prosím o kontrolu logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Dell (08-05-2025 15:20:53)
Running from C:\Users\Dell\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) (2024-11-23 08:43:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3254839106-4227605653-2461104676-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3254839106-4227605653-2461104676-503 - Limited - Disabled)
Dell (S-1-5-21-3254839106-4227605653-2461104676-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-3254839106-4227605653-2461104676-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3254839106-4227605653-2461104676-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3254839106-4227605653-2461104676-1002 - Limited - Disabled) => C:\Users\WsiAccount
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AudioHUBWwwAccessConnector 1.0.0.2320 (HKLM-x32\...\AudioHUBWwwAccessConnector) (Version: 1.0.0.2320 - MEDIAN s.r.o.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.4.10068.2727 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 134.0.29548.179 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1993.6 - AVAST Software) Hidden
Eclipse Temurin JRE with Hotspot 11.0.26+4 (x64) (HKLM\...\{45E29707-E9DD-4E9C-835C-A60940D58BF7}) (Version: 11.0.26.4 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x64) (HKLM\...\{35151E48-24F7-4295-82D2-F2B3C700F9A6}) (Version: 8.0.442.6 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x86) (HKLM-x32\...\{93A18363-B57B-4859-9F13-58DEED9E6EC0}) (Version: 8.0.442.6 - Eclipse Adoptium)
Expert Lotto 5 (HKLM-x32\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2024.4.0.27683 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 135.0.7049.85 - Google LLC)
IrfanView 4.70 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 441 (64-bit) (HKLM\...\{77724AE4-039E-4CA4-87B4-2F64180441F0}) (Version: 8.0.4410.7 - Oracle Corporation)
LibreOffice 25.2.1.2 (HKLM\...\{C155ED9C-4F2D-408C-BF76-07CB2B126B25}) (Version: 25.2.1.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.50 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 136.0.1 (x64 cs)) (Version: 136.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 128.8.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 128.8.0 (x64 cs)) (Version: 128.8.0 - Mozilla)
Program pro odinstalaci nástroje tiskárny EPSON LX-1310 ESC/P (HKLM\...\EPSON LX-1310 ESC/P) (Version: - SEIKO EPSON Corporation)
Program pro odinstalaci nástroje tiskárny EPSON LX-300+II ESC/P (HKLM\...\EPSON LX-300+II ESC/P) (Version: - SEIKO EPSON Corporation)
Skype 8.138 (HKLM-x32\...\{1BC908B3-778D-4B6B-84BE-75562413506C}) (Version: 8.138.0.203 - Skype Technologies S.A.)
Skype verze 8.138 (HKLM-x32\...\Skype_is1) (Version: 8.138 - Skype Technologies S.A.) Hidden
Software tiskárny EPSON (HKLM\...\EPSON Printer and Utilities) (Version: - )
Spotify (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Spotify) (Version: 1.2.48.405.gf2c48e6f - Spotify AB)
TapinRadio 2.15.98.8 (x64) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.7.48799 - TeamViewer)
TomTom MyDrive Connect 4.4.4.5059 (HKLM-x32\...\MyDriveConnect) (Version: 4.4.4.5059 - TomTom)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Chrome apps:
============
KVIFF.TV (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b3c7e3d83561e6c703e38f6b919f3b28) (Version: 1.0 - Google\Chrome)
Správce hesel Google (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b760b48ad42951aaa3e37e2789e2f196) (Version: 1.0 - Google\Chrome)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3624.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
9390SimonKnuth.ScannerforWindows10 -> C:\Program Files\WindowsApps\9390SimonKnuth.ScannerforWindows10_3.2.9.0_x64__69n05hp4v3s90 [2025-04-08] (Simon Knuth)
Akce kliknutím (Preview) -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CoreAI_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-09] (INTEL CORP) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
Doc Scan PDF Scanner -> C:\Program Files\WindowsApps\53058betterapp.AnyScan_1.2.4.0_x64__90ct3cgs7yy6a [2025-04-08] (better app)
Escanear Fácil -> C:\Program Files\WindowsApps\642Jabasoft.EscanearFcil_3.1.6.0_x64__3jhqbycpkrcae [2025-05-01] (Jabasoft)
Intel(R) Management and Security Status -> C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2405.6.0.0_x64__8j3eq9eme6ctt [2025-01-05] (INTEL CORP) [Startup Task]
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe [2025-04-23] (Microsoft Corporation)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0 [2025-04-25] (Spotify AB) [Startup Task]
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2024-11-09] (Waves Audio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2517.4.0_x64__cv1g1gvanyjgm [2025-05-04] (WhatsApp Inc.) [Startup Task]
WinRAR -> C:\Program Files\WinRAR [2024-10-07] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Dell\Desktop\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kajebgjangihfbkjfejcanhanjmmbcfd\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_iepmbhehofohhofgnnmaicegcempfonb\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
==================== Loaded Modules (Whitelisted) =============
2025-05-08 14:59 - 2025-05-08 14:59 - 000104448 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioMarkerWin.dll
2025-05-08 14:59 - 2025-05-08 14:59 - 002391615 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\libfftw3f-3.dll
2020-09-21 10:39 - 2020-09-21 10:39 - 001035264 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\Median\WwwAccessConnector\System.Data.SQLite.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_441\bin\ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_441\bin\jp2ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-11.0.26.4-hotspot\bin;C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\15260264710321002627\133910165066998143.jpg
HKU\S-1-5-21-3254839106-4227605653-2461104676-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi 3: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys
Ethernet 2: Intel(R) Ethernet Connection (10) I219-V -> e1d68x64.sys
Síťové připojení Bluetooth 3: Bluetooth Device (Personal Area Network) #3 -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: esifsvc => 2
MSCONFIG\Services: FoxitReaderUpdateService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: GoogleUpdaterInternalService135.0.7023.0 => 2
MSCONFIG\Services: GoogleUpdaterService135.0.7023.0 => 2
MSCONFIG\Services: iaStorAfsService => 3
MSCONFIG\Services: igccservice => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: IntelAudioService => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LibreOfficeMaintenance => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PC Cleaner Service => 3
MSCONFIG\Services: RstMwService => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: WavesSysSvc => 2
MSCONFIG\Services: WMIRegistrationService => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Spotify"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{DB438734-CD19-438A-92FD-1A63DED54934}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0C59FE4-025D-4CDE-AF51-EE56BDCEFEFF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{AADD9B49-81F8-4105-BC82-65D7F46A1877}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{0757C34E-F48E-4626-BB07-CF0A171619EE}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3D5A135E-EDBA-4084-9DAA-7C738C3DB2C2}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{5BD15058-88EB-48CD-A7FC-EF34E778BF5C}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{371CCB7C-6C1C-497D-B82F-DF25FC36B997}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{042246A8-0AEB-4199-8AFE-02BEF7B252C1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [{9974C2F3-261A-4A0C-BF1A-F23D4912B3CE}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{D130D16E-48AF-44D8-AFFB-B7939A74C342}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{22CBC9DB-B798-4F2B-B206-D6681FB6A80E}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{5549E25C-9938-41A0-BAB2-D277A703F33D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{73C88CDA-B824-4642-88EA-96C7C58558AF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30F322EE-537E-49C1-9DC7-817A81D37B96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F33B8620-3E52-4933-9FE2-34BDCC380C6D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3376012-51EF-4DCB-AD70-508161974949}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6A30FBBD-4A55-4D62-9330-7E2D2135E997}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{65FF18F4-411C-4385-A639-EFE3165FA1DC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F29A971D-8D4B-4111-8FB7-097BF4BA5440}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{2ABF019E-22CE-49A4-B76A-EE20C09BD699}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2FA3DBA3-BEAE-4C52-80BA-8F1FA4CE1E6E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1685ABFE-07B2-4F8C-8604-254C34B05428}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7622FA9D-3E03-46B9-B42D-759EECB623F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4D15D197-E73E-4B15-880C-101C97591F22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{33092260-FDA6-4D1F-926D-61A3A785F6C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FFDB2154-3708-43FC-865E-E326B9A9977A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F122C1AF-E4C0-409D-BFD6-AA313F048DD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3BE06391-42B4-4703-A2F5-CD855C9AAE62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{36697136-DC15-45CB-96A0-0A1170710180}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A0D88CD7-5963-4159-BE6A-0BD92D851F95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8821FBA3-6A9B-420F-84E0-DD347A8E7979}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9F895DB4-95F3-496F-A009-B841042B76FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:237.4 GB) (Free:169.27 GB) (71%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/08/2025 02:58:50 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: svchost.exe_NgcCtnrSvc, verze: 10.0.26100.1150, časové razítko: 0xfdace0d9
Název chybujícího modulu: RPCRT4.dll, verze: 10.0.26100.3037, časové razítko: 0xc4a5da14
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d843d
ID chybujícího procesu: 0x112c
Čas spuštění chybující aplikace: 0x1dbc018f139be89
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\RPCRT4.dll
ID sestavy: ed779354-e9e7-494f-8cda-63c0b7374887
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/07/2025 08:10:13 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 135.0.7049.85 programu chrome.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (05/06/2025 07:56:30 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-0LLDMOB)
Description: Název chybující aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe, verze: 1.0.0.2320, časové razítko: 0x661f8f3c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.26100.3912, časové razítko: 0xc16c5511
Kód výjimky: 0xe0434352
Posun chyby: 0x0015da34
ID chybujícího procesu: 0x1ed0
Čas spuštění chybující aplikace: 0x1dbbe4b7ebc47cc
Cesta k chybující aplikaci: C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID sestavy: 6849efd0-9785-4559-910a-4a8c26a96738
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/06/2025 07:56:30 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ApplicationException
na System.Threading.Mutex.ReleaseMutex()
na AudioHUB.Processing.WwwAccessConnectorCommon.WatchingApp.WatchingMutex.Wait(System.Action)
na AudioHUB.Processing.WwwAccessConnectorUrlMonitor.Program.Main()
Error: (05/06/2025 07:46:30 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12094ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:21 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12110ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:15 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5532, identifikátor PID ProfSvc: 2244.
