Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-08.2024
Ran by msuro (05-09-2024 16:16:15)
Running from C:\Users\msuro\Downloads
Microsoft Windows 11 Home Version 23H2 22631.4037 (X64) (2024-08-21 23:02:24)
Boot Mode: Safe Mode (minimal)
==========================================================


==================== Accounts: =============================


(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-3248026489-3966559180-2484514055-500 - Administrator - Disabled)
Admin_CZ (S-1-5-21-3248026489-3966559180-2484514055-1002 - Administrator - Enabled) => C:\Users\Admin_CZ
DefaultAccount (S-1-5-21-3248026489-3966559180-2484514055-503 - Limited - Disabled)
Guest (S-1-5-21-3248026489-3966559180-2484514055-501 - Limited - Disabled)
msuro (S-1-5-21-3248026489-3966559180-2484514055-1001 - Administrator - Enabled) => C:\Users\msuro
WDAGUtilityAccount (S-1-5-21-3248026489-3966559180-2484514055-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Disabled - Up to date) {0D452135-A081-B000-D6B6-132E52638543}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Out of date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AV: McAfee (Disabled - Up to date) {0BE13B34-492A-21C0-AE43-C1742279CCB6}
FW: McAfee (Enabled) {33DABA11-0345-2098-851C-6841DCAA8BCD}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-1033-7760-BC15014EA700}) (Version: 24.003.20054 - Adobe)
ANT Drivers Installer x64 (HKLM\...\{0E58844F-7FF7-4CD2-AAE2-CE703BC68F52}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.8.6127 - Avast Software)
Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Balíček ovladače systému Windows - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Balíček ovladače systému Windows - Zebra Technologies Inc. (WinUSB) WinUSB devices  (03/31/2018 1.0.0.6) (HKLM\...\45BED3BBD4732BEB270707C3769191B9C55708E6) (Version: 03/31/2018 1.0.0.6 - Zebra Technologies Inc.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.0.1.285 - Bitdefender)
Blackmagic RAW Common Components (HKLM\...\{853720AF-81BE-4B04-9700-F32A053917B6}) (Version: 4.2 - Blackmagic Design)
DaVinci Resolve (HKLM\...\{8832D798-AF5F-4355-B29C-D277148E7A5E}) (Version: 19.0.00069 - Blackmagic Design)
DaVinci Resolve Control Panels (HKLM\...\{3739CA49-792F-4F1F-9B76-42DFBBBED27E}) (Version: 2.3.0.0 - Blackmagic Design)
DaVinci Resolve Renderer (HKLM\...\{BBFE867F-2024-4D63-95F5-7262BC2FB217}) (Version: 19.0.00069 - Blackmagic Design)
Dell Peripheral Manager (HKLM\...\Dell Peripheral Manager) (Version: 1.7.6 - Dell Inc.)
Elevated Installer (HKLM-x32\...\{7E7A6576-011C-4CF5-A5CA-AA144A725DBF}) (Version: 7.23.0.0 - Garmin Ltd or its subsidiaries) Hidden
Epic Games Launcher (HKLM-x32\...\{B85FAA6E-A9AA-4655-9029-E1A4EDC05E1A}) (Version: 1.3.93.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{57A956AB-4BCC-45C6-9B40-957E4E125568}) (Version: 2.0.44.0 - Epic Games, Inc.)
Evernote 10.102.4 (HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\e4251011-875e-51f3-a464-121adaff5aaa) (Version: 10.102.4 - Evernote Corporation)
Fairlight Audio Accelerator Utility (HKLM\...\FairlightAudioAccelerator_is1) (Version: 1.0.15 - Blackmagic Design)
Garmin Express (HKLM-x32\...\{135ceafa-3701-43b0-84bf-870018df80ee}) (Version: 7.23.0.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{FCD51A02-BD93-475D-902D-49FD51F2F6B8}) (Version: 7.23.0.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 128.0.6613.115 - Google LLC)
Intel(R) Extreme Tuning Utility SDK (HKLM\...\{3D3AC3C2-BD85-450E-BD2B-EF0E878B1E5F}_is1) (Version: 7.12.0.29 - Lenovo)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Legion Arena (HKLM-x32\...\Legion Arena_is1) (Version: 1.9.0.26 - Lenovo Group Ltd.)
Lenovo Now (HKLM-x32\...\Lenovo Now) (Version: 3.13.1.2 - Lenovo Group Ltd.)
Malwarebytes version 5.1.9.124 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.1.9.124 - Malwarebytes)
Microsoft .NET Host - 8.0.0 (x64) (HKLM\...\{D44822A8-FC28-42FC-8B1D-21A78579FC79}) (Version: 64.0.4211 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.0 (x64) (HKLM\...\{3A706840-2882-423C-90EB-B31545E2BC7A}) (Version: 64.0.4211 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.0 (x64) (HKLM\...\{76DEEAB3-122F-4231-83C7-0C35363D02F9}) (Version: 64.0.4211 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 128.0.2739.63 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 128.0.2739.63 - Microsoft Corporation)
Microsoft Office Standard 2019 - cs-cz (HKLM\...\Standard2019Volume - cs-cz) (Version: 16.0.10413.20020 - Microsoft Corporation)
Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Volume - en-us) (Version: 16.0.10413.20020 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\OneDriveSetup.exe) (Version: 24.161.0811.0001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3248026489-3966559180-2484514055-1002\...\OneDriveSetup.exe) (Version: 22.012.0117.0003 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.19202 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.40.33810 (HKLM-x32\...\{5af95fd8-a22e-458f-acee-c61bd787178e}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.40.33810 (HKLM-x32\...\{47109d57-d746-4f8b-9618-ed6a17cc922b}) (Version: 14.40.33810.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.40.33810 (HKLM-x32\...\{5EA6C998-D5AC-4ED9-89C3-9F25B17CCD3D}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.40.33810 (HKLM-x32\...\{0C3457A0-3DCE-4A33-BEF0-9B528C557771}) (Version: 14.40.33810 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.0 (x64) (HKLM\...\{113C0ADC-B9BD-4F95-9653-4F5BC540ED03}) (Version: 64.0.5329 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.0 (x64) (HKLM-x32\...\{17316079-d65a-4f25-a9f3-56c32781b15d}) (Version: 8.0.0.33101 - Microsoft Corporation)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.4.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.0.1 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 560.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 560.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA USBC Driver 1.52.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.52.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10413.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10413.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10413.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.10413.20020 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10413.20020 - Microsoft Corporation) Hidden
spacedesk Windows DRIVER (HKLM\...\{1315C629-9D5B-4B6C-9FD4-7AE689B30A1F}) (Version: 2.1.22.0 - datronicsoft Inc.)
StageNow (HKLM-x32\...\{A9A73A7C-6A08-4866-8B91-724D5A97051A}) (Version: 5.13.0 - Zebra Technologies Corp) Hidden
StageNow (HKLM-x32\...\InstallShield_{A9A73A7C-6A08-4866-8B91-724D5A97051A}) (Version: 5.13.0 - Zebra Technologies Corp)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tobii Experience Software For Windows (HKLM\...\{50584CC5-E289-4591-8091-25AF533AE85A}) (Version: 4.74.0.32957 - Tobii AB)
Tobii Experience Software For Windows (LenovoYX80) (HKLM\...\{267FC4F8-7110-4AB7-831C-3B77BCEB9C59}) (Version: 4.182.0.29391 - Tobii AB)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 11.03 - Ghisler Software GmbH)
Velocity Console (HKLM-x32\...\{6F66C136-5D1C-47C6-BC99-742FADAE8488}) (Version: 2.1.25.22273 - Ivanti)
Video Village Plugins (HKLM\...\{ECE757CB-5BBC-4CBD-AAA6-A0BEC9FEADC1}) (Version: 1.6.5.0 - Video Village) Hidden
Video Village Plugins (HKLM\...\{ECE757CB-5BBC-4CBD-AAA6-A0BEC9FEADC1}.msq) (Version: 1.6.5 - Video Village)
ViGEm Bus Driver (HKLM\...\{966606F3-2745-49E9-BF15-5C3EAA4E9077}) (Version: 1.22.0 - Nefarius Software Solutions e.U.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
X-Rite Color Assistant 2.53.0 (HKLM-x32\...\{6DCFB107-4604-4AA8-BEA6-CC80BCF0B3E4}_is1) (Version: 2.53.0 - X-Rite, Inc)
Zebra 123Scan (64bit) (HKLM\...\{1513039A-4B67-4DE4-A01A-E46167C80E5B}) (Version: 6.00.0021 - Zebra Technologies) Hidden
Zebra 123Scan (64bit) (HKLM-x32\...\InstallShield_{1513039A-4B67-4DE4-A01A-E46167C80E5B}) (Version: 6.00.0021 - Zebra Technologies)
Zebra CoreScanner Driver (64bit) (HKLM\...\{5163782B-50EB-4A31-8034-0E61E090EE4B}) (Version: 3.07.0050 - Zebra Technologies) Hidden
Zebra CoreScanner Driver (64bit) (HKLM-x32\...\InstallShield_{5163782B-50EB-4A31-8034-0E61E090EE4B}) (Version: 3.07.0050 - Zebra Technologies)

