Dobrý den, prosím o kontrolu, občas se sekne Google Chrome.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 03-02-2025
Ran by Petr (administrator) on PETR (HP HP Pavilion Gaming Desktop TG01-1xxx) (05-02-2025 17:23:30)
Running from C:\Users\fugat\OneDrive\Plocha\FRST64.exe
Loaded Profiles: Petr
Platform: Microsoft Windows 11 Home Version 24H2 26100.3037 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe ->) (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe <2>
(C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\103.0.3.0\crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.1301.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.140\msedgewebview2.exe <8>
(cmd.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportHelper.exe
(DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\SysInfoCap.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\BridgeCommunication.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe
(explorer.exe ->) (Google LLC -> Google LLC.) C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe <7>
(Expressco Services LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe
(International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <6>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SECOMN64.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOCL64.exe
(services.exe ->) (Expressco Services LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.AppService.exe
(services.exe ->) (Expressco Services LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.SystemService.exe
(services.exe ->) (Expressco Services LLC -> ExpressVPN) C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.VpnService.exe
(services.exe ->) (HON HAI PRECISION INDUSTRY CO.LTD. -> ) C:\Program Files\FanControlApp\FanControlApp.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\SysInfoCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_3c97e435117f8c16\x64\OmenCap\OmenCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dptf_cpu.inf_amd64_c2c5b0e17a28a48f\esif_uf.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_3cbddcc68b1c0da2\RstMwService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (International Business Machines Corporation -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(services.exe ->) (Malwarebytes Inc. -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvhdci.inf_amd64_4696f4ab2f09ad5c\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe <2>
(services.exe ->) (Sound Research Corporation -> Sound Research, Corp.) C:\Windows\System32\SECOMN64.exe
(sihost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> DesktopExtension) C:\Program Files\WindowsApps\AD2F1837.myHP_39.52446.140.0_x64__v10z8vjag6ke6\win32\DesktopExtension.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.25011.11.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(svchost.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> ) C:\Program Files\WindowsApps\AD2F1837.myHP_39.52446.140.0_x64__v10z8vjag6ke6\HP.myHP.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.1301.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\amd64\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2015-02-03] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [3831808 2021-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Logitech)
HKLM-x32\...\Run: [SPUpDateServerrun] => C:\Program Files (x86)\hicloud\update_server\startUp.exe [14832 2015-09-10] (EZVIZ Inc. -> )
HKLM-x32\...\Run: [ExpressVPNNotificationService] => C:\Program Files (x86)\ExpressVPN\expressvpn-ui\ExpressVPNNotificationServiceStarter.exe [381224 2024-11-20] (Expressco Services LLC -> ExpressVPN)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752216 2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-01-29] (Google LLC -> Google LLC.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-01-29] (Google LLC -> Google LLC.)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\Run: [HPSEU_Host_Launcher] => C:\System.sav\util\HPSEU\HpseuHostLauncher.exe [539152 2024-04-23] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\Run: [GameCenter] => C:\Users\fugat\AppData\Local\GameCenter\GameCenter.exe [15265448 2024-12-12] (VK LLC -> VK LLC)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-01-29] (Google LLC -> Google LLC.)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\Run: [MicrosoftEdgeAutoLaunch_040A6E435D789D62A1CBF67CF7DAC58F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [3923496 2025-01-30] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31342880 2023-09-15] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\Run: [BingSvc] => C:\Users\fugat\AppData\Local\Microsoft\BingSvc\BingSvc.exe [6687664 2024-06-06] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36981208 2025-01-09] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\103.0.3.0\GoogleDriveFS.exe [63828064 2025-01-29] (Google LLC -> Google LLC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [203936 2024-10-01] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\132.0.6834.160\Installer\chrmstp.exe [2025-01-31] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {AFA56891-7B73-4599-B26E-F5B1BD087AB4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner Professional 6.22.10977 CZ + SK (x32x64) portable\App\CCleaner64\CCUpdate.exe [829408 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {2D698698-B4E5-4230-BF4B-BEE98AB47799} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner Professional 6.22.10977 CZ + SK (x32x64) portable\App\CCleaner64\CCleanerBugReport.exe [5983536 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner Professional 6.22.10977 CZ + SK (x32x64) portable\App\CCleaner64\LOG" --programpath "C:\Program Files\CCleaner Professional 6.22.10977 CZ + SK (x32x64) portable\App\CCleaner64" --guid "???" --version "6.31.11415" --silent
Task: {F2A896F8-6616-4EC6-B90B-2817E62118DE} - System32\Tasks\CCleanerSkipUAC - Petr => C:\Program Files\CCleaner Professional 6.22.10977 CZ + SK (x32x64) portable\App\CCleaner64\CCleaner64.exe [45381424 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {AAD118CF-EE85-42EF-9E84-6973DBF1EDB3} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [31008 2023-09-15] (Garmin International, Inc. -> )
Task: {283441DD-02F1-494E-B50A-6B74D3741D24} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6985.0{638C7BA3-DAF1-4003-8ED7-405818775BC1} => C:\Program Files (x86)\Google\GoogleUpdater\134.0.6985.0\updater.exe [5672544 2025-01-28] (Google LLC -> Google LLC)
Task: {F7C79003-7998-4287-9BAA-B99D737657FE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://ABO
Task: {235A6941-587E-45F5-97A7-6A1047F939D1} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusError
Task: {044F655D-8C1E-4576-8FA2-A7C733E758D9} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BCF
Task: {7A6C11D9-A46B-4ED3-BD49-ECDD47A5A07A} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM1
Task: {B966915F-E9D3-425A-A3B7-0D49B2363F54} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM2
Task: {B2D62C48-2A55-4324-90B0-4C986EAEDCCB} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://LaunchUI
Task: {D255E1D9-0AB2-4B21-9AB2-25170FC9789D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags:
Task: {CA0782F0-CF97-4519-8784-F9657408C7A2} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckError
Task: {E5765801-D129-4574-A13F-BB8330CE2D16} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => C:\WINDOWS\system32\cmd.exe [339968 2025-01-30] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckTest
Task: {C3296E80-B07F-40EF-87B7-E20DF35BAE53} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-SmartCheckTest => c:\Windows\System32\schtasks.exe [253952 2024-11-22] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\SmartCheckTest"
Task: {FFA84556-636A-4FCC-9384-78702C471FE4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [1003528 2024-12-17] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {D36CAA0A-4052-4E2E-A75B-7FAEEAFCB9AD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [479984 2024-12-17] (HP Inc. -> HP Inc.)
Task: {34577941-5210-4B3F-9D2F-FC40968A1A23} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPPrinterLowInk => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPPrinterLowInk\HPPrinterLowInk.exe [231944 2024-12-17] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {6CC18422-BAE7-4D28-AAAC-B8BBBC8A4CE9} - System32\Tasks\HP\Consent Manager Launcher => C:\WINDOWS\system32\sc.exe [102400 2024-11-22] (Microsoft Windows -> Microsoft Corporation) -> start hptouchpointanalyticsservice
Task: {47869A32-A1BC-451D-9CE3-A54BD9E0912A} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [78288 2025-01-20] (HP Inc. -> HP Inc.)
Task: {F67C41E4-9894-4370-9911-E328319A7046} - System32\Tasks\HP\HP Print Scan Doctor\Printer Health Monitor Logon => C:\Program Files\HPPrintScanDoctor\HPPrinterHealthMonitor.exe [78288 2025-01-20] (HP Inc. -> HP Inc.)