Error: (05/05/2025 05:11:55 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12078ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
System errors:
=============
Error: (05/08/2025 02:58:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NgcCtnrSvc byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (05/08/2025 02:58:47 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffffcde912ecce38, 0x0000000000000000, 0xfffff807dc9b0791, 0x0000000000000002)C:\WINDOWS\Minidump\050825-10593-01.dmp2f8a2212-d148-4b17-be54-2dee5de2f696
Error: (05/08/2025 02:58:41 PM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.
Error: (05/08/2025 02:58:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:53:28, 08.05.2025) bylo neočekávané.
Error: (05/08/2025 02:00:37 PM) (Source: IntcOED) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/08/2025 01:37:23 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {338B40F9-9D68-4B53-A793-6B9AA0C5F63B} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 08:20:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0LLDMOB)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 07:28:15 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffff841071fef968, 0x0000000000000000, 0xfffff80575db0791, 0x0000000000000002)C:\WINDOWS\Minidump\050725-11625-01.dmp0ee59ca8-75a7-40a1-a879-b36e672599ab
CodeIntegrity:
===============
Date: 2025-03-12 13:55:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2025-03-12 13:54:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.19.0 03/13/2023
Motherboard: Dell Inc. 0D2CKD
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 65%
Total physical RAM: 7917.94 MB
Available physical RAM: 2698.15 MB
Total Virtual: 8429.94 MB
Available Virtual: 2988.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.4 GB) (Free:169.27 GB) (Model: SSDPEMKF256G8 NVMe INTEL 256GB) (Protected) NTFS
\\?\Volume{10fa5803-44f7-4fc8-b23d-28beeb56178d}\ () (Fixed) (Total:0.96 GB) (Free:0.09 GB) NTFS
\\?\Volume{117b0fd1-da2c-436f-b053-b9c161d8602e}\ () (Fixed) (Total:0.09 GB) (Free:0.02 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: BB25F9B2)
Partition: GPT.
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-05-2025
Ran by Dell (administrator) on DESKTOP-0LLDMOB (Dell Inc. Latitude 5310) (08-05-2025 15:19:29)
Running from C:\Users\Dell\Desktop\FRST64.exe
Loaded Profiles: Dell
Platform: Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastUI.exe <4>
(C:\Program Files\Avast Software\Avast\AvastSvc.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswEngSrv.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <34>
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe <5>
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\aswidsagent.exe
(services.exe ->) (Avast Software s.r.o. -> AVAST Software) C:\Program Files\Avast Software\Avast\wsc_proxy.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\afwServ.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\aswToolsSvc.exe
(services.exe ->) (Avast Software s.r.o. -> Gen Digital Inc.) C:\Program Files\Avast Software\Avast\AvastSvc.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f9e3dd289189445b\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_f9e3dd289189445b\IntelCpHeciSvc.exe
(services.exe ->) (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(svchost.exe ->) (MEDIAN s.r.o.) [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe\MicrosoftStartFeedProvider\MicrosoftStartFeedProvider.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_525.10401.30.0_x64__cw5n1h2txyewy\WidgetBoard.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\NgcIso.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\UUS\Packages\Preview\amd64\MoUsoCoreWorker.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\DriverStore\FileRepository\realtekservice.inf_amd64_04ff63d068f8c626\RtkAudUService64.exe [1961360 2023-11-01] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\System32\DriverStore\FileRepository\wavesapo8de.inf_amd64_b4d0b189ff2aba03\WavesSvc64.exe [1774584 2021-02-18] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Avast Software\Avast\AvLaunch.exe [454904 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [752208 2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [Spotify] => C:\Users\Dell\AppData\Roaming\Spotify\Spotify.exe [36320584 2024-10-09] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --win-session-start [4045880 2025-05-01] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [123172920 2025-03-05] (Skype Software Sarl -> Skype Technologies S.A.)
HKLM\...\Windows x64\Print Processors\hpzpplhn: C:\Windows\System32\spool\prtprocs\x64\hpzpplhn.dll [109288 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\EPSON SIDM BS64MonitorB: C:\WINDOWS\system32\EBPMONB.DLL [108032 2024-10-13] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\LIDIL hpzlllhn: C:\WINDOWS\system32\hpzlllhn.dll [58112 2018-10-12] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard Company)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\135.0.7049.85\Installer\chrmstp.exe [2025-04-11] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files\AVAST Software\Browser\Application\134.0.29548.179\Installer\chrmstp.exe [2025-04-23] (Avast Software s.r.o. -> Gen Digital Inc.)
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {516CC2C4-C12C-4B7C-BAF7-CAE1242BA5D2} - System32\Tasks\AudioHUBtest => C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe [276480 2024-04-17] (MEDIAN s.r.o.) [File not signed]
Task: {9A9D620B-91FF-42B4-8F67-A75A42457223} - System32\Tasks\Avast Secure Browser Heartbeat Task (Hourly) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3818024 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {5B20AD14-176D-4409-A0BE-B66A951C2DD7} - System32\Tasks\Avast Secure Browser Heartbeat Task (Logon) => C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe [3818024 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {BC065279-C46B-4C32-AC86-4EA36EF69215} - System32\Tasks\Avast Software\Avast Antivirus Patcher => C:\Program Files\Common Files\Avast Software\Icarus\avast-av\icarus.exe [8702256 2025-04-25] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {C47961C0-E92C-4670-B595-BE040717A5E6} - System32\Tasks\Avast Software\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe [5286648 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {DB794F9D-8641-4835-A119-F54C5B8F5E60} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2564904 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {0AB4D7E6-FDB1-4B19-B9D8-D24502036AA2} - System32\Tasks\AvastBrowserProtectS-1-5-21-3254839106-4227605653-2461104676-1001 => C:\Program Files\AVAST Software\Browser\Application\AvastBrowserProtect.exe [1690008 2025-03-04] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {01501A60-46CB-4D64-9ECF-B93181FAC164} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {405863AE-F1D6-44D7-9253-BBADFA66BAB0} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Task: {08B5D261-AE49-4F28-AB3E-7A16D99BDDC5} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem137.0.7115.0{AF1037B7-C332-4D3C-8D45-A93FD5F13967} => C:\Program Files (x86)\Google\GoogleUpdater\137.0.7115.0\updater.exe [7360096 2025-04-08] (Google LLC -> Google LLC)
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
Task: {60143294-CAFA-4E20-8DE0-39F3C623E6EF} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\InitialConfiguration => {709FD5EF-7296-4154-BD3A-E9830FCFA60A} C:\WINDOWS\system32\ShellConfigTask.dll [274432 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {5B42716E-45EF-46E4-81D1-2D9BD5E4568D} - System32\Tasks\Microsoft\Windows\WindowsAI\Recall\PolicyConfiguration => {0BE6820D-B667-4CB6-931B-C153A77DA895} C:\WINDOWS\system32\ShellConfigTask.dll [274432 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
Task: {F64264C8-DFE4-4350-9381-14AA66678CDA} - System32\Tasks\Mozilla\Firefox Background Update S-1-5-21-3254839106-4227605653-2461104676-1001 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\firefox.exe [682560 2025-03-10] (Mozilla Corporation -> Mozilla Corporation) -> C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\--MOZ_LOG sync,prependheader,timestamp,append,maxsize:1,Dump:5 --MOZ_LOG_FILE C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38\updates\308046B0AF4A39CB\backgroundupdate.moz_log --backgroundtask background (the data entry has 6 more characters).
