VIRY.CZ

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11.02.2024
Ran by Lenovo (administrator) on NOŤAS (LENOVO 20251) (15-02-2024 14:30:40)
Running from C:\Users\Lenovo\Desktop\FRST64.exe
Loaded Profiles: Lenovo
Platform: Microsoft Windows 10 Home Version 1903 18362.720 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\Elantech\ETDCtrl.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(C:\Program Files\Elantech\ETDService.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\86.0.9.0\crashpad_handler.exe
(C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe ->) (Facebook, Inc. -> ) C:\Users\Lenovo\AppData\Local\Programs\Messenger\CrashpadHandlerWindows.exe
(explorer.exe ->) () [File not signed] C:\Program Files (x86)\Codebox\BitMeter\BitMeter2.exe
(explorer.exe ->) () [File not signed] C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe
(explorer.exe ->) (Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 10\UI10Guard.exe
(explorer.exe ->) (Facebook, Inc. -> Meta Platforms, Inc.) C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <62>
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Mega Limited -> Mega Limited) C:\Users\Lenovo\AppData\Local\MEGAsync\MEGAsync.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(explorer.exe ->) (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(explorer.exe ->) (Slavik) [File not signed] C:\Users\Lenovo\Downloads\INSTALACE\RQ Money\RQMONEY_1_3\RQMONEY.EXE
(explorer.exe ->) (Winstep Software Technologies) [File not signed] C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.372\GoogleCrashHandler64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
(Mixbyte Inc -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe <4>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) () [File not signed] C:\Program Files\Free Desktop Clock\timeserv.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(services.exe ->) (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(services.exe ->) (Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(services.exe ->) (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (F851C579-7038-4FCF-A598-CE706BA3E512 -> ) C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2020.229.1.0_x64__8kea50m9krsh2\CalendarApp.Gui.Win10.exe
(svchost.exe ->) (Microsoft Corporation -> ) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Skype Software Sarl -> ) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [Ashampoo Uninstaller Guard] => C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 10\UI10Guard.exe [4207496 2020-11-26] (Ashampoo GmbH & Co. KG -> )
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-08-04] (Adobe Inc. -> )
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [188808 2021-07-14] (Mixbyte Inc -> )
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2023-12-14] (Adobe Inc. -> Adobe Inc.)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe [59669792 2024-02-13] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe [59669792 2024-02-13] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [AtomicAlarmClock6] => C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [5321728 2016-08-16] () [File not signed]
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [NeXuS-Ultimate] => C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe [14558848 2011-10-11] (Winstep Software Technologies) [File not signed]
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe [59669792 2024-02-13] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [com.messenger] => "C:\Users\Lenovo\AppData\Local\Programs\Messenger\Messenger.exe" messenger://openAtLogin (No File)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [Thunderbird] => C:\Program Files\Mozilla Thunderbird\thunderbird.exe [462752 2024-01-26] (Mozilla Corporation -> Mozilla Corporation)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [Chrome] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2754848 2024-02-06] (Google LLC -> Google LLC)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [44540320 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\Policies\system: [DISABLETASKMGR] 2
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\86.0.9.0\GoogleDriveFS.exe [59669792 2024-02-13] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon G2010 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEG.DLL [506368 2023-06-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows x64\Print Processors\HP1020PrintProc: C:\Windows\System32\spool\prtprocs\x64\pphp1020.dll [65024 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Windows x64\Print Processors\HP1120PrintProc: C:\Windows\System32\spool\prtprocs\x64\HP1120PP.DLL [65024 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2021-12-24] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor G2010 series: C:\Windows\system32\CNMLMEG.DLL [1325568 2023-06-15] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP LJ M1120 MFP LM: C:\Windows\system32\ZLM1120.dll [167424 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Marvell Semiconductor, Inc.)
HKLM\...\Print\Monitors\HPLJ1020LM: C:\Windows\system32\zlhp1020.dll [192512 2012-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\121.0.6167.162\Installer\chrmstp.exe [2024-02-13] (Google LLC -> Google LLC)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Interactive Calendar.lnk [2023-12-05]
ShortcutTarget: Interactive Calendar.lnk -> C:\Program Files (x86)\Interactive Calendar\InteractiveCalendar.exe (No File)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2020-02-29]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Lenovo\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited -> Mega Limited)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\One Calendar.lnk [2020-03-13]
ShortcutTarget: One Calendar.lnk -> (No File)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Vista.ini.lnk [2024-02-13]
ShortcutTarget: Vista.ini.lnk -> C:\Users\Lenovo\AppData\Vista.js () [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bitmeter2.lnk [2020-01-13]
ShortcutTarget: Bitmeter2.lnk -> C:\Program Files (x86)\Codebox\BitMeter\BitMeter2.exe () [File not signed]

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {D05BE589-AD49-411A-9DC8-9717D25DA041} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1547208 2024-01-31] (Adobe Inc. -> Adobe Inc.)
Task: {777BDF75-612C-48D4-B7B4-C70248A0A062} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [4096992 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {43838A96-A864-4741-A43E-34C9FC294218} - System32\Tasks\Adobe-Genuine-Software-Integrity-Scheduler-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [4434400 2023-11-07] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {E561139A-2CED-4F25-9C02-43F16393AE3B} - System32\Tasks\AdvancedWindowsManager #8 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {F8F7605C-F8FC-4DF4-99B8-1E5B9694C16A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {8032E6C2-03FE-46C7-A772-B9301798BB85} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "5316baa1-c3f7-45a7-b92c-39cfbbdb03fa" --version "6.20.10897" --silent
Task: {DABA94A5-324A-425B-A36C-29EA58158B78} - System32\Tasks\CCleanerSkipUAC - Lenovo => C:\Program Files\CCleaner\CCleaner.exe [38319520 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {E07FDB4C-BAD8-497F-8F27-FE7C4F8D15CD} - System32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
Task: {58D1CBAC-87A0-4D2F-9A89-CF757BA8E2B8} - System32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
Task: {D9AC0F1C-C24A-46B4-9CF4-2F2600CFC00A} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-760426430-1322398698-3842268529-1001 => C:\Users\Lenovo\AppData\Local\MEGAsync\MEGAupdater.exe [1777072 2024-02-06] (Mega Limited -> )
Task: {370546D7-29C1-40A6-8610-5E8CB7F38441} - System32\Tasks\Meta\Messenger-SL-Helper-S-1-5-21-760426430-1322398698-3842268529-1001 => C:\Users\Lenovo\AppData\Local\Programs\Messenger\MessengerHelper.exe [2170104 2024-02-08] (Facebook, Inc. -> Meta Platforms, Inc.)
Task: {5C4D55AE-D06D-45BC-A96C-44BDE8187243} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5846F0E5-0884-470C-BD0B-F6BF74C3B9B8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {DE2AA4F3-D094-4B05-A85E-FE8DFD096B93} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {23FA26BB-C039-4F85-A5B3-F0136F87928D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A3F3DDBE-60B1-49B3-BB83-5116BC95DEC4} - System32\Tasks\NCH Software\PixillionDowngrade => C:\Program Files (x86)\NCH Software\Pixillion\pixillion.exe [3126968 2024-01-20] (NCH Software, Inc. -> NCH Software)
Task: {E9EAA716-1B75-4968-B734-18CD5B05E683} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {BD4395F8-86CE-425B-AD64-DCACBD9F5B81} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {1B1B0A1C-9A1E-40A9-857B-2E4FAA1D7438} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1694ECC5-1ADD-403E-BFA8-B4CA890C416D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {400C6EAA-B4C1-4D9F-AABA-E756695D4E52} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0D7E29A1-0063-4992-86CA-E71E7637D9B4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {223E454A-5C6B-46F2-9064-2396DF6B3D96} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A983045-28E6-4302-B607-5EB850694847} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3050377B-9BA6-4FC7-BCB6-BF6B27AECE0D} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {BF4601C6-D83B-4923-BEED-08DAD2855F0F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {11DE1254-6949-4811-BD2B-8F6128BE7E46} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130336 2024-02-09] (Microsoft Corporation -> Microsoft Corporation)
Task: {F78A7BA9-202C-4ABA-A1D1-3F64189C318C} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-760426430-1322398698-3842268529-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130336 2024-02-09] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-19] => Proxy is enabled.
ProxyServer: [S-1-5-19] => 127.0.0.1:8080
ProxyEnable: [S-1-5-20] => Proxy is enabled.
ProxyServer: [S-1-5-20] => 127.0.0.1:8080
ProxyServer: [S-1-5-21-760426430-1322398698-3842268529-1001] => 127.0.0.1:8080
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{23c03b2f-2a1b-40ac-97ab-a0e1451634ce}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{23c03b2f-2a1b-40ac-97ab-a0e1451634ce}\05166756C67237027416C616879702143333025374: [DhcpNameServer] 192.168.152.6
Tcpip\..\Interfaces\{23c03b2f-2a1b-40ac-97ab-a0e1451634ce}\255646D69602E4F64756021313020527F6025374: [DhcpNameServer] 192.168.193.86
Tcpip\..\Interfaces\{23c03b2f-2a1b-40ac-97ab-a0e1451634ce}\44166796467237027416C616879702142333025374: [DhcpNameServer] 192.168.187.15
Tcpip\..\Interfaces\{23c03b2f-2a1b-40ac-97ab-a0e1451634ce}\4556E64616F5836433445403: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{23c03b2f-2a1b-40ac-97ab-a0e1451634ce}\4556E64616F5836433445403: [DhcpDomain] tendawifi.com
Tcpip\..\Interfaces\{b5f4ac6c-0ec6-49e1-92b2-0dc8b9aefa8d}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b5f4ac6c-0ec6-49e1-92b2-0dc8b9aefa8d}: [DhcpDomain] tendawifi.com
Tcpip\..\Interfaces\{d22bb9ac-ab75-40ee-9000-0d9611b37417}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d22bb9ac-ab75-40ee-9000-0d9611b37417}: [DhcpDomain] tendawifi.com
Tcpip\..\Interfaces\{d22bb9ac-ab75-40ee-9000-0d9611b37417}\461627D6F64656A603: [DhcpNameServer] 192.168.150.237 192.168.3.1
Tcpip\..\Interfaces\{d22bb9ac-ab75-40ee-9000-0d9611b37417}\461627D6F64656A623: [DhcpNameServer] 192.168.150.237 192.168.1.1
Tcpip\..\Interfaces\{d22bb9ac-ab75-40ee-9000-0d9611b37417}\84551475549402058302C6964756: [DhcpNameServer] 192.168.43.1