Task: {D6EDDE36-EC6B-40EE-8224-F8665F53331A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [336104 2024-11-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {EAB9192F-4332-4405-9ADF-98BC88B5DBD4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {10151963-BE95-4337-8CEE-85562735DEB9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {4B0C67F0-5B3C-46E0-96E4-2A13A0B1ADDE} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UIEOrchestrator => C:\WINDOWS\system32\UIEOrchestrator.exe [336816 2025-01-30] (Microsoft Windows -> )
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {8CE5143F-80E9-4C04-AC95-F881DA7AF12B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5886764F-766A-4871-9069-B381B88C415C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {F9243FE1-2CFD-4CC7-834E-11FCBB306D08} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F113621-BF7F-41B3-A41E-617C52C525D8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpCmdRun.exe [1687360 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C34DDCB2-B003-4F24-B866-6DDC74D2F607} - System32\Tasks\NVIDIA app SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA app.exe [3333672 2024-12-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {49AE41AF-D407-4F65-9EF7-36F47A20C33E} - System32\Tasks\OmenInstallMonitor => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [71120 2024-11-08] (HP Inc. -> HP Inc.)
Task: {D06940F5-2A82-4098-86DB-39D5384429F1} - System32\Tasks\OmenInstallMonitorCustomEvent => C:\Program Files\HP\OmenInstallMonitor\OmenInstallMonitor.exe [71120 2024-11-08] (HP Inc. -> HP Inc.)
Task: {E40BA80F-8FB1-41F0-97C8-358204C8F337} - System32\Tasks\OneDrive Startup Task-S-1-5-21-518073881-1826240890-1261379532-1001 => C:\Users\fugat\AppData\Local\Microsoft\OneDrive\24.244.1204.0003\OneDriveLauncher.exe [443432 2025-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B39A18A-4466-4239-A58A-9EA8FECC3551} - System32\Tasks\RtkAudUService64_BG => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_d92d7bec4b020758\RtkAudUService64.exe [1372264 2021-10-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner Professional 6.22.10977 CZ + SK (x32x64) portable\App\CCleaner64\CCleanerBugReport.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6937863e-c9ac-48bb-9f25-4c37672829ce}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fd2bec96-b3e5-4cbd-bd2d-45992acf282d}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{fd2bec96-b3e5-4cbd-bd2d-45992acf282d}: [DhcpDomain] ASUS
Edge:
=======
Edge Profile: C:\Users\fugat\AppData\Local\Microsoft\Edge\User Data\Default [2025-02-05]
Edge Notifications: Default -> hxxps://captchastone.azurewebsites.net; hxxps://controlrobot.azurewebsites.net; hxxps://www.facebook.com
Edge HomePage: Default -> hxxp://www.google.cz/
Edge Extension: (TextAloud for Microsoft Edge) - C:\Users\fugat\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ecmbfmepgeciamiollfbpmbofdjljiib [2024-11-04]
Edge Extension: (Dokumenty Google offline) - C:\Users\fugat\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-01-01]
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\fugat\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2025-01-23]
Edge Extension: (Edge relevant text changes) - C:\Users\fugat\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-26]
Edge Extension: (IBM Security Rapport) - C:\Users\fugat\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\kajikgogckeajjplomldcempamhidmcc [2024-12-03]
Edge Extension: (Save to Google Drive) - C:\Users\fugat\AppData\Local\KerzMbxyYHQLNidZ [2024-08-09]
Edge HKLM-x32\...\Edge\Extension: [ecmbfmepgeciamiollfbpmbofdjljiib]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Edge HKLM-x32\...\Edge\Extension: [kajikgogckeajjplomldcempamhidmcc]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @java.com/DTPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\dtplugin\npDeployJava1.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.431.2 -> C:\Program Files\Java\jre1.8.0_431\bin\plugin2\npjp2.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.17.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2024-01-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems Incorporated -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default [2025-02-05]
CHR DownloadDir: D:\Downloads\Chrome
CHR Notifications: Default -> hxxps://citymart.cz; hxxps://re-captha-version-5-1.com; hxxps://shopee.vn; hxxps://speedcaptcha-here.top; hxxps://tn.nova.cz; hxxps://www.aliexpress.com; hxxps://www.appliste.cz; hxxps://www.beliani.cz; hxxps://www.denik.cz; hxxps://www.dolnimorava.cz; hxxps://www.eobuv.cz; hxxps://www.facebook.com; hxxps://www.heureka.cz; hxxps://www.lidl.cz; hxxps://www.tiktok.com; hxxps://www.topeni-solarni-ohrev.cz; hxxps://www.wish.com
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxps://www.google.cz/"
CHR Extension: (IBM Security Rapport) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2024-10-06]
CHR Extension: (uBlock Origin) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2025-01-02]
CHR Extension: (saveVPN) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\ecaefdhfhlpmjemfjpboamogncbnhdfd [2023-11-19]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-02-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-02-03]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-04-16]
CHR Extension: (TextAloud for Chrome) - C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Default\Extensions\obcnimnkkpdkbfnnoagjogdollcfnidj [2024-11-03]
CHR Extension: (Save to Google Drive) - C:\Users\fugat\AppData\Local\KerzMbxyYHQLNidZ [2024-08-09]
CHR Profile: C:\Users\fugat\AppData\Local\Google\Chrome\User Data\Guest Profile [2024-06-26]
CHR Profile: C:\Users\fugat\AppData\Local\Google\Chrome\User Data\System Profile [2024-12-26]
CHR HKU\S-1-5-21-518073881-1826240890-1261379532-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKU\S-1-5-21-518073881-1826240890-1261379532-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-518073881-1826240890-1261379532-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hkecabaloghleaicfhefejdijblljpco]
CHR HKU\S-1-5-21-518073881-1826240890-1261379532-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo]
CHR HKLM-x32\...\Chrome\Extension: [obcnimnkkpdkbfnnoagjogdollcfnidj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 battlenet_helpersvc; C:\ProgramData\Battle.net_components\battlenet_helpersvc\AgentHelper.exe [2530440 2024-03-05] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
S3 EasyAntiCheat_EOS; C:\Program Files (x86)\EasyAntiCheat_EOS\EasyAntiCheat_EOS.exe [954704 2025-01-09] (EasyAntiCheat Oy -> Epic Games, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [367064 2024-11-23] (Epic Games Inc. -> Epic Games, Inc.)
R2 ExpressVPN App Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.AppService.exe [439080 2024-11-20] (Expressco Services LLC -> ExpressVPN)
R2 ExpressVPN System Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.SystemService.exe [439080 2024-11-20] (Expressco Services LLC -> ExpressVPN)
R2 ExpressVPN VPN Service; C:\Program Files (x86)\ExpressVPN\services\ExpressVPN.VpnService.exe [439080 2024-11-20] (Expressco Services LLC -> ExpressVPN)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [891256 2020-07-30] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\AppHelperCap.exe [888416 2025-01-10] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\DiagsCap.exe [887392 2025-01-10] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\NetworkCap.exe [883808 2025-01-10] (HP Inc. -> HP Inc.)
R2 HPOmenCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapcomp.inf_amd64_3c97e435117f8c16\x64\OmenCap\OmenCap.exe [755248 2024-10-25] (HP Inc. -> HP Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [243664 2025-01-20] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_c6d849cb3652cdf7\x64\SysInfoCap.exe [887904 2025-01-10] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe [569008 2024-05-07] (HP Inc. -> HP Inc.)
R2 ID19 HP Fan Control Service; C:\Program Files\FanControlApp\FanControlApp.exe [283168 2020-04-29] (HON HAI PRECISION INDUSTRY CO.LTD. -> )
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9441760 2024-12-11] (Malwarebytes Inc. -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2024-12-21] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [30059792 2023-06-22] (VK Play LLC -> VK Play LLC)
S3 myacsvc; C:\WINDOWS\System32\myacsvc.exe [30750816 2024-12-01] (MY.GAMES B.V. -> MY.GAMES B.V.)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_4696f4ab2f09ad5c\Display.NvContainer\NVDisplay.Container.exe [1275568 2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2952536 2024-06-05] (International Business Machines Corporation -> IBM Corp.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-30] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 expressvpnsplittunnel; C:\Program Files (x86)\ExpressVPN\splittunnel\driver\expressvpnsplittunnel.sys [46712 2024-11-20] (ExprsVPN LLC -> ExpressVPN)
R3 expressvpntun; C:\WINDOWS\System32\drivers\expressvpn-tun.sys [41976 2024-11-20] (Expressco Services LLC -> ExpressVPN)
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-25] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-06] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 HPOmenCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpomencustomcapdriver.inf_amd64_7a1ef17ecb1f36ce\x64\hpomencustomcapdriver.sys [24968 2024-07-12] (HP Inc. -> HP Inc.)
