartupFolder: => "Gmail.lnk"
HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_AC3B7AF181558E407F159DB8A5D4AA84"
HKU\S-1-5-21-3663164027-3565326852-1001575466-1001\...\StartupApproved\Run: => "AMDNoiseSuppression"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{EEA48E40-372D-4C4F-8A97-2CDA25707101}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{21AB6815-A194-430D-BCAF-DE64A9FE2485}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E8505F00-BFA3-4D59-83D6-FC265D48BD26}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{60109487-95C9-42BB-90B5-79B100CE7381}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AE9C5BB3-6828-42C0-A9E6-FF3BA24042A8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.129.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{014F5F4F-DEA9-4523-8963-816142F21A0B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{3EB76C1F-7FBC-4DC8-9CC1-0DDB49DFBDA7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{708EB9A6-9314-4C4A-B95E-769D9DFAE7F3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{72ECDF16-E686-4BA5-9E40-FD68D265B0BE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{3B98BE20-8C97-4C9B-BEA6-1A0194B6C34C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{C56944EE-EC70-4BB3-9EAD-BE70C2640AF9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{5311CC87-00C7-43E5-9101-437A17CC49E2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{CD430256-F6FD-404F-A84A-03188DDFDAF4}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12133.2.3006.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{DECC47BD-EFC9-4682-88E2-AC0B02DF57FB}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{80BB3A79-4B41-478D-AE2A-35B7ACC08F3E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B4184C9A-9DC0-482B-853A-915375DD524B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{644D3DDB-B581-4A75-8AE5-D8460775748E}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4FF4A516-DFEF-4CC2-ABB1-2DC25DA3FD03}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D945C6E7-48CF-402F-A110-11B73017C1D1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{88A250F9-2D55-4187-9BBF-4259A03003C7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6024624B-0770-4A6B-A5E1-050659A20009}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\bin\IDAFServerHostService.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{ADA2AA97-AAAF-4368-A1AF-27D1B43A7E8D}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Common\cpinfo\uploader\cpinfo_uploader.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
FirewallRules: [{A5EC8122-E995-4332-B775-AEF69C64E17C}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Connect\TracSrvWrapper.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
FirewallRules: [{E4C587BA-5142-42ED-A17E-2E31973768DA}] => (Allow) C:\Program Files (x86)\CheckPoint\Endpoint Security\Endpoint Connect\TrGUI.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
FirewallRules: [{7EEA91D3-F185-4E8F-B3C7-0FA4DB2C9894}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2DCE4AF6-4C89-41BF-967D-17D2E1C0DB17}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{50CA4250-B0D3-4771-B538-4151415A1D7A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\129.0.2792.79\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

07-10-2024 19:31:37 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/07/2024 08:58:17 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\HP255G8$ přes https://AMD-KeyId-1b3648db23e5e6a3972b8 ... s/Aik/scep se nepovedla:

GetCACaps

Metoda: GET(31ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (10/07/2024 08:58:15 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\HP255G8$ přes https://AMD-KeyId-1b3648db23e5e6a3972b8 ... s/Aik/scep se nepovedla:

GetCACaps

Metoda: GET(125ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (10/07/2024 08:42:44 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\HP\Desktop\Autoruns\Autoruns.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_85b6f76bf7af41a2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_3e09c094e333189c.manifest.

Error: (10/07/2024 08:41:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\HP\Desktop\Autoruns\Autoruns.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_85b6f76bf7af41a2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_3e09c094e333189c.manifest.

Error: (10/07/2024 08:26:52 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\HP255G8$ přes https://AMD-KeyId-1b3648db23e5e6a3972b8 ... s/Aik/scep se nepovedla:

GetCACaps

Metoda: GET(0ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (10/07/2024 08:26:50 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\HP255G8$ přes https://AMD-KeyId-1b3648db23e5e6a3972b8 ... s/Aik/scep se nepovedla:

GetCACaps

Metoda: GET(359ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)

Error: (10/07/2024 07:53:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\HP\Desktop\Autoruns\Autoruns.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_85b6f76bf7af41a2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_3e09c094e333189c.manifest.

Error: (10/07/2024 07:52:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Users\HP\Desktop\Autoruns\Autoruns.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_85b6f76bf7af41a2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.26100.1930_none_3e09c094e333189c.manifest.