Edge:
=======
DownloadDir: C:\Users\Lenovo\Downloads

FireFox:
========
FF DefaultProfile: v8ckfixm.default
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\v8ckfixm.default [2023-05-08]
FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122 [2024-02-15]
FF Session Restore: Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122 -> is enabled.
FF Extension: (To Google Translate) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2021-06-22]
FF Extension: (Playmaker – Balanced) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\Extensions\playmaker-balanced-colorway@mozilla.org.xpi [2023-05-24]
FF Extension: (Open bookmarks in new tab) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\Extensions\{02503e58-2fea-4dc4-893b-d35e36b92437}.xpi [2021-03-27]
FF Extension: (Open Link in New Tab) - C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\Extensions\{c064b4e8-a82e-415f-9d31-8516e613182e}.xpi [2021-03-27]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2020-02-04]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-12-14] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-12-14] (Adobe Inc. -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default [2024-02-15]
CHR Notifications: Default -> hxxps://androidforum.cz; hxxps://app.todoist.com; hxxps://aukro.cz; hxxps://best.aliexpress.com; hxxps://calendar.google.com; hxxps://cz.pinterest.com; hxxps://drive.google.com; hxxps://fastshare.cz; hxxps://gw.lightinthebox.com; hxxps://trading.1market.eu; hxxps://www.aliexpress.com; hxxps://www.kupi.cz; hxxps://www.messenger.com; hxxps://www.namaximum.cz; hxxps://www.temu.com
CHR HomePage: Default -> hxxp://www.google.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.google.com ... oogle.com/"
CHR Session Restore: Default -> is enabled.
CHR Extension: (Click to Tab) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebicmkkcnhdiglneianohfjapmanjoek [2020-03-15]
CHR Extension: (Adobe Acrobat: nástroje pro úpravu, převod a podpis souborů PDF) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-02-13]
CHR Extension: (Save as Shortcut) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\flehofiklehmnnolpjcamplcnmhgcbkk [2021-08-20]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-01-24]
CHR Extension: (Inoreader - RSS, News and Social Reader) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhglljfmpijadbpkalkclnhlncncdono [2019-12-10]
CHR Extension: (Tab Activate) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlmadbnpnnolpaljadgakjilggigioaj [2022-05-21]
CHR Extension: (Netpanel) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbidbgoheiddfilfipcobicemncfogno [2024-01-24]
CHR Extension: (Save as PDF) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2022-10-28]
CHR Extension: (gLinks) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\leanhbopikglhiejeckmchmobphcpphm [2019-12-10]
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-08-24]
CHR Extension: (Rozšíření Odběry RSS (od Googlu)) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2023-06-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Neater Bookmarks) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofgjggbjanlhbgaemjbkiegeebmccifi [2023-12-16]
CHR Extension: (Custom Cursor for Chrome™ - Vlastní kurzor) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogdlpmhglpejoiomcodnpjnfgcpmgale [2023-09-07]
CHR Extension: (RSS Feed Reader) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjaodmkngahhkoihejjehlcdlnohgmp [2022-04-01]
CHR HKU\S-1-5-21-760426430-1322398698-3842268529-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo]
CHR HKU\S-1-5-21-760426430-1322398698-3842268529-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-760426430-1322398698-3842268529-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-01-31] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-12-14] (Adobe Inc. -> Adobe Inc.)
R2 AtomicAlarmClock; C:\Program Files\Free Desktop Clock\timeserv.exe [2007040 2013-04-24] () [File not signed]
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe [553600 2020-04-01] (NZXT, Inc. -> )
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1082784 2024-01-11] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [153736 2017-03-02] (Canon Inc. -> CANON INC.)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\24.015.0121.0003\FileSyncHelper.exe [3515936 2024-02-09] (Microsoft Corporation -> Microsoft Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-13] (Malwarebytes Inc -> Malwarebytes)
S3 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [233456 2017-07-04] (Netgear Incorporated -> NETGEAR)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\24.015.0121.0003\OneDriveUpdaterService.exe [3853840 2024-02-09] (Microsoft Corporation -> Microsoft Corporation)
S4 SpyEmrgHealth; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencyHealth.exe [379192 2015-03-20] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S4 SpyEmrgSrv; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [3335008 2015-03-20] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
R2 TermService; C:\Windows\branding\mediasrv.png [56320 2014-11-11] (important) [File not signed] <==== ATTENTION (no ServiceDLL)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\NisSrv.exe [3294680 2020-03-20] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate(CPC)\Transfer\DriverInstall.exe [112560 2020-03-25] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 wuauserv; C:\Windows\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 478A5347; C:\ProgramData\478A5347\B79C6115.dll [X]
S2 FreemakeVideoCapture; "C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"
S4 Soda PDF Desktop 11 Creator; "C:\Program Files\Soda PDF Desktop 11\creator\common\creator-ws.exe" [X]