R2 HpReadHWData; C:\WINDOWS\system32\drivers\HpReadHWData.sys [57952 2024-12-13] (HP Inc. -> Windows (R) Win 7 DDK provider)
R2 mbamchameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [232024 2025-02-05] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [21480 2022-06-09] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [239568 2024-11-09] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R3 MpKsl048233e9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D415B10F-9473-47B0-88FF-4C761F268EB6}\MpKslDrv.sys [267552 2025-02-05] (Microsoft Windows -> Microsoft Corporation)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv1.sys [29287768 2023-06-22] (My.Com B.V. -> My.com B.V.)
S3 myacdrv; C:\WINDOWS\System32\drivers\myacdrv1.sys [30086712 2024-12-01] (Microsoft Windows Hardware Compatibility Publisher -> MY.GAMES B.V.)
R2 NPF; C:\Program Files (x86)\Ezviz Studio\npf64.sys [36600 2021-01-25] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [482696 2024-06-05] (International Business Machines Corporation -> IBM Corp.)
S1 RapportCerberus_2309062; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_2309062.sys [1498504 2024-09-11] (International Business Machines Corporation -> IBM Corp.)
S1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [572400 2024-06-05] (International Business Machines Corporation -> IBM Corp.)
S0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [429960 2024-06-05] (International Business Machines Corporation -> IBM Corp.)
S0 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [480648 2024-06-05] (International Business Machines Corporation -> IBM Corp.)
S1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [587248 2024-06-05] (International Business Machines Corporation -> IBM Corp.)
R3 rt68cx21; C:\WINDOWS\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_54848e53264597ab\rt68cx21x64.sys [887768 2024-09-19] (Realtek Semiconductor Corp. -> Realtek)
R1 rtf64; C:\WINDOWS\system32\DRIVERS\rtf64x64.sys [67496 2023-03-23] (Realtek Semiconductor Corp. -> Realtek)
R3 tapexpressvpn; C:\WINDOWS\System32\drivers\tapexpressvpn.sys [52904 2020-08-20] (ExprsVPN LLC -> The OpenVPN Project)
R3 trufos; C:\WINDOWS\System32\drivers\trufos.sys [641736 2022-04-13] (Bitdefender SRL -> Bitdefender)
R3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-11-22] (Microsoft Windows -> Microsoft Corporation)
R3 ViGEmBus; C:\WINDOWS\System32\DriverStore\FileRepository\vigembus.inf_amd64_8a927fc43d8a7838\x64\ViGEmBus.sys [91432 2020-04-21] (HP Inc. -> Benjamin Hoeglinger-Stelzer)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [22104 2024-10-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [606624 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-30] (Microsoft Windows -> Microsoft Corporation)
R3 WSDPrintDevice; C:\WINDOWS\System32\DriverStore\FileRepository\wsdprint.inf_amd64_1f9e32519098c0b6\WSDPrint.sys [57344 2024-11-22] (Microsoft Windows -> Microsoft Corporation)
R3 WSDScan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\WSDScan.sys [61440 2024-11-22] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-02-05 17:23 - 2025-02-05 17:24 - 000039289 _____ C:\Users\fugat\OneDrive\Plocha\FRST.txt
2025-02-05 17:22 - 2025-02-05 17:22 - 002403328 _____ (Farbar) C:\Users\fugat\OneDrive\Plocha\FRST64.exe
2025-02-05 15:08 - 2025-02-05 15:08 - 000001056 _____ C:\Users\fugat\OneDrive\Plocha\MWAVSCAN.lnk
2025-01-31 12:11 - 2025-01-31 12:11 - 000839424 _____ C:\Users\fugat\OneDrive\Plocha\Pořadač1.pdf
2025-01-30 14:40 - 2025-01-30 14:40 - 000742116 _____ C:\WINDOWS\system32\perfh005.dat
2025-01-30 14:40 - 2025-01-30 14:40 - 000168726 _____ C:\WINDOWS\system32\perfc005.dat
2025-01-30 12:33 - 2025-01-30 13:22 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2025-01-30 07:41 - 2025-02-05 16:40 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-01-30 07:29 - 2025-01-30 07:29 - 000027617 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-01-30 07:29 - 2025-01-30 07:29 - 000027617 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-01-28 11:22 - 2025-01-28 11:22 - 000000000 ____D C:\Users\Default\AppData\Local\Malwarebytes
2025-01-20 11:42 - 2025-01-20 11:42 - 000000000 ____D C:\Users\Default\AppData\Local\HP
2025-01-20 08:10 - 2025-01-21 08:42 - 000003570 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-518073881-1826240890-1261379532-1001
2025-01-20 07:05 - 2025-01-20 07:05 - 000000000 ____D C:\WINDOWS\PCHEALTH
2025-01-09 12:28 - 2025-01-22 14:30 - 000000000 ____D C:\Users\fugat\AppData\Roaming\EasyAntiCheat
2025-01-09 12:28 - 2025-01-09 12:28 - 000000000 ____D C:\Users\fugat\AppData\Local\G01
2025-01-09 12:28 - 2025-01-09 12:28 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat_EOS
2025-01-09 12:20 - 2025-01-09 12:20 - 000000382 _____ C:\Users\fugat\OneDrive\Plocha\Off The Grid - Early Access.url
2025-01-09 11:44 - 2025-01-09 11:44 - 000000000 ____D C:\Program Files\Epic Games
2025-01-09 11:35 - 2025-01-20 15:52 - 000000000 ____D C:\Users\fugat\AppData\Local\EpicGamesLauncher
2025-01-09 11:35 - 2025-01-09 11:35 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2025-01-09 11:35 - 2025-01-09 11:35 - 000000000 ____D C:\Program Files (x86)\Epic Games
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-02-05 17:23 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-02-05 17:23 - 2022-04-14 06:06 - 000000000 ____D C:\FRST
2025-02-05 17:07 - 2023-12-01 06:47 - 000000000 ____D C:\Users\fugat\AppData\Local\Malwarebytes
2025-02-05 17:04 - 2022-10-14 13:05 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-02-05 16:50 - 2024-06-26 09:42 - 000068386 _____ C:\WINDOWS\svchost-netsvcs.reg
2025-02-05 16:48 - 2024-11-22 10:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-02-05 16:48 - 2022-04-13 18:13 - 000000054 _____ C:\WINDOWS\Lic.xxx
2025-02-05 16:40 - 2022-02-07 10:19 - 000000000 ___SD C:\Users\fugat\AppData\Roaming\Microsoft\Credentials
2025-02-05 15:36 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-02-05 15:09 - 2019-12-07 10:14 - 000000652 _____ C:\WINDOWS\win.ini
2025-02-05 12:58 - 2022-04-16 12:10 - 000000000 ____D C:\ProgramData\NVIDIA
2025-02-05 11:24 - 2024-04-01 08:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-02-05 11:24 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-02-05 11:23 - 2022-04-16 12:11 - 000000000 ____D C:\Users\fugat\AppData\Local\D3DSCache
2025-02-05 05:23 - 2024-11-08 16:23 - 000000000 ____D C:\Users\fugat\AppData\Local\OGH
2025-02-04 15:18 - 2022-02-07 09:50 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-02-04 12:00 - 2024-04-01 08:24 - 000000000 ____D C:\WINDOWS\INF
2025-02-03 16:06 - 2022-02-07 10:27 - 000000000 ____D C:\Users\fugat\AppData\Local\Packages
2025-02-03 08:00 - 2022-04-17 07:26 - 000000000 ____D C:\Users\fugat\AppData\Local\HP_Inc
2025-01-31 16:51 - 2022-04-16 13:56 - 000000000 ____D C:\Users\fugat\AppData\Local\GameCenter
