Prosím o preventivku po obnovení systému z bodu obnovy z důvodu opakovaných BSOD. Díky!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22-05-2025
Ran by user (administrator) on DESKTOP-TMT (MSI MS-7978) (28-05-2025 16:40:07)
Running from C:\Users\www\Desktop\FRST64.exe
Loaded Profiles: user
Platform: Microsoft Windows 10 Pro Version 22H2 19045.5737 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Apps\Ditto\Ditto.exe
() [File not signed] C:\Apps\RBTray\RBTray.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\acrotray.exe
(AOMEI International Network Limited -> AOMEI International Network Limited) C:\Apps\AnyViewer\RCClient.exe
(ASTONSOFT OU -> Astonsoft) C:\Apps\Essential PIM\EssentialPIM.exe
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(BACKBLAZE, INC. -> ) C:\Program Files (x86)\Backblaze\bzbui.exe
(C:\Apps\FlashFolder\FlashFolder64.exe ->) (zett42) [File not signed] C:\Apps\FlashFolder\FlashFolder.exe
(C:\Apps\Gameplay Time Tracker\GameplayTimeTracker.exe ->) (mik61 (independent software developer) -> mik61) [File not signed] [File is in use] C:\Apps\Gameplay Time Tracker\Support64.exe
(C:\Program Files (x86)\Backblaze\bzbui.exe ->) (BACKBLAZE, INC. -> ) C:\Program Files (x86)\Backblaze\bzbuitray.exe
(C:\Program Files (x86)\Backblaze\bzserv.exe ->) (BACKBLAZE, INC. -> ) C:\Program Files (x86)\Backblaze\x64\bzfilelist64.exe
(C:\Program Files (x86)\Backblaze\bzserv.exe ->) (BACKBLAZE, INC. -> ) C:\Program Files (x86)\Backblaze\x64\bztransmit64.exe
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Mozilla Corporation -> Mozilla Foundation) C:\Program Files\Mozilla Firefox\crashhelper.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> ) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\PresentMon_x64.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\FrameViewSDK\FvContainer\FvContainer.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\FrameViewSDK\FvContainer\FvContainer.System.exe
(C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\bin\nvrla.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA app\ShadowPlay\nvsphelper64.exe
(C:\Program Files\WindowsApps\MSTeams_25094.310.3616.953_x64__8wekyb3d8bbwe\ms-teams.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.92\msedgewebview2.exe <14>
(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(explorer.exe ->) (Ghisler Software GmbH -> Ghisler Software GmbH) C:\Apps\Total Commander\TOTALCMD64.EXE
(F.lux Software LLC -> f.lux Software LLC) C:\Users\www\AppData\Local\FluxSoftware\Flux\flux.exe
(Ferdium Contributors) [File not signed] C:\Apps\Ferdium\Ferdium.exe <11>
(Gen Digital Inc. -> Gen Digital Inc.) C:\Apps\CCleaner\CCleaner64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <9>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\25.085.0504.0002\Microsoft.SharePoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2025.516.400_x64__8wekyb3d8bbwe\olk.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\MSTeams_25094.310.3616.953_x64__8wekyb3d8bbwe\ms-teams.exe <2>
(mik61 (independent software developer) -> mik61) [File not signed] C:\Apps\Gameplay Time Tracker\GameplayTimeTracker.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <15>
(Open-Shell) [File not signed] C:\Apps\Open Shell\StartMenu.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (BACKBLAZE, INC. -> ) C:\Program Files (x86)\Backblaze\bzserv.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(services.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Microsoft Update Health Tools\uhssvc.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9d15b9aa9e1c885b\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA) C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe
(services.exe ->) (voidtools PTY LTD -> voidtools) C:\Apps\Everything\Everything.exe
(services.exe ->) (zett42) [File not signed] C:\Apps\FlashFolder\FlashFolder64.exe <2>
(SOFTPERFECT PTY. LTD. -> SoftPerfect) C:\Apps\Networx\networx.exe
(svchost.exe ->) (Alexandr Irza) [File not signed] C:\Apps\Volume2\Volume2.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(svchost.exe ->) (Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe <2>
(svchost.exe ->) (Kazuyuki Nakayama) [File not signed] C:\Apps\HotSwap\HotSwap!.EXE
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [454904 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [NetWorx] => C:\Apps\Networx\networx.exe [7627080 2016-09-24] (SOFTPERFECT PTY. LTD. -> SoftPerfect)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [10752424 2025-01-14] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Everything] => C:\Apps\Everything\Everything.exe [2265200 2025-05-23] (voidtools PTY LTD -> voidtools)
HKLM\...\Run: [Open-Shell Start Menu] => C:\Apps\Open Shell\StartMenu.exe [267776 2025-05-08] (Open-Shell) [File not signed]
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4187856 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Acrotray.exe [2192592 2022-07-29] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\Update\OneDriveSetup.exe" [89723176 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Program Files\Microsoft OneDrive\StandaloneUpdater\OneDriveSetup.exe" (No File)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966712 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [GameplayTimeTracker] => C:\Apps\Gameplay Time Tracker\GameplayTimeTracker.exe [932472 2018-09-17] (mik61 (independent software developer) -> mik61) [File not signed]
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [EssentialPIM Pro] => C:\Apps\Essential PIM\EssentialPIM.exe [13362584 2025-05-20] (ASTONSOFT OU -> Astonsoft)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [CCleaner Smart Cleaning] => C:\Apps\CCleaner\CCleaner64.exe [45882672 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [Backblaze] => C:\Program Files (x86)\Backblaze\bzbui.exe [1895720 2025-01-30] (BACKBLAZE, INC. -> )
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [Microsoft.Lists] => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\Microsoft.SharePoint.exe [1004336 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [Ditto] => C:\Apps\Ditto\Ditto.exe [5226496 2023-04-15] () [File not signed]
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\AdobeCollabSync.exe [889032 2022-07-29] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [f.lux] => C:\Users\www\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-21] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [Ferdium] => C:\Apps\Ferdium\Ferdium.exe [200766976 2025-05-25] (Ferdium Contributors) [File not signed]
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Run: [MicrosoftEdgeAutoLaunch_C31C9C3248E511486AD648BED5C5769F] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4045880 2025-05-23] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1003\...\RunOnce: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [4966712 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\WINDOWS\system32\AdobePDF.dll [65192 2022-07-29] (Adobe Inc. -> Adobe Systems Inc)
Startup: C:\Users\www\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Crystal Disk Info.lnk [2025-01-03]
ShortcutTarget: Crystal Disk Info.lnk -> C:\Apps\CrystalDiskInfo\DiskInfo64.exe (Open Source Developer, Noriyuki Miyazaki -> Crystal Dew World)
Startup: C:\Users\www\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HotSwap!.lnk [2022-11-08]
ShortcutTarget: HotSwap!.lnk -> C:\Apps\HotSwap\HotSwap!.EXE (Kazuyuki Nakayama) [File not signed]
Startup: C:\Users\www\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HWiNFO® 64.lnk [2024-10-21]
ShortcutTarget: HWiNFO® 64.lnk -> C:\Apps\HWiNFO64\HWiNFO64.EXE (REALiX, s.r.o. -> REALiX s.r.o.)