Chrome apps:
============
Google Chat (HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\fe95f1cef9f79096f3ce6406e70accd8) (Version: 1.0 - Google\Chrome)

Packages:
=========

AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5587.0_x64__8j3eq9eme6ctt [2024-09-03] (INTEL CORP) [Startup Task]
Call of Duty® -> C:\Program Files\WindowsApps\38985CA0.COREBase_1.0.29.0_x64_ww_5bkah9njm3e9g [2024-09-01] (Activision Publishing Inc.)
Desktop Gadgets -> C:\Program Files\WindowsApps\48405AmbientSoftware.DesktopGadgets_3.4.2.0_x64__agy8jafheqhng [2024-08-23] (Chan Software Solutions) [Startup Task]
Dolby Vision -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionHDR_2.20303.556.0_x64__rz1tebttyb220 [2024-08-21] (Dolby Laboratories)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.27.0_x64__xbfy0k16fey96 [2024-09-03] (Dropbox Inc.)
Fotografie -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11070.31001.0_x64__8wekyb3d8bbwe [2024-08-21] (Microsoft Corporation) [Startup Task]
Journal -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJournal_1.23306.1292.0_x64__8wekyb3d8bbwe [2024-09-03] (Microsoft Corporation)
Kodi -> C:\Program Files\WindowsApps\XBMCFoundation.Kodi_21.1.500.0_x64__4n2hpmxwrvr6p [2024-08-21] (XBMC Foundation)
LabelZoom Studio -> C:\Program Files\WindowsApps\RJFTechnologySolutionsInc.LabelZoom_1.8.4.0_x64__eegtcn340ym50 [2024-08-21] (RJF Technology Solutions LLC)
Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2406.36.0_x64__k1h2ywk1493x8 [2024-09-04] (LENOVO INC.)
Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.6.12.0_x64__5grkq8ppsgwt4 [2024-08-21] (LENOVO INC) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2024-08-21] (Microsoft Corp.)
Microsoft Teams -> C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe [2024-08-31] (Microsoft) [Startup Task]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21110.548.0_x64__8wekyb3d8bbwe [2024-09-03] (Microsoft Corporation)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.2.2331.0_x64__8wekyb3d8bbwe [2024-09-05] (Microsoft Corporation)
Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.95.0_x64__8wekyb3d8bbwe [2024-09-03] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2024-08-21] (Microsoft Corporation)
MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24081.55.0_x64__cw5n1h2txyewy [2024-09-05] (Microsoft Windows) [Startup Task]
MW3 PC MS DLC01 Game Stub 01 -> C:\Program Files\WindowsApps\38985CA0.MW3PCMSDLC01GameStub01_0.0.9.0_x64__5bkah9njm3e9g [2024-09-01] (Activision Publishing Inc.)
MWII DLC04 Game Stub 04 -> C:\Program Files\WindowsApps\38985CA0.MWIIDLC04GameStub04_0.0.9.0_x64__5bkah9njm3e9g [2024-09-01] (Activision Publishing Inc.)
Nahimic -> C:\Program Files\WindowsApps\A-Volute.Nahimic_1.10.1.0_x64__w2gh52qy24etm [2024-09-03] (A-Volute)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.966.0_x64__56jybvy8sckqj [2024-09-01] (NVIDIA Corp.)
One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2024.717.1.0_x64__8kea50m9krsh2 [2024-08-21] (Code Spark)
Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2408.175.0_x64__8wekyb3d8bbwe [2024-09-03] (Microsoft Corporation) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0 [2024-08-31] (Spotify AB) [Startup Task]
Tobii Experience -> C:\Program Files\WindowsApps\TobiiAB.TobiiEyeTrackingPortal_1.68.29247.0_x64__j9ea20k37yd2w [2024-08-21] (Tobii AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2434.5.0_x64__cv1g1gvanyjgm [2024-09-03] (WhatsApp Inc.) [Startup Task]
Windows Feature Experience Pack -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-08-21] (Microsoft Windows)
WinRAR -> C:\Program Files\WinRAR [2017-07-04] (win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3248026489-3966559180-2484514055-1001_Classes\CLSID\{04271989-4A69-E6DA-A503-B39DDFE661AB} -> [OneDrive - CSBC BOHEMIA, spol. s r.o] => C:\Users\msuro\OneDrive - CSBC BOHEMIA, spol. s r.o [2024-08-22 10:55]
CustomCLSID: HKU\S-1-5-21-3248026489-3966559180-2484514055-1001_Classes\CLSID\{04271989-C4D2-15A2-35D9-9FE4A24C5183} -> [OneDrive - Efidex] => C:\Users\msuro\OneDrive - Efidex [2024-08-22 10:51]
CustomCLSID: HKU\S-1-5-21-3248026489-3966559180-2484514055-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\msuro\AppData\Local\Microsoft\TeamsMeetingAdd-in\1.24.19202\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3248026489-3966559180-2484514055-1001_Classes\CLSID\{1fbfb627-93ed-88f1-57b8-78ec8c9febe7}\localserver32 -> "C:\ProgramData\Lenovo\Udc\Hosts\23.4.0.8\x64\MessagingPlugin.exe" -ToastActivated => No File
CustomCLSID: HKU\S-1-5-21-3248026489-3966559180-2484514055-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3248026489-3966559180-2484514055-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\msuro\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\aplikace\aplikace\avast\ashShell.dll [2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\aplikace\aplikace\avast\ashShell.dll [2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\aplikace\aplikace\avast\ashShell.dll [2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\aplikace\aplikace\avast\ashShell.dll [2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-09-04] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvlti.inf_amd64_524a1f08cfa14687\nvshext.dll [2024-08-15] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\aplikace\aplikace\avast\ashShell.dll [2024-09-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-09-04] (Malwarebytes Inc. -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\msuro\Desktop\Google Chat.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=mdpkiolbdkhdjpekfbkbmhigcaggjagi
ShortcutWithArgument: C:\Users\msuro\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_mdpkiolbdkhdjpekfbkbmhigcaggjagi\Google Chat.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=mdpkiolbdkhdjpekfbkbmhigcaggjagi
ShortcutWithArgument: C:\Users\msuro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Google Chat.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=mdpkiolbdkhdjpekfbkbmhigcaggjagi
ShortcutWithArgument: C:\Users\msuro\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chat.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=mdpkiolbdkhdjpekfbkbmhigcaggjagi

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\msuro\Desktop\avg_antivirus_free_setup.exe:MBAM.Zone.Identifier [234]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mc-fw-host => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMSwissArmy => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mc-fw-host => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ModuleCoreService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-08-21] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\sharepoint.com -> hxxps://bernexgroup-files.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Intel;C:\Intel\m;C:\Intel\logs;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\;C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\Users\msuro\AppData\Local\Microsoft\WindowsApps;
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\3.jpg
HKU\S-1-5-21-3248026489-3966559180-2484514055-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Lenovo\3.jpg
DNS Servers: Media is not connected to internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Network Binding:
=============

vms_vsf: Hyper-V Virtual Switch Extension Filter
vms_vsp: Hyper-V Virtual Switch Extension Protocol

