Prosím o kontrolu logu.

Zpráva

Martin000 · #1 Příspěvek od **Martin000** » 20 led 2025 12:58

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2025
Ran by hp (20-01-2025 12:54:09)
Running from C:\Users\hp\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5371 (X64) (2024-03-12 14:02:19)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

(If an entry is included in the fixlist, it will be removed.)

Administrator (S-1-5-21-1280876858-3732436193-794426282-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1280876858-3732436193-794426282-503 - Limited - Disabled)
Guest (S-1-5-21-1280876858-3732436193-794426282-501 - Limited - Disabled)
hp (S-1-5-21-1280876858-3732436193-794426282-1001 - Administrator - Enabled) => C:\Users\hp
WDAGUtilityAccount (S-1-5-21-1280876858-3732436193-794426282-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411}
FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AVG AntiVirus Free (HKLM\...\AVG Antivirus) (Version: 24.12.9725.2390 - Gen Digital Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.31 - Piriform)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.265 - Google LLC)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 132.0.2957.115 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.146 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Czech) 2007 (HKLM-x32\...\{90120000-0015-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Excel MUI (Czech) 2007 (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Czech) 2007 (HKLM-x32\...\{90120000-00BA-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Czech) 2007 (HKLM-x32\...\{90120000-0044-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Czech) 2007 (HKLM-x32\...\{90120000-00A1-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Czech) 2007 (HKLM-x32\...\{90120000-001A-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Czech) 2007 (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (Czech) 2007 (HKLM-x32\...\{90120000-001F-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Slovak) 2007 (HKLM-x32\...\{90120000-001F-041B-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Czech) 2007 (HKLM-x32\...\{90120000-002C-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Czech) 2007 (HKLM-x32\...\{90120000-0019-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Czech) 2007 (HKLM\...\{90120000-002A-0405-1000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Czech) 2007 (HKLM-x32\...\{90120000-006E-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Czech) 2007 (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1280876858-3732436193-794426282-1001\...\OneDriveSetup.exe) (Version: 24.244.1204.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7944 - Realtek Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Teta CEWE fotosvet (HKLM\...\Teta CEWE fotosvet) (Version: 7.4.4 - CEWE Stiftung u Co. KGaA)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)

Packages:
=========
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_2.7.9181.0_x86__8wekyb3d8bbwe [2024-10-01] (Microsoft Studios)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.6.12100.0_x64__8wekyb3d8bbwe [2025-01-11] (Microsoft Studios)
Microsoft Sudoku -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_2.11.8191.0_x64__8wekyb3d8bbwe [2024-09-23] (Microsoft Studios)
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_4.5.10081.0_x64__8wekyb3d8bbwe [2024-11-03] (Microsoft Studios)
Spotify – hudba a podcasty -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0 [2025-01-19] (Spotify AB) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1280876858-3732436193-794426282-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> rundll32.exe "C:\Program Files\Synaptics\SynTP\SynTPCpl.dll",ShowDevicePropPage 1
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2210608 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2019-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVG\Antivirus\ashShell.dll [2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\hp\Desktop\Martin - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"

==================== Loaded Modules (Whitelisted) =============

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) =============

BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-26] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

2024-06-12 18:23 - 2024-06-12 18:23 - 000000375 _____ C:\Windows\system32\drivers\etc\hosts.ics

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1280876858-3732436193-794426282-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\hp\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\75e2d44448be52d9dddc9da72a63e4b5.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

Network Binding:
=============
Wi-Fi 2: Realtek RTL8188EU Wireless LAN 802.11n USB 2.0 Network Adapter -> rtwlanu.sys
Wi-Fi: Realtek RTL8723BE 802.11 bgn Wi-Fi Adapter -> rtwlane02.sys
Ethernet: Realtek PCIe FE Family Controller -> rt640x64.sys