Startup: C:\Users\www\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\RBTray.lnk [2025-03-20]
ShortcutTarget: RBTray.lnk -> C:\Apps\RBTray\RBTray.exe () [File not signed]
Startup: C:\Users\www\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Volume2.lnk [2025-01-06]
ShortcutTarget: Volume2.lnk -> C:\Apps\Volume2\Volume2.exe (Alexandr Irza) [File not signed]
BootExecute: autocheck autochk * icarus_rvrt.exe
GroupPolicy: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {40C03552-967A-4923-9F1A-4D5D30B465FA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {EEA5DA17-7913-4F0A-9BD4-2A7C12366C15} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [10752424 2025-01-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {083AB121-4E17-4848-9E36-DCC11430E925} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [11065256 2025-01-14] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {B7A3FDCF-8FE8-4FEA-B115-249B680C2F57} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8839472 2025-05-20] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {01B5D2D1-6D5F-45CF-8B54-8B290807E9E3} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5372152 2025-05-28] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0EAAA6DB-AEDB-4040-A18F-72E76F2093FE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2025-04-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {AD305F10-9FDB-40B4-A3E3-9DFA7340A61F} - System32\Tasks\CCleaner Update => C:\Apps\CCleaner\CCUpdate.exe [3480504 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {7FE032CC-7596-49AF-ACAC-FE4F0D5FE560} - System32\Tasks\CCleanerCrashReporting => C:\Apps\CCleaner\CCleanerBugReport.exe [6139696 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Apps\CCleaner\LOG" --programpath "C:\Apps\CCleaner" --guid "䷠铓Ȇ" --version "6.35.0.11488" --silent
Task: {D54151F7-2C49-471C-966C-6B2B479871AD} - System32\Tasks\CCleanerSkipUAC - user => C:\Apps\CCleaner\CCleaner.exe [39622960 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {157949D8-F251-4189-BB89-73F4A49545AE} - System32\Tasks\COMODO\COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {9BF51966-2ED5-497D-BEB3-EF65971FFB48} - System32\Tasks\COMODO\COMODO CMC {06A09C0F-DD9C-4191-A670-71115CD78627} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {CA53AAE2-B1B1-4F69-A798-5BDC3DF14315} - System32\Tasks\COMODO\COMODO Maintenance {947247B5-026A-4437-9371-770782BE839D} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {61706708-BB44-4701-ADCA-6EE41439829B} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {93333CE4-6606-4565-A627-D8E4C6B8652D} - System32\Tasks\COMODO\COMODO Telemetry {18AD3DFA-30C0-4B5F-84F7-F1870B1A4921} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13190952 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {60D1DF64-BE79-4165-822B-F9B7903366DD} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [5758488 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
Task: {DAE7BBE4-FB1F-4361-93F8-BD010FC8DDD8} - System32\Tasks\HotSwap! Applet => C:\Apps\HotSwap\HotSwap!.EXE [219648 2019-01-07] (Kazuyuki Nakayama) [File not signed]
Task: {0D558DEE-D61A-4B79-A631-27C341D9C0FA} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_fc84dfa25a6a7727\lib\IntelPTTEKRecertification.exe [855664 2023-12-14] (Intel Corporation -> Intel(R) Corporation)
Task: {384086FB-6480-4D2D-9A44-D38FDD46D997} - System32\Tasks\Microsoft\Office\Office Apps Prewarm => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {51A20118-FA71-41A9-B357-1D6505207578} - System32\Tasks\Microsoft\Office\Office Apps Prewarm Recurring => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {F7489CED-1696-4794-A491-1D83F3909A9E} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29102808 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {FB8C226D-9F87-4150-96D4-A3BB098F881D} - System32\Tasks\Microsoft\Office\Office Background Push Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\opushutil.exe [68360 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C52BCAA-2931-4B32-AFFF-435EEDA25596} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [29102808 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {E3D06A73-E912-4AFF-BD7E-D0B73517667F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {8359E059-31CC-492A-8994-7841EDF5CA82} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [307432 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {F0DDE710-9066-4EBF-9D24-95CBC951045B} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [213216 2025-05-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {F18FF1DF-AD4E-4093-A664-94569007A760} - System32\Tasks\Microsoft\Office\Office Serviceability Manager => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\officesvcmgr.exe [4545000 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {C5A02847-85A8-4397-9C6C-67398F8D9225} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {2AE4C00C-BE86-4854-BA06-0E20CD1CEFE2} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {90C0B8C0-0B38-47C3-8DC5-75667A27BC91} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {B963D957-163E-4C30-A349-6FC8016E078F} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {80F3DF7D-C3B8-4028-967C-3CF03A85F99C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {C0B714CE-460D-49EC-9427-DAB321C27366} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Refresh schedule created by Declared Configuration to refresh any settings changed on the device => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {8733935C-31D2-4B09-A0FE-B7D6D16E6615} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {18C84DBE-D08C-4707-B228-FF155AF5E97D} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {C8237650-C409-4634-BA9A-DDA3ABD3AA32} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {1029CC69-3FEF-44CB-A6B2-DE963A4122E9} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {0EB85016-2CF7-4A5C-BCBA-D49E8DF2D765} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [515584 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {1AB7341A-CF90-4BA2-B987-570F62E0A5A7} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [515584 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {B9001CA0-5609-4440-983A-8B97320CCFA0} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {ECC7C24F-4169-4106-907E-C0C66CBE243E} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Wsc Startup event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {1CDC59D6-B5E6-4AAD-BDFC-C12A9AC4FD25} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\OS Edition Upgrade event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {B4CC7591-0531-439C-B1D2-A505DF164802} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Passport for Work alert created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {8CD7F952-2FAE-4CB6-B6D7-6F0933A708E2} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Provisioning initiated session => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {1AD32243-34B9-4171-9818-01C563436FBF} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\PushLaunch => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {514600FA-159D-4DB9-B5F6-EA46BCD0D80A} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\PushRenewal => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {7DE085CA-B10E-4F1C-A1A6-7CE4A7E663A6} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\PushUpgrade => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {A4152469-E178-426F-82AB-30C73A8DB219} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Schedule #1 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {44600E71-AAD0-456D-A453-39AEE8040F25} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Schedule #2 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {A4A4651B-F778-433E-BD20-3EBDA5038B52} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Schedule #3 created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {92F48037-24D9-4819-AF4E-2C30233E7F60} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Schedule created by enrollment client for renewal of certificate warning => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {6510713F-23E2-408F-8773-5D6C55510D5C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Schedule to run OMADMClient by client => C:\WINDOWS\system32\omadmclient.exe [515584 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {E7E7B326-461B-4191-AF42-D85D0DCE94C0} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Schedule to run OMADMClient by server => C:\WINDOWS\system32\omadmclient.exe [515584 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {7BB2F584-2AA4-4824-B1B4-C52D460BEE52} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Win10 S Mode event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {2D79982E-B6ED-481A-BAA8-98AD30321480} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Wsc Startup event listener created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {A44EC5B6-37DF-44E5-85ED-ED73C3957701} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\SessionRetry\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Retry Schedule created for incomplete session {2E62EC57-A9A6-4713-BF06-E8727525DC45} => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {DD07BC97-B30F-41F1-A7BF-5B0F46004E71} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\SessionRetry\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Retry Schedule created for incomplete session {862BBF62-A6E3-3A2A-9CE7-63CE2EB9D65E} => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {42AD38F2-1AFA-4031-95F0-17336AD3D971} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\SessionRetry\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Retry Schedule created for incomplete session {D43E7169-7604-4C68-B0F7-0EAE16E1B4E0} => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {298D785D-391C-4CD0-A2D7-76D0FB1CE1B4} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\SessionRetry\39C60DBD-3E3D-4A46-A30F-9D3740F959C4\Retry Schedule created for incomplete session {F4B993D9-0198-4E43-8B6B-56D67AC9B419} => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {0E6F5351-C13A-49DD-A32B-76BE28D47AAE} - System32\Tasks\Microsoft\Windows\RestartManager\{4AA60C94-5349-45c2-87C7-F70477866A05} => C:\Windows\System32\RmClient.exe [18432 2019-12-07] (Microsoft Windows -> Microsoft Corporation) -> C:\WINDOWS\system32\\\.\pipe\RestartManager-{959EAA92-ED44-41fd-A3AF-97A9399B55D0}
Task: {F4DE88A5-93F4-4B4A-8FBB-ED4430B60D18} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2069861480-1445196129-2239134032-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [695360 2025-05-27] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {8A1F66D5-40F1-4D90-BAC2-C3399C48F75E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-05-27] (Mozilla Corporation -> Mozilla Foundation)