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "MRT"
HKLM\...\StartupApproved\Run32: => "MRT"
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\StartupApproved\Run: => "com.evernote.Evernote"
HKU\S-1-5-21-3248026489-3966559180-2484514055-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_2C1E684CAD36948C9215B6B461E381FD"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{496237CE-E934-43CF-B784-E6965C1A567B}C:\users\msuro\appdata\local\programs\evernote\evernote.exe] => (Allow) C:\users\msuro\appdata\local\programs\evernote\evernote.exe (Evernote Corporation -> Evernote Corporation)
FirewallRules: [UDP Query User{A67709BC-F8CD-4AC5-8865-70F11FEB163A}C:\users\msuro\appdata\local\programs\evernote\evernote.exe] => (Allow) C:\users\msuro\appdata\local\programs\evernote\evernote.exe (Evernote Corporation -> Evernote Corporation)
FirewallRules: [{07DBAF90-9B7C-4766-86D8-D66165395228}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{56C11D5E-EC22-4468-A57B-1DC497359F89}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0BEA1B26-C4F5-4B8B-9D37-1B610CD504B3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A5B9B2F6-A1CD-42A7-97FA-85E177DB932A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{AEE4D9DE-CF09-40A1-BA5B-F6E4FC0EF772}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{8C1EF6EF-158C-41A8-8AC7-B0619D92C1B5}C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe (C62BD90A-CDD8-477F-96C3-B25992247B97 -> XBMC Foundation)
FirewallRules: [UDP Query User{BA5D920C-0E08-450A-ADE6-FF9CCEEE8D49}C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe (C62BD90A-CDD8-477F-96C3-B25992247B97 -> XBMC Foundation)
FirewallRules: [{81932E30-84BE-4556-8765-96D5274CC8C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Manor Lords\ManorLords.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{A95F94EA-5434-4240-BF58-C72040AEAA93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Manor Lords\ManorLords.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{8B0E4218-A383-4F63-9259-055B744E393A}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1103.3051.6995_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4D404816-7975-4220-8A78-0BCFEBD2AEC9}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1103.3051.6995_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{5BD66F40-D864-436C-AB8A-C4552358EA64}C:\users\msuro\appdata\local\programs\evernote\evernote.exe] => (Allow) C:\users\msuro\appdata\local\programs\evernote\evernote.exe (Evernote Corporation -> Evernote Corporation)
FirewallRules: [UDP Query User{807C1C04-29AF-4594-9E09-7064CC9C7612}C:\users\msuro\appdata\local\programs\evernote\evernote.exe] => (Allow) C:\users\msuro\appdata\local\programs\evernote\evernote.exe (Evernote Corporation -> Evernote Corporation)
FirewallRules: [{374B54AC-EDA3-4D35-9E6D-E1D20DCA46FB}] => (Allow) C:\Program Files\datronicsoft\spacedesk\spacedeskService.exe (Datronicsoft Inc. -> )
FirewallRules: [TCP Query User{9ACEC88A-0CDC-4486-A08B-3190597797A4}C:\program files (x86)\symbol technologies\staging_solution\symbol.stagenow.v2client.exe] => (Allow) C:\program files (x86)\symbol technologies\staging_solution\symbol.stagenow.v2client.exe (Symbol Technologies) [File not signed]
FirewallRules: [UDP Query User{80390A51-8C70-49ED-8F73-B4E23C9C9CDE}C:\program files (x86)\symbol technologies\staging_solution\symbol.stagenow.v2client.exe] => (Allow) C:\program files (x86)\symbol technologies\staging_solution\symbol.stagenow.v2client.exe (Symbol Technologies) [File not signed]
FirewallRules: [{98588011-1A30-41CA-82B3-1191A20A6D42}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.54\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1959505A-DC2D-40E2-A4AB-4F97BAA3C2C3}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3FCE8F9D-37A4-48F9-8866-858753F56C8E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24215.1007.3082.1590_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AE1F0BEB-6C8E-4FFD-AE96-C00A8F603512}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{09E47D42-D880-43D8-AE7B-80F5C7827B31}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AEBE4F17-8317-4317-9AE8-66A7B2499F8C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4B7F3562-1C6F-4C59-8115-BCC9CF73D59D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{673156C8-E798-42F0-9B9E-224DAF24A009}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{39875868-5075-4AC2-87E1-9D69112EC37F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1D906050-A105-44A7-A625-69CD7E214442}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FC1AA738-E1D7-4291-ADB4-CBE774D0FB78}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{CE71B0C6-AAFE-4F74-A124-580CA8E76512}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5E63ECCE-CD3C-4CB9-9DDE-698BF4DBE156}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.245.454.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [TCP Query User{997397F6-8AE0-4609-AE05-ECA43A99926E}C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe (C62BD90A-CDD8-477F-96C3-B25992247B97 -> XBMC Foundation)