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{D0FA4C7E-3185-4139-9A61-71FBD2A2E6D7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{374B0FC0-0B53-4D3E-ADEB-E7F0E1E4A66C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{85E1D229-DF93-4E30-ACD4-200E3C5390DE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3AB503C7-DF20-4BA0-96E5-F2CDFE5491A6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.134.3202.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DB047005-3A5D-45E7-9E88-FB8396425798}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{94956CE1-05AD-4F76-9A0E-787B883087B6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.146\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5B5CA975-BE3F-474C-8D6F-F6B079E5C092}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{13F47B74-7872-405B-A1B8-CA49B95E6253}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0C051994-8D12-4446-85E6-7D8B240C5333}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4042C615-7486-4707-BD77-C067D16AC9D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9B701FCB-75E5-4C5B-9133-492865E49076}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{AC7F2FE4-AC5C-475D-8A13-2A3B5C6879C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{B69BF4E9-BD63-4AD6-9E5F-A26408CF585A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{803D6A1E-EA85-47CF-BEAE-B36B51B8FA8A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8832ED18-E741-4FF9-8F9F-F5192A8DA65B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{92F20060-F755-45A4-9525-8DAD1F1D6C44}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.255.235.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{04BF6755-5A26-46A5-8D3B-10D41EFE38C4}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)
FirewallRules: [{8DA9D89B-A266-421B-9CF0-CB2A71160605}] => (Allow) C:\Program Files\AVG\Antivirus\AVGUI.exe (AVG Technologies USA, LLC -> Gen Digital Inc.)

==================== Restore Points =========================

04-01-2025 16:12:56 Naplánovaný kontrolní bod
13-01-2025 15:43:03 Naplánovaný kontrolní bod
15-01-2025 19:41:43 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (01/20/2025 12:45:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.19041.5247, časové razítko: 0xf16e2134
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x72e781f0
ID chybujícího procesu: 0xce0
Čas spuštění chybující aplikace: 0x01db6b30c423f818
Cesta k chybující aplikaci: C:\Windows\SysWOW64\explorer.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: a763b74c-6fe8-4c12-a4e7-c71104515f2f
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/15/2025 07:50:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: wuauclt.exe, verze: 10.0.19041.5198, časové razítko: 0x90a2b675
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.19041.5198, časové razítko: 0xd1eefc71
Kód výjimky: 0xc0000409
Posun chyby: 0x00000000001338e2
ID chybujícího procesu: 0x2a50
Čas spuštění chybující aplikace: 0x01db677d3f170b3b
Cesta k chybující aplikaci: C:\Windows\system32\wuauclt.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: 8aa04430-e793-4f06-9bcb-17e531edff81
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (12/17/2024 12:49:27 AM) (Source: Microsoft-Windows-WMI) (EventID: 4) (User: NT AUTHORITY)
Description: Při pokusu o načtení informací MOF C:\WINDOWS\SYSTEM32\WBEM\CIMWIN32.MOF během obnovování souboru MOF označeného k automatickému obnovení došlo k chybě 0x0.

Error: (12/15/2024 09:40:36 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Elements (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)

Error: (12/15/2024 08:31:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit defragmentace na Elements (D:), protože: Disk byl odpojen od systému. (0x89000011)

Error: (12/15/2024 04:53:38 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit defragmentace na Elements (D:), protože: Disk byl odpojen od systému. (0x89000011)

Error: (12/05/2024 01:51:32 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program Video.UI.exe verze 10.24081.1011.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 1550

Čas spuštění: 01db39db2e65f9e6

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.24081.10111.0_x64__8wekyb3d8bbwe\Video.UI.exe

ID hlášení: 6fb8c12a-9a57-40ea-b0a0-004d99846fc5

Úplný název balíčku s chybou: Microsoft.ZuneVideo_10.24081.10111.0_x64__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: Microsoft.ZuneVideo

Typ zablokování: Quiesce

Error: (12/04/2024 04:51:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SearchApp.exe verze 10.0.19041.4957 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 3f8c

Čas spuštění: 01db44e04dc53bc5

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy\SearchApp.exe

ID hlášení: 23198626-79ae-41b4-8947-bf356ad41c32

Úplný název balíčku s chybou: Microsoft.Windows.Search_1.14.17.19041_neutral_neutral_cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: CortanaUI

Typ zablokování: Quiesce

System errors:
=============
Error: (01/20/2025 12:44:22 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (01/20/2025 12:41:32 PM) (Source: RtlWlanu) (EventID: 5002) (User: )
Description: Realtek RTL8188EU Wireless LAN 802.11n USB 2.0 Network Adapter : Bylo zjištěno, že síťový adaptér nepracuje správně.