Task: {8AF77E28-49AB-4F94-ACA0-8001F139EC5E} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3275808 2025-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {86CB6138-BC18-486C-A704-4655F04C1613} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {827DAA0E-FEA6-41EC-8805-95321B121743} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2069861480-1445196129-2239134032-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {35F65D03-DEF1-4B4F-8C33-8FDC2D89E25E} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-2069861480-1445196129-2239134032-1003 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4223792 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F87D281B-D96C-438B-8D00-1B8519758ED1} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2069861480-1445196129-2239134032-1001 => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\OneDriveLauncher.exe [684856 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6A593C5-9F04-4BE3-B5E6-3B21CC9185DA} - System32\Tasks\OneDrive Startup Task-S-1-5-21-2069861480-1445196129-2239134032-1003 => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\OneDriveLauncher.exe [684856 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {30E626AB-621D-4D8A-B1AA-2A7008AC143D} - System32\Tasks\Patch My PC Home Updater - Self Updater => C:\Apps\Patch My PC Home Updater\PatchMyPC-HomeUpdater.exe [31238984 2025-05-19] (Patch My PC, LLC -> Patch My PC) -> C:\Apps\Patch My PC Home Updater\/u
Task: {6769CEA1-CD36-43E5-9856-D361F49F500E} - System32\Tasks\S-1-5-21-2069861480-1445196129-2239134032-1001\EnterpriseMgmt\1DBA47C3-C6F9-49DA-8392-44AB7ACA35B0\Login Schedule created by enrollment client => C:\WINDOWS\system32\deviceenroller.exe [504320 2025-05-01] (Microsoft Windows -> Microsoft Corporation)
Task: {861FEA14-F144-4253-9CE7-A0A7CD45DA74} - System32\Tasks\Volume² Autorun => C:\Apps\Volume2\Volume2.exe [4529152 2023-09-16] (Alexandr Irza) [File not signed]
Task: {3D7A1B37-67A1-4570-B8C2-6C2E03A8003D} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2069861480-1445196129-2239134032-1001 => C:\Users\www\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-27] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CCleanerCrashReporting.job => C:\Apps\CCleaner\CCleanerBugReport.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{4a75c44a-973f-4d9e-b35b-ff630fd03690}: [NameServer] 156.154.70.22,156.154.71.22
Tcpip\..\Interfaces\{4a75c44a-973f-4d9e-b35b-ff630fd03690}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Profile: C:\Users\www\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-28]
Edge Extension: (Grammarly: AI Writing and Grammar Checker App) - C:\Users\www\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\cnlefmmeadmemmdciolhbnfeacpdfbkd [2025-05-28]
Edge Extension: (Dokumenty Google offline) - C:\Users\www\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-03]
Edge Extension: (Edge relevant text changes) - C:\Users\www\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2025-04-05]
Edge Extension: (Zotero Connector) - C:\Users\www\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\nmhdhpibnnopknkmonacoephklnflpho [2025-05-27]
FireFox:
========
FF DefaultProfile: 7nw3vn1u.default
FF DefaultProfile: t4fcoi6i.default
FF ProfilePath: C:\Users\www\AppData\Roaming\Zotero\Zotero\Profiles\7nw3vn1u.default [2025-05-12]
FF ProfilePath: C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\t4fcoi6i.default [2025-04-05]
FF ProfilePath: C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release [2025-05-28]
FF Extension: (Grammarly: AI Writing and Grammar Checker App) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\87677a2c52b84ad3a151a4a72f5bd3c4@jetpack.xpi [2025-05-14]
FF Extension: (Obsidian Web Clipper) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\clipper@obsidian.md.xpi [2025-05-27]
FF Extension: (Don't track me Google) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\dont-track-me-google@robwu.nl.xpi [2025-04-05]
FF Extension: (Decentraleyes) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2025-04-05]
FF Extension: (Lazy Scholar) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\jid1-k6UjH3XvqwNKoQ@jetpack.xpi [2025-04-05]
FF Extension: (Swift Selection Search) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\jid1-KdTtiCj6wxVAFA@jetpack.xpi [2025-04-27]
FF Extension: (Privacy Badger) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\jid1-MnnxcxisBPnSXQ@jetpack.xpi [2025-05-21]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2025-04-15]
FF Extension: (uBlock Origin) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\uBlock0@raymondhill.net.xpi [2025-05-17]
FF Extension: (Zotero Connector) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\zotero@chnm.gmu.edu.xpi [2025-05-15] [UpdateUrl:hxxps://www.zotero.org/download/connector/firef ... dates.json]
FF Extension: (Flagfox) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2025-05-07]
FF Extension: (Augmented Steam) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{1be309c5-3e4f-4b99-927d-bb500eb4fa88}.xpi [2025-04-05]
FF Extension: (Convert Case) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{356d3987-45f1-4dd6-8fc2-4f03189e8812}.xpi [2025-04-05]
FF Extension: (Undo Close Tab) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{4853d046-c5a3-436b-bc36-220fd935ee1d}.xpi [2025-04-05]
FF Extension: (SingleFile) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{531906d3-e22f-4a6c-a102-8057b88a1a63}.xpi [2025-04-08]
FF Extension: (Close Tabs to the Right) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{5f5702f8-daae-4d6c-a3d3-1dda16b278d8}.xpi [2025-04-05]
FF Extension: (You.com Search Engine) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{82b57c0f-7165-4ce2-afe0-f03c11d1fc51}.xpi [2025-04-05]
FF Extension: (Absolute Right Click) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{9350bc42-47fb-4598-ae0f-825e3dd9ceba}.xpi [2025-04-05]
FF Extension: (WOT – zabezpečení webových stránek a ochrana pro bezpečné procházení) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}.xpi [2025-04-05]
FF Extension: (Greasemonkey) - C:\Users\www\AppData\Roaming\Mozilla\Firefox\Profiles\a4drhj4h.default-release\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2025-04-05]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-07-31]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\Air\nppdf32.dll [2022-07-29] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [11081128 2025-01-14] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7545648 2025-05-12] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [809208 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2484984 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [861432 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2025-04-05] (Avast Software s.r.o. -> AVAST Software)
R2 bzserv; C:\Program Files (x86)\Backblaze\bzserv.exe [957224 2025-01-30] (BACKBLAZE, INC. -> )
S3 CCleanerPerformanceOptimizerService; C:\Apps\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [13823704 2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11334144 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2675504 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R2 Everything; C:\Apps\Everything\Everything.exe [2265200 2025-05-23] (voidtools PTY LTD -> voidtools)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncHelper.exe [3610416 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
R2 FlashFolder; C:\Apps\FlashFolder\FlashFolder64.exe [596992 2012-07-21] (zett42) [File not signed]
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044176 2019-01-29] (Comodo Security Solutions, Inc. -> COMODO)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9d15b9aa9e1c885b\Display.NvContainer\NVDisplay.Container.exe [1275016 2025-03-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\25.085.0504.0002\OneDriveUpdaterService.exe [3862840 2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
S2 RCService; C:\Apps\AnyViewer\RCService.exe [1120496 2025-03-18] (AOMEI International Network Limited -> AOMEI International Network Limited)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559304 2025-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [21088 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [244320 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390744 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297568 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [85088 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2025-04-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [29792 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [281184 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [570976 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92256 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72288 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [881760 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1272896 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201792 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [392264 2025-05-28] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17576 2019-10-22] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [38880 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [844000 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [47104 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 gKbdfltr; C:\WINDOWS\System32\drivers\gKbdfltr.sys [29576 2020-09-15] (KYE SYSTEMS CORP. -> )
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [130256 2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
S3 ioFakDrv; C:\WINDOWS\System32\drivers\ioFakDrv.sys [35928 2020-09-15] (KYE Systems Corp -> KYE System Corp.)
S3 ioFakMap; C:\WINDOWS\System32\drivers\ioFakMap.sys [24664 2020-09-15] (KYE Systems Corp -> KYE System Corp.)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
S3 LGBusEnum; C:\WINDOWS\system32\drivers\LGBusEnum64.sys [46264 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidFilter; C:\WINDOWS\System32\drivers\LGJoyHidFilter64.sys [67768 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGJoyHidLo; C:\WINDOWS\System32\drivers\LGJoyHidLo64.sys [54456 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore64.sys [76480 2022-05-12] (Logitech Inc -> Logitech Inc.)
S3 LGSHidFilt; C:\WINDOWS\System32\drivers\LGSHidFilt.Sys [64280 2022-05-12] (Logitech -> Logitech Inc.)
S3 LGSUsbFilt; C:\WINDOWS\System32\drivers\LGSUsbFilt.Sys [41752 2022-05-12] (Logitech -> Logitech Inc.)