FirewallRules: [UDP Query User{6AD6CE64-DF95-4F13-8DA0-5412195207A1}C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe] => (Allow) C:\program files\windowsapps\xbmcfoundation.kodi_21.1.500.0_x64__4n2hpmxwrvr6p\kodi.exe (C62BD90A-CDD8-477F-96C3-B25992247B97 -> XBMC Foundation)
FirewallRules: [{C614019A-84DD-4451-9C54-3841F531C1BE}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{FB028431-F91D-49E7-A71A-A8CDF3BD3D14}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{A778B97E-1833-4205-A67D-50A634956BEB}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{139B13F1-5640-4A91-8AC3-BA2DD0253365}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{F931B0E3-7AB9-44CC-AE6C-E90D958716F9}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{DD797965-0131-43AB-98B7-FF09BF689B50}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{74E5C7DB-EE79-4430-85AF-073F8171ED48}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{6E1610C2-CA3C-4793-99BE-E775E5AB5604}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{5F7B5D6A-F9CB-40B1-9666-0F147C1D8E3E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{5CE80276-0777-4792-8975-50954A95D88D}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E5CF7883-6EA8-4598-8FC1-FD05E1F93C76}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{CA3E48B6-318E-4D5E-9FEE-DAAC188354F5}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{C07514D0-AC83-4FE3-9D9A-3C03A1188B15}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{DBB81C47-4571-4C6A-A13F-41095CE2A07F}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{6EBEDDF8-2ED8-484F-8B6D-42438D67A3E4}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{1216382D-DAC1-4D4B-AA3F-1383601657EA}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{8E67D158-4DD5-4B3C-9135-3CAEC5641B93}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{40AD1D6A-0E95-4FD5-B9B7-F695173A2922}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{DE38C1A1-1867-4C39-84BA-3AF559930782}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{58E24EF3-8D4D-444E-9911-E4E5F82DF4C0}] => (Allow) LPort=23140
FirewallRules: [{BEEA279D-C595-4B2D-AC82-A27488A397FE}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{C6976E6B-4283-44B8-A9D5-5D10A1A67538}] => (Allow) LPort=23136
FirewallRules: [{82748A8B-3A01-4E8A-8D16-DD61F94399E9}] => (Allow) LPort=23137
FirewallRules: [{D4E37F49-8209-444F-95E2-CF7F339DD978}] => (Allow) C:\Intel\logs\q.exe => No File
FirewallRules: [{1029A901-70F1-4A7E-A685-227331567B9A}] => (Allow) LPort=23137
FirewallRules: [{67348ED1-11EB-4189-95BC-3487D19E020D}] => (Allow) LPort=23137
FirewallRules: [{EA3926D0-2F2D-4A4B-845C-F3991D6CB195}] => (Allow) LPort=23136
FirewallRules: [{A0F11B28-0303-4E86-BC0B-150E98648F4A}] => (Allow) LPort=23140
FirewallRules: [{8C0AF222-2C81-4B10-AF54-F12512DB6E18}] => (Allow) LPort=23140
FirewallRules: [{FEED72B4-75DC-4EC8-B751-904BC78B33E3}] => (Allow) LPort=23136
FirewallRules: [{2E7933A6-C122-4B46-8EC7-B054BB6190D9}] => (Allow) LPort=23140
FirewallRules: [{2E0F581D-5B80-47A5-8867-07127F076462}] => (Allow) LPort=23137
FirewallRules: [{2618D2EF-FE39-4464-8DD3-76DEAF3D5AD8}] => (Allow) C:\Users\msuro\AppData\Roaming\q.exe => No File
FirewallRules: [{134A4043-67E9-4667-A09C-BB5D5A83C9D5}] => (Allow) LPort=23136
FirewallRules: [{13CDDCC3-907D-4C0B-8CA3-78387448C6A1}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{535F09F3-2854-4245-BAAE-90C2FE00B8FE}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{38C98E3E-6D99-48C3-B658-6F61804141F8}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{01EE4F9B-327B-421A-B876-5477208997CE}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{6E07DB62-948A-4BA9-A3F2-461B79B11399}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{59A101B8-92E8-4BF7-B7E6-620B303F7EDB}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{A19D5B02-30AB-45C6-91BF-FBFC3C770889}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{95E5492A-75F2-4EBD-B767-E251B6934361}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{967E6A7E-7C60-408E-A1BA-1E5F0032DE0D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{32903BFE-0311-4E47-8A35-A5FD1BD1AEC2}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{ECC75CB0-EABA-4503-9463-846B98243242}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{270C9EAB-6879-41A2-A902-53D657484209}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{CEF501BF-9130-4B0B-9968-05E82823CC5A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{7CD9C06B-F18D-4126-8871-C5616F147F45}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{D5E48162-DE55-4858-B24C-93C4B897A30F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe => No File
FirewallRules: [{CE3C46F3-94EB-4336-A84D-B397413DDB47}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{102C0817-4172-4929-A3F9-F303DE8E70A6}] => (Allow) C:\Intel\i.exe () [File not signed]
FirewallRules: [{1345D722-B4D3-471D-A5BF-5D3ADB423752}] => (Allow) C:\Intel\i.exe () [File not signed]