Error: (01/19/2025 11:14:18 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RMI2KDA)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (01/19/2025 06:00:00 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (01/19/2025 10:39:41 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (01/18/2025 06:00:00 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (01/18/2025 12:09:08 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT AUTHORITY)
Description: The Secure Boot update failed to update a Secure Boot variable with error (-2147020471 = Zabezpečené spouštění není v tomto počítači zapnuto.). For more information, please see https://go.microsoft.com/fwlink/?linkid=2169931

Error: (01/16/2025 02:00:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Zprostředkovatel monitorování Ochrany System Guard v režimu runtime byla ukončena s následující chybou:
%%3489660935

Windows Defender:
================
Date: 2025-01-19 18:04:01
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {B3920DB1-1EBA-4669-A637-57CCAC908A2F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2025-01-18 14:43:12
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {5699DB96-94AF-4DE5-99AA-F8F66FDFA420}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2025-01-15 19:28:50
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {A22BDFD2-3CA4-4D3D-98E2-2F57D9E8F0D7}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2025-01-13 23:20:09
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {21DBB0FF-EE12-4795-A1EB-41550079C2C2}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2025-01-10 20:05:36
Description:
Prohledávání Antivirová ochrana v programu Microsoft Defender bylo zastaveno před dokončením.
ID prohledávání: {335ED505-42CE-4FF8-93B0-245A2949F792}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===============
Date: 2025-01-19 23:15:41
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\AVG\Antivirus\AVGSvc.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

BIOS: Insyde F.11 07/23/2015
Motherboard: HP 80C1
Processor: Intel(R) Pentium(R) CPU 3825U @ 1.90GHz
Percentage of memory in use: 86%
Total physical RAM: 4011.39 MB
Available physical RAM: 532.01 MB
Total Virtual: 6480.12 MB
Available Virtual: 1236.47 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:237.84 GB) (Free:166.07 GB) (Model: HS-SSD-E100 256G) NTFS

\\?\Volume{2fe381ae-c552-45a2-9b9c-db47dee935ed}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{d05dcfa9-d388-4d8c-a460-4af50d5ee8e2}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-01-2025
Ran by hp (administrator) on DESKTOP-RMI2KDA (HP HP 250 G4 Notebook PC) (20-01-2025 12:51:26)
Running from C:\Users\hp\Desktop\FRST64.exe
Loaded Profiles: hp
Platform: Microsoft Windows 10 Home Version 22H2 19045.5371 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGUI.exe <4>
(C:\Program Files\AVG\Antivirus\AVGSvc.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\aswEngSrv.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(C:\Windows\SysWOW64\esif_uf.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <15>
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Gen Digital Inc. -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\aswidsagent.exe
(services.exe ->) (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\wsc_proxy.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\afwServ.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(services.exe ->) (AVG Technologies USA, LLC -> Gen Digital Inc.) C:\Program Files\AVG\Antivirus\avgToolsSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(services.exe ->) (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22115.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.22115.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\hp\AppData\Local\Microsoft\OneDrive\24.244.1204.0003\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8911872 2016-10-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [464712 2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-1280876858-3732436193-794426282-1001\...\Run: [MicrosoftEdgeAutoLaunch_F072E8F080C5A31FE150A3CA4B35FB6A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [3923496 2025-01-17] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1280876858-3732436193-794426282-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45381424 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
HKU\S-1-5-21-1280876858-3732436193-794426282-1001\...\MountPoints2: {0327e31d-bae9-11ef-94bb-9457a5e9b42c} - "F:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\131.0.6778.265\Installer\chrmstp.exe [2025-01-11] (Google LLC -> Google LLC)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {425A80D4-DB64-4918-B467-4C9AD2F04473} - System32\Tasks\AVG\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [5251400 2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {C2F837AC-3243-4041-B4CE-CF37641311C5} - System32\Tasks\AVG\AVG Antivirus Patcher => C:\Program Files\Common Files\AVG\Icarus\avg-av\icarus.exe [8425288 2024-12-16] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {BA08AF00-B37F-465B-816F-1D2E60256B19} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2601800 2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
Task: {B88314F0-D3ED-4542-8581-97D8B6241156} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [829408 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {F0623C42-67FE-46D1-B0E2-41F326C10EB5} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [5983536 2024-12-04] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "995f58bf-ad93-428b-b41f-429ca15739d5" --version "6.31.11415" --silent
Task: {E5BC976D-2BF0-4D9B-BD51-9990AAD03E7C} - System32\Tasks\CCleanerSkipUAC - hp => C:\Program Files\CCleaner\CCleaner.exe [39151920 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
Task: {966CE260-822B-44AA-B959-2AAE0D8D3C3F} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem132.0.6833.0{9C23DC0C-F52B-4FFB-AFDF-3B98C3E36493} => C:\Program Files (x86)\Google\GoogleUpdater\132.0.6833.0\updater.exe [5591136 2024-11-11] (Google LLC -> Google LLC)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{61e06818-853e-405d-afdc-872a01bd1158}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6c6907c0-3278-4483-ae12-4c1ad635e0de}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{6c6907c0-3278-4483-ae12-4c1ad635e0de}\255646D6960283: [DhcpNameServer] 192.168.241.27
Tcpip\..\Interfaces\{6c6907c0-3278-4483-ae12-4c1ad635e0de}\867747563686F57457563747: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cc4881fa-e5f0-45f4-9a7a-b0537bb1a476}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cc4881fa-e5f0-45f4-9a7a-b0537bb1a476}\255646D6960283: [DhcpNameServer] 192.168.241.27

Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default [2025-01-20]
Edge Extension: (Dokumenty Google offline) - C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-01-10]
Edge Extension: (Edge relevant text changes) - C:\Users\hp\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-06-07]

FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default [2025-01-20]
CHR Notifications: Default -> hxxps://fastshare.cz; hxxps://www.youtube.com
CHR Extension: (Dokumenty Google offline) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-01-04]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-01-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-07]
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Guest Profile [2025-01-19]
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 2 [2025-01-20]
CHR Notifications: Profile 2 -> hxxps://eobuv.cz
CHR HomePage: Profile 2 -> hxxp://www.google.com/
CHR StartupUrls: Profile 2 -> "hxxp://www.google.com/"
CHR Extension: (McAfee® WebAdvisor) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2024-12-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-01-09]
CHR Extension: (AdBlock - nejlepší blokátor reklam) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-01-11]
CHR Extension: (Custom Teamspeak 3 Display - by Frizzant) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\hkocffpmmelgidgjhkadhmhgfeckcpge [2024-06-11]
CHR Extension: (Jitsi Meetings) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\kglhbbefdnlheedjiejgomgmfplipfeb [2024-06-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-11]
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 3 [2025-01-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-11-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\hp\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-06-11]
CHR Profile: C:\Users\hp\AppData\Local\Google\Chrome\User Data\System Profile [2025-01-20]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [815432 2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [2446152 2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R2 AVG Tools; C:\Program Files\AVG\Antivirus\avgToolsSvc.exe [1266504 2025-01-19] (AVG Technologies USA, LLC -> Gen Digital Inc.)
R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [7405896 2025-01-19] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
R2 AVGWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [109480 2025-01-19] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.)
S3 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1087792 2024-12-04] (Gen Digital Inc. -> Piriform Software Ltd)
S2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MpDefenderCoreService.exe [1447680 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\NisSrv.exe [3199672 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe [141952 2024-10-31] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [20560 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [235088 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [383056 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [296016 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [84560 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S0 avgElam; C:\Windows\System32\drivers\avgElam.sys [28280 2025-01-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [28728 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [275024 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgNetHub; C:\Windows\System32\drivers\avgNetHub.sys [550992 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [98360 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [69712 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [955960 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [1424952 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 avgStm; C:\Windows\System32\drivers\avgStm.sys [204344 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [381488 2025-01-19] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [File not signed]