Task: {047EE29A-A2C1-4D6F-8713-4F9BC8DD868D} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [34880 2025-03-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {8BB115D8-C60A-4B41-A062-6A7FFBFA9EA9} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3254839106-4227605653-2461104676-1001 => C:\Users\Dell\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\OneDriveLauncher.exe [679232 2025-05-07] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{50f91ea7-7798-4e87-9d82-fe5838c12b98}: [DhcpNameServer] 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{57aacc95-08c9-4bc2-853b-f6ba13d21a3c}: [DhcpNameServer] 8.8.8.8 1.1.1.1
Tcpip\..\Interfaces\{eec37ebd-f435-4a93-910d-4c3e14db1cc5}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{eec37ebd-f435-4a93-910d-4c3e14db1cc5}\F423D294E6475627E65647D2438373D2537484A7: [DhcpNameServer] 10.0.0.138
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-08]
Edge Notifications: Default -> hxxps://www.facebook.com
Edge HomePage: Default -> hxxps://seznam.cz/
Edge Extension: (Překladač Google) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-10-09]
Edge Extension: (LastPass: Free Password Manager) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\bbcinlkgjjkejfdpemiealijmmooekmp [2025-05-08]
Edge Extension: (Volání přes Skype) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2024-12-11]
Edge Extension: (Avast Passwords) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2025-04-21]
Edge Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-26]
Edge Extension: (Uložit na Disk Google) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2024-10-09]
Edge Extension: (Edge relevant text changes) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-05-03]
Edge Extension: (Speed Dial 2 New tab) - C:\Users\Dell\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ohpagamjnemfmmgildfkjgbnabhojcdj [2024-12-11]
FireFox:
========
FF DefaultProfile: tz23z2rh.default
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\tz23z2rh.default [2024-12-19]
FF ProfilePath: C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\m9jjdiuy.default-release [2025-05-05]
FF Plugin: @java.com/DTPlugin,version=11.441.2 -> C:\Program Files\Java\jre1.8.0_441\bin\dtplugin\npDeployJava1.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.441.2 -> C:\Program Files\Java\jre1.8.0_441\bin\plugin2\npjp2.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2024-12-04] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=3 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1993.6\npAvastBrowserUpdate3.dll [2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
FF Plugin-x32: @update.avastbrowser.com/Avast Browser;version=9 -> C:\Program Files (x86)\AVAST Software\Browser\Update\1.8.1993.6\npAvastBrowserUpdate3.dll [2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default [2025-05-08]
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxps://seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Překladač Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2024-10-08]
CHR Extension: (Avast Passwords) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2025-04-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-23]
CHR Extension: (Uložit na Disk Google) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne [2024-10-08]
CHR Extension: (LastPass: Free Password Manager) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2025-04-05]
CHR Extension: (Lightshot (Nástroje snímků)) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbniclmhobmnbdlbpiphghaielnnpgdp [2024-10-08]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-10-08]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\Avast Software\Avast\aswidsagent.exe [7545648 2025-05-05] (Avast Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Antivirus; C:\Program Files\Avast Software\Avast\AvastSvc.exe [809208 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Firewall; C:\Program Files\Avast Software\Avast\afwServ.exe [2484984 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 avast! Tools; C:\Program Files\Avast Software\Avast\aswToolsSvc.exe [861432 2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [193056 2025-03-12] (Avast Software s.r.o. -> Gen Digital Inc.)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\134.0.29548.179\elevation_service.exe [2580000 2025-04-10] (Avast Software s.r.o. -> Gen Digital Inc.)
R2 AvastWscReporter; C:\Program Files\Avast Software\Avast\wsc_proxy.exe [56912 2025-03-12] (Avast Software s.r.o. -> AVAST Software)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2500072 2024-11-25] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S3 LibreOfficeMaintenance; C:\Program Files\LibreOffice\program\update_service.exe [123304 2025-02-24] (The Document Foundation -> The Document Foundation)
S3 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MpDefenderCoreService.exe [1431160 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [559320 2025-04-10] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12114224 2024-12-10] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\NisSrv.exe [3199656 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.24080.9-0\MsMpEng.exe [133704 2024-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 ZTHELPER; C:\WINDOWS\System32\zthelper.dll [146096 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [21088 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [244320 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [390720 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [297568 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [85088 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [28280 2025-03-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Gen Digital Inc.)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [29792 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [279624 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [569920 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92224 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72256 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [881728 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [1272392 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R3 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [201792 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [391232 2025-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Gen Digital Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [569344 2024-11-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [200704 2024-11-22] (Microsoft Corporation) [File not signed]
S3 ThermalFilter; C:\WINDOWS\System32\DriverStore\FileRepository\c_thermal.inf_amd64_732a53ed1662b707\ThermalFilter.sys [75376 2025-03-31] (Microsoft Windows Hardware Abstraction Layer Publisher -> Microsoft Corporation)
S3 usbscan; C:\WINDOWS\System32\DriverStore\FileRepository\sti.inf_amd64_971c769b103df369\usbscan.sys [90112 2024-11-22] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [22080 2024-10-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [602392 2024-10-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [105864 2024-10-07] (Microsoft Windows -> Microsoft Corporation)
R3 WiMan; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiMan\WiMan.sys [171960 2024-08-12] (Intel Corporation -> Intel Corporation)
R3 WiManH; C:\WINDOWS\System32\DriverStore\FileRepository\wiman.inf_amd64_ed5a224638687261\WiManH\WiManH.sys [184248 2024-08-12] (Intel Corporation -> Intel Corporation)
S3 wini3ctarget; C:\WINDOWS\System32\DriverStore\FileRepository\wini3ctarget.inf_amd64_8d863c975b4367df\wini3ctarget.sys [79288 2025-04-26] (Microsoft Windows -> Microsoft Corporation)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-08 15:19 - 2025-05-08 15:20 - 000024047 _____ C:\Users\Dell\Desktop\FRST.txt
2025-05-08 15:18 - 2025-05-08 15:18 - 002405376 _____ (Farbar) C:\Users\Dell\Desktop\FRST64.exe
2025-05-08 15:06 - 2025-05-08 15:06 - 000679834 _____ C:\WINDOWS\system32\perfh005.dat
2025-05-08 15:06 - 2025-05-08 15:06 - 000145634 _____ C:\WINDOWS\system32\perfc005.dat
2025-05-07 19:50 - 2025-05-08 13:22 - 000000000 ____D C:\WINDOWS\CbsTemp
2025-05-07 17:44 - 2025-05-07 17:44 - 000187065 _____ C:\Users\Dell\Desktop\Dodatek (1).pdf
2025-05-07 17:04 - 2025-05-07 17:04 - 000219274 _____ C:\Users\Dell\Desktop\Ceník služeb.pdf
2025-05-07 17:03 - 2025-05-07 17:03 - 000187065 _____ C:\Users\Dell\Desktop\Dodatek.pdf
2025-05-07 16:57 - 2025-05-07 16:57 - 000346726 _____ C:\Users\Dell\Desktop\Ceník (1).pdf
2025-05-06 14:39 - 2025-05-06 14:39 - 000194704 _____ C:\Users\Dell\Desktop\205001048901 (1).pdf
2025-05-06 14:37 - 2025-05-06 14:37 - 000238479 _____ C:\Users\Dell\Desktop\231501983676.pdf
2025-05-06 14:07 - 2025-05-06 14:07 - 000219274 _____ C:\Users\Dell\Desktop\EE_CSL_O36_250501.pdf
