prosím o kontrolu logu, PC je hrozně pomalý. Prý i hrozně pomalu startuje, neustále se tam točí to kolečko a i při normálním provozu je dost zpomalený. Je pravda, že v něm je HDD, což má vliv na tu pomalost...
Děkuji pěkně
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-12-2024
Ran by jarmi (administrator) on DESKTOP-JQ1TVNP (HP HP Slim Desktop 290-p0xxx) (13-12-2024 18:05:18)
Running from C:\Users\jarmi\Desktop\FRST64.exe
Loaded Profiles: jarmi
Platform: Microsoft Windows 11 Home Version 23H2 22631.4602 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(C:\Program Files\AVAST Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(C:\Program Files\Google\Drive File Stream\101.0.3.0\GoogleDriveFS.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\101.0.3.0\crashpad_handler.exe
(C:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology(Shenzhen) Company Limited -> ) C:\Program Files\TxGameAssistant\AppMarket\cef_frame_render.exe <3>
(C:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe ->) (Tencent Technology(Shenzhen) Company Limited -> ) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe
(C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe ->) (Tencent Technology(Shenzhen) Company Limited -> Tencent) C:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe
(C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_2.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe ->) (ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_2.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityHost.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxCUIService.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxEM.exe
(ED346674-0FA1-4272-85CE-3187C9C86E26 -> HP Inc.) C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_2.1.4.0_x64__v10z8vjag6ke6\SystemEventUtility\HPSystemEventUtilityBackground.exe
(explorer.exe ->) (Google LLC -> Google, Inc.) C:\Program Files\Google\Drive File Stream\101.0.3.0\GoogleDriveFS.exe <7>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoNotificationUx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <13>
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\AppHelperCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\DiagsCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\NetworkCap.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\SysInfoCap.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX 2020 -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\IntelCpHeciSvc.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Tencent Technology(Shenzhen) Company Limited -> Tencent) C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(sihost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24111.37.0_x64__cw5n1h2txyewy\CrossDeviceService.exe
(sihost.exe ->) (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.133.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe <6>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2447.5.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
(svchost.exe ->) (HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.200.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe <2>
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22098.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\jarmi\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_524.30502.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
(svchost.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-04-18] (Realtek Semiconductor Corp. -> Realtek)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [427304 2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\101.0.3.0\GoogleDriveFS.exe [61998176 2024-12-10] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\101.0.3.0\GoogleDriveFS.exe [61998176 2024-12-10] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\Run: [Microsoft Edge Update] => C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.39\MicrosoftEdgeUpdateCore.exe [268344 2024-11-24] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\Run: [AvastBrowserAutoLaunch_A945C80BB3BD439859BDFDF53AA2AF8E] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\101.0.3.0\GoogleDriveFS.exe [61998176 2024-12-10] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\MountPoints2: {6a6d02d1-4b29-11ef-b8a3-a4fc7755e243} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\MountPoints2: {ed504095-789f-11ed-b7d4-a4fc7755e243} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\101.0.3.0\GoogleDriveFS.exe [61998176 2024-12-10] (Google LLC -> Google, Inc.)
HKLM\...\Windows x64\Print Processors\Canon MP210 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPD8S.DLL [27648 2007-03-19] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor MP210 series: C:\WINDOWS\system32\CNMLM8S.DLL [259584 2008-02-06] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\PDF-XChange Lite Port Monitor: C:\WINDOWS\system32\pxcpmL.dll [2154256 2021-03-31] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.140\Installer\chrmstp.exe [2024-12-13] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\130.0.27176.93\Installer\chrmstp.exe [2024-11-13] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{C885AA15-1764-4293-B82A-0586ADD46B35}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {7D302FCD-2E59-4744-8094-BFE33F36648A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1574856 2024-09-25] (Adobe Inc. -> Adobe Inc.)
Task: {616B77C6-302B-47B5-9CB3-77AE15D9DFA7} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe [1504312 2020-12-09] (Adobe Inc. -> Adobe)
Task: {8EC5D0C3-0B64-47FA-A96C-F901DB1A41E0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
Task: {288EC2A7-5D6F-4192-B24F-114BE518AA8A} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {8EE363F5-6710-4B7E-BF27-34BA0A374FC7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [3171424 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {82ADF24A-2222-45A4-BEB3-E6A9A4444AD3} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [5200168 2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {6C866A6B-C59E-4B8D-9112-F4B9D7474FFD} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2564904 2024-11-20] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {2E3311D9-6E01-4342-B694-8AF6D24FEFD7} - System32\Tasks\AvastBrowserProtectS-1-5-21-2395513401-4107119636-2233282249-1001 => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2024-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {4640D1F8-B494-4E03-A982-D0C0A0C95583} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {872BE4BE-AD0C-4294-9EE8-E94D6C48B338} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
Task: {32C1F0C7-BCDA-4437-BACB-DDB357222203} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{5AD47A99-2C96-4063-BA18-C8A87C2DFCCC} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)
Task: {BDE7A832-7716-4A3C-9805-1096FABAD5DC} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ABO => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://ABO
Task: {74A46E3D-4529-4842-B167-D91189655ACE} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BatteryStatusError => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BatteryStatusError
Task: {186A71B3-5660-4D53-BFDF-78EBD0364EEF} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BCF => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BCF
Task: {6DD94298-BC9A-4672-94AA-BF301CC9162D} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM1 => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM1
Task: {7E681A69-FF90-4EE9-98F0-9E84E529F801} - System32\Tasks\Hewlett-Packard\HP Diagnostics\BHM2 => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://BHM2
Task: {3563AF3D-6693-4D7F-A672-C15FA95ABD47} - System32\Tasks\Hewlett-Packard\HP Diagnostics\LaunchUI => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://LaunchUI
Task: {B8B3A270-F01E-4D7F-89F0-54D567C806DD} - System32\Tasks\Hewlett-Packard\HP Diagnostics\ShowUI => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags:
Task: {C9DA3190-A638-4056-88E1-B318FB20EFC8} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckError => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckError
Task: {2C77D26A-2F7F-4B80-BF9C-877510308FCA} - System32\Tasks\Hewlett-Packard\HP Diagnostics\SmartCheckTest => C:\WINDOWS\system32\cmd.exe [323584 2024-12-13] (Microsoft Windows -> Microsoft Corporation) -> /c start hpdiags://SmartCheckTest
Task: {DB44A30F-176F-4D28-B636-0331155FDF85} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-BatteryStatusTest => c:\Windows\System32\schtasks.exe [258048 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\BatteryStatusTest"
Task: {3905773B-AA8C-4D7C-8CB8-256D64917EF0} - System32\Tasks\Hewlett-Packard\HP Diagnostics\Uninstall-SmartCheckTest => c:\Windows\System32\schtasks.exe [258048 2022-05-07] (Microsoft Windows -> Microsoft Corporation) -> /Change /Disable /tn "\Hewlett-Packard\HP Diagnostics\SmartCheckTest"
Task: {B8EF81DE-C653-417F-BE3C-6988A8A8E1B1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Update Notice => C:\Program Files (x86)\HP\HP Support Framework\Resources\BingPopup\BingPopup.exe [1003016 2024-11-13] (HP Inc. -> HP Inc.) -> C:\Program Files (x86)\HP\HP Support Framework\\/show
Task: {3B94D96E-D7A7-46B4-9E3D-942BEF02F7C7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\HP\HP Support Framework\Resources\HPSFReport.exe [138328 2024-11-13] (HP Inc. -> HP Inc.)