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R1 googledrivefs31357; C:\Windows\System32\DriverStore\FileRepository\googledrivefs31357.inf_amd64_a8bf31a168cf7d00\googledrivefs31357.sys [384712 2023-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2020-12-05] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2020-03-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
S3 Revoflt; C:\Windows\System32\DRIVERS\revoflt.sys [38400 2021-11-17] (Microsoft Windows Hardware Compatibility Publisher -> VS Revo Group)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SpyEmrg; C:\Windows\System32\Drivers\spyemrg.sys [17240 2011-04-21] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S3 SpyEmrgAccess; C:\Windows\System32\Drivers\spyemrg_access.sys [24408 2011-04-21] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
S3 SpyEmrgGuard; C:\Windows\System32\Drivers\spyemrg_guard.sys [19768 2015-03-09] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
R2 UI5IFS; C:\Program Files (x86)\Ashampoo\Ashampoo UnInstaller 10\IFS64.sys [40400 2020-11-25] (Ashampoo GmbH & Co. KG -> )
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [648872 2015-09-03] (Microsoft Windows Hardware Compatibility Publisher -> Vimicro Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [391392 2020-03-20] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-20] (Microsoft Windows -> Microsoft Corporation)
S0 fltsrv; system32\DRIVERS\fltsrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-02-15 14:30 - 2024-02-15 14:31 - 000035826 _____ C:\Users\Lenovo\Desktop\FRST.txt
2024-02-15 14:30 - 2024-02-15 14:30 - 000000000 ____D C:\Users\Lenovo\Desktop\FRST-OlderVersion
2024-02-15 14:21 - 2024-02-15 14:30 - 002389504 _____ (Farbar) C:\Users\Lenovo\Desktop\FRST64.exe
2024-02-15 13:15 - 2024-02-15 14:07 - 179253230 _____ C:\Users\Lenovo\Downloads\Nepotvrzeno 971888.crdownload
2024-02-15 12:27 - 2024-02-15 12:52 - 182857710 _____ C:\Users\Lenovo\Downloads\Nepotvrzeno 176583.crdownload
2024-02-14 23:08 - 2024-02-14 23:08 - 009090260 _____ C:\Users\Lenovo\Desktop\video-a016111e4c3985aae1b18188eadf462d-V.mp4
2024-02-14 23:08 - 2024-02-14 23:08 - 008670921 _____ C:\Users\Lenovo\Desktop\4_5888909236699662531.mp4
2024-02-14 23:08 - 2024-02-14 23:08 - 004565797 _____ C:\Users\Lenovo\Desktop\video-0f315a616e596c5e36d229c5c9742240-V.mp4
2024-02-14 23:08 - 2024-02-14 23:08 - 003354293 _____ C:\Users\Lenovo\Desktop\VID-20240120-WA0002.mp4
2024-02-14 23:08 - 2024-02-14 23:08 - 001937129 _____ C:\Users\Lenovo\Desktop\VID-20220914-WA0003.mp4
2024-02-14 23:08 - 2024-02-14 23:08 - 000557128 _____ C:\Users\Lenovo\Desktop\VID-20220920-WA0006.mp4
2024-02-10 07:41 - 2024-02-10 07:41 - 011425536 _____ (Martin Roubec ) C:\Users\Lenovo\Downloads\InstalRecepty (1).exe
2024-02-03 00:34 - 2024-02-03 00:34 - 000382507 _____ C:\Users\Lenovo\Downloads\ShellyForWindows_V1.1.zip
2024-02-03 00:31 - 2024-02-03 00:32 - 000000000 ____D C:\Users\Lenovo\Downloads\ShellyForWindows_V1.1
2024-02-01 08:48 - 2024-02-07 18:47 - 000000000 ____D C:\Users\Lenovo\Desktop\RENNER
2024-01-30 10:15 - 2024-01-30 10:26 - 000000000 ____D C:\Users\Lenovo\Downloads\Browser Manager
2024-01-28 17:39 - 2024-01-28 17:39 - 002110648 _____ (NCH Software) C:\Users\Lenovo\Downloads\pixpsetup.exe
2024-01-28 17:39 - 2024-01-28 17:39 - 000001379 _____ C:\Users\Public\Desktop\NCH Suite.lnk
2024-01-28 17:09 - 2024-01-28 10:35 - 002832750 _____ C:\Users\Lenovo\Downloads\File_Setup-7788_KéyC0de.rar
2024-01-26 10:39 - 2024-02-13 08:13 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2024-01-25 08:03 - 2024-01-25 08:03 - 080181441 _____ C:\Users\Lenovo\Downloads\manga-translator-2.1.1-windows-amd64.zip
2024-01-25 07:16 - 2024-02-13 08:01 - 000000000 ____D C:\Users\Lenovo\Downloads\Manga Translator 2.1.1
2024-01-24 01:14 - 2024-01-24 01:14 - 003483024 _____ C:\Users\Lenovo\Desktop\vystizny_Hnizdil.mp4