2025-05-06 13:59 - 2025-05-06 13:59 - 000423718 _____ C:\Users\Dell\Downloads\Ceník.pdf
2025-05-05 18:46 - 2025-05-05 18:46 - 000247617 _____ C:\Users\Dell\Desktop\Zelena karta.pdf
2025-05-05 17:14 - 2025-05-05 17:14 - 000320248 _____ (Gen Digital Inc.) C:\WINDOWS\system32\aswBoot.exe
2025-04-26 18:19 - 2025-04-26 18:19 - 000001475 _____ C:\Users\Public\Desktop\Url Monitor.lnk
2025-04-26 18:19 - 2025-04-26 18:19 - 000000000 ____D C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Median
2025-04-26 18:19 - 2025-04-26 18:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Median
2025-04-26 18:13 - 2025-04-26 18:13 - 013525944 _____ C:\Users\Dell\Downloads\AudioHUBWwwAccessConnector.exe
2025-04-26 14:44 - 2025-04-26 14:44 - 000030998 _____ C:\WINDOWS\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-04-26 14:44 - 2025-04-26 14:44 - 000030998 _____ C:\WINDOWS\system32\IntegratedServicesRegionPolicySet.json
2025-04-24 20:12 - 2025-05-08 15:19 - 000000000 ____D C:\FRST
2025-04-24 20:12 - 2025-04-24 20:12 - 000000000 ___HD C:\$AV_ASW
2025-04-11 13:57 - 2025-04-11 13:57 - 000002207 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-04-11 13:57 - 2025-04-11 13:57 - 000002166 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2025-04-11 13:57 - 2025-04-11 13:57 - 000000000 ____D C:\Program Files\Google
2025-04-11 13:56 - 2025-04-11 13:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\GoogleSystem
2025-04-10 18:39 - 2025-04-10 18:39 - 000000000 ____D C:\inetpub
2025-04-08 19:24 - 2025-04-08 19:24 - 000000000 ____D C:\Users\Dell\Documents\Doc Scan PDF Scanner
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2025-05-08 15:19 - 2025-03-09 09:10 - 000677888 _____ C:\WINDOWS\SysWOW64\tempResults.db
2025-05-08 15:19 - 2024-11-28 17:29 - 000000000 ____D C:\Users\WsiAccount
2025-05-08 15:18 - 2025-03-09 08:09 - 000000000 ____D C:\AAA
2025-05-08 15:13 - 2024-04-01 09:26 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-08 15:06 - 2024-11-23 10:50 - 001603798 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2025-05-08 15:06 - 2024-04-01 09:24 - 000000000 ____D C:\WINDOWS\INF
2025-05-08 14:59 - 2025-03-15 15:45 - 000000000 ____D C:\WINDOWS\Minidump
2025-05-08 14:59 - 2024-11-22 19:12 - 000050078 _____ C:\WINDOWS\system32\5E37410B-D6F1-471D-AE27-563CEAC0D6B2
2025-05-08 14:59 - 2024-11-22 18:26 - 000000000 ____D C:\Users\Dell
2025-05-08 14:59 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemTemp
2025-05-08 14:58 - 2024-11-22 19:13 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2025-05-08 14:58 - 2024-11-22 19:10 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2025-05-08 14:58 - 2024-10-07 06:57 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2025-05-08 14:58 - 2024-05-06 07:32 - 002695447 ____N C:\WINDOWS\Minidump\050825-10593-01.dmp
2025-05-08 14:58 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ServiceState
2025-05-08 14:58 - 2023-09-21 09:57 - 000012288 ___SH C:\DumpStack.log.tmp
2025-05-08 13:37 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\AppReadiness
2025-05-08 13:03 - 2025-03-12 11:55 - 000000000 ____D C:\ProgramData\Avast Software
2025-05-07 20:20 - 2024-04-01 09:21 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2025-05-07 19:28 - 2024-05-06 07:32 - 002643975 ____N C:\WINDOWS\Minidump\050725-11625-01.dmp
2025-05-07 17:25 - 2024-05-06 07:32 - 002504417 ____N C:\WINDOWS\Minidump\050725-11531-01.dmp
2025-05-07 16:43 - 2024-04-01 09:26 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-07 16:42 - 2025-02-07 09:39 - 000003574 _____ C:\WINDOWS\system32\Tasks\OneDrive Startup Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2024-11-22 19:13 - 000003640 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-05-07 16:42 - 2024-11-22 19:13 - 000003592 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2024-11-22 19:13 - 000003516 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-05-07 16:42 - 2024-11-22 19:13 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3254839106-4227605653-2461104676-1001
2025-05-07 16:42 - 2023-09-21 10:23 - 000002378 _____ C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-06 15:56 - 2024-05-06 07:32 - 002683629 ____N C:\WINDOWS\Minidump\050625-12171-01.dmp
2025-05-06 14:30 - 2024-05-06 07:32 - 002462489 ____N C:\WINDOWS\Minidump\050625-10078-01.dmp
2025-05-06 10:02 - 2023-09-21 10:22 - 000000000 ____D C:\Users\Dell\AppData\Local\D3DSCache
2025-05-06 07:56 - 2025-02-14 18:47 - 000000000 ____D C:\Users\Dell\AppData\Local\CrashDumps
2025-05-05 17:55 - 2024-11-22 19:10 - 000001623 _____ C:\WINDOWS\system32\config\VSMIDK
2025-05-05 17:55 - 2024-04-01 09:26 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2025-05-05 17:14 - 2025-03-12 21:02 - 000021088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 001272392 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSP.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000881728 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000569920 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000391232 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswVmm.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000390720 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000297568 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000279624 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000244320 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswArPot.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000092224 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000085088 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000072256 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2025-05-05 17:14 - 2025-03-12 11:57 - 000029792 _____ (Gen Digital Inc.) C:\WINDOWS\system32\Drivers\aswKbd.sys
2025-05-05 17:14 - 2024-12-22 06:39 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2025-05-04 15:18 - 2023-09-21 10:21 - 000000000 ____D C:\Users\Dell\AppData\Local\Packages
2025-05-04 15:07 - 2023-09-21 09:58 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-04 15:07 - 2023-09-21 09:58 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2025-05-01 19:41 - 2025-03-12 11:58 - 000000000 ____D C:\Users\Dell\AppData\Local\AVAST Software
2025-04-26 18:19 - 2025-03-09 08:08 - 000003590 _____ C:\WINDOWS\system32\Tasks\AudioHUBtest
2025-04-26 15:58 - 2023-09-21 10:00 - 000000000 ____D C:\ProgramData\Packages
2025-04-26 15:55 - 2024-11-22 19:10 - 000456640 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2025-04-26 15:53 - 2024-04-01 18:31 - 000000000 ____D C:\WINDOWS\InboxApps
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\UUS
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemResources
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\SystemApps
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\oobe
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\HealthAttestationClient
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\Dism
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\DDFs
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\appraiser
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\ShellExperiences
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\Provisioning
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2025-04-26 15:53 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\bcastdvr
2025-04-26 14:44 - 2024-11-22 19:11 - 003369984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2025-04-25 18:17 - 2024-04-01 09:26 - 000000000 ____D C:\WINDOWS\system32\SecurityHealth
2025-04-23 17:54 - 2025-03-12 12:04 - 000002404 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2025-04-23 17:54 - 2025-03-12 12:04 - 000002369 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2025-04-18 14:07 - 2024-12-09 09:54 - 000000000 ____D C:\Users\Dell\TapinRadio
2025-04-11 13:56 - 2024-10-07 06:54 - 000000000 ____D C:\Program Files (x86)\Google
2025-04-10 18:39 - 2024-04-01 18:31 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2025-04-10 18:39 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2025-04-10 18:39 - 2024-04-01 18:30 - 000000000 ____D C:\WINDOWS\system32\Microsoft-Edge-WebView
2025-04-08 19:27 - 2023-09-21 10:23 - 000000000 ____D C:\Users\Dell\AppData\Local\PlaceholderTileLogoFolder
2025-04-08 19:25 - 2025-01-19 17:45 - 000000000 ____D C:\Users\Dell\Desktop\UROLOGIE
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119309
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Zdravím!
1. přidejte ješte log Addition, aby kontrola mohla být kompletní. Je na ploše v souboru additin.txt.
2. ten druhý post je ze stejného PC? Pokud ano, bude smazán.
1. přidejte ješte log Addition, aby kontrola mohla být kompletní. Je na ploše v souboru additin.txt.