2025-01-31 06:16 - 2022-04-16 13:19 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-30 14:40 - 2024-11-22 10:14 - 001781194 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-01-30 14:34 - 2024-11-22 10:14 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-01-30 14:34 - 2024-11-22 10:11 - 000002774 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-01-30 14:34 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-01-30 14:34 - 2022-02-07 09:49 - 000012288 ___SH C:\DumpStack.log.tmp
2025-01-30 13:25 - 2024-04-01 08:21 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-01-30 13:22 - 2024-11-22 10:09 - 000607072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-01-30 13:22 - 2024-11-22 10:04 - 000000000 ____D C:\WINDOWS\InboxApps
2025-01-30 13:22 - 2024-04-01 17:31 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2025-01-30 13:22 - 2024-04-01 17:31 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2025-01-30 13:22 - 2024-04-01 17:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ___SD C:\WINDOWS\system32\UNP
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\UUS
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\setup
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\migwiz
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-01-30 13:22 - 2024-04-01 08:26 - 000000000 ____D C:\Program Files\Common Files\System
2025-01-30 13:22 - 2024-04-01 08:21 - 000000000 ____D C:\WINDOWS\servicing
2025-01-30 13:22 - 2022-02-07 12:07 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-01-30 13:02 - 2022-06-17 06:10 - 000001285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2025-01-30 07:28 - 2024-11-22 10:13 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-01-29 15:17 - 2022-02-07 18:06 - 000002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2025-01-27 16:18 - 2022-10-16 08:47 - 000000000 ____D C:\Users\fugat\AppData\Roaming\vlc
2025-01-21 15:13 - 2022-04-17 05:23 - 000000000 ____D C:\Users\fugat\AppData\Local\CrashDumps
2025-01-21 08:42 - 2024-11-22 10:14 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-518073881-1826240890-1261379532-1001
2025-01-21 08:42 - 2024-11-22 10:14 - 000003354 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-518073881-1826240890-1261379532-1001
2025-01-21 08:42 - 2022-02-07 10:29 - 000002384 _____ C:\Users\fugat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-01-20 11:57 - 2024-04-01 08:26 - 000000000 ____D C:\ProgramData\USOPrivate
2025-01-20 11:42 - 2022-02-07 09:46 - 000000000 ____D C:\Program Files\HP
2025-01-20 11:41 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-01-20 11:27 - 2022-02-09 09:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2025-01-20 11:25 - 2022-02-09 09:33 - 206927936 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2025-01-20 08:11 - 2024-11-22 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\HP
2025-01-20 08:11 - 2022-02-07 19:15 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2025-01-19 16:48 - 2024-09-15 08:37 - 000000000 ____D C:\Program Files (x86)\dotnet
2025-01-19 16:48 - 2022-04-16 13:34 - 000000000 ____D C:\ProgramData\Package Cache
2025-01-19 16:47 - 2024-09-15 08:42 - 000000000 ____D C:\Program Files\dotnet
2025-01-09 12:29 - 2022-04-16 12:10 - 000000000 ____D C:\Users\fugat\AppData\Local\NVIDIA
2025-01-09 12:28 - 2024-08-22 17:58 - 000000000 ____D C:\Users\fugat\AppData\Local\UnrealEngine
2025-01-09 11:36 - 2024-08-22 17:57 - 000000000 ____D C:\ProgramData\Epic
2025-01-08 15:24 - 2024-11-22 10:14 - 000000000 ____D C:\WINDOWS\system32\Tasks\Hewlett-Packard
2025-01-08 07:58 - 2024-04-01 08:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-01-06 09:23 - 2024-12-04 10:20 - 000000000 _____ C:\Users\fugat\OneDrive\Dokumenty\HPSmartPrintingPort
==================== Files in the root of some directories ========
2022-02-07 17:12 - 2022-02-07 17:12 - 000058111 _____ () C:\Program Files (x86)\CMS Setup Log.txt
2022-04-16 12:13 - 2024-06-26 07:23 - 000000205 _____ () C:\Users\fugat\AppData\Local\oobelibMkey.log
2022-12-19 13:44 - 2023-05-08 15:15 - 000001909 _____ () C:\Users\fugat\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-02-2025
Ran by Petr (05-02-2025 17:24:56)
Running from C:\Users\fugat\OneDrive\Plocha
Microsoft Windows 11 Home Version 24H2 26100.3037 (X64) (2024-11-22 09:14:18)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-518073881-1826240890-1261379532-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-518073881-1826240890-1261379532-503 - Limited - Disabled)
Guest (S-1-5-21-518073881-1826240890-1261379532-501 - Limited - Disabled)
Petr (S-1-5-21-518073881-1826240890-1261379532-1001 - Administrator - Enabled) => C:\Users\fugat
WDAGUtilityAccount (S-1-5-21-518073881-1826240890-1261379532-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
FW: Kaspersky Internet Security (Disabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 24.003.20180 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
ANT Drivers Installer x64 (HKLM\...\{383651F3-D57F-49C3-BA38-65F45106109B}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
ANT Drivers Installer x64 (HKLM\...\{AB7F8484-10C7-430B-8062-BA4D840BC328}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Aplikace NVIDIA 11.0.1.189 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.1.189 - NVIDIA Corporation)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
BivaApp (HKLM\...\{0AB0B881-3C43-480D-B8C0-5F1D3222363F}) (Version: 5.2.3 - Bivaji Coms)
calibre 64bit (HKLM\...\{72C7B39E-49F7-465C-9642-DCE91975BBE9}) (Version: 7.23.0 - Kovid Goyal)
CMS (HKLM-x32\...\CMS) (Version: - )
Elevated Installer (HKLM-x32\...\{5916C2A2-57D7-4EBF-A3EB-F5173485766B}) (Version: 7.18.4.0 - Garmin Ltd or its subsidiaries) Hidden
Epic Games Launcher (HKLM-x32\...\{C5C3EE71-4047-4144-946E-18D500510CB5}) (Version: 1.3.128.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{5122B8BC-D6DF-48FF-8D4E-15A63EEC5073}) (Version: 2.8.1 - Epic Games, Inc.)
ExpressVPN (HKLM-x32\...\{88d0bc45-c849-425f-b342-71e13e125306}) (Version: 12.94.0.2 - ExpressVPN)
ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B89BAD7833}) (Version: 12.94.0.2 - ExpressVPN) Hidden
ExpressVPN (HKLM-x32\...\{ebd248cd-b3ef-4e14-b91a-d626fa5c392a}) (Version: 7.12.1.4 - ExpressVPN)
Ezviz Studio (HKLM-x32\...\{49DF99D3-BC81-439A-8F40-A0529159024C}_is1) (Version: - EZVIZ Inc.)
FastStone Image Viewer 7.9 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.9 - FastStone Corporation)
Garmin Express (HKLM-x32\...\{3e2be2c6-99a0-4538-8f40-231106165750}) (Version: 7.11.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{984BB7E6-7576-47A1-9AAD-040F57FDFEBC}) (Version: 7.18.4.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{b44f5f9a-f6d1-4dcd-bd66-3663de74da42}) (Version: 7.18.4.0 - Garmin Ltd or its subsidiaries)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 103.0.3.0 - Google LLC)
Google Chrome (HKLM\...\{D9596C6B-431E-3638-ACB7-B4B0D24D2D1B}) (Version: 132.0.6834.160 - Google LLC)
HP Audio Switch (HKLM-x32\...\{0B1DA73D-0562-4DE1-B942-CEF286CF2EDD}) (Version: 1.0.211.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.19.0 - HP)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP EmailSMTP Plugin (HKLM\...\{8DB4F4B4-B366-4826-BDE3-8E840C126D9F}) (Version: 56.0.480.0 - HP)
HP OCR (HKLM-x32\...\{79128AEA-79F8-4894-BB31-39DCB5186929}) (Version: 1.0.1020.0 - HP Inc.)