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2024-02-15 14:31 - 2020-05-18 18:13 - 000000000 ____D C:\FRST
2024-02-15 14:30 - 2023-12-02 20:06 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Messenger
2024-02-15 14:30 - 2023-12-02 20:06 - 000000000 ____D C:\Users\Lenovo\AppData\Local\Messenger
2024-02-15 14:30 - 2020-01-13 22:38 - 000000000 ____D C:\ProgramData\Bitmeter2
2024-02-15 14:28 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-02-15 14:19 - 2019-11-27 18:44 - 000000000 ___SD C:\Users\Lenovo\AppData\Roaming\Microsoft\Credentials
2024-02-15 13:54 - 2023-01-03 09:18 - 000000000 ____D C:\Windows\SystemTemp
2024-02-15 13:54 - 2019-12-10 17:22 - 000000000 ____D C:\Program Files (x86)\Google
2024-02-15 13:09 - 2019-12-12 04:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2024-02-15 12:25 - 2019-11-27 18:51 - 000000000 ____D C:\ProgramData\NVIDIA
2024-02-15 09:55 - 2020-02-22 00:45 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2024-02-15 09:55 - 2020-01-04 03:37 - 000000000 ____D C:\Program Files\CCleaner
2024-02-14 22:54 - 2019-12-10 18:45 - 000000000 ___RD C:\Users\Lenovo\Disk Google
2024-02-13 22:20 - 2019-12-10 17:23 - 000002307 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-02-13 08:17 - 2019-03-19 12:55 - 000718198 _____ C:\Windows\system32\perfh005.dat
2024-02-13 08:17 - 2019-03-19 12:55 - 000145242 _____ C:\Windows\system32\perfc005.dat
2024-02-13 08:17 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2024-02-13 08:17 - 2016-04-27 07:54 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2024-02-13 08:14 - 2022-10-31 13:17 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-02-13 08:14 - 2019-12-12 04:20 - 000000000 ____D C:\Users\Lenovo
2024-02-13 08:13 - 2022-11-09 17:36 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2024-02-13 08:13 - 2021-06-22 16:01 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2024-02-13 08:13 - 2021-02-27 08:23 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbird.lnk
2024-02-13 08:13 - 2019-12-28 00:28 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-02-13 08:13 - 2019-12-12 04:26 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2024-02-13 08:13 - 2019-11-27 19:03 - 000000000 __SHD C:\Users\Lenovo\IntelGraphicsProfiles
2024-02-13 08:12 - 2019-03-19 05:37 - 000786432 _____ C:\Windows\system32\config\BBI
2024-02-13 08:02 - 2023-12-02 20:06 - 000002336 _____ C:\Users\Lenovo\Desktop\Messenger.lnk
2024-02-13 07:23 - 2021-09-08 16:14 - 000002172 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-02-13 07:23 - 2021-09-08 16:14 - 000002014 _____ C:\Users\Default\Desktop\Google Slides.lnk
2024-02-13 07:23 - 2021-09-08 16:14 - 000002014 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2024-02-13 07:23 - 2021-09-08 16:14 - 000002002 _____ C:\Users\Default\Desktop\Google Docs.lnk
2024-02-12 23:50 - 2020-02-21 19:22 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2024-02-10 19:25 - 2023-09-14 02:01 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\Videoder
2024-02-10 07:43 - 2021-02-17 00:11 - 000001125 _____ C:\Users\Lenovo\Desktop\Recepty doma.lnk
2024-02-10 07:43 - 2021-02-17 00:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recepty doma
2024-02-10 07:43 - 2021-02-17 00:11 - 000000000 ____D C:\Program Files (x86)\Recepty doma
2024-02-09 22:05 - 2023-06-23 18:21 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2024-02-09 22:05 - 2023-06-23 18:21 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-02-09 22:05 - 2022-12-17 16:08 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-760426430-1322398698-3842268529-1001
2024-02-06 11:05 - 2020-02-29 12:31 - 000000000 ____D C:\Users\Lenovo\AppData\Local\MEGAsync
2024-02-02 20:40 - 2023-01-07 19:16 - 000003716 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{5C0C20A9-9348-4269-BBEC-43F7F7B2331E}
2024-02-02 20:40 - 2023-01-07 19:16 - 000003592 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{2BA3E877-26FE-4A85-82FA-9F5007A3BFFD}
2024-02-02 20:39 - 2022-11-15 19:19 - 000000000 ___RD C:\Users\Lenovo\Creative Cloud Files Personal Account ivosisko42@gmail.com 84C854235DD0FED60A495C27@AdobeID
2024-02-01 00:05 - 2023-11-05 10:46 - 000123229 _____ C:\Users\Lenovo\Desktop\Tlak.ods
2024-02-01 00:05 - 2023-06-15 13:08 - 000003844 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7}
2024-02-01 00:05 - 2023-06-15 13:08 - 000003720 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1}
2024-01-31 19:14 - 2023-11-04 10:43 - 000053808 _____ C:\Users\Lenovo\Desktop\Váha.ods
2024-01-29 10:43 - 2023-05-23 16:04 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-01-28 17:40 - 2022-11-15 19:28 - 000000000 ____D C:\Windows\system32\Tasks\NCH Software
2024-01-28 17:39 - 2023-09-28 07:49 - 000001369 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixillion Image Converter.lnk
2024-01-28 17:39 - 2023-09-28 07:49 - 000001357 _____ C:\Users\Public\Desktop\Pixillion Image Converter.lnk
2024-01-28 17:39 - 2023-06-17 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2024-01-28 15:21 - 2023-11-27 11:54 - 000049960 _____ C:\Users\Lenovo\Desktop\Zkoušky.ods
2024-01-24 18:00 - 2019-12-15 03:11 - 000000000 ____D C:\Users\Lenovo\AppData\Roaming\uTorrent
2024-01-24 18:00 - 2019-12-11 07:06 - 000000000 ____D C:\Users\Lenovo\AppData\Local\CrashDumps
2024-01-24 17:48 - 2022-11-09 17:36 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2024-01-24 17:48 - 2020-01-04 03:37 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2024-01-17 03:51 - 2022-10-28 15:30 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader.lnk
2024-01-17 01:24 - 2022-10-29 16:08 - 000002120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2024-01-17 01:24 - 2022-10-29 16:08 - 000002109 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk

==================== Files in the root of some directories ========

2019-12-11 07:41 - 2020-01-02 16:50 - 000000132 _____ () C:\Users\Lenovo\AppData\Roaming\Adobe PNG Format CS6 Prefs
2020-06-06 18:42 - 2020-06-06 18:42 - 000490835 _____ () C:\Users\Lenovo\AppData\Roaming\cbmtlrxtsp.txt
2020-04-01 07:32 - 2020-04-01 07:32 - 000004433 _____ () C:\Users\Lenovo\AppData\Roaming\for.js
2020-06-06 18:37 - 2020-06-06 18:37 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\gjgletdf.txt
2020-05-15 12:51 - 2020-05-15 12:51 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\jbghuhqrms.txt
2022-02-20 09:54 - 2022-01-26 13:04 - 000000701 _____ () C:\Users\Lenovo\AppData\Roaming\nefcodec.dll
2020-06-06 18:38 - 2020-06-06 18:38 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\njoyurb.txt
2020-05-15 13:00 - 2020-05-15 13:00 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\oicxmzkagb.txt
2020-06-06 18:43 - 2020-06-06 18:43 - 000490835 _____ () C:\Users\Lenovo\AppData\Roaming\prxuzodrbp.txt
2022-02-20 09:54 - 2022-02-20 09:54 - 000000019 _____ () C:\Users\Lenovo\AppData\Roaming\settingnef.ini
2020-06-06 18:37 - 2020-06-06 18:37 - 000490846 _____ () C:\Users\Lenovo\AppData\Roaming\tgkobfjkjt.txt
2020-03-30 13:27 - 2020-03-30 13:27 - 139261152 _____ (Wondershare Software ) C:\Users\Lenovo\AppData\Roaming\video-converter-ultimate_full495.exe
2020-05-07 23:48 - 2020-05-06 21:52 - 000177620 _____ () C:\Users\Lenovo\AppData\Roaming\windowsupdate
2020-02-21 18:38 - 2020-02-21 18:38 - 000000410 _____ () C:\Users\Lenovo\AppData\Local\oobelibMkey.log
2019-11-27 19:29 - 2019-11-27 19:29 - 000007605 _____ () C:\Users\Lenovo\AppData\Local\Resmon.ResmonCfg
2020-03-13 20:38 - 2020-03-13 20:38 - 000893608 _____ (AutoIt Team) C:\Users\Lenovo\AppData\Local\wintmp.exe

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11.02.2024
Ran by Lenovo (15-02-2024 14:31:47)
Running from C:\Users\Lenovo\Desktop
Microsoft Windows 10 Home Version 1903 18362.720 (X64) (2019-12-12 03:28:02)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-760426430-1322398698-3842268529-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-760426430-1322398698-3842268529-503 - Limited - Disabled)
Guest (S-1-5-21-760426430-1322398698-3842268529-501 - Limited - Disabled)
Lenovo (S-1-5-21-760426430-1322398698-3842268529-1001 - Administrator - Enabled) => C:\Users\Lenovo
WDAGUtilityAccount (S-1-5-21-760426430-1322398698-3842268529-504 - Limited - Disabled)
WgaUtilAcc (S-1-5-21-760426430-1322398698-3842268529-1003 - Administrator - Enabled) <==== ATTENTION