2. ten druhý post je ze stejného PC? Pokud ano, bude smazán.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
Ano je to že stejného PC to byl překlep
Re: kontrola logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Dell (08-05-2025 15:20:53)
Running from C:\Users\Dell\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) (2024-11-23 08:43:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3254839106-4227605653-2461104676-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3254839106-4227605653-2461104676-503 - Limited - Disabled)
Dell (S-1-5-21-3254839106-4227605653-2461104676-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-3254839106-4227605653-2461104676-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3254839106-4227605653-2461104676-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3254839106-4227605653-2461104676-1002 - Limited - Disabled) => C:\Users\WsiAccount
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AudioHUBWwwAccessConnector 1.0.0.2320 (HKLM-x32\...\AudioHUBWwwAccessConnector) (Version: 1.0.0.2320 - MEDIAN s.r.o.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.4.10068.2727 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 134.0.29548.179 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1993.6 - AVAST Software) Hidden
Eclipse Temurin JRE with Hotspot 11.0.26+4 (x64) (HKLM\...\{45E29707-E9DD-4E9C-835C-A60940D58BF7}) (Version: 11.0.26.4 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x64) (HKLM\...\{35151E48-24F7-4295-82D2-F2B3C700F9A6}) (Version: 8.0.442.6 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x86) (HKLM-x32\...\{93A18363-B57B-4859-9F13-58DEED9E6EC0}) (Version: 8.0.442.6 - Eclipse Adoptium)
Expert Lotto 5 (HKLM-x32\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2024.4.0.27683 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 135.0.7049.85 - Google LLC)
IrfanView 4.70 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 441 (64-bit) (HKLM\...\{77724AE4-039E-4CA4-87B4-2F64180441F0}) (Version: 8.0.4410.7 - Oracle Corporation)
LibreOffice 25.2.1.2 (HKLM\...\{C155ED9C-4F2D-408C-BF76-07CB2B126B25}) (Version: 25.2.1.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.50 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 136.0.1 (x64 cs)) (Version: 136.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 128.8.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 128.8.0 (x64 cs)) (Version: 128.8.0 - Mozilla)
Program pro odinstalaci nástroje tiskárny EPSON LX-1310 ESC/P (HKLM\...\EPSON LX-1310 ESC/P) (Version: - SEIKO EPSON Corporation)
Program pro odinstalaci nástroje tiskárny EPSON LX-300+II ESC/P (HKLM\...\EPSON LX-300+II ESC/P) (Version: - SEIKO EPSON Corporation)
Skype 8.138 (HKLM-x32\...\{1BC908B3-778D-4B6B-84BE-75562413506C}) (Version: 8.138.0.203 - Skype Technologies S.A.)
Skype verze 8.138 (HKLM-x32\...\Skype_is1) (Version: 8.138 - Skype Technologies S.A.) Hidden
Software tiskárny EPSON (HKLM\...\EPSON Printer and Utilities) (Version: - )
Spotify (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Spotify) (Version: 1.2.48.405.gf2c48e6f - Spotify AB)
TapinRadio 2.15.98.8 (x64) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.7.48799 - TeamViewer)
TomTom MyDrive Connect 4.4.4.5059 (HKLM-x32\...\MyDriveConnect) (Version: 4.4.4.5059 - TomTom)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Chrome apps:
============
KVIFF.TV (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b3c7e3d83561e6c703e38f6b919f3b28) (Version: 1.0 - Google\Chrome)
Správce hesel Google (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b760b48ad42951aaa3e37e2789e2f196) (Version: 1.0 - Google\Chrome)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3624.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
9390SimonKnuth.ScannerforWindows10 -> C:\Program Files\WindowsApps\9390SimonKnuth.ScannerforWindows10_3.2.9.0_x64__69n05hp4v3s90 [2025-04-08] (Simon Knuth)
Akce kliknutím (Preview) -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CoreAI_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-09] (INTEL CORP) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
Doc Scan PDF Scanner -> C:\Program Files\WindowsApps\53058betterapp.AnyScan_1.2.4.0_x64__90ct3cgs7yy6a [2025-04-08] (better app)
Escanear Fácil -> C:\Program Files\WindowsApps\642Jabasoft.EscanearFcil_3.1.6.0_x64__3jhqbycpkrcae [2025-05-01] (Jabasoft)
Intel(R) Management and Security Status -> C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2405.6.0.0_x64__8j3eq9eme6ctt [2025-01-05] (INTEL CORP) [Startup Task]
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe [2025-04-23] (Microsoft Corporation)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0 [2025-04-25] (Spotify AB) [Startup Task]
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2024-11-09] (Waves Audio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2517.4.0_x64__cv1g1gvanyjgm [2025-05-04] (WhatsApp Inc.) [Startup Task]
WinRAR -> C:\Program Files\WinRAR [2024-10-07] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Dell\Desktop\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kajebgjangihfbkjfejcanhanjmmbcfd\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_iepmbhehofohhofgnnmaicegcempfonb\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
==================== Loaded Modules (Whitelisted) =============
2025-05-08 14:59 - 2025-05-08 14:59 - 000104448 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioMarkerWin.dll
2025-05-08 14:59 - 2025-05-08 14:59 - 002391615 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\libfftw3f-3.dll
2020-09-21 10:39 - 2020-09-21 10:39 - 001035264 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\Median\WwwAccessConnector\System.Data.SQLite.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_441\bin\ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_441\bin\jp2ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-11.0.26.4-hotspot\bin;C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\15260264710321002627\133910165066998143.jpg
HKU\S-1-5-21-3254839106-4227605653-2461104676-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi 3: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys
Ethernet 2: Intel(R) Ethernet Connection (10) I219-V -> e1d68x64.sys
Síťové připojení Bluetooth 3: Bluetooth Device (Personal Area Network) #3 -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: esifsvc => 2
MSCONFIG\Services: FoxitReaderUpdateService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: GoogleUpdaterInternalService135.0.7023.0 => 2
MSCONFIG\Services: GoogleUpdaterService135.0.7023.0 => 2
MSCONFIG\Services: iaStorAfsService => 3
MSCONFIG\Services: igccservice => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: IntelAudioService => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LibreOfficeMaintenance => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PC Cleaner Service => 3
MSCONFIG\Services: RstMwService => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: WavesSysSvc => 2
MSCONFIG\Services: WMIRegistrationService => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Spotify"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{DB438734-CD19-438A-92FD-1A63DED54934}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0C59FE4-025D-4CDE-AF51-EE56BDCEFEFF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{AADD9B49-81F8-4105-BC82-65D7F46A1877}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{0757C34E-F48E-4626-BB07-CF0A171619EE}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3D5A135E-EDBA-4084-9DAA-7C738C3DB2C2}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{5BD15058-88EB-48CD-A7FC-EF34E778BF5C}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{371CCB7C-6C1C-497D-B82F-DF25FC36B997}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{042246A8-0AEB-4199-8AFE-02BEF7B252C1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [{9974C2F3-261A-4A0C-BF1A-F23D4912B3CE}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{D130D16E-48AF-44D8-AFFB-B7939A74C342}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{22CBC9DB-B798-4F2B-B206-D6681FB6A80E}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{5549E25C-9938-41A0-BAB2-D277A703F33D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{73C88CDA-B824-4642-88EA-96C7C58558AF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30F322EE-537E-49C1-9DC7-817A81D37B96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F33B8620-3E52-4933-9FE2-34BDCC380C6D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3376012-51EF-4DCB-AD70-508161974949}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6A30FBBD-4A55-4D62-9330-7E2D2135E997}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{65FF18F4-411C-4385-A639-EFE3165FA1DC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F29A971D-8D4B-4111-8FB7-097BF4BA5440}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{2ABF019E-22CE-49A4-B76A-EE20C09BD699}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2FA3DBA3-BEAE-4C52-80BA-8F1FA4CE1E6E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1685ABFE-07B2-4F8C-8604-254C34B05428}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7622FA9D-3E03-46B9-B42D-759EECB623F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4D15D197-E73E-4B15-880C-101C97591F22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{33092260-FDA6-4D1F-926D-61A3A785F6C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FFDB2154-3708-43FC-865E-E326B9A9977A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F122C1AF-E4C0-409D-BFD6-AA313F048DD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3BE06391-42B4-4703-A2F5-CD855C9AAE62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{36697136-DC15-45CB-96A0-0A1170710180}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A0D88CD7-5963-4159-BE6A-0BD92D851F95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8821FBA3-6A9B-420F-84E0-DD347A8E7979}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9F895DB4-95F3-496F-A009-B841042B76FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:237.4 GB) (Free:169.27 GB) (71%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/08/2025 02:58:50 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: svchost.exe_NgcCtnrSvc, verze: 10.0.26100.1150, časové razítko: 0xfdace0d9
Název chybujícího modulu: RPCRT4.dll, verze: 10.0.26100.3037, časové razítko: 0xc4a5da14
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d843d
ID chybujícího procesu: 0x112c
Čas spuštění chybující aplikace: 0x1dbc018f139be89
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\RPCRT4.dll
ID sestavy: ed779354-e9e7-494f-8cda-63c0b7374887
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/07/2025 08:10:13 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 135.0.7049.85 programu chrome.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (05/06/2025 07:56:30 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-0LLDMOB)
Description: Název chybující aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe, verze: 1.0.0.2320, časové razítko: 0x661f8f3c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.26100.3912, časové razítko: 0xc16c5511
Kód výjimky: 0xe0434352
Posun chyby: 0x0015da34
ID chybujícího procesu: 0x1ed0
Čas spuštění chybující aplikace: 0x1dbbe4b7ebc47cc
Cesta k chybující aplikaci: C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID sestavy: 6849efd0-9785-4559-910a-4a8c26a96738
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/06/2025 07:56:30 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ApplicationException
na System.Threading.Mutex.ReleaseMutex()
na AudioHUB.Processing.WwwAccessConnectorCommon.WatchingApp.WatchingMutex.Wait(System.Action)
na AudioHUB.Processing.WwwAccessConnectorUrlMonitor.Program.Main()
Error: (05/06/2025 07:46:30 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12094ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:21 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12110ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:15 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5532, identifikátor PID ProfSvc: 2244.