Task: {0B5D7E6D-E391-439D-933B-B3BFBDBCF1DF} - System32\Tasks\HPAudioSwitch => C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe [1644984 2018-07-18] (HP Inc. -> HP Inc.)
Task: {46AC2439-CAD4-4ABF-92E9-71B9486217BB} - System32\Tasks\HPJumpStartLaunch => C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe [462696 2018-06-01] (HP Inc. -> HP Inc.)
Task: {CCDFC0B8-01A3-4E74-A820-4F13F51D269E} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => %SystemRoot%\System32\MbaeParserTask.exe (No File)
Task: {898CE02B-66FB-4699-A857-7B8350A34386} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot => %systemroot%\system32\MusNotification.exe RebootDialog (No File)
Task: {446893F3-CE71-405C-85E9-8608A9C6F09E} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_AC => %systemroot%\system32\MusNotification.exe /RunOnAC RebootDialog (No File)
Task: {689C4609-B20C-4C86-A9E4-97CA502928E9} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Reboot_Battery => %systemroot%\system32\MusNotification.exe /RunOnBattery RebootDialog (No File)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {E984667E-6D47-45EA-A697-6F8BCBFB3A7F} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2395513401-4107119636-2233282249-1001Core => C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {5902A503-C839-4506-98FA-5FFAE8610553} - System32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2395513401-4107119636-2233282249-1001UA => C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [205744 2022-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {CC8C5144-1568-451F-ACC2-A83AA205C2BE} - System32\Tasks\Mozilla\Firefox Background Update 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {5155F37B-CADF-464B-8C39-F1AFF6418DD4} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-2395513401-4107119636-2233282249-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [671808 2024-12-11] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {5C571602-E292-4420-99D4-B4F81652968D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34368 2024-12-11] (Mozilla Corporation -> Mozilla Foundation)
Task: {925B8353-35BA-4269-99BF-70F7E7978E54} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [11235928 2020-03-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{006ea965-b763-4169-89b0-6f6773596d15}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8998008b-4913-4c3a-a9b4-4043f1124597}: [DhcpNameServer] 188.75.128.188 10.0.150.150
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\jarmi\AppData\Local\Microsoft\Edge\User Data\Default [2024-12-01]
Edge Notifications: Default -> hxxps://www.facebook.com; hxxps://www.youtube.com
Edge Extension: (Dokumenty Google offline) - C:\Users\jarmi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-11]
Edge Extension: (Edge relevant text changes) - C:\Users\jarmi\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-02-01]
FireFox:
========
FF DefaultProfile: m2h5iluj.default
FF ProfilePath: C:\Users\jarmi\AppData\Roaming\Mozilla\Firefox\Profiles\m2h5iluj.default [2020-02-26]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\jarmi\AppData\Roaming\Mozilla\Firefox\Profiles\m2h5iluj.default\Extensions\sp@avast.com.xpi [2019-10-11]
FF ProfilePath: C:\Users\jarmi\AppData\Roaming\Mozilla\Firefox\Profiles\z4g39x3n.default-release [2024-12-13]
FF Homepage: Mozilla\Firefox\Profiles\z4g39x3n.default-release -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\z4g39x3n.default-release -> hxxps://www.facebook.com; hxxps://www.vivantis.cz; hxxps://www.zastavmezlodeje.com; hxxps://www.radiouniversum.cz; hxxps://cs.duolingo.com; hxxps://www.colosseumticket.cz; hxxps://tn.nova.cz
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2024-12-05] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-09] (Adobe Inc. -> )
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1579.3\npAvastBrowserUpdate3.dll [2022-12-13] (Avast Software s.r.o. -> AVAST Software)
FF Plugin HKU\S-1-5-21-2395513401-4107119636-2233282249-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Chrome:
=======
CHR Profile: C:\Users\jarmi\AppData\Local\Google\Chrome\User Data\Default [2024-11-25]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Spouštěč aplikací pro Disk (od Googlu)) - C:\Users\jarmi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2023-12-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\jarmi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-10-27]
CHR HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [172992 2024-09-25] (Adobe Inc. -> Adobe Inc.)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-09] (Adobe Inc. -> Adobe)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7252264 2024-09-27] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [774440 2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [1220904 2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [191120 2022-12-13] (Avast Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\130.0.27176.93\elevation_service.exe [1880632 2024-11-06] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56912 2021-05-20] (Avast Software s.r.o. -> AVAST Software)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [811496 2022-02-16] (EasyAntiCheat Oy -> Epic Games, Inc)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [905080 2020-03-18] (HP Inc. -> HP Inc.)
R2 HPAppHelperCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\AppHelperCap.exe [912480 2024-11-10] (HP Inc. -> HP Inc.)
R2 HPDiagsCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\DiagsCap.exe [910944 2024-11-10] (HP Inc. -> HP Inc.)
R2 HPJumpStartBridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [478056 2018-06-01] (HP Inc. -> HP Inc.)
R2 HPNetworkCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\NetworkCap.exe [906848 2024-11-10] (HP Inc. -> HP Inc.)
R2 HPSysInfoCap; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapcomp.inf_amd64_8a181b75f1f43801\x64\SysInfoCap.exe [911480 2024-11-10] (HP Inc. -> HP Inc.)
R2 HpTouchpointAnalyticsService; C:\WINDOWS\System32\DriverStore\FileRepository\hpanalyticscomp.inf_amd64_7dcf4ebd9d1b4772\x64\TouchpointAnalyticsClientService.exe [569008 2024-05-07] (HP Inc. -> HP Inc.)
R2 QMEmulatorService; C:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [245640 2022-11-08] (Tencent Technology(Shenzhen) Company Limited -> Tencent)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [2909208 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [128376 2022-05-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [20528 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [229944 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [381520 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [293968 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [84424 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [27744 2024-07-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [28752 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [274000 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [549968 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [97848 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [69176 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [950328 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1200696 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [203832 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [306744 2024-09-27] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [532480 2022-12-29] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [184320 2022-12-29] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\WINDOWS\System32\drivers\bthmodem.sys [106496 2022-05-07] (Microsoft Corporation) [File not signed]
R2 googledrivefs31626; C:\Program Files\Google\Drive File Stream\Drivers\31626\googledrivefs31626.sys [384096 2024-07-18] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R3 HPCustomCapDriver; C:\WINDOWS\System32\DriverStore\FileRepository\hpcustomcapdriver.inf_amd64_1421dec2010cc057\x64\hpcustomcapdriver.sys [18984 2024-05-07] (Microsoft Windows Hardware Compatibility Publisher -> HP Inc.)