HP SFTP Plugin (HKLM\...\{2624CD09-F43C-4053-8789-698F916333B0}) (Version: 56.0.480.0 - HP Inc.)
HP SharePoint Plugin (HKLM\...\{935003A9-73E7-42C2-A7FC-8A4693DA584F}) (Version: 56.0.480.0 - HP)
Java 8 Update 431 (64-bit) (HKLM\...\{71024AE4-039E-4CA4-87B4-2F64180431F0}) (Version: 8.0.4310.10 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 5.2.4.157 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.4.157 - Malwarebytes)
Microsoft .NET Host - 6.0.36 (x64) (HKLM\...\{D6932D97-36F1-40B8-9CDC-CA8365B21000}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.12 (x64) (HKLM\...\{C4C6E39D-48AE-426C-960C-46ED3447DDEB}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Host - 8.0.12 (x86) (HKLM-x32\...\{874D52B8-B1F4-4D04-8249-8AC6E698CCF5}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 6.0.36 (x64) (HKLM\...\{A9E32B25-994B-4856-A12B-0EBED3050410}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.12 (x64) (HKLM\...\{C9C872D5-3CA9-4E0E-AF90-1B85325F9243}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.12 (x86) (HKLM-x32\...\{9EC250F3-BC02-4B35-8395-E03A02CD9255}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 6.0.36 (x64) (HKLM\...\{C912E33F-956A-4921-9F55-CC11AE8F09AF}) (Version: 48.144.23141 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.12 (x64) (HKLM\...\{1E606649-7E56-452F-8AC4-495C70D1E341}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.12 (x86) (HKLM-x32\...\{272C9AEF-D02F-4955-8C11-D9F9198A58EC}) (Version: 64.48.26165 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.12 (x86) (HKLM-x32\...\{76afcead-1d85-4a53-b86a-4ff0b5cc0126}) (Version: 8.0.12.34403 - Microsoft Corporation)
Microsoft Access MUI (Czech) 2016 (HKLM\...\{90160000-0015-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Bing Service (HKLM-x32\...\{29905D7F-44F7-4AE3-9CAF-1F3B760E9A8F}) (Version: 2.0.0.9 - Microsoft Corporation)
Microsoft DCF MUI (Czech) 2016 (HKLM\...\{90160000-0090-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\{438BCD72-5891-3A31-A30D-05C2275CF6CC}) (Version: 132.0.2957.140 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 132.0.2957.140 - Microsoft Corporation) Hidden
Microsoft Excel MUI (Czech) 2016 (HKLM\...\{90160000-0016-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation)
Microsoft Groove MUI (Czech) 2016 (HKLM\...\{90160000-00BA-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (Czech) 2016 (HKLM\...\{90160000-0044-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2016 – Deutsch (HKLM\...\{90160000-001F-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (Czech) 2016 (HKLM\...\{90160000-00E1-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (Czech) 2016 (HKLM\...\{90160000-00E2-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Office Proofing (Czech) 2016 (HKLM\...\{90160000-002C-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (Czech) 2016 (HKLM\...\{90160000-00C1-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2016 (HKLM\...\{90160000-006E-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\OneDriveSetup.exe) (Version: 24.244.1204.0003 - Microsoft Corporation)
Microsoft OneNote MUI (Czech) 2016 (HKLM\...\{90160000-00A1-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (Czech) 2016 (HKLM\...\{90160000-001A-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (Czech) 2016 (HKLM\...\{90160000-0018-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (Czech) 2016 (HKLM\...\{90160000-0019-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Skype for Business MUI (Czech) 2016 (HKLM\...\{90160000-012B-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30133 (HKLM-x32\...\{295d1583-fdb9-414b-a4c8-da539362a26b}) (Version: 14.29.30133.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34433 (HKLM-x32\...\{804e7d66-ccc2-4c12-84ba-476da31d103d}) (Version: 14.42.34433.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34433 (HKLM-x32\...\{e7802eac-3305-4da0-9378-e55d1ed05518}) (Version: 14.42.34433.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34433 (HKLM\...\{E1902FC6-C423-4719-AB8A-AC7B2694B367}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34433 (HKLM\...\{382F1166-A409-4C5B-9B1E-85ED538B8291}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34433 (HKLM-x32\...\{84E3E712-6343-484B-8B6C-9F145F019A70}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34433 (HKLM-x32\...\{C2BB95AA-90F3-4891-81C1-A7E565BB836C}) (Version: 14.42.34433 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM\...\{61D4736B-3325-4D4A-BD41-8BD206C6A86E}) (Version: 48.144.23186 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 6.0.36 (x64) (HKLM-x32\...\{0532b8f2-12d7-43de-95fc-7b87006758a8}) (Version: 6.0.36.34217 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 8.0.12 (x64) (HKLM\...\{71CD19D6-C448-4B5D-9A38-018741753290}) (Version: 64.48.26178 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.12 (x64) (HKLM-x32\...\{aafaa0cc-b975-4ffa-ba33-8690e64683c4}) (Version: 8.0.12.34404 - Microsoft Corporation)
Microsoft Word MUI (Czech) 2016 (HKLM\...\{90160000-001B-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 128.5.0 - Mozilla)
Mozilla Thunderbird (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 128.6.1 (x86 cs)) (Version: 128.6.1 - Mozilla)
MY.GAMES Launcher (HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\mglauncherlaunchpad_) (Version: 4.1723 - MY.COM B.V.)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NextUp-Acapela Eliska22 Czech Voice (HKLM-x32\...\{62ace5bf-ed71-4b97-83d4-2dcf3b27d510}_is1) (Version: 10.3.0 - NextUp Technologies)
NVIDIA FrameView SDK 1.4.10624.35034762 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.4.10624.35034762 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.2.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.2.6 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 566.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 566.36 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA USBC Driver 1.52.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.52.831.832 - NVIDIA Corporation)
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.2309.290 - Trusteer)
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.2309.290 - Trusteer) Hidden
RTS Stavitel+ 2016 (HKLM-x32\...\RTS Stavitel +_is1) (Version: 2016 - RTS, a.s.)
SD Card Formatter (HKLM-x32\...\{D02212EA-E02A-4521-9036-5367734FC66E}) (Version: 5.0.2 - SD Association)
Skype 8.133 (HKLM-x32\...\{4273FF17-2B86-44C0-B6EC-460ED3BE993C}) (Version: 8.133.0.202 - Skype Technologies S.A.)
Skype verze 8.133 (HKLM-x32\...\Skype_is1) (Version: 8.133 - Skype Technologies S.A.) Hidden
SoulseekQt verze 2019.7.22 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2019.7.22 - Soulseek LLC)
TextAloud 4.0 (HKLM-x32\...\{2d52d1c9-9281-4e32-8bfb-018332abcba7}_is1) (Version: 4.0.73.0 - NextUp.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
UGRSPlayer (HKLM-x32\...\{8643351A-E926-416F-95F3-90019BFF55B3}) (Version: 2.3.1 - UGRSPlayer)
Update for Skype for Business 2016 (KB5002567) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{AC7565EF-E108-49D4-9F46-5A1AEC72B27B}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB5002567) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{AC7565EF-E108-49D4-9F46-5A1AEC72B27B}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB5002567) 64-Bit Edition (HKLM\...\{90160000-012B-0405-1000-0000000FF1CE}_Office16.PROPLUS_{AC7565EF-E108-49D4-9F46-5A1AEC72B27B}) (Version: - Microsoft)
update_server (HKLM-x32\...\{1D08522D-308D-4615-AEA9-44021FD7445A}_is1) (Version: - )
VK Play GameCenter (HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\GameCenter) (Version: 4.1683 - VK Play LLC)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Warface Clutch (HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\gcgame_13.2000076) (Version: 1.301 - MY.GAMES)
Windows Driver Package - Hewlett-Packard USB (09/08/2015 1.0.0.1) (HKLM\...\C9EDF507DA1B23454B1BF10495C79A1C34ADD79F) (Version: 09/08/2015 1.0.0.1 - Hewlett-Packard)
Základní software zařízení HP Scan (HKLM\...\{556A5472-22F6-4D2D-9047-52F4FA2ED965}) (Version: 63.4.6169.24240 - HP Inc.)