FirewallRules: [{1DB93EAD-D228-4CD2-833F-F21B1E66AA4C}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{4BEAA902-20AB-4A90-B633-DFA5DB18D711}] => (Allow) C:\Intel\i1.exe => No File
FirewallRules: [{77712089-41D8-45ED-A6A5-AF8C6B33CAEF}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{E5CC81F8-5087-45E1-B469-94399EABBBEE}] => (Allow) C:\Intel\i2.exe => No File
FirewallRules: [{C8F9F3B2-B17C-4B6A-BBD8-77D45851D384}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{EB6BA69D-F21A-41F3-8F91-463E0275727B}] => (Allow) C:\Intel\i3.exe => No File
FirewallRules: [{FF1268E8-E56C-405C-8A7E-EFE457A10925}] => (Allow) C:\Intel\i4.exe () [File not signed]
FirewallRules: [{C6616E73-881B-47FB-99D0-09256CD423C5}] => (Allow) C:\Intel\i4.exe () [File not signed]
FirewallRules: [{B9DCF8CD-5D49-4A25-A784-69BFD3DD3AB6}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{DE744A43-0944-4F96-8796-B84E4045F0AC}] => (Allow) C:\Intel\q.exe => No File
FirewallRules: [{E873FD42-96E9-4639-A29C-26141E2A30A2}] => (Allow) C:\Intel\q1.exe () [File not signed]
FirewallRules: [{D7B057DD-70A1-4B1B-8BE1-B7F1E3C50568}] => (Allow) C:\Intel\q1.exe () [File not signed]
FirewallRules: [{B02F757A-07E6-496E-87BB-9B50F5D99C5C}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{FA2B728E-DB0D-49E5-9E2D-451EF89CB346}] => (Allow) C:\Intel\q2.exe => No File
FirewallRules: [{F5869C20-7C35-4064-8E6D-3A6E4B3C8CFA}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{3F38DD37-F1E8-4B80-AD50-454EDBBDB74C}] => (Allow) C:\Intel\q3.exe => No File
FirewallRules: [{6D634CCD-CD80-43AD-B98E-C23E2637A0A9}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{1E34A18E-D5B8-4611-9861-4FC8CD445744}] => (Allow) C:\Intel\q4.exe => No File
FirewallRules: [{11F045B9-25C6-4E8C-BB8D-54D853222C82}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{5D566053-3EE7-4648-BC88-7409398D4485}] => (Allow) C:\Intel\c.exe => No File
FirewallRules: [{01614849-25FF-469B-B8A5-E6E212612140}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{8595CDF9-5614-4414-A3F6-06EE213566AF}] => (Allow) C:\Intel\m\nmb.exe => No File
FirewallRules: [{7B78A07B-5D6A-432D-8ADD-9AF8ED99A994}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{078A19A4-91AB-4184-B63F-1CF748A7B412}] => (Allow) C:\Intel\m\xrm.exe => No File
FirewallRules: [{B8383871-4F1A-45C3-884B-BA57F33865E7}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{68F05F1C-2763-420C-8EB5-1FCBDE80A22C}] => (Allow) C:\Intel\m\txr.exe => No File
FirewallRules: [{D19E2787-D313-4269-BC67-1CCD75E2B11E}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{ECF2DEFB-C65A-4576-9C71-3682A8A7C87B}] => (Allow) C:\Intel\m\llm.exe => No File
FirewallRules: [{E7088062-3D20-4586-9599-D4F7EC5CB3F7}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{0ADEF289-BAC9-42F8-9BB6-910FB5B253B9}] => (Allow) C:\Intel\m\wmr.exe => No File
FirewallRules: [{75F99E68-28F8-427C-847A-64F0A74059CA}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [{0EDB00C9-FFC4-4291-A0BF-0D0F042F7971}] => (Allow) C:\Intel\m\sbr.exe => No File
FirewallRules: [TCP Query User{AA2BB6C3-10FC-4F54-AEC6-CE7D9D91AD33}C:\xboxgames\call of duty\content\cod.exe] => (Allow) C:\xboxgames\call of duty\content\cod.exe () [File not signed]
FirewallRules: [UDP Query User{537B1B1E-A455-49E8-965F-AC681447E4EF}C:\xboxgames\call of duty\content\cod.exe] => (Allow) C:\xboxgames\call of duty\content\cod.exe () [File not signed]
FirewallRules: [TCP Query User{D9302E4B-9EB1-4F45-84D4-805E11D019FB}C:\xboxgames\call of duty\content\mp24\mp24-cod.exe] => (Allow) C:\xboxgames\call of duty\content\mp24\mp24-cod.exe () [File not signed]
FirewallRules: [UDP Query User{554BD062-91B2-49F5-9438-AD0264B627E9}C:\xboxgames\call of duty\content\mp24\mp24-cod.exe] => (Allow) C:\xboxgames\call of duty\content\mp24\mp24-cod.exe () [File not signed]
FirewallRules: [{EEED3A8C-6CEE-4BD9-BA18-287A619C648A}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{00ADEBC3-5902-47BD-B038-F3ECA215E49A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\128.0.2739.63\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF05D7BF-7058-4685-9411-2F52916C66A2}] => (Allow) C:\aplikace\aplikace\avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{00C64D72-E0AF-422F-9249-2AEB2693C547}] => (Allow) C:\aplikace\aplikace\avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{563B6FDC-6F51-45ED-87D7-396A04A786F0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.127.3200.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B6D64032-CDFD-4DFB-8B98-8CB6D84A4CDE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.127.3200.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D7CFFB33-2483-4BFC-ABA4-C63ED5BF2F9F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.127.3200.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A446C9B1-A3AA-4619-84F8-4B8B65C8DEDE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.127.3200.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Restore Points =========================