R3 rtcx21; C:\WINDOWS\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 RtkAvrcp; C:\WINDOWS\System32\drivers\RtkAvrcp.sys [88376 2018-10-23] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R1 TBoxDrv; C:\Program Files\AndroidTbox\TBoxDrv.sys [291912 2020-08-07] (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [48536 2022-05-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [438544 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [90384 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
S1 WinSetupMon; system32\DRIVERS\WinSetupMon.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-12-13 18:05 - 2024-12-13 18:09 - 000033268 _____ C:\Users\jarmi\Desktop\FRST.txt
2024-12-13 18:02 - 2024-12-13 18:08 - 000000000 ____D C:\FRST
2024-12-13 18:01 - 2024-12-13 18:01 - 002402304 _____ (Farbar) C:\Users\jarmi\Desktop\FRST64.exe
2024-12-13 17:23 - 2024-12-13 17:23 - 000150857 _____ C:\Users\jarmi\Downloads\Mladkova_teorie_impotence.pdf
2024-12-13 17:23 - 2024-12-13 17:23 - 000150857 _____ C:\Users\jarmi\Downloads\Mladkova_teorie_impotence(1).pdf
2024-12-13 13:20 - 2024-12-13 13:20 - 000800666 _____ C:\WINDOWS\system32\perfh005.dat
2024-12-13 13:20 - 2024-12-13 13:20 - 000181244 _____ C:\WINDOWS\system32\perfc005.dat
2024-12-13 13:20 - 2024-12-13 13:20 - 000006882 _____ C:\WINDOWS\system32\PerfStringBackup.TMP
2024-12-12 17:44 - 2024-12-12 17:44 - 000000000 ____D C:\Users\jarmi\Desktop\Oslava 80
2024-12-11 07:40 - 2024-12-12 07:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2024-12-03 16:53 - 2024-12-03 17:43 - 000000000 ____D C:\Users\jarmi\Desktop\Lazně Bechyně-21.10-11.11.2024
2024-11-24 08:02 - 2024-11-24 08:02 - 000176010 _____ C:\Users\jarmi\Downloads\Výsledky č. 119. 23.11. 2024.pdf
2024-11-24 08:00 - 2024-11-24 08:00 - 000219527 _____ C:\Users\jarmi\Downloads\BP-2025.pdf
2024-11-19 14:28 - 2024-11-19 14:28 - 000640137 _____ C:\Users\jarmi\Downloads\parte Grulichová(2).pdf
2024-11-19 09:51 - 2024-11-19 09:51 - 000640137 _____ C:\Users\jarmi\Downloads\parte Grulichová(1).pdf
2024-11-19 09:50 - 2024-11-19 09:50 - 000640137 _____ C:\Users\jarmi\Downloads\parte Grulichová.pdf
2024-11-18 08:28 - 2024-11-18 08:28 - 000176272 _____ C:\Users\jarmi\Downloads\Vyjadreni_trid ní_učitelky.pdf
2024-11-14 07:50 - 2024-11-14 07:50 - 000026650 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2024-11-14 07:42 - 2024-11-14 07:42 - 000026650 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2024-12-13 18:10 - 2022-05-07 06:24 - 000000000 ___HD C:\Program Files\WindowsApps
2024-12-13 18:10 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\AppReadiness
2024-12-13 18:00 - 2022-02-11 16:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2024-12-13 17:59 - 2019-10-11 17:24 - 000000000 ___SD C:\Users\jarmi\AppData\Roaming\Microsoft\Credentials
2024-12-13 17:29 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2024-12-13 16:10 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemTemp
2024-12-13 14:46 - 2019-10-11 21:38 - 000000000 ____D C:\Users\jarmi\AppData\Local\D3DSCache
2024-12-13 14:35 - 2022-12-29 20:25 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2024-12-13 13:21 - 2019-10-11 17:27 - 000000000 __SHD C:\Users\jarmi\IntelGraphicsProfiles
2024-12-13 13:17 - 2019-10-11 18:50 - 000000000 ____D C:\ProgramData\AVAST Software
2024-12-13 13:15 - 2022-12-29 20:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2024-12-13 13:15 - 2020-08-23 09:36 - 000012288 ___SH C:\DumpStack.log.tmp
2024-12-13 09:28 - 2022-12-29 20:32 - 001920808 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2024-12-13 09:28 - 2022-05-07 06:22 - 000000000 ____D C:\WINDOWS\INF
2024-12-13 09:28 - 2022-05-07 06:17 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2024-12-13 09:24 - 2022-12-29 20:25 - 000614856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2024-12-13 09:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2024-12-13 09:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2024-12-13 09:17 - 2023-10-12 09:19 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ___SD C:\WINDOWS\system32\UNP
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\PrintDialog
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\SystemResources
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Sgrm
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\setup
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\oobe
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\Dism
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\appraiser
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellExperiences
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\ShellComponents
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\bcastdvr
2024-12-13 09:17 - 2022-05-07 06:24 - 000000000 ____D C:\ProgramData\USOPrivate
2024-12-13 08:35 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\CbsTemp
2024-12-13 08:34 - 2022-05-07 06:25 - 000077312 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll
2024-12-13 08:34 - 2022-05-07 06:24 - 000118784 _____ (Khronos Group) C:\WINDOWS\system32\opencl.dll
2024-12-13 08:15 - 2022-12-29 20:30 - 003212800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2024-12-13 07:47 - 2021-08-11 10:55 - 000002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2024-12-13 07:47 - 2021-08-11 10:55 - 000002213 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-12-12 17:53 - 2019-10-12 09:39 - 000000000 ____D C:\Users\jarmi\AppData\Roaming\vlc
2024-12-12 09:15 - 2022-12-29 20:43 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2024-12-12 09:14 - 2022-10-14 06:06 - 000002080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2024-12-12 09:14 - 2022-10-14 06:06 - 000002068 _____ C:\Users\Public\Desktop\Adobe Acrobat.lnk
2024-12-12 07:56 - 2019-10-11 18:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2024-12-12 07:43 - 2022-12-29 20:43 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2024-12-12 07:43 - 2019-10-11 18:25 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2024-12-10 15:37 - 2023-11-08 07:27 - 000002015 _____ C:\Users\defaultuser1.DESKTOP-JQ1TVNP\Desktop\Google Slides.lnk
2024-12-10 15:37 - 2023-11-08 07:27 - 000002015 _____ C:\Users\defaultuser1.DESKTOP-JQ1TVNP\Desktop\Google Sheets.lnk
2024-12-10 15:37 - 2023-11-08 07:27 - 000002003 _____ C:\Users\defaultuser1.DESKTOP-JQ1TVNP\Desktop\Google Docs.lnk
2024-12-10 15:37 - 2021-09-21 08:33 - 000002180 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2024-12-10 15:37 - 2021-09-21 08:33 - 000002015 _____ C:\Users\Default\Desktop\Google Slides.lnk
2024-12-10 15:37 - 2021-09-21 08:33 - 000002015 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2024-12-10 15:37 - 2021-09-21 08:33 - 000002003 _____ C:\Users\Default\Desktop\Google Docs.lnk