S3 LGVirHid; C:\WINDOWS\system32\drivers\LGVirHid64.sys [34496 2022-05-12] (Logitech Inc -> Logitech Inc.)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2021-03-26] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2021-03-26] (MiniTool Solution Ltd -> )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [44080 2016-09-27] (Shaul Eizikovich -> Nefarius Software Solutions)
R1 ViGEmBus; C:\WINDOWS\System32\drivers\ViGEmBus.sys [249400 2022-08-30] (Microsoft Windows Hardware Compatibility Publisher -> Nefarius Software Solutions e.U.)
S3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [67448 2019-07-14] (On-site Dental Systems (Justin Shafer) -> Shaul Eizikovich)
S3 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [25704 2022-10-03] (WDKTestCert user,132375440089837053 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-28 16:40 - 2025-05-28 16:41 - 000050092 _____ C:\Users\www\Desktop\FRST.txt
2025-05-28 16:39 - 2025-05-28 16:40 - 000000000 ____D C:\FRST
2025-05-28 16:00 - 2025-05-28 16:00 - 000000000 ____D C:\Users\www\Documents\BioWare
2025-05-28 15:55 - 2025-05-28 15:55 - 000320248 _____ (Gen Digital Inc.) C:\WINDOWS\system32\asw9f0af71bd54782e7.tmp
2025-05-28 15:53 - 2025-05-28 15:53 - 002405888 _____ (Farbar) C:\Users\www\Desktop\FRST64.exe
2025-05-28 15:53 - 2025-05-28 15:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open-Shell
2025-05-28 15:51 - 2025-05-28 15:54 - 000000000 ____D C:\Users\www\AppData\Roaming\Patch My PC
2025-05-28 15:51 - 2025-05-28 15:53 - 000000000 ____D C:\ProgramData\PatchMyPC
2025-05-28 15:50 - 2025-05-28 15:54 - 000000000 ____D C:\ProgramData\Patch My PC
2025-05-28 15:50 - 2025-05-28 15:51 - 000003762 _____ C:\WINDOWS\system32\Tasks\Patch My PC Home Updater - Self Updater
2025-05-28 15:50 - 2025-05-28 15:50 - 000000749 _____ C:\Users\www\Desktop\Patch My PC Home Updater.lnk
2025-05-28 15:49 - 2025-05-28 15:49 - 000000000 ____D C:\Users\www\AppData\Local\AdvinstAnalytics
2025-05-27 16:51 - 2025-05-27 16:51 - 000000000 ____D C:\Program Files\Mozilla Firefox
2025-05-27 09:07 - 2025-05-27 09:08 - 000399751 _____ C:\Users\www\Downloads\zadost-zamestnance-o-poskytnuti-pracovniho-volna-verze-2505-1.pdf
2025-05-27 09:05 - 2025-05-27 09:05 - 000399751 _____ C:\Users\www\Downloads\zadost-zamestnance-o-poskytnuti-pracovniho-volna-verze-2505.pdf
2025-05-27 08:07 - 2025-05-27 08:07 - 000000000 ____D C:\Users\www\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-26 16:31 - 2025-05-26 16:31 - 000164773 _____ C:\Users\www\Downloads\aptis_advanced_-_practice_test_answer_key_grammar_and_vocabulary_0.pdf
2025-05-26 15:41 - 2025-05-26 15:41 - 000336954 _____ C:\Users\www\Downloads\8th-CASA-Biennial-Conference-2025_List-of-panels_CfP.pdf
2025-05-26 11:34 - 2025-05-26 11:34 - 000000000 ____D C:\Users\www\AppData\Local\SolidDocuments
2025-05-21 22:08 - 2025-05-21 22:08 - 000000629 _____ C:\Users\Public\Desktop\Kathy Rain 2 - Soothsayer.lnk
2025-05-21 18:00 - 2025-05-21 18:00 - 000001383 _____ C:\Users\www\Desktop\Outlook.lnk
2025-05-17 20:08 - 2025-05-17 20:08 - 000000754 _____ C:\Users\www\Desktop\Defenders Quest 2.lnk
2025-05-17 20:06 - 2025-05-17 20:06 - 000000000 ____D C:\Users\www\AppData\Roaming\LevelUpLabs
2025-05-14 09:06 - 2025-05-14 09:06 - 000000000 ___HD C:\$WinREAgent
2025-05-12 12:02 - 2025-05-12 12:05 - 000000000 ____D C:\Users\www\AppData\Roaming\vlc
2025-05-12 10:11 - 2025-05-12 10:11 - 000393097 _____ C:\Users\www\Downloads\Vyber terminu.pdf
2025-05-09 20:36 - 2025-05-09 20:37 - 003836438 _____ C:\Users\www\Downloads\4f90b22d9a19e75a29fd0d52344dd253.pdf
2025-05-08 21:31 - 2025-05-08 21:31 - 000000000 ____D C:\Users\www\AppData\Local\UnrealEngine
2025-05-08 21:31 - 2025-05-08 21:31 - 000000000 ____D C:\Users\www\AppData\Local\Sandfall
2025-05-08 18:19 - 2025-05-08 18:19 - 000000691 _____ C:\Users\Public\Desktop\Clair Obscur - Expedition 33.lnk
2025-05-08 08:29 - 2025-05-08 08:29 - 000363008 _____ (Open-Shell) C:\WINDOWS\SysWOW64\StartMenuHelper32.dll
2025-05-08 08:22 - 2025-05-08 08:22 - 000438272 _____ (Open-Shell) C:\WINDOWS\system32\StartMenuHelper64.dll
2025-05-07 10:18 - 2025-05-07 10:19 - 000000000 ____D C:\ProgramData\Zotero
2025-05-07 10:18 - 2025-05-07 10:18 - 000000831 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zotero.lnk
2025-05-07 10:18 - 2025-05-07 10:18 - 000000819 _____ C:\Users\Public\Desktop\Zotero.lnk
2025-05-07 10:18 - 2025-05-07 10:18 - 000000000 ____D C:\Users\www\AppData\Roaming\Zotero
2025-05-07 10:18 - 2025-05-07 10:18 - 000000000 ____D C:\Users\www\AppData\Local\Zotero
2025-05-05 22:25 - 2025-05-05 22:24 - 000320248 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-05-04 11:29 - 2025-05-04 11:29 - 000000000 ____D C:\Users\www\AppData\Roaming\PicPick
2025-05-04 11:29 - 2025-05-04 11:29 - 000000000 ____D C:\ProgramData\PicPick
2025-05-02 11:26 - 2025-05-02 11:26 - 000077340 _____ C:\Users\www\Downloads\FHS-3289-version1.pdf
2025-05-01 19:51 - 2025-05-10 00:27 - 000000000 ____D C:\ProgramData\AnyViewer
2025-05-01 19:51 - 2025-05-01 19:51 - 000000753 _____ C:\Users\Public\Desktop\AnyViewer.lnk
2025-05-01 19:51 - 2025-05-01 19:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnyViewer
2025-05-01 16:54 - 2025-05-01 16:54 - 000000000 ____D C:\Users\www\AppData\Local\mpv
2025-05-01 02:41 - 2025-05-01 02:41 - 000000000 ____D C:\inetpub
2025-04-30 08:23 - 2025-04-30 08:24 - 000000000 ____D C:\Users\www\Downloads\_OLD
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-28 16:36 - 2025-04-05 20:47 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2025-05-28 16:34 - 2025-04-05 21:09 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-28 16:23 - 2025-04-05 20:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-05-28 15:55 - 2025-04-05 21:09 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-05-28 15:55 - 2025-04-05 20:41 - 001272896 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-05-28 15:55 - 2025-04-05 20:41 - 000570976 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-05-28 15:55 - 2025-04-05 20:41 - 000281184 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-05-28 15:55 - 2025-04-05 20:41 - 000092256 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-05-28 15:55 - 2025-04-05 20:41 - 000072288 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-05-28 15:55 - 2025-04-05 20:41 - 000021088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2025-05-28 15:55 - 2025-04-05 20:37 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2025-05-28 15:53 - 2025-04-13 18:20 - 000001693 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Obsidian.lnk
2025-05-28 15:53 - 2025-04-13 18:20 - 000001681 _____ C:\Users\Public\Desktop\Obsidian.lnk
2025-05-28 15:52 - 2024-07-23 09:40 - 000001080 _____ C:\Users\www\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaInfo.lnk