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\uTorrent) (Version: 3.6.0.46590 - BitTorrent Inc.)
4K Video Downloader+ (HKLM\...\{8BF6FB72-0B99-47C8-B515-C8E75908B106}) (Version: 1.3.0.0038 - Open Media LLC) Hidden
4K Video Downloader+ (HKLM-x32\...\{ecc33ed1-4838-4865-9923-2db6b1f8715d}) (Version: 1.3.0.38 - Open Media LLC)
Adobe Acrobat (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 23.008.20470 - Adobe Systems Incorporated)
Adobe Acrobat Reader - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 23.008.20470 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.1.0.587 - Adobe Inc.)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.4.0.63 - Adobe Inc.)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_1) (Version: 8.1 - Adobe Systems Incorporated)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_0_2) (Version: 21.0.2 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601067}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Aegisub 3.2.2 (HKLM\...\{24BC8B57-716C-444F-B46B-A3349B9164C5}_is1) (Version: 3.2.2 - Aegisub Team)
AIDA64 Extreme v5.99 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.99 - FinalWire Ltd.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.60.2180, 25.03.2020 - AIMP DevTeam)
Apeaksoft Free HEIC Converter 1.0.18 (HKLM-x32\...\{3937AA40-E034-4137-AC6C-B111D518FEE2}_is1) (Version: 1.0.18 - Apeaksoft Studio)
Ashampoo UnInstaller 10 (HKLM-x32\...\{4209F371-0DC3-AFDA-EAEC-44A980C0BBC5}_is1) (Version: 10.00.13 - Ashampoo GmbH & Co. KG)
Atomic Alarm Clock 6.3 beta (HKLM\...\Atomic Alarm Clock_is1) (Version: - Drive Software Company)
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
Avidemux VC++ 64bits (HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\{2799a4bd-577f-45de-a7eb-330cdd2c2ab0}) (Version: 2.7.5 - Mean)
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
BitMeter (HKLM-x32\...\BitMeter) (Version: - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 7.35.317.3 - Broadcom Corporation)
Canon G2010 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_G2010_series) (Version: 1.02 - Canon Inc.)
Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.70.4.30 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.4.0.16 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.20 - Piriform)
CCleaner Update Helper (HKLM-x32\...\{E4EAC0E2-A80B-479F-BA45-DCDA595C9A93}) (Version: 1.8.1583.3 - Piriform Software) Hidden
CodeTwo QR Code Desktop Reader & Generator (HKLM-x32\...\{AF7E31D6-980C-4788-B80C-47F1837CF44C}) (Version: 1.1.2.4 - CodeTwo)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
FastStone Image Viewer 7.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.4 - FastStone Soft)
Free Desktop Clock 3.0 (HKLM\...\Free Desktop Clock_is1) (Version: - Drive Software Company)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 86.0.9.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 121.0.6167.162 - Google LLC)
Google Password Manager (HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\999f44d80d35096af8c638a664313fbd) (Version: 1.0 - Google\Chrome)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
inSSIDer (HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\inSSIDer) (Version: 5.2.14 - MetaGeek, LLC)
Interactive Calendar v 2.2 (HKLM-x32\...\Interactive Calendar_is1) (Version: 2.2.0.0 - CSoftLab)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
LAV Filters 0.74.1 (HKLM-x32\...\lavfilters_is1) (Version: 0.74.1 - Hendrik Leppkes)
LibreOffice 6.4 Help Pack (Czech) (HKLM\...\{AE983296-8590-4589-84E0-80B8C30ED803}) (Version: 6.4.0.3 - The Document Foundation)
LibreOffice 7.1.1.2 (HKLM\...\{14E9DACB-8945-4B62-A19B-2C6245D48490}) (Version: 7.1.1.2 - The Document Foundation)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Messenger (HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\c1b3adcf-2068-5e8d-b25d-30ce588e3a4c) (Version: 205.0.564654621 - Facebook, Inc.)
Metric Collection SDK 35 (HKLM-x32\...\{C2B5B5B0-2545-4E94-B4BA-548D4BF0B196}) (Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.015.0121.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (HKLM-x32\...\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}) (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (HKLM-x32\...\{08D2E121-7F6A-43EB-97FD-629B44903403}) (Version: 1.00.0000 - Adobe) Hidden
MKVToolNix 43.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 43.0.0 - Moritz Bunkus)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 113.0.1 (x64 cs)) (Version: 113.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.8.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 115.7.0 (x64 cs)) (Version: 115.7.0 - Mozilla)
Mp3tag v3.01 (HKLM-x32\...\Mp3tag) (Version: 3.01 - Florian Heidenreich)
NAPS2 6.1.2 (HKLM-x32\...\NAPS2 (Not Another PDF Scanner 2)_is1) (Version: - Ben Olden-Cooligan)
NEF To JPG Converter V1 (HKLM-x32\...\NEF To JPG Converter_is1) (Version: - PDFZilla.com)
NETGEAR Genie (HKLM-x32\...\NETGEAR Genie) (Version: 2.4.60.00 - NETGEAR Inc.)
Nexus Ultimate 11.6 (HKLM-x32\...\Nexus Ultimate_is1) (Version: - )
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NZXT CAM 4.4.2 (HKLM\...\ac0666ae-ee66-5310-ac01-9d6348133b2d) (Version: 4.4.2 - NZXT, Inc.)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
PC Štítky 2.xx (HKLM-x32\...\PC Štítky 2.xx_is1) (Version: - LAN Consult, spol. s r.o.)
Pixillion Image Converter (HKLM-x32\...\Pixillion) (Version: 12.11 - NCH Software)
Planet - SoftLabel (HKLM-x32\...\{99E50E6B-8C7D-4D1D-A7CE-65128D76AD2C}) (Version: 1.1.61 - Abanet)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 231220 - Kakao Corp.)
Recepty doma (HKLM-x32\...\Recepty doma_is1) (Version: - Martin Roubec)
Revo Uninstaller Pro 5.0.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 5.0.7 - VS Revo Group, Ltd.)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.1 - Samsung)
Skype verze 8.99 (HKLM-x32\...\Skype_is1) (Version: 8.99 - Skype Technologies S.A.)
SoftPerfect Network Scanner version 7.2.6 (HKLM\...\{8083C3D9-F400-48FA-B060-CF55F25E2D4B}_is1) (Version: 7.2.6 - SoftPerfect Pty Ltd)
Speedtest by Ookla (HKLM\...\{708BC0F0-18DD-4951-A531-18E7CE473BCE}) (Version: 1.8.154.001 - Ookla)
Spy Emergency 2017-24.0.620 (HKLM\...\Spy Emergency_is1) (Version: - NETGATE Technologies s.r.o.)
Subtitle Edit 3.5.13 (HKLM\...\SubtitleEdit_is1) (Version: 3.5.13.0 - Nikse)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1048 - SUPERAntiSpyware.com)
Tisk Obalek 3.2.2.9 (HKLM-x32\...\Tisk Obalek_is1) (Version: 3.2.2.9 - Mgr. Radovan Kraus)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
Videoder 1.0.9 (HKLM-x32\...\808fc302-3d01-59ce-8094-e0443a55877e) (Version: 1.0.9 - GlennioTech)
VideoPad Video Editor (HKLM\...\VideoPad) (Version: 13.45 - NCH Software)
Vistumbler (HKLM-x32\...\Vistumbler) (Version: 10.6.5 - Vistumbler.net)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.12 - VideoLAN)
WhatsApp (Outdated) (HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\WhatsApp) (Version: 2.2326.10 - WhatsApp)
WiFi Scanner (HKLM-x32\...\{1224CE90-0AA3-41AF-B51F-61C8C796C401}) (Version: 0.8.626 - AccessAgility)
Winclipper (HKLM\...\{7E886962-795A-4BED-915C-D9DDDDC2472D}) (Version: 1.4.2.0 - Carson Shook)
Windows Installer (HKLM-x32\...\{798E61D4-8923-4E77-A74B-2DF264394A48}) (Version: 5.0.4 - AdvancedWindowsManager) Hidden
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Wondershare AllMyTube(Build 7.4.9.2) (HKLM-x32\...\AllMyTube_is1) (Version: 7.4.9.2 - Wondershare)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare UniConverter(Build 11.7.3.1) (HKLM-x32\...\UniConverter_is1) (Version: 11.7.3.1 - Wondershare Software)
YouTube (HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\f7dc6435b15fa8a7d14797683a3fd873) (Version: 1.0 - Google\Chrome)

Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2022-11-02] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2022-11-15] (Adobe Systems Incorporated)
Adobe Reader Touch -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobeReader_3.1.8.7675_x86__ynb6jyjzte8ga [2020-01-13] (Adobe Systems Incorporated)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.164.200.0_x86__kgqvnymyfvs32 [2020-03-19] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.1.4081.0_x64__rz1tebttyb220 [2020-02-04] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-12] (Microsoft Studios) [MS Ad]
Microsoft Zprávy -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20503.0_x64__8wekyb3d8bbwe [2020-03-06] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2020.229.1.0_x64__8kea50m9krsh2 [2020-03-06] (Code Spark)
One Task -> C:\Program Files\WindowsApps\64885BlueEdge.OneTask_2018.1124.1.0_x64__8kea50m9krsh2 [2020-03-13] (Code Spark)
Skype -> C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c [2020-02-06] (Skype)
WiFi Analyzer -> C:\Program Files\WindowsApps\19965MATTHAFNER.WIFIANALYZER_2.5.1.0_x64__gs5k5vmxr2ste [2020-01-14] (Matt Hafner)
Wifi Analyzer and Scanner -> C:\Program Files\WindowsApps\28877WebProvider.WifiAnalyzerandScanner_1.2.1.0_x64__gdrx0g078t8zg [2019-12-29] (WebProvider)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{0AC68F4B-F9F7-475B-A5B4-383171479500} -> [MEGA] => C:\Users\Lenovo\Documents\MEGA [2020-02-29 12:36]
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-48A9EC2C2619} -> [Creative Cloud Files Personal Account ivosisko42@gmail.com 84C854235DD0FED60A495C27@AdobeID] => C:\Users\Lenovo\Creative Cloud Files Personal Account ivosisko42@gmail.com 84C854235DD0FED60A495C27@AdobeID [2022-11-15 19:19]
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{9f0c474b-de34-42ec-af28-eb091c7982ff}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll => No File
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{9f12f67e-7f6b-40d9-b09a-cf931d0ad4c3}\localserver32 -> C:\Program Files (x86)\NCH Software\VideoPad\videopad.exe (NCH Software, Inc. -> NCH Software)
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{D5621537-2364-45C2-9F3F-C2329CFFF29D} -> [MEGA] => C:\Users\Lenovo\Documents\MEGA [2020-02-29 12:36]
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\86.0.9.0\drivefsext.dll [2024-02-13] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\86.0.9.0\drivefsext.dll [2024-02-13] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\86.0.9.0\drivefsext.dll [2024-02-13] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\86.0.9.0\drivefsext.dll [2024-02-13] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-29] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-29] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-29] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.015.0121.0003\FileSyncShell64.dll [2024-02-09] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-29] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-05-12] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\86.0.9.0\drivefsext.dll [2024-02-13] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-03-27] (Florian Heidenreich) [File not signed]
ContextMenuHandlers1: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-03-27] (Florian Heidenreich) [File not signed]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.015.0121.0003\FileSyncShell64.dll [2024-02-09] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-05-12] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\86.0.9.0\drivefsext.dll [2024-02-13] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Lenovo\AppData\Local\MEGAsync\ShellExtX64.dll [2024-02-06] (Mega Limited -> )
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-03-27] (Florian Heidenreich) [File not signed]
ContextMenuHandlers4: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.015.0121.0003\FileSyncShell64.dll [2024-02-09] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\86.0.9.0\drivefsext.dll [2024-02-13] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-29] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2022-04-04] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [SpyEmergency] -> {2E9FFF5C-4375-494d-951F-098BAA42239E} => C:\Program Files\NETGATE\Spy Emergency\menuext.dll [2013-03-11] (NETGATE Technologies s.r.o. -> NETGATE Technologies s.r.o.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Lenovo\Desktop\Google Password Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Lenovo\Desktop\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kajebgjangihfbkjfejcanhanjmmbcfd\Google Password Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\1Market.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=cjmocagfbhnkhecpkfdddgicbllppleb
ShortcutWithArgument: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Google Password Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Lenovo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Password Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Lenovo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Password Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd

==================== Loaded Modules (Whitelisted) =============

2020-02-06 19:13 - 2016-08-09 12:57 - 001886720 _____ () [File not signed] C:\Program Files\Atomic Alarm Clock\Clock.dll
2021-03-24 08:48 - 2019-11-24 12:00 - 000513536 _____ () [File not signed] C:\Users\Lenovo\Downloads\INSTALACE\RQ Money\RQMONEY_1_3\sqlite3.dll
2014-11-11 12:00 - 2014-11-11 12:00 - 000967168 _____ () [File not signed] c:\windows\branding\mediasvc.png
2021-09-09 06:17 - 2021-09-09 06:17 - 000021504 _____ (Adobe Systems Inc.) [File not signed] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\cs_cz\Acrobat Elements\ContextMenuShim64.cze
2020-03-27 17:50 - 2020-03-27 17:50 - 000398336 _____ (Florian Heidenreich) [File not signed] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2014-11-11 12:00 - 2014-11-11 12:00 - 000056320 _____ (important) [File not signed] c:\windows\branding\mediasrv.png
2020-05-18 11:43 - 2020-05-18 11:43 - 000040960 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\rfxvmt.dll
2020-02-06 19:13 - 2013-02-19 18:16 - 000223744 _____ (Un4seen Developments) [File not signed] C:\Program Files\Atomic Alarm Clock\bass.dll
2019-12-15 04:18 - 2011-05-26 18:20 - 000025088 _____ (Winstep Software Technologies) [File not signed] C:\Program Files (x86)\Winstep\WsxMMTimer.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-16] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: No Name -> {9703de71-ce0d-11e8-9c83-40167e6e7313} -> No File
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-16] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-01-13] (Adobe Inc. -> Adobe Systems Incorporated)
IE Session Restore: HKU\S-1-5-21-760426430-1322398698-3842268529-1001 -> is enabled.

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 08:24 - 2023-05-20 20:29 - 000000101 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activation.freemake.com
127.0.0.1 www.activation.freemake.com

2019-12-10 23:22 - 2020-01-01 20:30 - 000000446 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter;;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKCU\Environment\\Path -> C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Windows\System32\OpenSSH\;C:\Users\Lenovo\AppData\Local\Microsoft\WindowsApps
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 0) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-760426430-1322398698-3842268529-1001\...\StartupApproved\Run: => "CCXProcess"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{51CD8B13-C161-4AA3-9D9C-ECCA1E9127C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E93BA065-E320-40F8-9037-D61F84DCCA17}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8A5D56B0-A3AA-4D45-9A96-6BDA5305D721}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CCBBDA7F-E030-4D56-B4A9-3FB611C4B13C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{69E0CBFD-18B6-4005-9FD0-A0668760395C}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe (NETGEAR TAIWAN CO., LTD -> NETGEAR Inc.)
FirewallRules: [UDP Query User{FDF815F9-202B-4C72-9DC4-2F7267662A34}C:\program files (x86)\netgear genie\bin\netgeargenie.exe] => (Allow) C:\program files (x86)\netgear genie\bin\netgeargenie.exe (NETGEAR TAIWAN CO., LTD -> NETGEAR Inc.)
FirewallRules: [TCP Query User{E4B9757F-1A41-4FD0-BBAC-5AF4CEC63EEF}C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe] => (Allow) C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe (Kastelo AB -> The Syncthing Authors)
FirewallRules: [UDP Query User{0AEB44B9-512C-4883-93FF-AC00848676D0}C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe] => (Allow) C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe (Kastelo AB -> The Syncthing Authors)
FirewallRules: [{2AD33F00-D99B-4A75-B96A-0B3A2C590268}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1C653BB6-22A9-498C-9A9E-BD9FC8D11DD3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{69CC26C3-C176-4998-864F-D6238211EF3B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{594CE807-87B7-4A0C-8C3F-2CA276A9033B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{C2CA6D5F-6D93-4143-AEF8-4F567BF6B6D8}C:\users\lenovo\appdata\anydesk.exe] => (Block) C:\users\lenovo\appdata\anydesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [UDP Query User{AC70804A-2780-4E53-A515-6D72A843DCD4}C:\users\lenovo\appdata\anydesk.exe] => (Block) C:\users\lenovo\appdata\anydesk.exe (philandro Software GmbH -> philandro Software GmbH)
FirewallRules: [TCP Query User{EE542E4B-1D2E-4A70-A7D9-7E289BCB200B}C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe] => (Block) C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe (Kastelo AB -> The Syncthing Authors)
FirewallRules: [UDP Query User{5F3C8115-83D4-4FD3-988B-9B5F3CBDAFA2}C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe] => (Block) C:\program files\syncthing\syncthing-windows-amd64-v1.2.1\syncthing.exe (Kastelo AB -> The Syncthing Authors)
FirewallRules: [{FB958E14-041F-4A53-B444-57EEC02D7A60}] => (Allow) C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{49D44BF3-1090-4AAA-9A6C-2AE635E315F6}] => (Allow) C:\Users\Lenovo\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{388A03EB-C8D7-49C9-B933-4E1ED83B133B}C:\program files (x86)\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [UDP Query User{6CBD64CD-7B23-49A6-8CBF-BD92FD526019}C:\program files (x86)\java\jre1.8.0_251\launch4j-tmp\frd.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_251\launch4j-tmp\frd.exe (Oracle America, Inc. -> Oracle Corporation)
FirewallRules: [{0875530A-F03B-4426-84FD-A998ED2A2337}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5ED983EB-FB69-4B8C-9723-582FF87ECDD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{05D0274B-4C6A-4B17-9A42-0C1082BCBE2C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{11952E1A-D31F-4AC6-9D48-D1F8804E898F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7E9B9F37-9659-42CD-882E-C3CEA8518031}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{CA1ADAF0-C506-4D23-9A58-4E7290421AA9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6926C79B-ED8A-4C84-9E55-0195CDD5F40E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{97E0D3AE-2112-4B64-974D-67410E73AF3F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================