2024-12-09 07:47 - 2021-05-20 13:32 - 000000000 ____D C:\Users\jarmi\AppData\Local\Avast Software
2024-12-07 07:27 - 2020-06-08 13:09 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2024-12-07 07:27 - 2020-06-08 13:09 - 000002281 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2024-12-03 16:39 - 2022-12-29 20:43 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2395513401-4107119636-2233282249-1001
2024-12-03 16:39 - 2022-12-29 20:43 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2395513401-4107119636-2233282249-1001
2024-12-03 16:39 - 2021-10-03 11:28 - 000002388 _____ C:\Users\jarmi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2024-11-25 07:32 - 2022-12-29 20:43 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-11-25 07:32 - 2022-12-29 20:43 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2024-11-24 08:17 - 2022-12-29 20:43 - 000003904 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2395513401-4107119636-2233282249-1001UA
2024-11-24 08:17 - 2022-12-29 20:43 - 000003840 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskUserS-1-5-21-2395513401-4107119636-2233282249-1001Core
2024-11-18 15:07 - 2022-12-29 17:15 - 000000000 ____D C:\Users\jarmi
2024-11-14 13:19 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2024-11-14 13:18 - 2022-12-29 15:49 - 000000000 ____D C:\WINDOWS\HoloShell
2024-11-14 13:18 - 2022-05-07 06:24 - 000000000 ____D C:\WINDOWS\DiagTrack
2024-11-14 13:18 - 2022-05-07 06:17 - 000000000 ____D C:\WINDOWS\servicing
2024-11-13 08:26 - 2019-10-11 17:38 - 000000000 ____D C:\WINDOWS\system32\MRT
2024-11-13 08:19 - 2024-11-12 15:39 - 000000000 ____D C:\Users\jarmi\Desktop\Velká kunratická 2024
2024-11-13 08:13 - 2019-10-11 17:38 - 202035632 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2024-11-13 07:24 - 2021-05-20 13:50 - 000002505 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2024-11-13 07:24 - 2021-05-20 13:50 - 000002470 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
==================== Files in the root of some directories ========
2020-11-29 09:37 - 2020-11-29 09:37 - 000003584 _____ () C:\Users\jarmi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-03-29 09:28 - 2024-01-04 11:33 - 000001536 _____ () C:\Users\jarmi\AppData\Local\GfxMetrics.cfg
2024-07-20 07:16 - 2024-07-20 07:16 - 000000000 _____ () C:\Users\jarmi\AppData\Local\{9670A366-229E-4F86-924A-BA5B6D700E25}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-12-2024
Ran by jarmi (13-12-2024 18:12:50)
Running from C:\Users\jarmi\Desktop
Microsoft Windows 11 Home Version 23H2 22631.4602 (X64) (2022-12-30 06:38:54)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-2395513401-4107119636-2233282249-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2395513401-4107119636-2233282249-503 - Limited - Disabled)
Guest (S-1-5-21-2395513401-4107119636-2233282249-501 - Limited - Disabled)
jarmi (S-1-5-21-2395513401-4107119636-2233282249-1001 - Administrator - Enabled) => C:\Users\jarmi
WDAGUtilityAccount (S-1-5-21-2395513401-4107119636-2233282249-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1029-1033-7760-BC15014EA700}) (Version: 24.005.20320 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601102}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 24.9.6130 - Avast Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 130.0.27176.93 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Backup and Sync from Google (HKLM\...\{696895F7-52C7-4C9E-998B-C7E0CC907092}) (Version: 3.57.4256.0809 - Google, Inc.)
Canon MP210 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP210_series) (Version: - )
Emilka Holubová - Montezumův poklad (HKLM-x32\...\Emilka Holubová - Montezumův poklad) (Version: - )
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{0B736177-814A-4ADE-81D1-66A0FDD55BB4}) (Version: 1.1.11.0 - Epic Games, Inc.)
GameLoop (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 101.0.3.0 - Google LLC)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.140 - Google LLC)
HP Audio Switch (HKLM-x32\...\{20A40E7C-E470-4E9F-9B5C-DDB2C205E856}) (Version: 1.0.154.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{016FBF6D-AEDE-4D33-87B4-DF6815EF674A}) (Version: 1.4.0.485 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{35556CCA-F14E-48F3-93F4-E29C4B3DBE30}) (Version: 1.4.485.0 - HP Inc.)
HP Registration Service (HKLM-x32\...\{280936C6-5D40-4AE1-9C13-F44E6208DDC4}) (Version: 1.0.0.65 - HP Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6446 - Intel Corporation)
Kontrola stavu osobního počítače s Windows (HKLM\...\{D1F15F7A-707A-42BD-BE6B-3380616F796D}) (Version: 3.6.2204.08001 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Ledová královna 1.1 (HKLM-x32\...\{Ledova kralovna}_is1) (Version: - Špidla Data Processing, s.r.o.)
Ledová královna 3 - Vraní čarodějka 1.1 (HKLM-x32\...\{Ledova kralovna 3 - Vrani carodejka}_is1) (Version: - Špidla Data Processing, s.r.o.)
Legendy Avalonu Solitaire v1.1 (HKLM-x32\...\{Legendy Avalonu Solitaire}_is1) (Version: - Špidla Data Processing, s.r.o.)
LibreOffice 6.3.2.2 (HKLM\...\{6110D2CC-70B4-415E-AF5A-7BB496AB264B}) (Version: 6.3.2.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.86 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.86 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\OneDriveSetup.exe) (Version: 24.221.1103.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29334 (HKLM\...\{2E11EF4E-901F-4B2D-B68E-3DB2A566C857}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29334 (HKLM\...\{8A3F7D5B-422D-49D9-84F7-8DC1B7782967}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.28.29334 (HKLM-x32\...\{14C49FC8-3E9B-4F29-8526-26629B5CF30B}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.28.29334 (HKLM-x32\...\{0D01A812-82A1-481F-8546-8E28E976F8DF}) (Version: 14.28.29334 - Microsoft Corporation) Hidden
Minecraft Launcher (HKLM-x32\...\{733C3ACB-432D-4880-B0E1-660000D7974D}) (Version: 1.0.0.0 - Mojang)
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 133.0.3 (x64 cs)) (Version: 133.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0.3 - Mozilla)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.10 - Tracker Software Products Ltd)
PDF-XChange Lite Home (HKLM\...\{3C6F63C0-67F9-4943-9798-D71A48D8EDD0}) (Version: 8.0.344.0 - Tracker Software Products (Canada) Ltd.) Hidden
PDF-XChange Lite Home (HKLM-x32\...\{018c51db-40e1-4a66-8497-c6de2718c4af}) (Version: 8.0.344.0 - Tracker Software Products (Canada) Ltd.)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.97 - REALTEK Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8924.1 - Realtek Semiconductor Corp.)