Základní software zařízení HP Smart Tank 510 series (HKLM\...\{798379C9-F589-45AA-9E80-633506245FD1}) (Version: 48.6.4634.2224 - HP Inc.)
Packages:
=========
Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC [2025-01-04] ()
Booking.com EMEA: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comEMEABigsavingso_2.0.5.0_x64__mgae2k3ys4ra0 [2024-11-08] (Priceline Partner Network)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2024-11-08] (Microsoft Corporation)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.27.0_x64__xbfy0k16fey96 [2024-11-08] (Dropbox Inc.)
HP Audio Center -> C:\Program Files\WindowsApps\AD2F1837.HPAudioCenter_1.29.257.0_x64__v10z8vjag6ke6 [2024-11-08] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_2.7.0.0_x64__v10z8vjag6ke6 [2025-01-29] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.3.7.0_x64__v10z8vjag6ke6 [2024-11-08] (HP Inc.)
HP QuickDrop -> C:\Program Files\WindowsApps\AD2F1837.HPQuickDrop_2.5.10921.0_x64__v10z8vjag6ke6 [2024-11-08] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_157.1.1186.0_x64__v10z8vjag6ke6 [2025-01-20] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.41.29.0_x64__v10z8vjag6ke6 [2024-12-20] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_3.1.4.0_x64__v10z8vjag6ke6 [2025-01-20] (HP Inc.)
Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1041.0_x64__8j3eq9eme6ctt [2024-11-08] (INTEL CORP)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa [2024-11-08] (Apple Inc.) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2024-11-08] (Microsoft Corp.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_54.20907.567.0_x64__8wekyb3d8bbwe [2024-11-08] (Microsoft Corporation)
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.235.0_x64__8wekyb3d8bbwe [2025-01-27] (Microsoft Corporation)
myHP -> C:\Program Files\WindowsApps\AD2F1837.myHP_39.52446.140.0_x64__v10z8vjag6ke6 [2024-11-26] (HP Inc.) [Startup Task]
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2024-12-25] (NVIDIA Corp.)
OMEN Gaming Hub -> C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6 [2025-01-23] (HP Inc.) [Startup Task]
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.5.22.0_x64__kx24dqmazqk8j [2024-11-22] (Random Salad Games LLC)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0 [2025-02-02] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-518073881-1826240890-1261379532-1001_Classes\CLSID\{2e56fc2b-034e-4386-b9cf-1240112385ed}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
CustomCLSID: HKU\S-1-5-21-518073881-1826240890-1261379532-1001_Classes\CLSID\{7d043d4e-4259-f459-3630-7b434fd7752c}\localserver32 -> C:\Program Files\HP\HP Media Network\HPMediaNetwork.exe (HP Inc. -> HP Inc.)
CustomCLSID: HKU\S-1-5-21-518073881-1826240890-1261379532-1001_Classes\CLSID\{F0D5B8DF-FA50-4AC1-B644-6DD3DABA2DC0}\InprocServer32 -> 42494E41525953545245414D0300000003000000007CA7888E81D11003D7AB764E989B94C47736B3DF53227969A9293AE94C => No File
CustomCLSID: HKU\S-1-5-21-518073881-1826240890-1261379532-1001_Classes\CLSID\{FFAF1FBF-BA87-4A6B-8601-6A4CB347F7AE}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_21802104c9b3e45d\OptaneShellExt.dll [2021-03-31] (Intel(R) Rapid Storage Technology -> )
ShellIconOverlayIdentifiers-x32: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ContextMenuHandlers1: [TextAloud] -> {BF31B0FB-AE0E-488F-BFD6-416FA2F9915F} => C:\Program Files (x86)\TextAloud\TAContextMenu64.dll [2017-03-31] (NEXTUP TECHNOLOGIES, LLC -> NextUp.com)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-11] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_21802104c9b3e45d\OptaneShellExt.dll [2021-03-31] (Intel(R) Rapid Storage Technology -> )
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\103.0.3.0\drivefsext.dll [2025-01-29] (Google LLC -> Google LLC.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhdci.inf_amd64_4696f4ab2f09ad5c\nvshext.dll [2024-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-11] (Malwarebytes Inc. -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass.lnk -> C:\Program Files (x86)\Online Services\LastPass\WizLink.exe () -> hxxp://js.redirect.hp.com/jumpstation?bd=lastpass&c=*&locale=*&pf=*&s=*&tp=edge
==================== Loaded Modules (Whitelisted) =============
2023-08-14 15:35 - 2023-08-14 15:35 - 000740352 _____ () [File not signed] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2025-01-30 14:51 - 2025-01-30 14:51 - 000869376 _____ (.NET Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Microsoft.T417b639d#\1f0ee4c3501401dba1ee9db39dca79c4\Microsoft.Toolkit.Uwp.Notifications.ni.dll
2024-12-13 12:53 - 2024-12-13 12:53 - 000432128 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\LauncherSDK\5dfa3daa8a6749a11f0f5a487763bae6\LauncherSDK.ni.dll
2024-12-13 12:53 - 2024-12-13 12:53 - 000037888 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Logging\f83258b406f7e0011032448137b9e628\Logging.ni.dll
2025-01-29 15:03 - 2025-01-29 15:03 - 000153088 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\RpcClient\3a50d9a5b6fd4a2005a7f2b82703d9f3\RpcClient.ni.dll
2025-01-29 15:03 - 2025-01-29 15:03 - 000118272 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\WMISDK\22bb97f0ba0549719d5f3e04efb6a2ff\WMISDK.ni.dll
2025-01-29 14:31 - 2025-01-29 14:31 - 003884544 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\dc471371b4b6df152439a9403c5deee3\Newtonsoft.Json.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2024-05-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_431\bin\ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_431\bin\jp2ssv.dll [2024-09-30] (Oracle America, Inc. -> Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2024-12-17] (HP Inc. -> HP Inc.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2024-01-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2024-12-17] (HP Inc. -> HP Inc.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - TextAloud Toolbar - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - C:\Program Files (x86)\TextAloud\TAForIE64.dll [2017-07-24] (NEXTUP TECHNOLOGIES, LLC -> NextUp.com)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - TextAloud Toolbar - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - C:\Program Files (x86)\TextAloud\TAForIE.dll [2017-07-24] (NEXTUP TECHNOLOGIES, LLC -> NextUp.com)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-10-01] (Adobe Inc. -> Adobe Systems Incorporated)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2021-08-18] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-12-07 10:14 - 2024-08-15 07:14 - 000003129 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
109.94.209.70 fitgirlrepacks.in # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.in # Fake FitGirl site
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repacks.to # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.to # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repack.net # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site
109.94.209.70 fitgirlpack.site # Fake FitGirl site
109.94.209.70 www.fitgirlpack.site # Fake FitGirl site
109.94.209.70 fitgirl-repack.org # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.org # Fake FitGirl site
109.94.209.70 fitgirlrepacks.pro # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.pro # Fake FitGirl site
109.94.209.70 fitgirlrepack.games # Fake FitGirl site
109.94.209.70 www.fitgirlrepack.games # Fake FitGirl site
109.94.209.70 fitgirl-repacks-site.org # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks-site.org # Fake FitGirl site
109.94.209.70 fitgirls-repacks.com # Fake FitGirl site
109.94.209.70 fitgirlrepack.cc # Fake FitGirl site
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\Control Panel\Desktop\\Wallpaper -> D:\Fotky\Travní\SAM_0203.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Realtek RTL8822CE 802.11ac PCIe Adapter -> rtwlane.sys
Připojení k místní síti: ExpressVPN TUN Driver -> expressvpn-tun.sys
Ethernet 2: ExpressVPN TAP Adapter -> tapexpressvpn.sys
Ethernet: Realtek Gaming GbE Family Controller -> rt68cx21x64.sys
nt_rtf64: Realtek LightWeight Filter (NDIS6.40)
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "SPUpDateServerrun"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\StartupApproved\Run: => "GameCenter"
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\StartupApproved\Run: => "GarminExpress"
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\StartupApproved\Run: => "kpm.exe"
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_040A6E435D789D62A1CBF67CF7DAC58F"
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\StartupApproved\Run: => "BingSvc"
HKU\S-1-5-21-518073881-1826240890-1261379532-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9CF2EDEC-DBB0-4136-B1A0-114938E3F956}] => (Allow) C:\Program Files\HP\HP Smart Tank 510 series\Bin\DeviceSetup.exe (HP Inc. -> HP Inc.)