Error: (05/05/2025 05:11:55 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12078ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
System errors:
=============
Error: (05/08/2025 02:58:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NgcCtnrSvc byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (05/08/2025 02:58:47 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffffcde912ecce38, 0x0000000000000000, 0xfffff807dc9b0791, 0x0000000000000002)C:\WINDOWS\Minidump\050825-10593-01.dmp2f8a2212-d148-4b17-be54-2dee5de2f696
Error: (05/08/2025 02:58:41 PM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.
Error: (05/08/2025 02:58:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:53:28, 08.05.2025) bylo neočekávané.
Error: (05/08/2025 02:00:37 PM) (Source: IntcOED) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/08/2025 01:37:23 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {338B40F9-9D68-4B53-A793-6B9AA0C5F63B} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 08:20:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0LLDMOB)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 07:28:15 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffff841071fef968, 0x0000000000000000, 0xfffff80575db0791, 0x0000000000000002)C:\WINDOWS\Minidump\050725-11625-01.dmp0ee59ca8-75a7-40a1-a879-b36e672599ab
CodeIntegrity:
===============
Date: 2025-03-12 13:55:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2025-03-12 13:54:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.19.0 03/13/2023
Motherboard: Dell Inc. 0D2CKD
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 65%
Total physical RAM: 7917.94 MB
Available physical RAM: 2698.15 MB
Total Virtual: 8429.94 MB
Available Virtual: 2988.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.4 GB) (Free:169.27 GB) (Model: SSDPEMKF256G8 NVMe INTEL 256GB) (Protected) NTFS
\\?\Volume{10fa5803-44f7-4fc8-b23d-28beeb56178d}\ () (Fixed) (Total:0.96 GB) (Free:0.09 GB) NTFS
\\?\Volume{117b0fd1-da2c-436f-b053-b9c161d8602e}\ () (Fixed) (Total:0.09 GB) (Free:0.02 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: BB25F9B2)
Partition: GPT.
==================== End of Addition.txt =======================
Ran by Dell (08-05-2025 15:20:53)
Running from C:\Users\Dell\Desktop
Microsoft Windows 11 Pro Version 24H2 26100.3915 (X64) (2024-11-23 08:43:13)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
(If an entry is included in the fixlist, it will be removed.)
Administrator (S-1-5-21-3254839106-4227605653-2461104676-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3254839106-4227605653-2461104676-503 - Limited - Disabled)
Dell (S-1-5-21-3254839106-4227605653-2461104676-1001 - Administrator - Enabled) => C:\Users\Dell
Guest (S-1-5-21-3254839106-4227605653-2461104676-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3254839106-4227605653-2461104676-504 - Limited - Disabled)
WsiAccount (S-1-5-21-3254839106-4227605653-2461104676-1002 - Limited - Disabled) => C:\Users\WsiAccount
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
AudioHUBWwwAccessConnector 1.0.0.2320 (HKLM-x32\...\AudioHUBWwwAccessConnector) (Version: 1.0.0.2320 - MEDIAN s.r.o.)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 25.4.10068.2727 - Gen Digital Inc.)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 134.0.29548.179 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1993.6 - AVAST Software) Hidden
Eclipse Temurin JRE with Hotspot 11.0.26+4 (x64) (HKLM\...\{45E29707-E9DD-4E9C-835C-A60940D58BF7}) (Version: 11.0.26.4 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x64) (HKLM\...\{35151E48-24F7-4295-82D2-F2B3C700F9A6}) (Version: 8.0.442.6 - Eclipse Adoptium)
Eclipse Temurin JRE with Hotspot 8u442-b06 (x86) (HKLM-x32\...\{93A18363-B57B-4859-9F13-58DEED9E6EC0}) (Version: 8.0.442.6 - Eclipse Adoptium)
Expert Lotto 5 (HKLM-x32\...\nbi-expertlotto-1.0.0.0.0) (Version: - )
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2024.4.0.27683 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 135.0.7049.85 - Google LLC)
IrfanView 4.70 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.70 - Irfan Skiljan)
Java 8 Update 441 (64-bit) (HKLM\...\{77724AE4-039E-4CA4-87B4-2F64180441F0}) (Version: 8.0.4410.7 - Oracle Corporation)
LibreOffice 25.2.1.2 (HKLM\...\{C155ED9C-4F2D-408C-BF76-07CB2B126B25}) (Version: 25.2.1.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.50 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.50 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.28402 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 cs) (HKLM\...\Mozilla Firefox 136.0.1 (x64 cs)) (Version: 136.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 128.8.0 - Mozilla)
Mozilla Thunderbird (x64 cs) (HKLM\...\Mozilla Thunderbird 128.8.0 (x64 cs)) (Version: 128.8.0 - Mozilla)
Program pro odinstalaci nástroje tiskárny EPSON LX-1310 ESC/P (HKLM\...\EPSON LX-1310 ESC/P) (Version: - SEIKO EPSON Corporation)
Program pro odinstalaci nástroje tiskárny EPSON LX-300+II ESC/P (HKLM\...\EPSON LX-300+II ESC/P) (Version: - SEIKO EPSON Corporation)
Skype 8.138 (HKLM-x32\...\{1BC908B3-778D-4B6B-84BE-75562413506C}) (Version: 8.138.0.203 - Skype Technologies S.A.)