Roblox Player for jarmi (HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\roblox-player) (Version: - Roblox Corporation)
Roblox Studio for jarmi (HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\...\roblox-studio) (Version: - Roblox Corporation)
Sedm Bran v1.0 (HKLM-x32\...\{Sedm Bran}_is1) (Version: - Špidla Data Processing, s.r.o.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 10.50 - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Packages:
=========
Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-12-12] ()
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2815.0_x64__343d40qqvtj1t [2020-02-22] (Amazon.com)
Booking.com EMEA: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comEMEABigsavingso_2.0.5.0_x64__mgae2k3ys4ra0 [2024-11-14] (Priceline Partner Network)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_9.7.0.0_x64__kgqvnymyfvs32 [2024-12-13] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_4.6.1.0_x64__kgqvnymyfvs32 [2024-11-18] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2920.1.0_x64__kgqvnymyfvs32 [2024-12-06] (king.com)
Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2024.3.211.0_neutral__6rarf9sa4v8jt [2024-10-19] (Disney)
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2024-11-13] (HP Inc.)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.481.0_x86__v10z8vjag6ke6 [2019-05-25] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_2.6.4.0_x64__v10z8vjag6ke6 [2024-12-13] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.3.7.0_x64__v10z8vjag6ke6 [2024-11-13] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_156.1.1125.0_x64__v10z8vjag6ke6 [2024-10-17] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.40.48.0_x64__v10z8vjag6ke6 [2024-11-25] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_2.1.4.0_x64__v10z8vjag6ke6 [2024-11-15] (HP Inc.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_3.0.41.0_x64__w1wdnht996qgy [2024-12-13] (LinkedIn) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-15] (Microsoft Corp.)
Simple Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.5.22.0_x64__kx24dqmazqk8j [2024-10-17] (Random Salad Games LLC)
sMedio True DVD for HP -> C:\Program Files\WindowsApps\0E3921EB.sMedioTrueDVDforHP_1.1.160.0_x64__agwrg61xdd7p4 [2024-06-06] (sMedio Inc.)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0 [2024-12-06] (Spotify AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2447.5.0_x64__cv1g1gvanyjgm [2024-12-06] (WhatsApp Inc.) [Startup Task]
WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.311.2039.0_x64__8wekyb3d8bbwe [2024-11-18] (Microsoft Corp.)
WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.318.2304.0_x64__8wekyb3d8bbwe [2024-11-19] (Microsoft Corp.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{1108FD1C-492F-4251-B9DB-77F0274267B2}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.187.37\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{2EF7E390-2F7C-4F9A-9B7D-4A87B56B711D}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.173.51\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{2FDB3305-19B8-4FE2-972B-ED5E97CBBD6E}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.39\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{38971E90-14FD-44F6-AA45-1447B653F873}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.173.45\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{5EA43877-C6D8-4885-B77A-C0BB27E94372}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.39\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{5FC44EBC-3A1F-4FBB-85E5-34405788C8D7}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.187.41\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{608D599A-DCA6-4A7C-BED7-AFCD8465345A}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.175.29\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{64C6EFB9-8F79-4106-B975-067448DC768F}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.177.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{6DD6748E-7DAE-47EF-B4D5-03AA1B06D697}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.187.39\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{72726D01-426C-4B35-8266-B4496CAA889E}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.183.29\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{78C1ADF4-6DAE-4164-AEFA-4E3EAD9E750A}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.19\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{7C9A348D-C321-47AC-904F-150312A5430F}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.175.27\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{81093D63-7825-417B-BFC8-ADC63FA4E53D}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.39\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{83F21C4B-8643-4A08-A29A-822AFD835037}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.193.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{88B20FC8-EBD6-4181-B5F6-50F45BFF722E}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.167.21\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{997809F3-33FD-4FD6-A2ED-CEF50F3263B1}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.169.31\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{A087E49F-1F8E-4603-A200-55537B737421}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.25\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{ABF66F82-B04C-4FE4-8272-661539463FE1}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.171.37\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{AE1542A7-3989-481B-93A9-1500C5F56B14}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.185.27\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{B258532D-3529-4BEB-BF38-F08F98B3968C}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{B29F5F83-90DF-479A-BDE7-8A9F4412E394}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.171.39\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{BC4C72EF-3055-4A6D-86E1-AE4D24DB63CA}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.35\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{BFBE0943-74C5-40E0-9E80-0B808109E95D}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.163.19\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{CAE1760A-CB07-481B-8F9A-BC65510AF5D5}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.185.21\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{D1CE12B0-2529-4B24-BE8E-189735EA0DC1}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.165.21\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{DAA7499A-B3AC-4419-A89B-124318504051}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.185.29\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{E3D57E77-FE71-4D06-BD34-D48820074909}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.181.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{E76F97B1-1AE9-497C-9FA4-F57BBABAD54A}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.185.17\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{E8791438-3525-48BF-A600-C577AD1674C2}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.173.49\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{F1658933-2997-4DDB-869C-061D53A9718E}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.195.21\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001_Classes\CLSID\{F1CBF5EB-347F-4E4C-90AC-E43339FC34EC}\InprocServer32 -> C:\Users\jarmi\AppData\Local\Microsoft\EdgeUpdate\1.3.173.55\psuser_64.dll => No File