==================== Faulty Device Manager Devices ============

Name: Android ADB Interface
Description: Android ADB Interface
Class Guid: {3f966bd9-fa04-4ec5-991c-d326973b5128}
Manufacturer: Google, Inc.
Service: WinUSB
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: ========================

Application errors:
==================
Error: (02/15/2024 02:30:18 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Advanced Windows Manager.

Program: Advanced Windows Manager
Soubor:

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: 00000000
Typ disku: 0

Error: (02/15/2024 02:30:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AdvancedWindowsManager.exe, verze: 1.1.0.0, časové razítko: 0x627ab02a
Název chybujícího modulu: AdvancedWindowsManager.exe, verze: 1.1.0.0, časové razítko: 0x627ab02a
Kód výjimky: 0xc000001d
Posun chyby: 0x00000000000041d5
ID chybujícího procesu: 0x4654
Čas spuštění chybující aplikace: 0x01da60131e12c4df
Cesta k chybující aplikaci: C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe
ID zprávy: 4868e018-3745-400a-8123-a97da371021f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/15/2024 02:29:25 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Advanced Windows Manager.

Program: Advanced Windows Manager
Soubor:

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: 00000000
Typ disku: 0

Error: (02/15/2024 02:29:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AdvancedWindowsManager.exe, verze: 1.1.0.0, časové razítko: 0x627ab02a
Název chybujícího modulu: AdvancedWindowsManager.exe, verze: 1.1.0.0, časové razítko: 0x627ab02a
Kód výjimky: 0xc000001d
Posun chyby: 0x00000000000041d5
ID chybujícího procesu: 0x431c
Čas spuštění chybující aplikace: 0x01da6012fe80f1e7
Cesta k chybující aplikaci: C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe
ID zprávy: 2a46e710-b7e0-483b-a4ab-22d042b1cc30
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/15/2024 02:27:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program FRST64.exe verze 27.1.2024.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2c2c

Čas spuštění: 01da60125d953df8

Čas ukončení: 11

Cesta k aplikaci: C:\Users\Lenovo\Desktop\FRST64.exe

ID hlášení: ba426b6a-cbe9-48ab-989e-6719b803a876

Úplný název balíčku s chybou:

ID aplikace relativní podle balíčku s chybou:

Typ zablokování: Unknown

Error: (02/15/2024 02:25:18 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Advanced Windows Manager.

Program: Advanced Windows Manager
Soubor:

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: 00000000
Typ disku: 0

Error: (02/15/2024 02:25:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AdvancedWindowsManager.exe, verze: 1.1.0.0, časové razítko: 0x627ab02a
Název chybujícího modulu: AdvancedWindowsManager.exe, verze: 1.1.0.0, časové razítko: 0x627ab02a
Kód výjimky: 0xc000001d
Posun chyby: 0x00000000000041d5
ID chybujícího procesu: 0x3c18
Čas spuštění chybující aplikace: 0x01da60126b42d18a
Cesta k chybující aplikaci: C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe
ID zprávy: 7b866890-7174-4771-8deb-77bc21c61116
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/15/2024 02:24:25 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Advanced Windows Manager.

Program: Advanced Windows Manager
Soubor:

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: 00000000
Typ disku: 0


System errors:
=============
Error: (02/15/2024 02:31:03 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou:
Systém nemůže nalézt uvedený soubor.

Error: (02/15/2024 02:31:02 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/15/2024 02:29:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou:
Systém nemůže nalézt uvedený soubor.

Error: (02/15/2024 02:29:02 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/15/2024 02:27:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou:
Systém nemůže nalézt uvedený soubor.

Error: (02/15/2024 02:27:02 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.

Error: (02/15/2024 02:25:02 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba wuauserv byla ukončena s následující chybou:
Systém nemůže nalézt uvedený soubor.

Error: (02/15/2024 02:25:02 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {E60687F7-01A1-40AA-86AC-DB1CBF673334} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
================
Date: 2020-03-21 22:41:36.104
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {98657F1E-8680-4CCE-94A1-A077C5F66E0C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-03-19 20:57:46.592
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {FE8D7ADF-2D72-431B-8B91-AB63E279CA6A}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-03-18 19:47:18.566
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {36D017AC-1B3D-4AA8-8D42-0564EC175D29}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-03-18 18:21:07.747
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Tiggre!rfn
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\Lenovo\AppData\Local\Temp\Kill.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-AJUSQ3V\Lenovo
Název procesu: C:\Users\Lenovo\Desktop\Patch\Patch\Acronis True Image 2020 v24 Patch.exe
Verze bezpečnostních informací: AV: 1.311.1479.0, AS: 1.311.1479.0, NIS: 1.311.1479.0
Verze modulu: AM: 1.1.16800.2, NIS: 1.1.16800.2

Date: 2020-03-18 14:17:52.463
Description:
Antivirová ochrana v programu Windows Defender zjistil podezřelé chování.
Název: Behavior:Win32/ModifiedBootRecord
Závažnost: Nízké
Kategorie: Podezřelé chování
Nalezená cesta: file:_C:\Users\Lenovo\AppData\Local\Temp\un5005.exe; process:_1932
Původ detekce: Místní počítač
Typ detekce: Podezřelý
Zdroj detekce: Ochrana v reálném čase
Stav: Provádění
Uživatel: DESKTOP-AJUSQ3V\Lenovo
Název procesu: C:\Users\Lenovo\AppData\Local\Temp\un5005.exe
ID bezpečnostních informací: 23858570787236
Verze bezpečnostních informací: AV: 1.311.1454.0, AS: 1.311.1454.0
Verze modulu: 1.1.16800.2
Štítek věrnosti: Střední
Název cílového souboru:

==================== Memory info ===========================

BIOS: LENOVO 7ACN24WW 06/25/2013
Motherboard: LENOVO G700
Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 46%
Total physical RAM: 16263.35 MB
Available physical RAM: 8687.11 MB
Total Virtual: 22407.35 MB
Available Virtual: 12859.46 MB