Skype verze 8.138 (HKLM-x32\...\Skype_is1) (Version: 8.138 - Skype Technologies S.A.) Hidden
Software tiskárny EPSON (HKLM\...\EPSON Printer and Utilities) (Version: - )
Spotify (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\Spotify) (Version: 1.2.48.405.gf2c48e6f - Spotify AB)
TapinRadio 2.15.98.8 (x64) (HKLM-x32\...\TapinRadio_is1) (Version: - Raimersoft)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.7.48799 - TeamViewer)
TomTom MyDrive Connect 4.4.4.5059 (HKLM-x32\...\MyDriveConnect) (Version: 4.4.4.5059 - TomTom)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
WinRAR 7.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 7.01.0 - win.rar GmbH)
Chrome apps:
============
KVIFF.TV (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b3c7e3d83561e6c703e38f6b919f3b28) (Version: 1.0 - Google\Chrome)
Správce hesel Google (HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\b760b48ad42951aaa3e37e2789e2f196) (Version: 1.0 - Google\Chrome)
Packages:
=========
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3624.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
@{MicrosoftWindows.55182690.Taskbar_1000.26100.3775.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.55182690.Taskbar/Resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
9390SimonKnuth.ScannerforWindows10 -> C:\Program Files\WindowsApps\9390SimonKnuth.ScannerforWindows10_3.2.9.0_x64__69n05hp4v3s90 [2025-04-08] (Simon Knuth)
Akce kliknutím (Preview) -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CoreAI_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-09] (INTEL CORP) [Startup Task]
Balíček prostředí funkcí systému Windows -> C:\WINDOWS\SystemApps\SxS\MicrosoftWindows.55182690.Taskbar_cw5n1h2txyewy [2025-04-26] (Microsoft Windows)
Doc Scan PDF Scanner -> C:\Program Files\WindowsApps\53058betterapp.AnyScan_1.2.4.0_x64__90ct3cgs7yy6a [2025-04-08] (better app)
Escanear Fácil -> C:\Program Files\WindowsApps\642Jabasoft.EscanearFcil_3.1.6.0_x64__3jhqbycpkrcae [2025-05-01] (Jabasoft)
Intel(R) Management and Security Status -> C:\Program Files\WindowsApps\AppUp.IntelManagementandSecurityStatus_2405.6.0.0_x64__8j3eq9eme6ctt [2025-01-05] (INTEL CORP) [Startup Task]
Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.327.0_x64__8wekyb3d8bbwe [2025-04-23] (Microsoft Corporation)
SpotifyAB.SpotifyMusic -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0 [2025-04-25] (Spotify AB) [Startup Task]
Waves MaxxAudio Pro for Dell 2019 -> C:\Program Files\WindowsApps\WavesAudio.MaxxAudioProforDell2019_2.0.54.0_x64__fh4rh281wavaa [2024-11-09] (Waves Audio)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2517.4.0_x64__cv1g1gvanyjgm [2025-05-04] (WhatsApp Inc.) [Startup Task]
WinRAR -> C:\Program Files\WinRAR [2024-10-07] (win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2025-05-05] (Avast Software s.r.o. -> Gen Digital Inc.)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Dell\Desktop\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kajebgjangihfbkjfejcanhanjmmbcfd\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_iepmbhehofohhofgnnmaicegcempfonb\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\KVIFF.TV.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=iepmbhehofohhofgnnmaicegcempfonb
ShortcutWithArgument: C:\Users\Dell\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Správce hesel Google.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd
==================== Loaded Modules (Whitelisted) =============
2025-05-08 14:59 - 2025-05-08 14:59 - 000104448 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\AudioMarkerWin.dll
2025-05-08 14:59 - 2025-05-08 14:59 - 002391615 _____ () [File not signed] C:\Program Files (x86)\Median\WwwAccessConnector\libfftw3f-3.dll
2020-09-21 10:39 - 2020-09-21 10:39 - 001035264 _____ (Robert Simpson, et al.) [File not signed] [File is in use] C:\Program Files (x86)\Median\WwwAccessConnector\System.Data.SQLite.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) =============
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_441\bin\ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_441\bin\jp2ssv.dll [2024-12-04] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-8.0.442.6-hotspot\bin;C:\Program Files\Eclipse Adoptium\jre-11.0.26.4-hotspot\bin;C:\Program Files (x86)\Common Files\Oracle\Java\java8path;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dell\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\15260264710321002627\133910165066998143.jpg
HKU\S-1-5-21-3254839106-4227605653-2461104676-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
Network Binding:
=============
Wi-Fi 3: Intel(R) Wi-Fi 6 AX201 160MHz -> Netwtw10.sys
Ethernet 2: Intel(R) Ethernet Connection (10) I219-V -> e1d68x64.sys
Síťové připojení Bluetooth 3: Bluetooth Device (Personal Area Network) #3 -> bthpan.sys
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: cplspcon => 2
MSCONFIG\Services: esifsvc => 2
MSCONFIG\Services: FoxitReaderUpdateService => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: GoogleUpdaterInternalService135.0.7023.0 => 2
MSCONFIG\Services: GoogleUpdaterService135.0.7023.0 => 2
MSCONFIG\Services: iaStorAfsService => 3
MSCONFIG\Services: igccservice => 2
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2
MSCONFIG\Services: IntelAudioService => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: LibreOfficeMaintenance => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: PC Cleaner Service => 3
MSCONFIG\Services: RstMwService => 2
MSCONFIG\Services: RtkAudioUniversalService => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\Services: WavesSysSvc => 2
MSCONFIG\Services: WMIRegistrationService => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "RtkAudUService"
HKLM\...\StartupApproved\Run: => "WavesSvc"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_B5BC174A7B4ABF98EC6D64B02610726A"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-3254839106-4227605653-2461104676-1001\...\StartupApproved\Run: => "Spotify"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{DB438734-CD19-438A-92FD-1A63DED54934}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D0C59FE4-025D-4CDE-AF51-EE56BDCEFEFF}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24295.401.3195.9406_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{AADD9B49-81F8-4105-BC82-65D7F46A1877}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{0757C34E-F48E-4626-BB07-CF0A171619EE}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{3D5A135E-EDBA-4084-9DAA-7C738C3DB2C2}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{5BD15058-88EB-48CD-A7FC-EF34E778BF5C}C:\users\dell\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\dell\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{371CCB7C-6C1C-497D-B82F-DF25FC36B997}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{042246A8-0AEB-4199-8AFE-02BEF7B252C1}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [{9974C2F3-261A-4A0C-BF1A-F23D4912B3CE}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{D130D16E-48AF-44D8-AFFB-B7939A74C342}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{22CBC9DB-B798-4F2B-B206-D6681FB6A80E}] => (Allow) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{5549E25C-9938-41A0-BAB2-D277A703F33D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{73C88CDA-B824-4642-88EA-96C7C58558AF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30F322EE-537E-49C1-9DC7-817A81D37B96}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F33B8620-3E52-4933-9FE2-34BDCC380C6D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3376012-51EF-4DCB-AD70-508161974949}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6A30FBBD-4A55-4D62-9330-7E2D2135E997}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [FPS-SpoolWorker-In-TCP] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-V2] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [FPS-SpoolWorker-In-TCP-NoScope] => (Allow) C:\WINDOWS\system32\spoolsvworker.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{65FF18F4-411C-4385-A639-EFE3165FA1DC}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F29A971D-8D4B-4111-8FB7-097BF4BA5440}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> Gen Digital Inc.)
FirewallRules: [{2ABF019E-22CE-49A4-B76A-EE20C09BD699}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2FA3DBA3-BEAE-4C52-80BA-8F1FA4CE1E6E}] => (Allow) C:\Program Files\WindowsApps\MSTeams_25072.1611.3570.1995_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1685ABFE-07B2-4F8C-8604-254C34B05428}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7622FA9D-3E03-46B9-B42D-759EECB623F0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4D15D197-E73E-4B15-880C-101C97591F22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{33092260-FDA6-4D1F-926D-61A3A785F6C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FFDB2154-3708-43FC-865E-E326B9A9977A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F122C1AF-E4C0-409D-BFD6-AA313F048DD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3BE06391-42B4-4703-A2F5-CD855C9AAE62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{36697136-DC15-45CB-96A0-0A1170710180}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A0D88CD7-5963-4159-BE6A-0BD92D851F95}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8821FBA3-6A9B-420F-84E0-DD347A8E7979}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.262.580.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{9F895DB4-95F3-496F-A009-B841042B76FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.50\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:237.4 GB) (Free:169.27 GB) (71%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (05/08/2025 02:58:50 PM) (Source: Application Error) (EventID: 1000) (User: NT AUTHORITY)
Description: Název chybující aplikace: svchost.exe_NgcCtnrSvc, verze: 10.0.26100.1150, časové razítko: 0xfdace0d9
Název chybujícího modulu: RPCRT4.dll, verze: 10.0.26100.3037, časové razítko: 0xc4a5da14
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d843d
ID chybujícího procesu: 0x112c
Čas spuštění chybující aplikace: 0x1dbc018f139be89
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\RPCRT4.dll
ID sestavy: ed779354-e9e7-494f-8cda-63c0b7374887
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/07/2025 08:10:13 PM) (Source: Application Hang) (EventID: 1002) (User: NT AUTHORITY)
Description: Verze 135.0.7049.85 programu chrome.exe ukončila interakci se systémem Windows a byla ukončena. Pokud chcete zjistit, zda jsou k dispozici další informace o problému, zkontrolujte historii problémů v ovládacím panelu Zabezpečení a údržba.