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2022-02-01] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2022-02-01] (Google LLC -> Google)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\101.0.3.0\drivefsext.dll [2024-12-10] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_5a1ab3b0567b3cdb\igfxDTCM.dll [2020-03-10] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2024-09-27] (Avast Software s.r.o. -> Gen Digital Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2024-11-17 08:54 - 2024-11-17 08:54 - 000160768 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\af89c84f9fe01eef5a0efb6811bc91e7\BRIDGECommon.ni.dll
2024-11-17 08:57 - 2024-11-17 08:57 - 000125440 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\fa18b437fcd57cf7e0cde905f6ba028b\BridgeExtension.ni.dll
2024-11-17 08:57 - 2024-11-17 08:57 - 000395264 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\5069d194f7712314d2b18dd1552ebad8\CleanStartController.ni.dll
2024-11-17 08:59 - 2024-11-17 08:59 - 000138240 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\993c43157b5ce4afa4363494107ed912\Interop.IWshRuntimeLibrary.ni.dll
2024-11-17 08:57 - 2024-11-17 08:57 - 000079872 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NativeInterop\7f88456da45c4815a6dc0314ca35cb26\NativeInterop.ni.dll
2024-11-17 08:57 - 2024-11-17 08:57 - 000145920 _____ () [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Registratio4eabc192#\6e236556d7671815948f1ebfe49fcf4a\RegistrationUtilities.ni.dll
2024-11-17 08:59 - 2024-11-17 08:59 - 000134656 _____ (hardcodet.net) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\326e52fc3036c70d3347610c8ae3c360\Hardcodet.Wpf.TaskbarNotification.ni.dll
2024-11-17 08:57 - 2024-11-17 08:57 - 000136704 _____ (HP Inc.) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\c1474af18461ea839471c2ce5c89df4a\CommonPortable.ni.dll
2024-11-17 08:59 - 2024-11-17 08:59 - 001591296 _____ (Mark Heath) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\53a242cb9aae3a352991e515997c504d\NAudio.ni.dll
2024-11-17 08:59 - 2024-11-17 08:59 - 003128832 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\6e61935f642a5d3a7866781f9803e3ef\Newtonsoft.Json.ni.dll
2024-11-17 08:55 - 2024-11-17 08:55 - 002305536 _____ (Newtonsoft) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\eff6a62e31c3eba95a22454139f93c43\Newtonsoft.Json.ni.dll
2024-11-17 08:59 - 2024-11-17 08:59 - 000793088 _____ (The Apache Software Foundation) [File not signed] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\62e23665b34eb1ea0246fd7280758781\log4net.ni.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {4EA4775C-AF39-4D2E-80E2-7F4DF4A4F4BC} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {4EA4775C-AF39-4D2E-80E2-7F4DF4A4F4BC} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2395513401-4107119636-2233282249-1001 -> {4EA4775C-AF39-4D2E-80E2-7F4DF4A4F4BC} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2024-11-13] (HP Inc. -> HP Inc.)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2024-11-13] (HP Inc. -> HP Inc.)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2018-09-15 08:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2395513401-4107119636-2233282249-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jarmi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi: Realtek RTL8821CE 802.11ac PCIe Adapter -> rtwlane.sys
Ethernet: Realtek PCIe GbE Family Controller -> rtcx21x64.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{6A69B8CE-A4A6-4E72-9E3D-D4E057C66914}] => (Allow) C:\Program Files\AndroidTbox\TBoxSVC.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{1DD2DFA8-A22D-4C8F-8A0D-09FF97F8399B}] => (Allow) C:\Program Files\AndroidTbox\SUPInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{F9D25028-E3C9-40A4-9A8B-FB5DBCD1205C}] => (Allow) C:\Program Files\AndroidTbox\TBoxBalloonCtrl.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{1AECFF7E-A1C5-4515-ADEA-8CA266E1E988}] => (Allow) C:\Program Files\AndroidTbox\SUPUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{B6A4D4F4-442C-4F01-BAC5-EBDEADFC796B}] => (Allow) C:\Program Files\AndroidTbox\NetFltInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{C12AC81C-D135-4D82-9871-0C7765DF320D}] => (Allow) C:\Program Files\AndroidTbox\NetFltUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{EA5A4D5B-C0FB-4FDE-BF8E-D715D8AE80C6}] => (Allow) C:\Program Files\AndroidTbox\SUPLoggerCtl.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{ADCC4D76-09CA-40B4-BF04-45E276F88986}] => (Allow) C:\Program Files\AndroidTbox\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{22E36A4C-1489-417B-914A-5EAFC129090A}] => (Allow) C:\Program Files\AndroidTbox\USBUninstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{D645F39A-E418-4401-95EF-9BA409BABB1C}] => (Allow) C:\Program Files\AndroidTbox\TBoxManage.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{CC82E580-5A36-40DC-AEED-E99135DAC94E}] => (Allow) C:\Program Files\AndroidTbox\TBoxNetDHCP.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{D67DC23B-8929-41C0-923A-E1D721955E56}] => (Allow) C:\Program Files\AndroidTbox\USBInstall.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{4F50AFC3-89DD-4929-AE14-EB573F32A600}] => (Allow) C:\Program Files\AndroidTbox\TBoxExtPackHelperApp.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{AD0CE564-6713-4F27-A926-01A348AAD0EF}] => (Allow) C:\Program Files\AndroidTbox\TBoxSDL.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{14F24585-99FA-41A3-A1FA-EC4947791B34}] => (Allow) C:\Program Files\AndroidTbox\TBoxNetNAT.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{35D10C20-60FF-4B2A-8BA8-B5CEBAA1C726}] => (Allow) C:\Program Files\AndroidTbox\TBoxHeadless.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{1690DA7C-5887-49C3-AF97-7D0D12502C81}] => (Allow) C:\Program Files\AndroidTbox\THypervBox.exe (Tencent Technology(Shenzhen) Company Limited -> Hyperv Corporation)
FirewallRules: [{8C3F007C-BCAA-4152-9B0D-06C3A2C6C1E3}] => (Allow) c:\program files\txgameassistant\ui\TxGaDcc.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{C8C55867-A997-46F6-B406-D5CFA2B0B388}] => (Allow) c:\program files\txgameassistant\ui\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{37AEDC76-E226-480C-B6DB-31193E5D4871}] => (Allow) c:\program files\txgameassistant\ui\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{74925235-486F-47CD-B241-AFA0F60051AA}] => (Allow) c:\program files\txgameassistant\ui\adb.exe () [File not signed]
FirewallRules: [{24EEE716-279B-4453-9823-C96BB811B84E}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulatorEn.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{903E10C4-9BA4-40B8-907F-183B1CAE5CD3}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulatorEx.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{A14410DF-C35D-423E-A8E2-80AC74FD7701}] => (Allow) c:\program files\txgameassistant\ui\AndroidEmulator.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{290117BE-6896-495B-828E-FFA4AAD8C9BE}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{642CF4E8-FD28-4A80-A676-3CE6A52F97BA}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{FF3C7B02-E040-4BF2-AA92-36C2ED35E339}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{EC77894A-3A09-462A-A435-B895A16C053D}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{8E66F3B6-3A9C-4F0E-9CA4-E690C700A5AB}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{85860D3C-FB93-4DA0-842B-B6984F34D0AF}] => (Allow) C:\Program Files\TxGameAssistant\AppMarket\DL\syzs_dl_svr.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{5EBD8BBE-4718-4C41-8C19-9657881A8195}] => (Allow) c:\program files\txgameassistant\appmarket\GF186\TUpdate.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{494E76FF-CD0A-4136-BA0E-8EABFAE112BD}] => (Allow) c:\program files\txgameassistant\appmarket\GameDownload.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{6BD9384D-486C-40FD-A204-DB48E981D51E}] => (Allow) c:\program files\txgameassistant\appmarket\QQExternal.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{352C9862-90A9-4929-9C90-220614EB103B}] => (Allow) c:\program files\txgameassistant\appmarket\bugreport.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{5A260E9B-4851-4FDF-8A78-8863F93DE6E0}] => (Allow) c:\program files\txgameassistant\appmarket\TInst.exe (Tencent Technology(Shenzhen) Company Limited -> )