System errors:
=============
Error: (10/07/2024 09:00:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/07/2024 09:00:12 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (10/07/2024 08:58:10 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba NetMsmqActivator závisí na následující službě: msmq. Tato služba pravděpodobně není nainstalována.

Error: (10/07/2024 08:58:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (20:26:43, ‎07.‎10.‎2024) bylo neočekávané.

Error: (10/07/2024 08:57:58 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: NT AUTHORITY)
Description: 03225747456

Error: (10/07/2024 08:57:58 PM) (Source: Microsoft-Windows-Hyper-V-Hypervisor) (EventID: 42) (User: NT AUTHORITY)
Description: Spuštění hypervisoru se nepovedlo. SVM není k dispozici nebo není povolené v systému BIOS.

Error: (10/07/2024 08:28:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/07/2024 08:28:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Aktualizace Google (gupdate) bylo dosaženo časového limitu (30000 ms).


Windows Defender:
================
Date: 2024-10-06 23:12:40
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {11ADC32D-8A24-4C76-A0A7-3B7515CC286D}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-10-06 21:44:54
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {C4E012E6-1FA2-4194-A585-DAA6BDC6F2C8}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-10-06 19:05:32
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {E2640BC0-50A9-4BDD-A1BA-7EB0EDCF69B9}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2024-10-05 16:09:45
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUADlManager:Win32/OfferCore
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\HP\Desktop\driveridentifier_setup.exe; webfile:_C:\Users\HP\Desktop\driveridentifier_setup.exe|https://www.driveridentifier.com/files/ ... 9820123142
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: HP255G8\Veronika
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.419.362.0, AS: 1.419.362.0, NIS: 1.419.362.0
Verze modulu: AM: 1.1.24080.9, NIS: 1.1.24080.9

Date: 2024-10-05 16:09:44
Description:
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: PUADlManager:Win32/OfferCore
Závažnost: Nízké
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\HP\Desktop\driveridentifier_setup.exe; webfile:_C:\Users\HP\Desktop\driveridentifier_setup.exe|https://www.driveridentifier.com/files/ ... 9820123142
Původ detekce: Internet
Typ detekce: Konkrétní
Zdroj detekce: Soubory ke stažení a přílohy
Uživatel: HP255G8\Veronika
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.419.362.0, AS: 1.419.362.0, NIS: 1.419.362.0
Verze modulu: AM: 1.1.24080.9, NIS: 1.1.24080.9

CodeIntegrity:
===============
Date: 2024-10-06 17:00:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVG\Antivirus\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2024-10-06 17:00:22
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

BIOS: Insyde F.40 08/07/2024
Motherboard: HP 890E
Processor: AMD Ryzen 5 5500U with Radeon Graphics
Percentage of memory in use: 76%
Total physical RAM: 7488.01 MB
Available physical RAM: 1754.63 MB
Total Virtual: 18752.01 MB
Available Virtual: 10359.01 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.57 GB) (Free:157.51 GB) (Model: SK hynix BC711 HFM256GD3JX013N) NTFS

\\?\Volume{20d96510-4c69-441f-a725-5e01ba015c44}\ () (Fixed) (Total:0.79 GB) (Free:0.23 GB) NTFS
\\?\Volume{50653e3b-1815-47dd-8104-9de0db5a472a}\ () (Fixed) (Total:0.09 GB) (Free:0.03 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 36FC6EC7)

Partition: GPT.

==================== End of Addition.txt =======================

[JaRon]

Ahoj,
prescanuj PC s MBAM - log sem

[veroniccam]

Posílám

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 10/9/2024
Scan Time: 9:15 PM
Log File: da59bedc-8672-11ef-8bf5-48e7dad2260e.json

-Software Information-
Version: 5.1.11.133
Components Version: 1.0.5048
Update Package Version: 1.0.90223
License: Trial

-System Information-
OS: Windows 11 (Build 26120.1930)
CPU: x64
File System: NTFS
User: HP255G8\Veronika

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 233723
Threats Detected: 19
Threats Quarantined: 0
Time Elapsed: 3 min, 20 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
File system: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 4
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, No Action By User, 4762, 454720, 1.0.90223, , ame, , ,
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, No Action By User, 4762, 454734, 1.0.90223, , ame, , ,
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, No Action By User, 4762, 454720, 1.0.90223, , ame, , ,
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Sync Data\LevelDB, No Action By User, 4762, 454734, 1.0.90223, , ame, , ,