Error: (05/06/2025 07:56:30 AM) (Source: Application Error) (EventID: 1000) (User: DESKTOP-0LLDMOB)
Description: Název chybující aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe, verze: 1.0.0.2320, časové razítko: 0x661f8f3c
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.26100.3912, časové razítko: 0xc16c5511
Kód výjimky: 0xe0434352
Posun chyby: 0x0015da34
ID chybujícího procesu: 0x1ed0
Čas spuštění chybující aplikace: 0x1dbbe4b7ebc47cc
Cesta k chybující aplikaci: C:\Program Files (x86)\Median\WwwAccessConnector\AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\KERNELBASE.dll
ID sestavy: 6849efd0-9785-4559-910a-4a8c26a96738
Celý název chybujícího balíčku:
ID chybující aplikace relativní vzhledem k balíčku:
Error: (05/06/2025 07:56:30 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: AudioHUB.Processing.WwwAccessConnectorUrlMonitor.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.ApplicationException
na System.Threading.Mutex.ReleaseMutex()
na AudioHUB.Processing.WwwAccessConnectorCommon.WatchingApp.WatchingMutex.Wait(System.Action)
na AudioHUB.Processing.WwwAccessConnectorUrlMonitor.Program.Main()
Error: (05/06/2025 07:46:30 AM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12094ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:21 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12110ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
Error: (05/05/2025 05:56:15 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 5532, identifikátor PID ProfSvc: 2244.
Error: (05/05/2025 05:11:55 PM) (Source: CertEnroll) (EventID: 86) (User: NT AUTHORITY)
Description: Inicializace registrace certifikátu SCEP pro WORKGROUP\DESKTOP-0LLDMOB$ přes https://STM-KeyId-fb17d70d734870e919c4e ... s/Aik/scep se nepovedla:
GetCACaps
Metoda: GET(12078ms)
Fáze: GetCACaps
Nelze rozpoznat název nebo adresu serveru. 0x80072ee7 (WinHttp: 12007 ERROR_WINHTTP_NAME_NOT_RESOLVED)
System errors:
=============
Error: (05/08/2025 02:58:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NgcCtnrSvc byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (05/08/2025 02:58:47 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffffcde912ecce38, 0x0000000000000000, 0xfffff807dc9b0791, 0x0000000000000002)C:\WINDOWS\Minidump\050825-10593-01.dmp2f8a2212-d148-4b17-be54-2dee5de2f696
Error: (05/08/2025 02:58:41 PM) (Source: volmgr) (EventID: 162) (User: )
Description: Soubor se stavem systému byl úspěšně vygenerován.
Error: (05/08/2025 02:58:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:53:28, 08.05.2025) bylo neočekávané.
Error: (05/08/2025 02:00:37 PM) (Source: IntcOED) (EventID: 1) (User: )
Description: Event-ID 1
Error: (05/08/2025 01:37:23 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {338B40F9-9D68-4B53-A793-6B9AA0C5F63B} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 08:20:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-0LLDMOB)
Description: Server {6FA05A24-B1DF-4155-909E-7B424F2D2BB5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (05/07/2025 07:28:15 PM) (Source: Microsoft-Windows-WER-SystemErrorReporting) (EventID: 1001) (User: NT AUTHORITY)
Description: 0x00000050 (0xffff841071fef968, 0x0000000000000000, 0xfffff80575db0791, 0x0000000000000002)C:\WINDOWS\Minidump\050725-11625-01.dmp0ee59ca8-75a7-40a1-a879-b36e672599ab
CodeIntegrity:
===============
Date: 2025-03-12 13:55:32
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2025-03-12 13:54:44
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Dell Inc. 1.19.0 03/13/2023
Motherboard: Dell Inc. 0D2CKD
Processor: Intel(R) Core(TM) i5-10210U CPU @ 1.60GHz
Percentage of memory in use: 65%
Total physical RAM: 7917.94 MB
Available physical RAM: 2698.15 MB
Total Virtual: 8429.94 MB
Available Virtual: 2988.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.4 GB) (Free:169.27 GB) (Model: SSDPEMKF256G8 NVMe INTEL 256GB) (Protected) NTFS
\\?\Volume{10fa5803-44f7-4fc8-b23d-28beeb56178d}\ () (Fixed) (Total:0.96 GB) (Free:0.09 GB) NTFS
\\?\Volume{117b0fd1-da2c-436f-b053-b9c161d8602e}\ () (Fixed) (Total:0.09 GB) (Free:0.02 GB) FAT32
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: BB25F9B2)
Partition: GPT.
==================== End of Addition.txt =======================
Re: kontrola logu
Pardon to není ono
-
Rudy
- Site Admin
- Příspěvky: 119309
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Jíá bych řekl, že podle data to je ono (08-05-2025 15:20:53). Tak jak tedy? A co ten druhý váš post? Je to omyl, nebo je to jiný PC?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
asi to bude ono
Re: kontrola logu
ten druhý post je omyl ten smažte
-
Rudy
- Site Admin
- Příspěvky: 119309
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
OK, druhý post smažu. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
ClosePtocesses:
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 06-05-2025
Ran by Dell (08-05-2025 19:18:22) Run:1
Running from C:\Users\Dell\Desktop
Loaded Profiles: Dell & WsiAccount
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
ClosePtocesses:
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
End
*****************
ClosePtocesses: => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
HKLM\System\CurrentControlSet\Services\AVG Business Console Client Antivirus Service => removed successfully
AVG Business Console Client Antivirus Service => service removed successfully
HKLM\System\CurrentControlSet\Services\AVG Firewall => removed successfully
AVG Firewall => service removed successfully
HKLM\System\CurrentControlSet\Services\avgBcc => removed successfully
avgBcc => service removed successfully
HKLM\System\CurrentControlSet\Services\avgbdisk => removed successfully
avgbdisk => service removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 96475311 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 4668 B
Edge => 0 B
Chrome => 406883246 B
Firefox => 44489980 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1473736 B
NetworkService => 1476068 B
Dell => 87592385 B
WsiAccount => 87592783 B
RecycleBin => 358152720 B
EmptyTemp: => 1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:18:35 ====
Ran by Dell (08-05-2025 19:18:22) Run:1
Running from C:\Users\Dell\Desktop
Loaded Profiles: Dell & WsiAccount
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
ClosePtocesses:
FirewallRules: [UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
FirewallRules: [TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe] => (Allow) \\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe => No File
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiSpyware] Restriction <==== ATTENTION
HKLM\SOFTWARE\Microsoft\Windows Defender: [DisableAntiVirus] Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {077BA067-7C15-40F0-B22E-C9DC2A54B4A2} - System32\Tasks\Microsoft\Windows\Location\Notifications => %windir%\System32\LocationNotificationWindows.exe (No File)
Task: {F3E6E7ED-A196-4E44-8803-55FAB3AD4E29} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (No File)
U3 AVG Business Console Client Antivirus Service; no ImagePath
U3 AVG Firewall; no ImagePath
U3 avgBcc; no ImagePath
U3 avgbdisk; no ImagePath
EmptyTemp:
End
*****************
ClosePtocesses: => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{76F731B3-6FBD-4C72-88AC-9A4D46D95476}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{51467B87-4D07-4BC2-9CAB-6584CDB0270A}\\nas-hala\servis2\sdi_rus\sdi_x64_r2309.exe" => removed successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiSpyware"="0" => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows Defender\\"DisableAntiVirus"="0" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{077BA067-7C15-40F0-B22E-C9DC2A54B4A2}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Location\Notifications => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Location\Notifications" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F3E6E7ED-A196-4E44-8803-55FAB3AD4E29}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker" => removed successfully
HKLM\System\CurrentControlSet\Services\AVG Business Console Client Antivirus Service => removed successfully
AVG Business Console Client Antivirus Service => service removed successfully
HKLM\System\CurrentControlSet\Services\AVG Firewall => removed successfully
AVG Firewall => service removed successfully
HKLM\System\CurrentControlSet\Services\avgBcc => removed successfully
avgBcc => service removed successfully
HKLM\System\CurrentControlSet\Services\avgbdisk => removed successfully
avgbdisk => service removed successfully
=========== EmptyTemp: ==========
FlushDNS => completed
BITS transfer queue => 1310720 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 96475311 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 0 B
Windows/system/drivers => 4668 B
Edge => 0 B
Chrome => 406883246 B
Firefox => 44489980 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1473736 B
NetworkService => 1476068 B
Dell => 87592385 B
WsiAccount => 87592783 B
RecycleBin => 358152720 B
EmptyTemp: => 1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:18:35 ====
-
Rudy
- Site Admin
- Příspěvky: 119309
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Smazáno. Log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: kontrola logu
ano děkuji a přeji hezký večer
-
Rudy
- Site Admin
- Příspěvky: 119309
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: kontrola logu
Hezký večer i vám a nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?