FirewallRules: [{1DAAAE8F-6D07-43C4-B2BA-898C86F46CDD}] => (Allow) c:\program files\txgameassistant\appmarket\AppMarket.exe (Tencent Technology(Shenzhen) Company Limited -> Tencent)
FirewallRules: [{E0B899CE-8A5C-4FDA-A74F-0C44DF9CFFCA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RecRoom\Recroom_Release.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [{8A00181F-A442-4F54-A075-F933F475C438}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RecRoom\Recroom_Release.exe (EasyAntiCheat Oy -> Epic Games, Inc)
FirewallRules: [UDP Query User{2C9135E9-C6F4-43F4-8A84-7530BD467ED6}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{96C1FD75-8BDA-47C1-B829-8989C6B15383}C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) C:\program files (x86)\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{C20237C2-68F1-493F-B17B-B020CE01A70E}C:\program files (x86)\steam\steamapps\common\between two castles - digital edition\betweentwocastles\binaries\win64\betweentwocastles-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\between two castles - digital edition\betweentwocastles\binaries\win64\betweentwocastles-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [TCP Query User{ED38A0EE-9C21-49D5-8276-6A40B33D7D9F}C:\program files (x86)\steam\steamapps\common\between two castles - digital edition\betweentwocastles\binaries\win64\betweentwocastles-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\between two castles - digital edition\betweentwocastles\binaries\win64\betweentwocastles-win64-shipping.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{04A2F735-62B6-4923-9E68-218DF7C313E2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Between Two Castles - Digital Edition\BetweenTwoCastles.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{DE257D73-172E-4CEB-AE58-52E0D2367294}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Between Two Castles - Digital Edition\BetweenTwoCastles.exe (Epic Games, Inc.) [File not signed]
FirewallRules: [{1676C492-ECE8-478A-AA35-0256C08C6246}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pleasure Puzzle Portrait\PP1.exe () [File not signed]
FirewallRules: [{B8E5C11D-A932-4279-A49A-7CF889DD4315}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Pleasure Puzzle Portrait\PP1.exe () [File not signed]
FirewallRules: [{31835432-1F82-446A-90DA-B0D510A65FE5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Timberman\Timberman.exe () [File not signed]
FirewallRules: [{C7BB3B90-37B1-430B-B3B0-48DA27C84B6F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Timberman\Timberman.exe () [File not signed]
FirewallRules: [{497342FD-AAEA-4107-8994-ADF2FB13CDB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Greed 2 Forbidden Experiments\GreedFE.exe () [File not signed]
FirewallRules: [{8C364FD6-FBDE-4C04-9805-C6120A004DBF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Greed 2 Forbidden Experiments\GreedFE.exe () [File not signed]
FirewallRules: [{224D56B7-FB56-4A3D-9300-E09687EB3CFB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Draw Slasher\Draw Slasher.exe () [File not signed]
FirewallRules: [{5F21E6AF-6BFE-4ACC-AD6F-B63DD6DF2F11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Draw Slasher\Draw Slasher.exe () [File not signed]
FirewallRules: [{6F9685AE-B336-4D7F-9617-6FF9754FC6CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Chronicles of Jonah and the Whale\JonahAndTheWhale.exe (e-FunSoft Games) [File not signed]
FirewallRules: [{7755332A-9E6D-4620-8D3F-8C49EB9BD528}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Chronicles of Jonah and the Whale\JonahAndTheWhale.exe (e-FunSoft Games) [File not signed]
FirewallRules: [{6BEEB1AA-2F01-47B3-A74E-81E69BC0B53F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Babylonia\Babylonia.exe () [File not signed]
FirewallRules: [{96C991D5-7E83-4D83-8F7D-A47034909519}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Babylonia\Babylonia.exe () [File not signed]
FirewallRules: [{B1C89EC9-792E-4048-919F-45C842AB3597}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unsolved Mystery Club - Ancient Astronauts\Ancient Astronauts.exe () [File not signed]
FirewallRules: [{58B0CAEF-8271-4624-9D87-9AAEBEA716FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unsolved Mystery Club - Ancient Astronauts\Ancient Astronauts.exe () [File not signed]
FirewallRules: [{072C575A-E118-44CF-B8AC-33E8C14BC770}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nordic Storm Solitaire\Nordic Storm Solitaire.exe () [File not signed]
FirewallRules: [{22A6BF55-6101-4AFB-9260-88C42CDFA2C7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Nordic Storm Solitaire\Nordic Storm Solitaire.exe () [File not signed]
FirewallRules: [{BE5589E9-75A7-411F-8F09-51DC4B8237AD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Farm 2\Magic Farm 2.exe () [File not signed]
FirewallRules: [{EF7E1B97-3A85-41E2-8AF9-84FCA109D93F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Farm 2\Magic Farm 2.exe () [File not signed]
FirewallRules: [{D31FF7FE-5299-41DF-8557-BBFE3688F8B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheEnthrallingRealms2\AlchemistsTale.exe () [File not signed]
FirewallRules: [{15453F03-FBB8-4353-8AA1-352D6A9A2965}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TheEnthrallingRealms2\AlchemistsTale.exe () [File not signed]
FirewallRules: [{26A6E9C4-38FA-400F-BAE1-3D0961E5800B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Adventures of Jason and the Argonauts\Jason.exe () [File not signed]
FirewallRules: [{A7AF0BFC-0090-4529-B0EC-88624E5899CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Adventures of Jason and the Argonauts\Jason.exe () [File not signed]
FirewallRules: [{C5821B21-CC71-49CC-AE88-508883E669BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Far Kingdoms Awakening Solitaire\AwakeningSolitaire.exe () [File not signed]
FirewallRules: [{034CFA8D-AB4F-444D-850E-9EF756746E08}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Far Kingdoms Awakening Solitaire\AwakeningSolitaire.exe () [File not signed]
FirewallRules: [{9A223F24-35AD-44E9-9B4C-C54D0C9ADAAA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{C566EA73-B213-46EA-993E-2FBD48EB0E75}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{1C6EE464-CBFD-4BC5-8691-6B72E55F9CA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Treasures of Montezuma 5\TheTreasuresOfMontezuma5.exe () [File not signed]
FirewallRules: [{3F5ADAB4-1D22-4365-9486-55F0584F2657}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Treasures of Montezuma 5\TheTreasuresOfMontezuma5.exe () [File not signed]
FirewallRules: [{40250F0E-1916-4C5D-B05D-9FD6AC8E75BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Montezuma 4\TheTreasuresOfMontezuma4.exe (SPL) [File not signed]
FirewallRules: [{8D9A4D94-31DA-4794-AE3F-C299FA36B3F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Montezuma 4\TheTreasuresOfMontezuma4.exe (SPL) [File not signed]
FirewallRules: [{E747F945-95D1-436B-95F3-07D3D2D481F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Treasures of Montezuma 3\TreasuresOfMontezuma3.exe () [File not signed]
FirewallRules: [{426833DC-E3AE-4053-A0AB-2D65DA36A9C8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Treasures of Montezuma 3\TreasuresOfMontezuma3.exe () [File not signed]