FirewallRules: [{4D3A6033-BF6B-4A06-BC7B-AEAD4AA8D783}] => (Allow) LPort=5357
FirewallRules: [{D577065D-E862-4D34-ACC4-02A33C41AC86}] => (Allow) C:\Program Files\HP\HP Smart Tank 510 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc. -> HP Inc.)
FirewallRules: [TCP Query User{4BD68DC8-F60F-45F3-88D3-818EFC5F44C8}C:\program files (x86)\cms\cms.exe] => (Allow) C:\program files (x86)\cms\cms.exe () [File not signed]
FirewallRules: [UDP Query User{2AD6D5FE-00A1-4784-A533-275178D61E30}C:\program files (x86)\cms\cms.exe] => (Allow) C:\program files (x86)\cms\cms.exe () [File not signed]
FirewallRules: [TCP Query User{4A980CA5-FDB7-4560-84ED-02BB25CBBC8D}C:\users\fugat\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\fugat\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{E13AC133-4204-407A-BFB8-E9BD34F63FDC}C:\users\fugat\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\fugat\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{20A5D194-0A06-4AD5-A509-5D620CD140E3}C:\program files (x86)\ezviz studio\ezvizstudio.exe] => (Allow) C:\program files (x86)\ezviz studio\ezvizstudio.exe (杭州萤石软件有限公司 -> EZVIZ Inc.)
FirewallRules: [UDP Query User{CC853F3B-7FAC-46BD-87EF-03C000E613DE}C:\program files (x86)\ezviz studio\ezvizstudio.exe] => (Allow) C:\program files (x86)\ezviz studio\ezvizstudio.exe (杭州萤石软件有限公司 -> EZVIZ Inc.)
FirewallRules: [TCP Query User{3D124FAA-622D-4468-80DD-6394CA1496E3}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [File not signed]
FirewallRules: [UDP Query User{619FC770-B8C8-4B7C-8B33-6DF5FE93B582}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe () [File not signed]
FirewallRules: [TCP Query User{1E0A12BF-7B31-4070-AAE9-13BE4CB2E59E}C:\mygames\mglauncher\mgl.exe] => (Block) C:\mygames\mglauncher\mgl.exe (MY.GAMES B.V. -> MY.GAMES B.V.)
FirewallRules: [UDP Query User{156CDBDB-A332-42D2-9BB6-524ED7BCC2B0}C:\mygames\mglauncher\mgl.exe] => (Block) C:\mygames\mglauncher\mgl.exe (MY.GAMES B.V. -> MY.GAMES B.V.)
FirewallRules: [{AFC3EF35-F1E6-4C38-AF5B-2BEBF3E60525}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{04A51131-C734-4C28-BAD7-6589FA3CDC0D}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{939353E8-7DC2-40BE-B33A-2EFB38010820}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{1C6D6CCB-AA78-4245-BB57-283417966122}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{618C9CA7-EF4C-4241-BAED-E793E42902AF}C:\program files\windowsapps\appleinc.itunes_12134.4.3008.0_x64__nzyj5cx40ttqa\itunes.exe] => (Block) C:\program files\windowsapps\appleinc.itunes_12134.4.3008.0_x64__nzyj5cx40ttqa\itunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [UDP Query User{CDB19C0E-50E1-4024-8469-F2A86A68197F}C:\program files\windowsapps\appleinc.itunes_12134.4.3008.0_x64__nzyj5cx40ttqa\itunes.exe] => (Block) C:\program files\windowsapps\appleinc.itunes_12134.4.3008.0_x64__nzyj5cx40ttqa\itunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6DFF069E-AB0E-46F1-BC3F-4C29C6ECF3BA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A30392EC-64DF-4959-9FBC-DE09A0B2BA29}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{CC6EE2EC-37A1-439A-88F5-F85EDC167B59}C:\program files (x86)\ugrsplayer\ugrs2player.exe] => (Allow) C:\program files (x86)\ugrsplayer\ugrs2player.exe (JSW PACIFIC CORPORATION -> )
FirewallRules: [UDP Query User{1879565B-9FA2-4931-BD15-7F021AA77BBB}C:\program files (x86)\ugrsplayer\ugrs2player.exe] => (Allow) C:\program files (x86)\ugrsplayer\ugrs2player.exe (JSW PACIFIC CORPORATION -> )
FirewallRules: [{46BF4B1C-A0C2-4776-944D-192F6B4172C3}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A1339C91-1A3C-4BC2-AA39-121A29ECD3E8}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F47CA87E-9038-4CB0-86E6-7F09D6BE11F3}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{06340B30-5B35-4D85-8185-E846DA6B1DA3}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{7355E6B7-6D73-45C4-91E8-7C4306CAFB04}C:\program files\java\jre1.8.0_431\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_431\bin\javaw.exe
FirewallRules: [UDP Query User{EEAC6E8D-11A3-4D39-91FF-E7BA70A3B421}C:\program files\java\jre1.8.0_431\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_431\bin\javaw.exe
FirewallRules: [{8A96984E-B4B2-418E-9E0F-A699C83F2B4B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DAA7DF5C-D577-4435-A47F-E69D7FDCEED7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{163B2112-1B11-495B-BF21-5F2EEBA1EBEB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{43FE6322-3633-49E0-94F0-F59039641B37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1F574EA2-7351-4092-9FE4-6D8392A3B8C0}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Inc. -> Adobe Systems Incorporated)
FirewallRules: [{2FA64407-038D-43C3-B385-A4B43487EF44}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Inc. -> Adobe Systems Incorporated)
FirewallRules: [{C8042731-5BEB-438A-AC52-0092B2C5E1AB}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems Inc.) [File not signed]
FirewallRules: [{8482B9AC-E2A7-4EC3-B40D-135DDF70AB07}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrotray.exe (Adobe Inc. -> Adobe Systems Inc.) [File not signed]
FirewallRules: [{BAA786D6-EAAB-42DC-BA0C-B04CD5DB9E22}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{1A608A85-41E7-46F4-BD17-25F40F231710}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{017C2D20-21A6-4E31-8ED3-570290474142}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{4C727AA5-99C8-4270-9B21-45C4304C5337}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{57174B08-CBCC-4B63-87D0-EA66B4CFACFA}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{2061A5D1-6671-4CC5-BA13-4CF4D3AA054C}] => (Block) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Inc.)