2025-05-28 15:52 - 2022-06-05 00:02 - 000000782 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything.lnk
2025-05-28 15:50 - 2025-04-16 18:57 - 000000000 ____D C:\Program Files\dotnet
2025-05-28 15:50 - 2025-04-05 22:00 - 000000000 ____D C:\ProgramData\Package Cache
2025-05-28 15:50 - 2025-04-04 13:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Patch My PC Home Updater
2025-05-28 15:47 - 2025-04-05 21:12 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2025-05-28 15:41 - 2025-01-27 20:40 - 000000000 ____D C:\_
2025-05-28 13:04 - 2025-04-27 18:45 - 000002970 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2025-05-28 13:04 - 2025-04-21 17:33 - 000002660 _____ C:\WINDOWS\system32\Tasks\Volume² Autorun
2025-05-28 13:04 - 2025-04-13 23:21 - 000002136 _____ C:\WINDOWS\system32\Tasks\HotSwap! Applet
2025-05-28 13:04 - 2025-04-08 08:58 - 000003366 _____ C:\WINDOWS\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-2069861480-1445196129-2239134032-1001
2025-05-28 13:04 - 2025-04-08 08:49 - 000002508 _____ C:\WINDOWS\system32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0
2025-05-28 13:04 - 2025-04-08 08:45 - 000002596 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2025-05-28 13:04 - 2025-04-08 08:41 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2025-05-28 13:04 - 2025-04-06 18:33 - 000002234 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC - user
2025-05-28 13:04 - 2025-04-06 18:18 - 000002838 _____ C:\WINDOWS\system32\Tasks\CCleanerCrashReporting
2025-05-28 13:04 - 2025-04-06 18:18 - 000000550 _____ C:\WINDOWS\Tasks\CCleanerCrashReporting.job
2025-05-28 13:04 - 2025-04-05 22:00 - 000003010 _____ C:\WINDOWS\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-05-28 13:04 - 2025-04-05 21:32 - 000003076 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-2069861480-1445196129-2239134032-1003
2025-05-28 13:04 - 2025-04-05 21:32 - 000003074 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-2069861480-1445196129-2239134032-1001
2025-05-28 13:04 - 2025-04-05 21:26 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2069861480-1445196129-2239134032-1003
2025-05-28 13:04 - 2025-04-05 21:26 - 000002716 _____ C:\WINDOWS\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2025-05-28 13:04 - 2025-04-05 20:53 - 000003220 _____ C:\WINDOWS\system32\Tasks\Intel PTT EK Recertification
2025-05-28 13:04 - 2025-04-05 20:39 - 000003070 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2069861480-1445196129-2239134032-1001
2025-05-28 13:04 - 2025-04-05 20:22 - 000003644 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{17871486-6DD9-4C3F-AFDA-EE455A9C08F1}
2025-05-28 13:04 - 2025-04-05 20:22 - 000003418 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{A7043252-555B-4159-94C9-9FB4B5B0A2CE}
2025-05-28 10:36 - 2025-04-05 21:31 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2025-05-28 10:36 - 2025-04-05 21:26 - 000002130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-28 08:43 - 2025-04-05 21:09 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-28 08:43 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-05-28 08:38 - 2022-10-17 18:01 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2025-05-28 08:33 - 2025-04-15 10:41 - 000000000 ____D C:\Users\www\AppData\Roaming\Ferdium
2025-05-28 08:29 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-05-28 08:28 - 2025-04-06 08:50 - 000000000 ____D C:\ProgramData\firebird
2025-05-27 23:28 - 2025-04-05 20:16 - 000000000 ____D C:\ProgramData\NVIDIA
2025-05-27 20:03 - 2025-04-05 21:42 - 000000000 ____D C:\Users\www\AppData\Local\OpenShell
2025-05-27 18:06 - 2025-04-05 21:12 - 000001073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2025-05-27 17:45 - 2025-04-05 20:37 - 000000000 ____D C:\Users\www\AppData\Local\Packages
2025-05-27 09:40 - 2025-04-05 21:31 - 000000000 ____D C:\Users\www\AppData\Roaming\Microsoft\Word
2025-05-27 08:53 - 2022-04-20 15:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2025-05-27 08:07 - 2025-04-08 08:58 - 000000000 ____D C:\Users\www\AppData\Roaming\Zoom
2025-05-27 08:06 - 2025-04-05 20:41 - 000000000 ____D C:\Users\www\AppData\Local\D3DSCache
2025-05-26 00:14 - 2025-04-15 10:40 - 000000000 ____D C:\Users\www\AppData\Local\ferdium-updater
2025-05-25 19:13 - 2025-04-05 20:16 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-05-25 19:13 - 2022-04-20 15:32 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-24 21:06 - 2025-04-05 21:21 - 000000000 ____D C:\Program Files\Microsoft Office
2025-05-21 22:56 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\ServiceState
2025-05-21 22:14 - 2025-04-05 23:16 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2025-05-21 16:23 - 2025-04-05 21:31 - 000000000 ____D C:\Users\www\AppData\Roaming\Microsoft\Office
2025-05-21 16:20 - 2025-04-08 17:36 - 000000000 ____D C:\Users\www\AppData\Roaming\Microsoft\Excel
2025-05-19 20:59 - 2025-04-16 17:15 - 000000000 ____D C:\Users\www\AppData\Local\CrashDumps
2025-05-19 11:39 - 2025-04-19 13:59 - 000000000 ____D C:\Users\www\AppData\Roaming\NAPS2
2025-05-19 08:17 - 2025-04-05 21:12 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2025-05-17 20:06 - 2025-04-05 22:00 - 000000000 ____D C:\Users\www\AppData\Local\NVIDIA
2025-05-16 22:14 - 2025-04-05 21:10 - 000716770 _____ C:\WINDOWS\system32\perfh005.dat
2025-05-16 22:14 - 2025-04-05 21:10 - 000144948 _____ C:\WINDOWS\system32\perfc005.dat
2025-05-16 22:14 - 2025-04-05 21:08 - 000000000 ____D C:\WINDOWS\INF
2025-05-16 22:14 - 2025-04-05 20:27 - 001693140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-05-16 22:07 - 2025-04-05 21:05 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2025-05-16 22:07 - 2025-04-05 20:40 - 000000000 ____D C:\ProgramData\Avast Software
2025-05-16 22:07 - 2025-04-05 20:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-05-16 22:07 - 2022-04-20 15:32 - 000008192 ___SH C:\DumpStack.log.tmp
2025-05-14 16:15 - 2025-04-16 18:58 - 000000000 ____D C:\Users\www\AppData\Roaming\HandBrake
2025-05-14 09:09 - 2025-04-05 21:06 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-05-12 18:06 - 2025-04-08 09:03 - 000000000 ____D C:\Users\www\AppData\Roaming\obs-studio
2025-05-08 11:58 - 2025-04-06 17:56 - 000000000 ____D C:\Users\www\AppData\Roaming\Microsoft\PowerPoint
2025-05-08 02:04 - 2023-10-11 11:05 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2025-05-07 10:20 - 2022-06-05 00:20 - 000000000 ____D C:\Users\www\Zotero
2025-05-06 08:14 - 2025-04-05 20:42 - 000000000 ____D C:\Users\www\AppData\Local\Avast Software
2025-05-05 22:24 - 2025-04-05 20:41 - 001272392 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\asw002acee153de585d.tmp
2025-05-05 22:24 - 2025-04-05 20:41 - 000569920 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswccc92f43d464b947.tmp
2025-05-05 22:24 - 2025-04-05 20:41 - 000279624 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswda009ba826a6614c.tmp