FirewallRules: [{D6BCAB96-E57F-410E-9DD9-E7E9E76AC96A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{9491D6B0-7003-432E-908E-57E32D80F26C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => No File
FirewallRules: [{1B642DBB-1B77-4C45-BA38-261A7B981B7D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{19673386-9297-4721-9274-F6B175BE86F4}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{DE072947-E6B3-49C9-A83A-914E6D921990}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{D2393418-93D4-43C1-A491-CD2A229C19E8}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => No File
FirewallRules: [{952B47FC-2141-4B38-B6BC-5C990DF1347B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12026.20320.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0A22B8D2-1C9C-4D7C-8D78-A87B390D21FB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F82B55BA-DC25-4655-BD14-7189233B3713}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{66430C44-F633-42D0-9091-A69F6CD21416}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{AA93C238-F6CE-43D2-A196-11B5B38508BD}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F0B9895C-EB93-4C52-B76E-6E193282D6D1}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{D46D9E62-EB1E-4956-8E3E-CC0CE70991F8}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{B01FDC99-F135-496D-AD99-639DB3F900C9}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1103.3051.6995_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{241FDB92-0C59-4915-AA94-E3278D57A988}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1103.3051.6995_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DE42166F-C689-4BCE-92BB-9EC64C363EA1}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{A2463DC1-E967-411A-A7B8-30DEAEECED00}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5A97C31B-AE97-42C3-B453-4B24EAC9CE94}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{230AE30C-A717-42A4-8079-AB27D38E8C3F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FEC7343B-E2FC-4718-8459-2952136C14D6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{55BA4885-BD7D-41DB-9C97-8264CD123CE8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{30F566F3-6AD0-4CBB-8381-83334894E8FB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6AA59D2-8485-4DE0-93F2-7EDD440E7578}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{1623DDC7-185D-4E6E-B22F-3D8F819D39B6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{97E71D55-432C-477A-BAC3-0FB8176C6015}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{C8B426C4-F814-4CCD-8270-2C368BD6627E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.252.442.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{113D198F-C6AB-4E28-ABAF-E77B061D7CFD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.133.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{505EB692-5125-41D0-AFCC-6E3B3435C006}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.133.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DBD0DDB4-77FD-4350-88C7-642CF017686F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.133.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6AE6F208-D793-4328-9ABD-49DAFE8DD472}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.133.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9BB2F75B-2481-4C62-A068-8A729F052682}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.86\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3167FCC7-35EB-4B37-84F8-DE7876A39110}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
04-12-2024 11:08:05 Naplánovaný kontrolní bod
08-12-2024 08:15:49 Windows Update
12-12-2024 07:49:33 Instalační služba modulů systému Windows
13-12-2024 07:43:34 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (12/12/2024 07:38:11 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv; Popis = Windows Update; Chyba = 0x81000101).
Error: (11/30/2024 06:11:51 AM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 10.0.22621.4249 programu ShellExperienceHost.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (11/19/2024 08:02:02 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, identifikátor PID: 4280, identifikátor PID ProfSvc: 1804.
Error: (11/19/2024 08:02:02 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5140, identifikátor PID ProfSvc: 1804.
Error: (11/19/2024 08:02:02 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5140, identifikátor PID ProfSvc: 1804.
Error: (11/19/2024 08:02:02 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5140, identifikátor PID ProfSvc: 1804.
Error: (11/19/2024 08:02:02 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5140, identifikátor PID ProfSvc: 1804.
Error: (11/19/2024 08:02:02 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5140, identifikátor PID ProfSvc: 1804.
System errors:
=============
Error: (12/13/2024 06:12:55 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9P4W8RFN9M2T-AD2F1837.HPSystemEventUtility.
Error: (12/13/2024 06:12:19 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NKSQGP7F2NH-5319275A.WhatsAppDesktop.
Error: (12/13/2024 05:59:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-JQ1TVNP)
Description: Server microsoft.windowscommunicationsapps_16005.14326.22098.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/13/2024 04:42:47 PM) (Source: ACPI) (EventID: 4) (User: )
Description: AMLI: Systém ACPI BIOS se pokouší o čtení z nesprávné adresy V/V portu (0x75), která se nachází v chráněném rozsahu adres 0x74 - 0x76. Následkem toho může dojít k nestabilitě systému. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error: (12/13/2024 04:42:47 PM) (Source: ACPI) (EventID: 5) (User: )
Description: AMLI: Systém ACPI BIOS se pokouší o zápis na nesprávnou adresu portu V/V (0x74), která se nachází v chráněném rozsahu adres 0x74 - 0x76. Následkem toho může dojít k nestabilitě systému. Obraťte se na prodejce systému s žádostí o odbornou pomoc.
Error: (12/13/2024 03:16:44 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.
Error: (12/13/2024 02:05:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9NTXGKQ8P7N0-MicrosoftWindows.CrossDevice.
Error: (12/13/2024 01:18:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Aktualizace Google (gupdate) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
================Event[0]
Date: 2024-03-24 08:15:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.1483.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
Date: 2024-03-24 08:15:09
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.303.1483.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16400.2
Kód chyby: 0x80240022
Popis chyby: V daném programu nelze zkontrolovat aktualizace definic.
CodeIntegrity:
===============
Date: 2024-12-13 18:14:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: AMI F.23 03/29/2019
Motherboard: HP 843F
Processor: Intel(R) Core(TM) i5-8400 CPU @ 2.80GHz
Percentage of memory in use: 63%
Total physical RAM: 8027.59 MB
Available physical RAM: 2896.77 MB
Total Virtual: 10587.59 MB
Available Virtual: 3579.27 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:930.28 GB) (Free:681.59 GB) (Model: ST1000DM003-1SB102) NTFS
Drive g: (Google Drive) (Fixed) (Total:15 GB) (Free:0.04 GB) (Model: ST1000DM003-1SB102) FAT32
\\?\Volume{98728e43-805f-4211-a85f-0379d7ea4128}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.35 GB) NTFS
\\?\Volume{e512ad4f-dcf2-4452-bde5-4c6181fb04ae}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.19 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==================== End of Addition.txt =======================
Přispějete na provoz fóra?