05-09-2024 00:23:59 AdwCleaner_BeforeCleaning_05/09/2024_00:23:58

==================== Faulty Device Manager Devices ============

Name: Poskytovatel sběrnice virtuálního počítače Microsoft Hyper-V
Description: Poskytovatel sběrnice virtuálního počítače Microsoft Hyper-V
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vmbusr
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Ovladač infrastruktury virtualizace Microsoft Hyper-V
Description: Ovladač infrastruktury virtualizace Microsoft Hyper-V
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Vid
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Nahimic VAD
Description: Nahimic VAD
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Nahimic
Service: NahimicXVAD
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Nahimic Easy Surround device
Description: Nahimic Easy Surround device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Nahimic
Service: NahimicBTLink
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Microsoft Hyper-V PCI Server
Description: Microsoft Hyper-V PCI Server
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vpcivsp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Nahimic mirroring device
Description: Nahimic mirroring device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Nahimic
Service: Nahimic_Mirroring
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Virtuální diskový server Microsoft Hyper-V
Description: Virtuální diskový server Microsoft Hyper-V
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: storvsp
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Universal Device Client Device
Description: Universal Device Client Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Lenovo
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: ========================

Application errors:
==================
Error: (09/05/2024 04:00:18 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 2904, identifikátor PID ProfSvc: 2192.

Error: (09/05/2024 04:00:18 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 2904, identifikátor PID ProfSvc: 2192.

Error: (09/05/2024 03:53:27 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému..

Error: (09/05/2024 03:53:27 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.]