2025-05-05 22:24 - 2025-04-05 20:41 - 000092224 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\asw12fc79a6cb01e1de.tmp
2025-05-04 00:42 - 2025-04-14 08:39 - 000000000 ____D C:\Users\www\AppData\Roaming\KeePass
2025-05-03 11:26 - 2025-04-06 00:17 - 000000000 ____D C:\Users\www\Documents\The Last of Us Part II
2025-05-01 02:42 - 2025-04-05 20:15 - 000456752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-05-01 02:41 - 2025-04-05 21:11 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ___RD C:\WINDOWS\PrintDialog
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\SystemResources
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\system32\compatrel
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\ShellComponents
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-05-01 02:41 - 2025-04-05 21:09 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-05-01 02:24 - 2025-04-05 20:18 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-04-30 23:53 - 2025-04-05 22:00 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
==================== Files in the root of some directories ========
2025-04-08 08:41 - 2025-04-08 08:41 - 000000410 _____ () C:\Users\www\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-05-2025
Ran by user (28-05-2025 16:43:14)
Running from C:\Users\www\Desktop
Microsoft Windows 10 Pro Version 22H2 19045.5737 (X64) (2025-04-05 18:25:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
admin (S-1-5-21-2069861480-1445196129-2239134032-1003 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-2069861480-1445196129-2239134032-500 - Administrator - Disabled)
android (S-1-5-21-2069861480-1445196129-2239134032-1002 - Limited - Enabled)
DefaultAccount (S-1-5-21-2069861480-1445196129-2239134032-503 - Limited - Disabled)
Guest (S-1-5-21-2069861480-1445196129-2239134032-501 - Limited - Disabled)
user (S-1-5-21-2069861480-1445196129-2239134032-1001 - Administrator - Enabled) => C:\Users\www
WDAGUtilityAccount (S-1-5-21-2069861480-1445196129-2239134032-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: COMODO Antivirus (Disabled - Up to date) {68776303-F62A-B826-2FE9-ABF2832D7700}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
FW: COMODO Firewall (Disabled) {504CE226-BC45-B97E-04B6-02C77DFE307B}
FW: COMODO Firewall (Enabled) {3D87FB90-B561-70B4-3B0B-BCEFE7656ABC}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 24.09 (x64) (HKLM\...\7-Zip) (Version: 24.09 - Igor Pavlov)
Adobe Acrobat 2017 (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0E1108756300}) (Version: 17.012.30262 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.6.0.79 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AnyViewer 5.1.0 (HKLM-x32\...\{3FCBAE69-8C96-4FBC-BD80-D4C1EFA9A629}_is1) (Version: 5.1.0.0 - AOMEI International Network Limited)
Aplikace NVIDIA 11.0.3.232 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.3.232 - NVIDIA Corporation)
ATLAS.ti 25 (HKLM\...\{D599D630-A3CE-46AB-86D2-DEEC3FA8508A}) (Version: 25.0.1.32924 - Scientific Software Development GmbH) Hidden
ATLAS.ti 25 (HKLM-x32\...\{c1165745-2264-4e68-8845-fcc4b345f0c4}) (Version: 25.0.1.32924 - Scientific Software Development GmbH)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.4.10068.2727 - Gen Digital Inc.)
Backblaze (HKLM-x32\...\{B58D988B-4D69-4997-9695-052ACDC0A86B}) (Version: 9.1.0.833 - Backblaze, Inc)
Clair Obscur: Expedition 33 (HKLM-x32\...\Clair Obscur: Expedition 33_is1) (Version: - )
COMODO Firewall (HKLM\...\COMODO Internet Security) (Version: 12.2.2.8012 - COMODO Security Solutions Inc.)
COMODO Internet Security Premium (HKLM\...\{529CC629-B436-4886-B322-4BE75B97783D}) (Version: 12.2.2.8012 - COMODO Security Solutions Inc.) Hidden
Everything 1.4.1.1027 (x64) (HKLM\...\Everything) (Version: 1.4.1.1027 - voidtools)
f.lux (HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\Flux) (Version: 4.134 - f.lux Software LLC)
Ferdium 7.1.0 (HKLM\...\a525f0a2-415e-582b-9d3e-cb67fd71446e) (Version: 7.1.0 - Ferdium Contributors)
FlashFolder (HKLM\...\{92BF7CAE-D925-4868-8875-A154BE3CB26F}) (Version: 1.11.0.0 - zett42)
Internet Security Essentials (HKLM-x32\...\ComodoIse) (Version: 1.6.472587.185 - Comodo)
Kathy Rain 2 - Soothsayer (HKLM-x32\...\Kathy Rain 2 - Soothsayer_is1) (Version: - )
MediaInfo 25.04 (HKLM\...\MediaInfo) (Version: 25.04 - MediaArea.net)
Microsoft .NET Host - 8.0.16 (x64) (HKLM\...\{4CF6F4C2-9379-452F-A8FA-08A68D26243A}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.16 (x64) (HKLM\...\{D6A5E142-D69D-44D0-A004-5FF6108E7A7F}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.16 (x64) (HKLM\...\{02AF5757-3C24-4F01-83C5-16953208C1AE}) (Version: 64.64.32758 - Microsoft Corporation) Hidden
Microsoft 365 Apps pro velké organizace - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.18730.20186 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.92 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.92 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 25.085.0504.0002 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.25.08601 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x64) (HKLM\...\{AAEFDC34-F493-41AC-A264-11FE93008418}) (Version: 64.64.32786 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.16 (x64) (HKLM-x32\...\{ce93c7b3-106f-4ee3-bf24-6a710e693ac3}) (Version: 8.0.16.34817 - Microsoft Corporation)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 139.0 (x64 cs)) (Version: 139.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 137.0 - Mozilla)
NVIDIA FrameView SDK 1.5.10920.35420203 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10920.35420203 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 572.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 572.83 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
Obsidian (HKLM\...\bd400747-f0c1-5638-a859-982036102edf) (Version: 1.8.10 - Obsidian)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18623.20156 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18730.20186 - Microsoft Corporation) Hidden
Open-Shell (HKLM\...\{828B8D4B-7BC6-47C7-81CD-9B5CC579C447}) (Version: 4.4.196 - The Open-Shell Team)
Patch My PC Home Updater (HKLM\...\{821CF183-56CD-4DBC-A595-58EABA53F427}) (Version: 5.2.1.1 - Patch My PC)
Tesseract-OCR - open source OCR engine (HKLM\...\Tesseract-OCR) (Version: 5.5.0.20241111 - Tesseract-OCR community)
The Last of Us: Part II (HKLM-x32\...\The Last of Us: Part II_is1) (Version: - )
Zoom Workplace (HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\ZoomUMX) (Version: 6.4.7 (64367) - Zoom Communications, Inc.)
Zotero (HKLM\...\Zotero 7.0.15 (x64 en-US)) (Version: 7.0.15 - Corporation for Digital Scholarship)
Packages:
=========
NVIDIA Control Panel -> C:\Program Files\WindowsApps\nvidiacorp.nvidiacontrolpanel_8.1.967.0_x64__56jybvy8sckqj [2025-04-05] (NVIDIA Corp.)