FirewallRules: [{034067A4-2EA7-4105-8B2B-792B297BA448}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe => No File
FirewallRules: [{135618C4-4FBF-4184-BF39-404334EA36EC}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe => No File
FirewallRules: [TCP Query User{B9F02231-1A75-4969-B651-47F72DE60CB6}C:\program files\epic games\offthegrid\g01\binaries\win64\g01client-win64-shipping.exe] => (Allow) C:\program files\epic games\offthegrid\g01\binaries\win64\g01client-win64-shipping.exe (Gunzilla GmbH -> Gunzilla)
FirewallRules: [UDP Query User{618BD8B7-C961-4088-8690-0FB893C6CA69}C:\program files\epic games\offthegrid\g01\binaries\win64\g01client-win64-shipping.exe] => (Allow) C:\program files\epic games\offthegrid\g01\binaries\win64\g01client-win64-shipping.exe (Gunzilla GmbH -> Gunzilla)
FirewallRules: [{11DFCA66-BA4C-47A4-B820-E458E3EA9AB4}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{A393D986-9821-46D3-89FC-C6A7495853F3}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{5E0BFA59-0E9C-4228-B4EF-24F65EF4507D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{F7C37469-EF7F-4348-92C6-CE36EBD8F9C3}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{B8D93D6E-D192-4B0C-A0D4-DE0465F746C6}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{9328DF40-EC07-4083-A774-4050A887ABFA}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{CE7F7085-AF52-426F-8F65-CC5605AEDF05}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{A591DC55-6AA4-4338-BA94-9955BDBC2029}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{630501C6-897C-40A7-8252-55017F9DE1B8}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{47D98D2B-37A6-47C6-8946-0B9EB3BC946E}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{98119D0F-4AA0-4AD2-8D82-7B391E26B399}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{298B6B5B-EE6B-4011-9C77-5CC04F501FB5}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{A1E5ADF5-041D-474C-9A07-521D4A7640B9}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{059100B2-27EA-4989-95CF-28439510E830}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\HP.Omen.OmenCommandCenter.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{ACABDD3F-17E9-4100-B82F-9029235E68ED}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{A84DD34C-CD9C-43B9-88B8-9D1565DF908D}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2412.10.0_x64__v10z8vjag6ke6\OmenCommandCenterApp\OmenCommandCenterBackground.exe (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.)
FirewallRules: [{5D54439D-6EAF-4B26-8B8D-DFA51E702A9D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_25007.203.3359.7325_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{142D7C41-8C80-4C54-B2F3-C4079A4C375F}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_25007.203.3359.7325_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A5B3BB70-39DC-4C94-8466-991A38968171}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{EE305A19-C400-4EB1-86C7-7EBAAB052E4B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E4736A8F-4F27-44A4-9657-CE83D4EDC741}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{058F100C-4794-49E7-8DB8-3401BBAFBF15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{542A28EF-67C4-47F9-85EA-72BFA69FD6D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4A832CAC-E9A2-4B76-8E71-1C8548F4416E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3B9F8117-9F30-4DC6-80A0-ECD17F129AD6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E29F68D4-EAB9-4EE2-886B-DB863C9EA8AA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{523A1EA4-351C-481E-815F-70E4AEA9F447}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0A625AAF-6B08-4330-9E2E-1D8C28F2B807}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{78DBDC7B-5D1E-41D3-B291-57D509C2EA6F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.256.502.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{632523EE-FDD3-435D-AFA1-1C0E3690702A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\132.0.2957.140\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
02-02-2025 10:25:43 Windows Update
02-02-2025 10:25:46 Windows Update
02-02-2025 10:25:47 Windows Update
05-02-2025 11:23:58 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/05/2025 02:40:08 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
Error: (02/05/2025 02:40:08 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
Error: (02/05/2025 02:40:08 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
Error: (02/05/2025 12:39:35 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
Error: (02/05/2025 12:39:35 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
Error: (02/05/2025 12:39:35 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
Error: (02/05/2025 05:23:31 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
Error: (02/05/2025 05:23:31 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 13) (User: Petr)
Description: C:\Users\fugat\AppData\Local\Publishers\v10z8vjag6ke6\UnifiedLoginAD2F1837.OMENCommandCenter_v10z8vjag6ke6-2147024894
System errors:
=============
Error: (02/04/2025 07:31:38 PM) (Source: DCOM) (EventID: 10010) (User: Petr)
Description: Server Microsoft.Windows.ContentDeliveryManager_10.0.26100.1_neutral_neutral_cw5n1h2txyewy!App.AppXw3qcpc7p849541dp39vvqd01bn7z9ybh.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/04/2025 12:00:24 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.
Error: (02/03/2025 05:54:46 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Hewlett-Packard - USB - 6/24/2018 12:00:00 AM - 48.0.4261.18175.
Error: (02/02/2025 10:26:14 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9MSSGKG348SP-MicrosoftWindows.Client.WebExperience.
Error: (01/31/2025 07:23:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x8024200b): Hewlett-Packard - USB - 6/24/2018 12:00:00 AM - 48.0.4261.18175.
Error: (01/31/2025 01:59:21 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.107.
Počítač s IP adresou 192.168.0.34 nepovolil získání názvu
tímto počítačem.
Error: (01/31/2025 01:54:11 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.107.
Počítač s IP adresou 192.168.0.34 nepovolil získání názvu
tímto počítačem.
Error: (01/31/2025 01:49:01 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhraní s IP adresou 192.168.0.107.
Počítač s IP adresou 192.168.0.34 nepovolil získání názvu
tímto počítačem.
Windows Defender:
================
Date: 2025-02-05 11:23:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {827866F9-EF1A-4B59-86B2-4AD040483A74}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2025-02-04 11:59:53
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A83DE0FF-3120-4750-B25E-7203435E38B3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2025-02-03 10:36:48
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {DE43A63A-2733-4D7C-BB0B-C98382FE2800}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2025-02-02 10:25:16
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {D44A7A06-2C0B-47BF-B60E-0C4734FB6F85}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2025-02-01 10:51:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5F43F6AA-CAEE-4A2F-B2BB-9C98A6019F2F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2025-01-29 06:36:24
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: AMI F.40 07/29/2021
Motherboard: HP 8767
Processor: Intel(R) Core(TM) i5-10400 CPU @ 2.90GHz
Percentage of memory in use: 46%
Total physical RAM: 16249.75 MB
Available physical RAM: 8703.39 MB
Total Virtual: 17273.75 MB
Available Virtual: 7947.04 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:475.97 GB) (Free:268.4 GB) (Model: NVMe INTEL SSDPEKNW512G8H) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:469.44 GB) (Model: TOSHIBA DT01ACA100) NTFS
Drive f: (Verbatim HDD) (Fixed) (Total:931.51 GB) (Free:448.52 GB) (Model: ST1000LM 024 HN-M101M USB Device) NTFS
Drive g: (Google Drive) (Fixed) (Total:15 GB) (Free:11.8 GB) (Model: NVMe INTEL SSDPEKNW512G8H) FAT32
\\?\Volume{36599c30-79dc-46e5-8220-f97941181eec}\ () (Fixed) (Total:0.69 GB) (Free:0.11 GB) NTFS
\\?\Volume{578c12f2-64de-443e-9267-de2bbf3feb75}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 476.9 GB) (Disk ID: 5FD808C6)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 69EA6628)
Partition: GPT.
==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: D8A924DA)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu seká se Google Chrome
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu seká se Google Chrome
Ahoj,
pouzi zoek + jrt https://forum.viry.cz/viewtopic.php?p=1 ... k#p1557238
pouzi zoek + jrt https://forum.viry.cz/viewtopic.php?p=1 ... k#p1557238
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu seká se Google Chrome
Zoek-result posílám v příloze
- Přílohy
-
- zoek-results.zip
- (33.4 KiB) Staženo 66 x
Re: Prosím o kontrolu seká se Google Chrome
OK, je to lepsie 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosím o kontrolu seká se Google Chrome
Přijde mě to rychlejší, snad to bude dobrý. Děkuji
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Petr (Administrator) on 06.02.2025 at 20:05:39,82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 2
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.02.2025 at 20:07:56,82
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Petr (Administrator) on 06.02.2025 at 20:05:39,82
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 2
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C} (Registry Key)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06.02.2025 at 20:07:56,82
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: Prosím o kontrolu seká se Google Chrome
Rado sa stalo 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?