File: 15
PUP.Optional.BundleInstaller, C:\PROGRAMDATA\IOBIT\ASCDOWNLOADER\ASC17\DBSETUP.EXE, No Action By User, 58, 1258427, 1.0.90223, , ame, , 2C99C30D6E3805ACDA4235E789B7D089, 743881F014D40332960F205A12A438E90F45B0F01516D2948B3E3EA1B460E109
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User, 4762, 454720, 1.0.90223, , ame, , 74587AEAED9A7C99AB697325CCB9E866, 2C0BB0B1980B33EC13FFA71F2CCF253042A5DD84D0C0D0EEF41BC3BAD3B6A5DF
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000005.ldb, No Action By User, 4762, 454720, 1.0.90223, , ame, , 79673125E80AE182C2EB388F56F8ACEC, 1C8933DD3B2F908EF757822DC6E73097189D39AAADD9C1DE2EE2E85802383AA2
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000087.ldb, No Action By User, 4762, 454720, 1.0.90223, , ame, , 6BE6E8F412C7B74E78C1D3EBE5F740CA, 88BA1A013533CE87145B5C27D592828CA4BA8EB31260E3B349BA7FDCF2E62DDE
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000090.ldb, No Action By User, 4762, 454720, 1.0.90223, , ame, , C74DE18FE29F70744E43D87776B8BDA2, AEFA247CF8F2718AFE83780FC3E85424722C50E4C59A86D495A45637E8A165A4
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000091.log, No Action By User, 4762, 454720, 1.0.90223, , ame, , 8B4001872F44C5BAA387390527ACE656, 46CF293F2CB675C179D2E06A404AAF5001A470AC5CE9A64AB62D036CE8ECF73E
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000092.ldb, No Action By User, 4762, 454720, 1.0.90223, , ame, , 1D7A62F3B94E92E2B58B75485EB492EF, 92DC85A8FBD26F8983B9B31433C9048E0B826CB308867DE8E11D06F6125C863E
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT, No Action By User, 4762, 454720, 1.0.90223, , ame, , 46295CAC801E5D4857D09837238A6394, 0F1BAD70C7BD1E0A69562853EC529355462FCD0423263A3D39D6D0D70B780443
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK, No Action By User, 4762, 454720, 1.0.90223, , ame, , ,
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG, No Action By User, 4762, 454720, 1.0.90223, , ame, , F6E123468EEC4D460B67A1F0C19950B2, 91A45E8B601DF82F630C7381DC0CE590BB59EE7CAE1D4B9A656B32A01C56CCB5
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old, No Action By User, 4762, 454720, 1.0.90223, , ame, , 7DAA8A6B23A53A2B03DC1DBCC0C8E668, 9C266238F3FE3FB6710590432D40123BB7F43077035E28CA19FBB126ECC5547B
Adware.Elex.ShrtCln, C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001, No Action By User, 4762, 454720, 1.0.90223, , ame, , 5F59EC54CE22992CDF87E4DE671D1937, EDC8C02CF992632F521C617D9312C520C5B14A06EBC6454CE61E13FB1103C772
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User, 4762, 454734, 1.0.90223, , ame, , 74587AEAED9A7C99AB697325CCB9E866, 2C0BB0B1980B33EC13FFA71F2CCF253042A5DD84D0C0D0EEF41BC3BAD3B6A5DF
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User, 4762, 454720, 1.0.90223, , ame, , 74587AEAED9A7C99AB697325CCB9E866, 2C0BB0B1980B33EC13FFA71F2CCF253042A5DD84D0C0D0EEF41BC3BAD3B6A5DF
Adware.Elex.ShrtCln, C:\USERS\HP\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Web Data, No Action By User, 4762, 454734, 1.0.90223, , ame, , 74587AEAED9A7C99AB697325CCB9E866, 2C0BB0B1980B33EC13FFA71F2CCF253042A5DD84D0C0D0EEF41BC3BAD3B6A5DF

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)


(end)

[JaRon]

Vsetko najdene nechaj zmazat/do karanteny
Inac OK

[veroniccam]

Mrskla jsem to do karantény
Moc děkuji za pomoc

[JaRon]

Rado sa stalo