OfficePushNotificationsUtility -> C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\OFFICE16 [2025-05-24] ()
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.150.3125.0_x64__kzf8qxf38zg5c [2025-05-06] (Skype)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2069861480-1445196129-2239134032-1001_Classes\CLSID\{04271989-C4D2-31F5-953D-FA4FC07E4B40} -> [OneDrive - Univerzita Karlova] => H:\_ONE_DRIVES\OneDrive - Univerzita Karlova [2024-05-08 12:46]
CustomCLSID: HKU\S-1-5-21-2069861480-1445196129-2239134032-1001_Classes\CLSID\{4f7e2fe2-8ac5-5e0b-0104-38b894549460}\localserver32 -> C:\Apps\HandBrake\HandBrake.exe (HandBrake Team) [File not signed]
CustomCLSID: HKU\S-1-5-21-2069861480-1445196129-2239134032-1001_Classes\CLSID\{EABAE40C-B27C-455A-B672-F234DD780948}\InprocServer32 -> C:\Users\www\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.25.08601\x64\Microsoft.Teams.MeetingAddin.DLL (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Apps\Open Shell\ClassicExplorer64.dll [2025-05-08] (Open-Shell) [File not signed]
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Apps\Open Shell\ClassicExplorer64.dll [2025-05-08] (Open-Shell) [File not signed]
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Apps\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat Elements\ContextMenuShim64.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Apps\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\25.085.0504.0002\FileSyncShell64.dll [2025-05-28] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9d15b9aa9e1c885b\nvshext.dll [2025-03-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Apps\7-Zip\7-zip.dll [2024-11-29] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat Elements\ContextMenuShim64.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2021-01-22] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2025-05-08] (Open-Shell) [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2025-05-28 08:29 - 2025-05-28 08:29 - 001851904 _____ () [File not signed] \\?\C:\Users\www\AppData\Local\Temp\57bad21e-74c5-44cc-8225-59ce8b18ff41.tmp.node
2025-05-01 19:51 - 2021-03-17 14:19 - 000074752 _____ () [File not signed] C:\Apps\AnyViewer\zlib1.dll
2023-04-15 21:17 - 2023-04-15 21:17 - 000021504 _____ () [File not signed] C:\Apps\Ditto\ICU_Loader.dll
2009-06-26 12:03 - 2009-06-26 12:03 - 000050176 _____ () [File not signed] C:\Apps\Essential PIM\hunspelldll.dll
2025-05-26 10:18 - 2025-05-25 17:52 - 003001344 _____ () [File not signed] C:\Apps\Ferdium\ffmpeg.dll
2025-05-26 10:18 - 2025-05-25 17:52 - 000493056 _____ () [File not signed] C:\Apps\Ferdium\libegl.dll
2025-05-26 10:18 - 2025-05-25 17:52 - 008019968 _____ () [File not signed] C:\Apps\Ferdium\libglesv2.dll
2025-05-26 10:18 - 2025-05-25 17:52 - 005577728 _____ () [File not signed] C:\Apps\Ferdium\vk_swiftshader.dll
2022-06-05 00:18 - 2016-09-19 12:09 - 000813056 _____ () [File not signed] C:\Apps\Networx\sqlite.dll
2025-03-20 14:05 - 2011-10-30 16:02 - 000038912 _____ () [File not signed] C:\Apps\RBTray\RBHook.dll
2017-04-24 12:40 - 2017-04-24 12:40 - 000010240 _____ () [File not signed] C:\Program Files (x86)\Adobe\Acrobat 2017\Acrobat\locale\cs_cz\acrotray.cze
2023-04-15 21:17 - 2023-04-15 21:17 - 000051712 _____ (Ditto Utility Addin) [File not signed] C:\Apps\Ditto\Addins\DittoUtil.dll
2025-05-01 19:51 - 2024-05-24 17:23 - 021242368 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\avcodec.dll
2025-05-01 19:51 - 2024-05-24 17:23 - 002455552 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\avdevice.dll
2025-05-01 19:51 - 2024-05-24 17:24 - 006316544 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\avfilter.dll
2025-05-01 19:51 - 2024-05-24 17:24 - 007534080 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\avformat.dll
2025-05-01 19:51 - 2024-05-24 17:24 - 001565184 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\avutil.dll
2025-05-01 19:51 - 2024-05-24 17:24 - 000040960 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\postproc.dll
2025-05-01 19:51 - 2024-05-24 17:24 - 000257536 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\swresample.dll
2025-05-01 19:51 - 2024-05-24 17:23 - 000413696 _____ (FFmpeg Project) [File not signed] C:\Apps\AnyViewer\swscale.dll
2017-02-15 08:57 - 2017-02-15 08:57 - 000975360 _____ (Firebird Project) [File not signed] C:\Apps\Essential PIM\gds32.dll
2014-12-04 07:18 - 2014-12-04 07:18 - 000420864 _____ (IBM Corporation and others) [File not signed] C:\Apps\Essential PIM\icudt30.dll
2014-12-04 07:18 - 2014-12-04 07:18 - 000323584 _____ (IBM Corporation and others) [File not signed] C:\Apps\Essential PIM\icuuc30.dll
2022-06-19 15:18 - 2018-09-17 16:18 - 000076408 _____ (mik61 (independent software developer) -> mik61) [File not signed] C:\Apps\Gameplay Time Tracker\SupportCpp.dll
2025-04-30 23:53 - 2025-04-30 23:53 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2025-04-05 22:00 - 2025-04-30 23:53 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
2025-05-08 08:21 - 2025-05-08 08:21 - 002777600 _____ (Open-Shell) [File not signed] C:\Apps\Open Shell\StartMenuDLL.dll
2025-05-01 19:51 - 2025-01-16 09:26 - 000223744 _____ (R. Ierusalimschy, L. H. de Figueiredo, W. Celes) [File not signed] C:\Apps\AnyViewer\lua.dll
2022-06-19 15:18 - 2018-03-02 07:51 - 001149440 _____ (Robert Simpson, et al.) [File not signed] C:\Apps\Gameplay Time Tracker\x86\SQLite.Interop.dll
2025-05-01 19:51 - 2024-06-13 17:55 - 000485376 _____ (The curl library, hxxps://curl.se/) [File not signed] C:\Apps\AnyViewer\libcurl.dll
2020-09-10 10:11 - 2020-09-10 10:11 - 000268288 _____ (The FreeType Project) [File not signed] C:\Apps\Essential PIM\wp_type1ttf.dll
2025-05-01 19:51 - 2024-05-27 09:11 - 001214976 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Apps\AnyViewer\LIBEAY32.dll
2025-05-01 19:51 - 2024-05-27 09:11 - 000275456 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Apps\AnyViewer\SSLEAY32.dll
2020-03-19 10:32 - 2020-03-19 10:32 - 000601088 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Apps\Essential PIM\libeay32.dll
2020-03-19 10:32 - 2020-03-19 10:32 - 000159744 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Apps\Essential PIM\ssleay32.dll
2020-09-10 10:11 - 2020-09-10 10:11 - 000116736 _____ (WPCubed GmbH) [File not signed] C:\Apps\Essential PIM\wpdecodejp.DLL
2020-09-10 10:11 - 2020-09-10 10:11 - 001264128 _____ (WPCubed GmbH) [File not signed] C:\Apps\Essential PIM\wPDFView04.dll
2012-07-21 21:55 - 2012-08-31 22:57 - 000629248 _____ (zett42) [File not signed] C:\Apps\FlashFolder\fflib6439.dll
2012-07-21 22:05 - 2012-08-31 22:46 - 003306496 _____ (zett42) [File not signed] C:\Apps\FlashFolder\fflib6439_64.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Apps\Open Shell\ClassicExplorer64.dll [2025-05-08] (Open-Shell) [File not signed]
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\2017\x64\AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\2017\x64\AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Apps\Open Shell\ClassicExplorer32.dll [2025-05-08] (Open-Shell) [File not signed]
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\2017\AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\2017\AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\2017\x64\AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Apps\Open Shell\ClassicExplorer64.dll [2025-05-08] (Open-Shell) [File not signed]
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\2017\AcroIEFavStub.dll [2017-04-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Apps\Open Shell\ClassicExplorer32.dll [2025-05-08] (Open-Shell) [File not signed]
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2025-05-24] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\...\sharepoint.com -> hxxps://cunicz-files.sharepoint.com
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2025-04-05 21:09 - 2025-04-05 21:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2069861480-1445196129-2239134032-1001\Control Panel\Desktop\\Wallpaper -> C:\Apps\_WP\Krivoklat_okno_75A.jpg
HKU\S-1-5-21-2069861480-1445196129-2239134032-1003\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\1354020102363009558\133883317678444188.jpg
DNS Servers: 156.154.70.22 - 156.154.71.22
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Síťové připojení Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys
Ethernet: Killer E2400 Gigabit Ethernet Controller -> e2xw10x64.sys
inspect: COMODO Internet Security Firewall Driver