Error: (09/05/2024 03:53:14 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: Malwarebytes.exe
CoreCLR Version: 6.0.2824.12007
.NET Version: 6.0.28
Description: The process was terminated due to an unhandled exception.
Exception Info: System.NotImplementedException: The method or operation is not implemented.
   at MS.Win32.UnsafeNativeMethods.ITfThreadMgr.CreateDocumentMgr(ITfDocumentMgr& docMgr)
   at System.Windows.Input.TextServicesContext.RegisterTextStore(DefaultTextStore defaultTextStore)
   at System.Windows.Input.DefaultTextStore.get_Current()
   at System.Windows.Input.TextServicesContext.SetFocusOnDefaultTextStore()
   at System.Windows.Input.InputMethod.EnableOrDisableInputMethod(Boolean bEnabled)
   at System.Windows.Input.TextServicesManager.Focus(DependencyObject focus)
   at System.Windows.Input.KeyboardDevice.ChangeFocus(DependencyObject focus, Int32 timestamp)
   at System.Windows.Input.KeyboardDevice.TryChangeFocus(DependencyObject newFocus, IKeyboardInputProvider keyboardInputProvider, Boolean askOld, Boolean askNew, Boolean forceToNullIfFailed)
   at System.Windows.Input.KeyboardDevice.Focus(DependencyObject focus, Boolean askOld, Boolean askNew, Boolean forceToNullIfFailed)
   at System.Windows.Input.KeyboardDevice.Focus(IInputElement element)
   at System.Windows.Interop.HwndKeyboardInputProvider.OnSetFocus(IntPtr hwnd)
   at System.Windows.Interop.HwndKeyboardInputProvider.FilterMessage(IntPtr hwnd, WindowMessage message, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at System.Windows.Interop.HwndSource.InputFilterMessage(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndWrapper.WndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam, Boolean& handled)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(Object o)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(DispatcherPriority priority, TimeSpan timeout, Delegate method, Object args, Int32 numArgs)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr hwnd, Int32 msg, IntPtr wParam, IntPtr lParam)

Error: (09/05/2024 03:44:54 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: i1.exe, verze: 0.0.0.0, časové razítko: 0x4fd0cff9
Název chybujícího modulu: ntdll.dll, verze: 10.0.22621.3733, časové razítko: 0x86d1a81c
Kód výjimky: 0xc0000005
Posun chyby: 0x0006d1dd
ID chybujícího procesu: 0x0x49fc
Čas spuštění chybující aplikace: 0x0x1daff992cf2ed2a
Cesta k chybující aplikaci: C:\Intel\i1.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 76766a7a-65d9-4158-83a9-3e09c557ac92
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (09/05/2024 03:28:06 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: i1.exe, verze: 0.0.0.0, časové razítko: 0x4fd0cff9
Název chybujícího modulu: ntdll.dll, verze: 10.0.22621.3733, časové razítko: 0x86d1a81c
Kód výjimky: 0xc0000005
Posun chyby: 0x0006d1dd
ID chybujícího procesu: 0x0x42b0
Čas spuštění chybující aplikace: 0x0x1daff96d51ce939
Cesta k chybující aplikaci: C:\Intel\i1.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 6ee96296-a5d3-4d23-8a17-faf36ea17b0d
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (09/05/2024 03:16:54 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: WidgetsDesktop.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.InvalidOperationException
   na System.Security.AccessControl.NativeObjectSecurity.CreateInternal(System.Security.AccessControl.ResourceType, Boolean, System.String, System.Runtime.InteropServices.SafeHandle, System.Security.AccessControl.AccessControlSections, Boolean, ExceptionFromErrorCode, System.Object)
   na System.Security.AccessControl.FileSystemSecurity..ctor(Boolean, System.String, System.Security.AccessControl.AccessControlSections, Boolean)
   na System.Security.AccessControl.FileSecurity..ctor(System.String, System.Security.AccessControl.AccessControlSections)
   na System.Configuration.Internal.WriteFileContext.DuplicateTemplateAttributes(System.String, System.String)
   na System.Configuration.Internal.WriteFileContext.DuplicateFileAttributes(System.String, System.String)
   na System.Configuration.Internal.WriteFileContext.Complete(System.String, Boolean)
   na System.Configuration.Internal.InternalConfigHost.StaticWriteCompleted(System.String, Boolean, System.Object, Boolean)
   na System.Configuration.Internal.InternalConfigHost.System.Configuration.Internal.IInternalConfigHost.WriteCompleted(System.String, Boolean, System.Object, Boolean)
   na System.Configuration.Internal.DelegatingConfigHost.WriteCompleted(System.String, Boolean, System.Object, Boolean)
   na System.Configuration.ClientSettingsStore+ClientSettingsConfigurationHost.WriteCompleted(System.String, Boolean, System.Object)
   na System.Configuration.UpdateConfigHost.WriteCompleted(System.String, Boolean, System.Object)
   na System.Configuration.MgmtConfigurationRecord.SaveAs(System.String, System.Configuration.ConfigurationSaveMode, Boolean)
   na System.Configuration.Configuration.SaveAsImpl(System.String, System.Configuration.ConfigurationSaveMode, Boolean)
   na System.Configuration.ClientSettingsStore.WriteSettings(System.String, Boolean, System.Collections.IDictionary)
   na System.Configuration.LocalFileSettingsProvider.SetPropertyValues(System.Configuration.SettingsContext, System.Configuration.SettingsPropertyValueCollection)
   na System.Configuration.SettingsBase.SaveCore()
   na System.Configuration.SettingsBase.Save()
   na System.Configuration.ApplicationSettingsBase.Save()
   na WidgetsDesktop.View.MainWindow.OnClosing(System.ComponentModel.CancelEventArgs)
   na System.Windows.Window.InternalClose(Boolean, Boolean)
   na System.Windows.Application.DoShutdown()
   na System.Windows.Application.ShutdownImpl()
   na System.Windows.Application.ShutdownCallback(System.Object)
   na System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   na System.Windows.Threading.DispatcherOperation.InvokeImpl()
   na System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   na MS.Internal.CulturePreservingExecutionContext.CallbackWrapper(System.Object)
   na System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   na System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   na MS.Internal.CulturePreservingExecutionContext.Run(MS.Internal.CulturePreservingExecutionContext, System.Threading.ContextCallback, System.Object)
   na System.Windows.Threading.DispatcherOperation.Invoke()
   na System.Windows.Threading.Dispatcher.ProcessQueue()
   na System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   na MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   na MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   na System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   na System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   na System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   na MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   na MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   na System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   na System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   na System.Windows.Application.RunDispatcher(System.Object)
   na System.Windows.Application.RunInternal(System.Windows.Window)
   na System.Windows.Application.Run(System.Windows.Window)
   na WidgetsDesktop.App.Main()