R3 RtlWlanu; C:\Windows\System32\drivers\rtwlanu.sys [12435144 2024-10-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [22104 2024-10-31] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [606624 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105888 2024-10-31] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [40200 2023-11-17] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-20 12:51 - 2025-01-20 12:52 - 000017559 _____ C:\Users\hp\Desktop\FRST.txt
2025-01-20 12:48 - 2025-01-20 12:51 - 000000000 ____D C:\FRST
2025-01-20 12:47 - 2025-01-20 12:48 - 002402816 _____ (Farbar) C:\Users\hp\Desktop\FRST64.exe
2025-01-20 12:45 - 2025-01-20 12:45 - 000000000 ____D C:\Users\hp\AppData\Local\CrashDumps
2025-01-19 23:18 - 2025-01-19 23:18 - 000000000 ____D C:\Users\hp\AppData\Local\AVG
2025-01-19 23:16 - 2025-01-19 23:16 - 000000000 ____D C:\Users\hp\AppData\Roaming\AVG
2025-01-19 23:15 - 2025-01-19 23:15 - 000002109 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Free.lnk
2025-01-19 23:15 - 2025-01-19 23:15 - 000002097 _____ C:\Users\Public\Desktop\AVG AntiVirus Free.lnk
2025-01-19 23:14 - 2025-01-19 23:15 - 000000000 ____D C:\Windows\system32\Tasks\AVG
2025-01-19 23:13 - 2025-01-19 23:12 - 000316232 _____ (Gen Digital Inc.) C:\Windows\system32\avgBoot.exe
2025-01-19 23:12 - 2025-01-19 23:13 - 000000000 ____D C:\Program Files\AVG
2025-01-19 23:12 - 2025-01-19 23:12 - 000053048 _____ (Gen Digital Inc.) C:\Windows\system32\icarus_rvrt.exe
2025-01-19 23:12 - 2025-01-19 23:12 - 000000000 ____D C:\Program Files\Common Files\AVG
2025-01-19 23:11 - 2025-01-20 12:45 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2025-01-19 23:11 - 2025-01-20 12:45 - 000003380 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2025-01-19 23:11 - 2025-01-20 12:45 - 000000666 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2025-01-19 23:11 - 2025-01-19 23:15 - 000000000 ____D C:\ProgramData\AVG
2025-01-19 23:11 - 2025-01-19 23:11 - 000002892 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - hp
2025-01-19 23:11 - 2025-01-19 23:11 - 000000000 ____D C:\ProgramData\Piriform
2025-01-19 23:10 - 2025-01-20 12:46 - 000000000 ____D C:\Program Files\CCleaner
2025-01-19 23:10 - 2025-01-19 23:10 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2025-01-19 23:10 - 2025-01-19 23:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2025-01-19 12:53 - 2025-01-19 15:03 - 1677041664 _____ C:\Users\hp\Downloads\Teenage Mutant Ninja Turtles cz dabing.avi
2025-01-19 11:17 - 2025-01-19 11:19 - 077195320 _____ (Piriform Software Ltd) C:\Users\hp\Downloads\ccsetup629_slc.exe
2025-01-18 21:26 - 2025-01-19 10:45 - 085615116 _____ C:\Users\hp\Downloads\FASA7320 - Shadowrun - Harlequins Back.pdf
2025-01-18 21:20 - 2025-01-18 21:20 - 010312493 _____ C:\Users\hp\Downloads\7307 - Dragon Hunt.pdf
2025-01-18 21:06 - 2025-01-18 21:06 - 006181865 _____ C:\Users\hp\Downloads\7310 - Elven Fire.pdf
2025-01-18 20:57 - 2025-01-18 20:57 - 028572381 _____ C:\Users\hp\Downloads\FASA7317 - Shadowrun - Paradise Lost.pdf
2025-01-18 20:45 - 2025-01-18 20:45 - 005341644 _____ C:\Users\hp\Downloads\FASA7318 - Shadowrun - Divided Assets.pdf
2025-01-15 19:42 - 2025-01-15 19:42 - 000000000 ___HD C:\$WinREAgent