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{5E422DEE-BE1F-4D93-97B7-69E825144632}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{263732C1-7A01-4A29-B035-3FC22BDADBEC}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{056FE898-47A7-4377-B474-0780E6FE5935}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{98EA0517-294A-4C7F-A1D0-0095D4CD7465}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E717A425-E0A1-4890-800C-041F5F3D2735}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{17EB286F-FA91-45DE-B69C-FFB94FF47122}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{222B4380-7532-493F-ADA7-59F5A4D915B6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A053CC51-50EA-488D-B11F-A2123FA64204}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1BB3C32E-92E0-4DDC-95A4-D49E799A73F3}] => (Allow) C:\Users\www\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [{1212EA51-7B50-42B0-8976-450E08F51640}] => (Allow) C:\Users\www\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{5F939C7F-E645-4F08-BEC8-CAEB99F7477C}] => (Allow) C:\Users\www\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{479D70B6-7D58-4BDE-9299-56E6F4249BAA}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0815EB23-846B-43B9-8820-CEEA03E95E0A}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C40340A0-34CF-4633-A4BC-AFF3D1E1C22A}] => (Allow) C:\Apps\AnyViewer\RCClient.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{9B4EB720-9BEE-49BE-8DD5-9C08CEDB4116}] => (Allow) C:\Apps\AnyViewer\RCClient.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{2EB6F8AA-20EA-455A-B6E2-FCE0004129C9}] => (Allow) C:\Apps\AnyViewer\avcore.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{9AC25408-D8A3-45A2-A4F1-77B326B30A5A}] => (Allow) C:\Apps\AnyViewer\avcore.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [TCP Query User{68A6E2B2-5BAD-4BAA-ABB9-744198FC6A62}C:\apps\essential pim\essentialpim.exe] => (Allow) C:\apps\essential pim\essentialpim.exe (ASTONSOFT OU -> Astonsoft)
FirewallRules: [UDP Query User{9E6A6C98-E244-4481-B6B0-EAB96BE2068D}C:\apps\essential pim\essentialpim.exe] => (Allow) C:\apps\essential pim\essentialpim.exe (ASTONSOFT OU -> Astonsoft)
FirewallRules: [{C691084E-B884-4B97-B9D0-88C3BA995E23}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2C0818BE-3145-4CD6-9F9B-5FD35F77C8C3}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25094.310.3616.953_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FE6C330B-543E-4826-95F6-35F14AE35E9E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25094.310.3616.953_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{64A00691-1DD0-48F5-AAB8-88E9F44615FA}] => (Allow) LPort=53317
FirewallRules: [{DE04ED4B-D3A1-48ED-BB7E-B4D551441C71}] => (Allow) LPort=53317
FirewallRules: [{FF9AB38D-D136-40D0-8574-7588706C6F28}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.92\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
19-05-2025 21:22:59 Naplánovaný kontrolní bod
28-05-2025 15:50:27 Installed Patch My PC Home Updater
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/28/2025 04:29:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: RCService.exe, verze: 5.1.0.0, časové razítko: 0x67d23b1e
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.5737, časové razítko: 0x766b2bad
Kód výjimky: 0xe06d7363
Posun chyby: 0x0013b5e2
ID chybujícího procesu: 0x1958
Čas spuštění chybující aplikace: 0x01dbc69e32107392
Cesta k chybující aplikaci: C:\Apps\AnyViewer\RCService.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID zprávy: 8761e241-78bd-4d81-bb38-742b2128fb66
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (05/28/2025 03:53:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Apps\AnyViewer\RCClient.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (05/28/2025 03:53:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Apps\AnyViewer\RCClient.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (05/28/2025 03:52:54 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Apps\AnyViewer\RCClient.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (05/28/2025 03:52:38 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Apps\AnyViewer\RCClient.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (05/28/2025 03:50:56 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Apps\AnyViewer\RCClient.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (05/28/2025 08:43:28 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Apps\AnyViewer\RCClient.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_a865f0c28672571c.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.4355_none_60b8b9eb71f62e16.manifest.
Error: (05/28/2025 08:42:17 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Apps\MSI Afterburner\MSIAfterburner.exe se nezdařilo.
Závislé sestavení Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.
System errors:
=============
Error: (05/28/2025 04:29:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AnyViewer Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/28/2025 04:00:50 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TMT)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/28/2025 03:52:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Everything byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (05/28/2025 10:12:45 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/27/2025 10:12:45 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/27/2025 03:56:49 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/26/2025 10:12:45 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/26/2025 08:32:26 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TMT)
Description: Server Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter se v daném časovém limitu neregistroval u služby DCOM.
CodeIntegrity:
===============
Date: 2025-05-28 16:34:24
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume15\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. A.D0 07/04/2018
Motherboard: MSI Z170A GAMING M3 (MS-7978)
Processor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
Percentage of memory in use: 38%
Total physical RAM: 32731.46 MB
Available physical RAM: 20011.68 MB
Total Virtual: 37595.46 MB
Available Virtual: 19868.41 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.26 GB) (Free:66.67 GB) (Model: WDS250G2X0C-00L350) NTFS
Drive f: (Games SSD) (Fixed) (Total:894.25 GB) (Free:29.06 GB) (Model: Patriot Burst) NTFS
Drive g: (SG4_ANDROID_NEW) (Fixed) (Total:654.02 GB) (Free:53.72 GB) (Model: ST4000DM004-2CV104) NTFS
Drive h: (SG4_AV_NEW) (Fixed) (Total:2048 GB) (Free:15.28 GB) (Model: ST4000DM004-2CV104) NTFS
Drive i: (SG4_WORK_NEW) (Fixed) (Total:1024 GB) (Free:23.16 GB) (Model: ST4000DM004-2CV104) NTFS
Drive k: (WD4_ISO) (Fixed) (Total:2048 GB) (Free:9.02 GB) (Model: WDC WD40EZRZ-00GXCB0) NTFS
Drive l: (WD4_DOWN) (Fixed) (Total:678.01 GB) (Free:64.23 GB) (Model: WDC WD40EZRZ-00GXCB0) NTFS
Drive q: (WD4_FOTO) (Fixed) (Total:1000 GB) (Free:1.89 GB) (Model: WDC WD40EZRZ-00GXCB0) NTFS
Drive s: (SG8_FOTO) (Fixed) (Total:2048 GB) (Free:1426.84 GB) (Model: ST8000DM004-2U9188) NTFS
Drive t: (SG8_ISO) (Fixed) (Total:5404.02 GB) (Free:416.05 GB) (Model: ST8000DM004-2U9188) NTFS
\\?\Volume{1b3f5fa3-0986-4d93-ab9d-587361b97754}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{729bbd59-8644-4ec8-b8af-70b727807fc9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 894.3 GB) (Disk ID: 09AE835C)
Partition 1: (Not Active) - (Size=894.3 GB) - (Type=0F Extended)
==========================================================
Disk: 1 (Protective MBR) (Size: 7452 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 3 (Size: 3726 GB) (Disk ID: 238B9290)
Partition: GPT.
==========================================================
Disk: 4 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 0EA60D4B)
Partition: GPT.
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosba o preventivku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosba o preventivku
Win10 Pro = Avast Free = Comodo Firewall Free
Re: Prosba o preventivku
Ahoj,
doporucujem PC prescanovat s MBAM
doporucujem PC prescanovat s MBAM
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosba o preventivku
Scan MBAM proveden, log níže.
Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 03.06.2025
Scan Time: 10:14
Log File: d0101db4-4052-11f0-b3b8-4ccc6a66ed03.json
-Software Information-
Version: 5.3.1.188
Components Version: 133.0.5274
Update Package Version: 1.0.99709
License: Free
-System Information-
OS: Windows 10 (Build 19045.5737)
CPU: x64
File System: NTFS
User: DESKTOP-TMT\user
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 209773
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 20 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
File system: Enabled
Archives: Disabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 0
(No malicious items detected)
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)
Malwarebytes
www.malwarebytes.com
-Log Details-
Scan Date: 03.06.2025
Scan Time: 10:14
Log File: d0101db4-4052-11f0-b3b8-4ccc6a66ed03.json
-Software Information-
Version: 5.3.1.188
Components Version: 133.0.5274
Update Package Version: 1.0.99709
License: Free
-System Information-
OS: Windows 10 (Build 19045.5737)
CPU: x64
File System: NTFS
User: DESKTOP-TMT\user
-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 209773
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 1 min, 20 sec
-Scan Options-
Memory: Enabled
Startup: Enabled
File system: Enabled
Archives: Disabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect
-Scan Details-
Process: 0
(No malicious items detected)
Module: 0
(No malicious items detected)
Registry Key: 0
(No malicious items detected)
Registry Value: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Data Stream: 0
(No malicious items detected)
Folder: 0
(No malicious items detected)
File: 0
(No malicious items detected)
Physical Sector: 0
(No malicious items detected)
WMI: 0
(No malicious items detected)
(end)
Win10 Pro = Avast Free = Comodo Firewall Free
Re: Prosba o preventivku
Myslim, ze PC je OK 
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Prosba o preventivku
Za malo
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?