System errors:
=============
Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{4991D34B-80A1-4291-83B6-3328366B9097}

Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{F087771F-D74F-4C1A-BB8A-E16ACA9124EA}

Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{6D18AD12-BDE3-4393-B311-099C346E6DF9}

Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{03CA98D6-FF5D-49B8-ABC6-03DD84127020}

Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{659CDEA7-489E-11D9-A9CD-000D56965251}

Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{BB6DF56B-CACE-11DC-9992-0019B93A3A84}

Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{1ECCA34C-E88A-44E3-8D6A-8921BDE9E452}

Error: (09/05/2024 04:16:23 PM) (Source: DCOM) (EventID: 10005) (User: LEGION)
Description: Služba DCOM zjistila chybu 1084 při pokusu o spuštění služby BITS s argumenty Není k dispozici za účelem spuštění serveru: 
{4D233817-B456-4E75-83D2-B17DEC544D12}


Windows Defender:
================
Date: 2024-09-05 13:56:18
Description: 
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {08FE7205-7FAF-49F2-837D-5238C3E111B6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM 

Date: 2024-09-01 09:58:54
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Behavior:Win32/Fynloski.gen!A&threatid=2147690048&enterprise=0
Název: Behavior:Win32/Fynloski.gen!A
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Intel\i1.exe, pid:30476:53549015656452
Původ detekce: Neznámý
Typ detekce: Obecný
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Intel\i1.exe
Verze bezpečnostních informací: AV: 1.417.423.0, AS: 1.417.423.0, NIS: 1.417.423.0
Verze modulu: AM: 1.1.24070.3, NIS: 1.1.24070.3 

Date: 2024-09-01 09:57:25
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Behavior:Win32/Fynloski.gen!A&threatid=2147690048&enterprise=0
Název: Behavior:Win32/Fynloski.gen!A
Závažnost: Vážné
Kategorie: Podezřelé chování
Cesta: behavior:_process: C:\Intel\i2.exe, pid:22784:53549015656452
Původ detekce: Neznámý
Typ detekce: Obecný
Zdroj detekce: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Intel\i2.exe
Verze bezpečnostních informací: AV: 1.417.423.0, AS: 1.417.423.0, NIS: 1.417.423.0
Verze modulu: AM: 1.1.24070.3, NIS: 1.1.24070.3 

Date: 2024-09-01 09:57:23
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/MpTamperBulkExcl.H&threatid=2147822027&enterprise=0
Název: Trojan:Win32/MpTamperBulkExcl.H
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: amsi:_\Device\HarddiskVolume3\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: AMSI
Uživatel: Legion\msuro
Název procesu: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Verze bezpečnostních informací: AV: 1.417.423.0, AS: 1.417.423.0, NIS: 1.417.423.0
Verze modulu: AM: 1.1.24070.3, NIS: 1.1.24070.3 

Date: 2024-09-01 09:57:14
Description: 
Antivirová ochrana v programu Microsoft Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/MpTamperBulkExcl.H&threatid=2147822027&enterprise=0
Název: Trojan:Win32/MpTamperBulkExcl.H
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: amsi:_\Device\HarddiskVolume3\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Původ detekce: Neznámý
Typ detekce: Konkrétní
Zdroj detekce: AMSI
Uživatel: Legion\msuro
Název procesu: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Verze bezpečnostních informací: AV: 1.417.423.0, AS: 1.417.423.0, NIS: 1.417.423.0
Verze modulu: AM: 1.1.24070.3, NIS: 1.1.24070.3 
﻿Event[0]

Date: 2024-09-05 16:09:56
Description: 
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.  
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby. 

Date: 2024-09-05 14:29:33
Description: 
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Microsoft Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x8007043c
Popis chyby: Tuto službu nelze spustit v nouzovém režimu.  
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby. 

CodeIntegrity:
===============
Date: 2024-09-05 16:06:58
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_e8d77b0dd4bff2b1\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements. 

Date: 2024-09-05 16:06:58
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\aplikace\aplikace\avast\aswAMSI.dll that did not meet the Windows signing level requirements. 

Date: 2024-09-05 16:06:58
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.24070.5-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\aplikace\aplikace\avast\aswAMSI.dll that did not meet the Microsoft signing level requirements. 


==================== Memory info =========================== 

BIOS: LENOVO N0CN22WW 04/19/2024
Motherboard: LENOVO LNVNB161216
Processor: Intel(R) Core(TM) i9-14900HX
Percentage of memory in use: 9%
Total physical RAM: 32491.87 MB
Available physical RAM: 29542.89 MB
Total Virtual: 35691.87 MB
Available Virtual: 33103.77 MB

==================== Drives ================================

Drive c: (Windows-SSD) (Fixed) (Total:953.6 GB) (Free:264.24 GB) (Model: SAMSUNG MZVL21T0HCLR-00BL2) NTFS

\\?\Volume{ab3057ef-cfbc-4da7-ad6f-1dd14cc6b10f}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 953.9 GB) (Disk ID: FEDF5058)

Partition: GPT.

==================== End of Addition.txt =======================