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2025-01-20 12:42 - 2022-09-08 04:11 - 000000000 ____D C:\Windows\SystemTemp
2025-01-20 12:41 - 2024-03-12 14:57 - 000000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2025-01-20 12:41 - 2024-03-12 14:57 - 000000000 __SHD C:\Users\hp\IntelGraphicsProfiles
2025-01-20 12:41 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-01-20 00:56 - 2024-03-12 14:59 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-01-19 23:14 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2025-01-19 23:13 - 2024-06-10 19:40 - 000000000 ____D C:\Windows\Minidump
2025-01-19 23:13 - 2024-03-12 14:59 - 000000000 ____D C:\Windows\Panther
2025-01-19 23:12 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2025-01-19 21:51 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-01-19 21:51 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2025-01-19 10:40 - 2024-03-12 14:59 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-01-19 10:40 - 2024-03-12 14:59 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-01-18 17:49 - 2024-03-15 08:51 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1280876858-3732436193-794426282-1001
2025-01-18 17:49 - 2024-03-12 15:15 - 000003372 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1280876858-3732436193-794426282-1001
2025-01-18 17:49 - 2024-03-12 15:11 - 000002368 _____ C:\Users\hp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-01-18 12:11 - 2024-03-12 15:06 - 001694140 _____ C:\Windows\system32\PerfStringBackup.INI
2025-01-18 12:11 - 2019-12-07 15:41 - 000719734 _____ C:\Windows\system32\perfh005.dat
2025-01-18 12:11 - 2019-12-07 15:41 - 000145860 _____ C:\Windows\system32\perfc005.dat
2025-01-16 13:58 - 2024-03-12 14:59 - 000008192 ___SH C:\DumpStack.log.tmp
2025-01-16 13:58 - 2024-03-12 14:59 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-01-16 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2025-01-16 13:58 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\appcompat
2025-01-15 19:58 - 2019-12-07 10:03 - 000786432 _____ C:\Windows\system32\config\BBI
2025-01-15 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2025-01-15 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-01-15 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\appraiser
2025-01-15 19:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2025-01-15 19:54 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2025-01-15 19:50 - 2024-03-12 15:01 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-01-15 19:35 - 2024-03-12 15:00 - 000000000 ____D C:\Windows\system32\MRT
2025-01-15 19:29 - 2024-03-12 15:00 - 206927936 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-01-15 19:22 - 2024-06-07 14:02 - 000000000 ____D C:\Users\hp\AppData\Roaming\Microsoft\Word
2025-01-15 18:59 - 2024-03-12 15:12 - 000000000 ____D C:\Users\hp\AppData\Local\Packages
2025-01-15 18:59 - 2024-03-12 15:12 - 000000000 ____D C:\ProgramData\Packages
2025-01-15 18:57 - 2024-03-12 16:01 - 000000000 ____D C:\Users\hp\AppData\Local\PlaceholderTileLogoFolder
2025-01-11 16:47 - 2024-06-07 15:25 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-01-11 16:47 - 2024-06-07 15:25 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2024-12-22 13:33 - 2024-03-12 14:59 - 000003640 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2024-12-22 13:33 - 2024-03-12 14:59 - 000003516 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

#2 Příspěvek od **JaRon** » 21 led 2025 10:54

Ahoj,
preventivne prescanuj s MBAM

Martin000 · #3 Příspěvek od **Martin000** » 26 led 2025 07:31

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 25.01.2025
Scan Time: 21:00
Log File: 095b4c3a-db57-11ef-8d16-9457a5e9b42c.json

-Software Information-
Version: 5.2.5.158
Components Version: 1.0.5135
Update Package Version: 1.0.94972
License: Trial

-System Information-
OS: Windows 10 (Build 19045.5371)
CPU: x64
File System: NTFS
User: DESKTOP-RMI2KDA\hp

-Scan Summary-
Scan Type: Threat Scan
Scan Initiated By: Manual
Result: Completed
Objects Scanned: 199444
Threats Detected: 0
Threats Quarantined: 0
Time Elapsed: 5 min, 54 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
File system: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)

WMI: 0
(No malicious items detected)

(end)

#4 Příspěvek od **JaRon** » 26 led 2025 10:09

Po AV stranke to vypada OK
Su nejake problemy

Martin000 · #5 Příspěvek od **Martin000** » 26 led 2025 11:31

Nejsou žádné problémy.

#6 Příspěvek od **JaRon** » 26 led 2025 13:07

Lock

VIRY.CZ

Prosím o kontrolu logu.

Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.