==================== Drives ================================

Drive c: (MASTER) (Fixed) (Total:931.02 GB) (Free:796.78 GB) (Model: Samsung SSD 860 QVO 1TB) NTFS
Drive d: (DÝCHÁNKY) (Removable) (Total:117.2 GB) (Free:33.18 GB) exFAT
Drive g: (Google Drive) (Fixed) (Total:100 GB) (Free:73.49 GB) (Model: Samsung SSD 860 QVO 1TB) FAT32

\\?\Volume{d5ebbff9-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: D5EBBFF9)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (Size: 117.2 GB) (Disk ID: AD0A47E7)
Partition 1: (Not Active) - (Size=117.2 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

Zdravím!
Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Interactive Calendar.lnk [2023-12-05]
ShortcutTarget: Interactive Calendar.lnk -> C:\Program Files (x86)\Interactive Calendar\InteractiveCalendar.exe (No File)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\One Calendar.lnk [2020-03-13]
ShortcutTarget: One Calendar.lnk -> (No File)
ask: {E561139A-2CED-4F25-9C02-43F16393AE3B} - System32\Tasks\AdvancedWindowsManager #8 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {E07FDB4C-BAD8-497F-8F27-FE7C4F8D15CD} - System32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
Task: {58D1CBAC-87A0-4D2F-9A89-CF757BA8E2B8} - System32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
S3 wuauserv; C:\Windows\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 478A5347; C:\ProgramData\478A5347\B79C6115.dll [X]
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1}
C:\Users\Lenovo\AppData\Roaming\for.js
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{9f0c474b-de34-42ec-af28-eb091c7982ff}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll => No File
BHO-x32: No Name -> {9703de71-ce0d-11e8-9c83-40167e6e7313} -> No File
C:\Users\Lenovo\AppData\Local\Temp\Kill.exe

EmptyTemp:
Hosts:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Fix result of Farbar Recovery Scan Tool (x64) Version: 11.02.2024
Ran by Lenovo (15-02-2024 15:16:23) Run:5
Running from C:\Users\Lenovo\Desktop
Loaded Profiles: Lenovo
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [] => [X]
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Interactive Calendar.lnk [2023-12-05]
ShortcutTarget: Interactive Calendar.lnk -> C:\Program Files (x86)\Interactive Calendar\InteractiveCalendar.exe (No File)
Startup: C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\One Calendar.lnk [2020-03-13]
ShortcutTarget: One Calendar.lnk -> (No File)
ask: {E561139A-2CED-4F25-9C02-43F16393AE3B} - System32\Tasks\AdvancedWindowsManager #8 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION
Task: {E07FDB4C-BAD8-497F-8F27-FE7C4F8D15CD} - System32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
Task: {58D1CBAC-87A0-4D2F-9A89-CF757BA8E2B8} - System32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [155432 2019-12-10] (Google Inc -> Google LLC)
S3 wuauserv; C:\Windows\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 wuauserv; C:\Windows\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S2 478A5347; C:\ProgramData\478A5347\B79C6115.dll [X]
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7}
C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1}
C:\Users\Lenovo\AppData\Roaming\for.js
CustomCLSID: HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{9f0c474b-de34-42ec-af28-eb091c7982ff}\InprocServer32 -> C:\Program Files\Mozilla Thunderbird\notificationserver.dll => No File
BHO-x32: No Name -> {9703de71-ce0d-11e8-9c83-40167e6e7313} -> No File
C:\Users\Lenovo\AppData\Local\Temp\Kill.exe

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Interactive Calendar.lnk => moved successfully
"C:\Program Files (x86)\Interactive Calendar\InteractiveCalendar.exe" => not found
C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\One Calendar.lnk => moved successfully
"ShortcutTarget: One Calendar.lnk -> (No File)" => not found
ask: {E561139A-2CED-4F25-9C02-43F16393AE3B} - System32\Tasks\AdvancedWindowsManager #8 => C:\Program Files (x86)\AW Manager\Windows Manager\AdvancedWindowsManager.exe [697208 2022-05-11] (Microleaves LTD -> Advanced Windows Manager) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E07FDB4C-BAD8-497F-8F27-FE7C4F8D15CD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E07FDB4C-BAD8-497F-8F27-FE7C4F8D15CD}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{58D1CBAC-87A0-4D2F-9A89-CF757BA8E2B8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{58D1CBAC-87A0-4D2F-9A89-CF757BA8E2B8}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7}" => removed successfully
HKLM\System\CurrentControlSet\Services\wuauserv => removed successfully
wuauserv => service removed successfully
wuauserv => service not found.
HKLM\System\CurrentControlSet\Services\478A5347 => removed successfully
478A5347 => service removed successfully
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{6E933210-F51B-4F26-B3E1-E2CC2C25E0D7}" => not found
"C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{EF554593-4B87-4539-881B-0BA0CDED23D1}" => not found
C:\Users\Lenovo\AppData\Roaming\for.js => moved successfully
HKU\S-1-5-21-760426430-1322398698-3842268529-1001_Classes\CLSID\{9f0c474b-de34-42ec-af28-eb091c7982ff} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9703de71-ce0d-11e8-9c83-40167e6e7313} => removed successfully
"C:\Users\Lenovo\AppData\Local\Temp\Kill.exe" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 35899724 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 9655442 B
Edge => 1019996 B
Chrome => 636206529 B
Firefox => 99755885 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 2396 B
NetworkService => 2396 B
Lenovo => 285828291 B
WgaUtilAcc => 285828291 B

RecycleBin => 1036291287 B
EmptyTemp: => 2.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:16:51 ====

Smazáno. Zrychlilo se načítání?

Díky....ano, zdá se, že noťas opět nabral dech....mohu se zeptat co mu ubližovalo? Už je to 2 dny, co to zlobilo a ono to koresponduje s momentem, kdy jsem se snažil naistalovat antivir ESET a byly přitom komplikace s tím, že mám zastaralé Windows....

Chtěl bych si nainstalovat Windows 11, ale bojím se toho....je ve spolupráci s www.neslape.cz nebo s někým jiným, kdy se k mému noťasu vzdáleně připojí a pomůže mi s tím?

To jsem rád. Co se týká té instalace se musíte zeptat u neslape. Neznám jejich možnosti a kapacity. Dokud ovšem nebude hotová instalace, není možné se k NB připojit. Nejprve musí být funkční systém a to bude jen tehdy pokud hw konfigurace vašeho NB umožní tuto instalaci.

Tak bohužel, jásot byl předčasný, na druhý den se opět stalo načítání stránek a pohyb v nich extrémně zdlouhavé, takže něco není v noťasu OK. Co mám, Rudy, udělat?

Ještě zkusíme spustit postupně tyto utility:

1. 1. Stahnete Zoek.exe https://www.edisk.cz/stahni/21334/zoek.rar_1.3MB.html/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: https://www.stahuj.cz/utility_a_ostatni ... oval-tool/
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

Zdravím, trochu jsem se zatoulal, ale nakonec jsem se z toho vymotal. Tak zde jsou logy:



JRT

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 10 Home x64
Ran by Lenovo (Administrator) on 17.02.2024 at 15:44:40,14
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 2

Successfully deleted: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\a7v043dk.default-release-1607556120122\extensions\staged (Folder)
Successfully deleted: C:\Users\Lenovo\Desktop\youtube.lnk (Shortcut)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.02.2024 at 15:48:24,17
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

OK. A Zoek?

ZOEK je jako první v dokumentu zoek.odt - byl tak velký (počtem znaků), že mi ho prostor pro odpověď odmítl vzít

OK. Obě utility smazaly, co bylo možné. Jak to vypadá nyní s načítáním stránek?

Díky za tvoji trpělivost - zatím (od toho čištění) se to tváří dobře, jen abych to nezakřikl. Pojďme se domluvit, že to zatím nebudeš zavírat a já to budu pár dnů testovat a po těch pár dnech si jeden nebo druhý napíšeme

Díky, Ivo.

OK, nechám otevřené a pak se ozvěte.